Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 31.05.2014, 18:23   #1
Hippel02
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Guten Tag, liebe Trojaner-Board Community!

Zuerst ist mir aufgefallen, das wenn ich mir bei Steam ein Spiel heruntergeladen habe, das die Download-Rate am Anfang wie gewohnt so um die 800kbs ist!

Doch schon nach kurzer Zeit wird die DL-Rate auf 5-10kbs verringert!

Wenn ich mir ein Antiviren Programm aus dem Internet herunterlade, habe ich die zb 2MB in Sekunden auf dem PC.

2. Problem: Mozilla Firefox startet nicht mehr, hatte vorher jedoch funktioniert!
über dem Task Manager sehe ich, das der Prozess direkt beendet wird.

3. Bei Google Chrome wird immer wieder Werbung eingeblendet, obwohl ich den Adwcleaner ausführe.

4. und Wichtigstes Problem:

Antiviren Programme starten Seltsamerweise nicht (wie bei Problem 2; Prozess wird beendet)
sowie das Programm Malwarebytes Anti-Malware! Der Ladebalken über dem Cursor erscheint nur eine Millisekunde und ist dann wieder verschwunden, als ob nie was gewesen wäre.

Hoffe auf Hilfe!

Mfg Hippel02

Alt 31.05.2014, 19:11   #2
M-K-D-B
/// TB-Ausbilder
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering






Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.


Bitte beachte folgende Hinweise:
  • Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  • Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  • Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo.
    Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  • Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
  • Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort zu starten!


Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!





Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 31.05.2014, 19:39   #3
Hippel02
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Hallo Matthias!

Hier die FRST


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:30-05-2014
Ran by Timmy (administrator) on LUKAS-PC on 31-05-2014 20:33:32
Running from C:\Users\Timmy\Downloads
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Bohemia Interactive) C:\Program Files\Steam\SteamApps\common\DayZ\DayZ.exe
(Valve Corporation) C:\Program Files\Steam\GameOverlayUI.exe
(techPowerUp (www.techpowerup.com)) C:\Program Files\GPU-Z\GPU-Z.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [951576 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744 2014-03-02] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [182352 2014-05-05] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-24558719-2126205106-1827937244-1004\...\Policies\Explorer: [NoCDBurning] 0
AppInit_DLLs: c:\progra~1\sn0310~1.boo => C:\Program Files\SN.Booster [4296192 2014-05-06] ()
IFEO\avcenter.exe: [Debugger] alg.exe
IFEO\avconfig.exe: [Debugger] alg.exe
IFEO\avfwsvc.exe: [Debugger] alg.exe
IFEO\avgamsvr.exe: [Debugger] alg.exe
IFEO\avgcc.exe: [Debugger] alg.exe
IFEO\avgemc.exe: [Debugger] alg.exe
IFEO\avgnt.exe: [Debugger] alg.exe
IFEO\avgupsvc.exe: [Debugger] alg.exe
IFEO\avmailc.exe: [Debugger] alg.exe
IFEO\avnotify.exe: [Debugger] alg.exe
IFEO\avp.exe: [Debugger] alg.exe
IFEO\avshadow.exe: [Debugger] alg.exe
IFEO\avwsc.exe: [Debugger] alg.exe
IFEO\ccproxy.exe: [Debugger] alg.exe
IFEO\ccsetmgr.exe: [Debugger] alg.exe
IFEO\egui.exe: [Debugger] alg.exe
IFEO\ekrn.exe: [Debugger] alg.exe
IFEO\kav.exe: [Debugger] alg.exe
IFEO\kldw.exe: [Debugger] alg.exe
IFEO\klwtblfs.exe: [Debugger] alg.exe
IFEO\klwtbws.exe: [Debugger] alg.exe
IFEO\mbam.exe: [Debugger] alg.exe
IFEO\mbamgui.exe: [Debugger] alg.exe
IFEO\mbamservice.exe: [Debugger] alg.exe
IFEO\mcshield.exe: [Debugger] alg.exe
IFEO\MpCmdRun.exe: [Debugger] alg.exe
IFEO\MpfService.exe: [Debugger] alg.exe
IFEO\mpfsrv.exe: [Debugger] alg.exe
IFEO\MSASCui.exe: [Debugger] alg.exe
IFEO\msscli.exe: [Debugger] alg.exe
IFEO\navapsvc.exe: [Debugger] alg.exe
IFEO\nisum.exe: [Debugger] alg.exe
IFEO\nod32km.exe: [Debugger] alg.exe
IFEO\nod32krn.exe: [Debugger] alg.exe
IFEO\nod32kui.exe: [Debugger] alg.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM - DefaultScope value is missing.
BHO: HAippy2Savea - {396E5F17-26E2-2AEC-C244-7C5E0A47D098} - C:\ProgramData\HAippy2Savea\OMvNsr8Q.dll ()
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{62754FEB-049A-4289-9BDF-793AC7A69E05}: [NameServer]192.168.2.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Timmy\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml

Chrome: 
=======
CHR HomePage: 
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\34.0.1847.131\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\34.0.1847.131\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1165635.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\system32\npDeployJava1.dll No File
CHR Extension: (South Park) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoiakcboakkfknbginpmpfkcdmcmpnfm [2013-01-16]
CHR Extension: (SavueLoTs) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfejgccfbbopiioofdnhogojdcpcfid [2014-05-21]
CHR Extension: (AllSaver) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\klofelfbengbfpnpodomloebpalbgjno [2014-05-08]
CHR Extension: (Google Wallet) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-17]
CHR Extension: (Whitelist for Chrome) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh [2014-04-17]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

S2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440400 2014-03-02] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440400 2014-03-02] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-03-02] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [124496 2014-05-05] (Avira Operations GmbH & Co. KG)
R3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [49152 2014-05-19] ()
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1682768 2014-05-13] (LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [375056 2014-04-15] (LogMeIn, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
S3 npggsvc; C:\Windows\system32\GameMon.des [4598456 2012-05-23] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [66872 2012-12-10] ()
R2 RzKLService; C:\Program Files\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2014-03-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2014-03-02] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69240 2014-03-02] (Avira Operations GmbH & Co. KG)
R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R1 MpKsled1f3119; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{85214CD5-A231-4EE8-95BF-BCEFBB04F1B8}\MpKsled1f3119.sys [39464 2014-05-31] (Microsoft Corporation)
R1 netfilter; C:\Windows\System32\drivers\netfilter.sys [47488 2014-02-13] (NetFilterSDK.com)
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [1277504 2012-12-27] (Ralink Technology Corp.)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [801896 2012-05-14] (Realtek Semiconductor Corporation                           )
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-11-25] (Avira GmbH)
S1 auvzfanh; \??\C:\Windows\system32\drivers\auvzfanh.sys [X]
S1 avqsyljw; \??\C:\Windows\system32\drivers\avqsyljw.sys [X]
S1 bcmezbwb; \??\C:\Windows\system32\drivers\bcmezbwb.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
U5 GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [26840 2012-08-21] (GEAR Software Inc.)
R3 GPU-Z; \??\C:\Users\Timmy\AppData\Local\Temp\GPU-Z.sys [X]
S1 grdueolg; \??\C:\Windows\system32\drivers\grdueolg.sys [X]
S1 iyefgqnd; \??\C:\Windows\system32\drivers\iyefgqnd.sys [X]
S1 mmtotfij; \??\C:\Windows\system32\drivers\mmtotfij.sys [X]
S1 ohfaloyf; \??\C:\Windows\system32\drivers\ohfaloyf.sys [X]
S1 osedppzt; \??\C:\Windows\system32\drivers\osedppzt.sys [X]
S1 srmiacxn; \??\C:\Windows\system32\drivers\srmiacxn.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S1 vjugzali; \??\C:\Windows\system32\drivers\vjugzali.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-31 20:36 - 2014-05-31 20:36 - 00059184 _____ () C:\Users\Timmy\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-31 20:33 - 2014-05-31 20:34 - 00011992 _____ () C:\Users\Timmy\Downloads\FRST.txt
2014-05-31 20:33 - 2014-05-31 20:33 - 01056256 _____ (Farbar) C:\Users\Timmy\Downloads\FRST.exe
2014-05-31 20:33 - 2014-05-31 20:33 - 00000000 ____D () C:\FRST
2014-05-31 19:48 - 2014-05-31 19:48 - 02056224 _____ () C:\Users\Timmy\Downloads\cpu-z-1692.zip
2014-05-31 19:36 - 2014-05-31 19:36 - 00000000 ____D () C:\Program Files\GPU-Z
2014-05-31 19:35 - 2014-05-31 19:35 - 01617624 _____ () C:\Users\Timmy\Downloads\GPU-Z.0.7.8.zip
2014-05-31 18:57 - 2014-05-31 18:57 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-31 18:57 - 2014-05-31 18:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-31 18:57 - 2014-05-31 18:57 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-05-31 18:57 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-31 18:57 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-31 18:57 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-31 18:52 - 2014-05-31 18:54 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (2).exe
2014-05-31 18:40 - 2014-05-31 18:40 - 00001105 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-31 18:37 - 2014-05-31 18:39 - 28852416 _____ (Mozilla) C:\Users\Timmy\Downloads\Firefox_Setup_de29.0.1.exe
2014-05-31 18:30 - 2014-05-31 18:30 - 00001421 _____ () C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-31 18:21 - 2014-05-31 18:21 - 14358016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-31 18:21 - 2014-05-31 18:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02049536 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01766400 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-31 18:21 - 2014-05-31 18:21 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-05-31 18:21 - 2014-05-31 18:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00745472 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00719360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-05-31 18:21 - 2014-05-31 18:21 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00242200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-05-31 18:21 - 2014-05-31 18:21 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-31 18:16 - 2014-05-31 18:17 - 30091776 _____ (Microsoft Corporation) C:\Users\Timmy\Downloads\IE10-Windows6.1-x86-de-de.exe
2014-05-31 18:10 - 2014-05-31 18:11 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-05-31 17:52 - 2014-05-31 17:53 - 25443244 _____ () C:\Users\Timmy\Downloads\DayZ 05.10.2014 - 14.06.59.01_1.mp4
2014-05-31 17:47 - 2014-05-31 17:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-31 17:45 - 2014-05-31 17:46 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-31 17:41 - 2014-05-31 17:41 - 01327971 _____ () C:\Users\Timmy\Downloads\adwcleaner_3.211.exe
2014-05-31 17:17 - 2014-05-31 17:17 - 00000000 ____D () C:\Windows\pss
2014-05-31 16:47 - 2014-05-31 16:47 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-31 16:47 - 2014-05-31 16:47 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-31 16:45 - 2014-05-31 16:46 - 04748896 _____ (Piriform Ltd) C:\Users\Timmy\Downloads\ccsetup414.exe
2014-05-31 16:42 - 2014-05-31 16:42 - 04981160 _____ (Adobe Systems Inc.) C:\Users\Timmy\Downloads\Shockwave_Installer_Slim.exe
2014-05-26 22:01 - 2014-05-26 22:05 - 90513790 _____ () C:\Users\Timmy\Downloads\DayZ 05.26.2014 - 21.57.15.01.mp4
2014-05-25 08:44 - 2014-05-25 08:44 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-05-21 17:42 - 2014-05-31 20:08 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\TS3Client
2014-05-21 17:42 - 2014-05-21 17:42 - 00001120 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-21 17:42 - 2014-05-21 17:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-21 17:42 - 2014-05-21 17:42 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-21 17:38 - 2014-05-21 17:39 - 00961360 _____ (Chip Digital GmbH) C:\Users\Timmy\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe
2014-05-21 17:35 - 2014-05-21 17:35 - 00000000 ____D () C:\ProgramData\HAippy2Savea
2014-05-19 06:41 - 2014-05-19 06:41 - 00000000 ____D () C:\Program Files\Common Files\BattlEye
2014-05-19 06:22 - 2014-05-19 07:02 - 00000000 ____D () C:\Users\Timmy\Documents\DayZ
2014-05-18 14:25 - 2014-05-18 14:25 - 00017791 _____ () C:\Users\Timmy\Downloads\Download.htm
2014-05-18 14:25 - 2014-05-18 14:25 - 00017791 _____ () C:\Users\Timmy\Downloads\Download (1).htm
2014-05-17 16:27 - 2014-05-17 16:27 - 00000216 _____ () C:\Users\Timmy\Desktop\DayZ.url
2014-05-17 16:27 - 2014-05-17 16:27 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-15 19:46 - 2014-05-15 19:46 - 00000000 ____D () C:\Users\Timmy\Documents\Razer
2014-05-15 19:46 - 2014-05-15 19:46 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Razer_Inc
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\ProgramData\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\Program Files\Razer
2014-05-15 19:39 - 2014-05-15 19:43 - 41954352 _____ (Razer Inc. ) C:\Users\Timmy\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-05-15 17:46 - 2014-05-15 17:47 - 00818889 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.4_HD_U_D1.jar
2014-05-15 17:40 - 2014-05-15 17:40 - 00785243 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.2_HD_D1.jar
2014-05-15 17:40 - 2014-05-15 17:40 - 00539717 _____ () C:\Users\Timmy\Downloads\optifine_1.7.2.zip
2014-05-15 17:38 - 2014-05-15 17:38 - 00030566 _____ () C:\Users\Timmy\Downloads\§6Paolos §aLagLess §4Shaders §cv03 §1RC7 §eLite.zip
2014-05-15 17:34 - 2014-05-15 17:34 - 00445865 _____ () C:\Users\Timmy\Downloads\voxelmap-1.7.2-1.0.jar
2014-05-15 17:32 - 2014-05-15 17:32 - 00066184 _____ () C:\Users\Timmy\Downloads\yatc_b0.9.1_1.4.6.zip
2014-05-15 16:51 - 2014-05-15 16:51 - 00033217 _____ () C:\Users\Timmy\Downloads\§6Paolos §aLagLess §4Shaders §cv03 §3RC8.zip
2014-05-15 16:50 - 2014-05-15 16:50 - 00026598 _____ () C:\Users\Timmy\Downloads\MrMeep_x3s Shaders v04.0 RC4.zip
2014-05-15 16:34 - 2014-05-15 16:34 - 00811462 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.2_HD_U_D1.jar
2014-05-15 16:34 - 2014-05-15 16:34 - 00064982 _____ () C:\Users\Timmy\Downloads\seus-v10.1-Preview2.zip
2014-05-15 16:25 - 2014-05-15 16:25 - 02530401 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.997-installer.jar
2014-05-15 16:24 - 2014-05-15 16:24 - 00183946 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.0-beta-mc1.7.2-f997.jar
2014-05-15 16:21 - 2014-05-15 16:21 - 00177465 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.13mc1.7.4-zip.zip
2014-05-15 16:12 - 2014-05-15 16:13 - 00202061 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.12-mc1.7.2-f1040.jar
2014-05-15 16:12 - 2014-05-15 16:13 - 00046267 _____ () C:\Users\Timmy\Downloads\SEUS-v10.1-Ultra.zip
2014-05-15 16:07 - 2014-05-15 16:07 - 02632153 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.1024-installer.jar
2014-05-15 16:02 - 2014-05-15 16:02 - 00000000 ____D () C:\ProgramData\AllaboutApp
2014-05-15 15:59 - 2014-05-15 15:59 - 00322080 _____ (AllaboutApp) C:\Users\Timmy\Downloads\IGG-DayZ.StandAlone.part1.rar.exe
2014-05-15 15:50 - 2014-05-15 15:50 - 00000000 ____D () C:\Users\Timmy\AppData\Local\23690
2014-05-15 15:48 - 2014-05-15 15:48 - 00340992 _____ () C:\Users\Timmy\Downloads\DayZStandalone__7934_il12176725.exe
2014-05-15 15:48 - 2014-05-15 15:48 - 00340992 _____ () C:\Users\Timmy\Downloads\DayZStandalone__7934_il12176725 (1).exe
2014-05-14 19:02 - 2014-05-14 19:02 - 02630583 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.1040-installer.jar
2014-05-14 18:55 - 2014-05-14 18:55 - 03685975 _____ () C:\Users\Timmy\Downloads\Minecraft Force Op 1.7.9.zip
2014-05-14 18:52 - 2014-05-14 18:52 - 00469713 _____ () C:\Users\Timmy\Downloads\MINECRAFT_FORCEOP_2014.RAR
2014-05-14 13:36 - 2014-05-14 13:37 - 06647543 _____ () C:\Users\Timmy\Downloads\Nodus.zip
2014-05-14 13:29 - 2014-05-09 09:06 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 13:29 - 2014-05-09 09:04 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 13:29 - 2014-04-12 04:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 13:29 - 2014-04-12 04:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 13:29 - 2014-04-12 04:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 13:29 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 13:29 - 2014-04-12 04:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 13:29 - 2014-04-12 04:11 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 13:29 - 2014-04-12 04:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 13:29 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-05-14 13:29 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 13:29 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 13:29 - 2014-03-04 11:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 13:28 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 13:22 - 2014-05-14 13:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-05-14 13:22 - 2014-05-14 13:22 - 00000000 ____D () C:\Program Files\LogMeIn Hamachi
2014-05-13 18:28 - 2014-05-31 19:31 - 00000000 ____D () C:\Users\Timmy\AppData\Local\DayZ
2014-05-13 18:28 - 2014-05-13 18:28 - 00000000 ____D () C:\Users\Timmy\Documents\BIS Core Engine
2014-05-13 18:27 - 2014-05-13 18:27 - 13987015 _____ () C:\Users\Timmy\Downloads\DayZ SA Multiplayer Crack.zip
2014-05-13 17:18 - 2014-05-13 17:18 - 00254645 _____ () C:\Users\Timmy\Downloads\[1.7.2]ReiMinimap_v3.4_03beta.zip
2014-05-13 17:17 - 2014-05-13 17:17 - 00859104 _____ () C:\Users\Timmy\Downloads\Player Setup.exe
2014-05-13 17:14 - 2014-05-13 17:15 - 28062081 _____ () C:\Users\Timmy\Downloads\Sphax PureBDcraft 128x MC17.zip
2014-05-13 16:49 - 2014-05-13 16:51 - 19329130 _____ () C:\Users\Timmy\Downloads\DayZ By NotAwim for HunteR26RuS 1.5.2 Modify.zip
2014-05-12 14:54 - 2014-05-12 14:54 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\.firefox
2014-05-12 14:51 - 2014-05-12 14:52 - 06647663 _____ () C:\Users\Timmy\Downloads\Nodus 1.7.9.zip
2014-05-11 17:08 - 2014-05-11 18:03 - 1197047898 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_24_01.rar
2014-05-11 17:07 - 2014-05-11 17:07 - 15568473 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_patcher (1).rar
2014-05-11 17:04 - 2014-05-11 17:07 - 08242902 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_patcher.rar
2014-05-10 22:56 - 2014-05-25 08:44 - 00000000 ___RD () C:\Program Files\Skype
2014-05-10 22:56 - 2014-05-10 22:56 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Skype
2014-05-10 22:56 - 2014-05-10 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-05-10 22:55 - 2014-05-10 22:55 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Timmy\Downloads\SkypeSetup (1).exe
2014-05-10 15:57 - 2014-05-10 16:00 - 49268534 _____ () C:\Users\Timmy\Downloads\LIFE 128x (Vers. 81).zip
2014-05-09 20:09 - 2014-05-09 20:09 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-05-09 20:05 - 2014-05-09 20:06 - 00921512 _____ (Oracle Corporation) C:\Users\Timmy\Downloads\chromeinstall-7u55 (1).exe
2014-05-09 19:38 - 2014-05-18 20:51 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\.minecraft
2014-05-09 19:37 - 2014-05-30 13:11 - 01557017 _____ (TeamExtreme) C:\Users\Timmy\Desktop\Minecraft.exe
2014-05-09 19:37 - 2014-05-10 09:24 - 01771520 _____ (TeamExtreme) C:\Users\Timmy\Downloads\Minecraft.exe
2014-05-09 18:18 - 2014-05-09 18:18 - 00000009 _____ () C:\Users\Timmy\Downloads\ad_down.htm
2014-05-09 17:26 - 2014-05-09 17:27 - 00255189 _____ () C:\Users\Timmy\Downloads\Mineshafter-launcher.jar
2014-05-09 17:21 - 2014-05-09 17:22 - 00236936 _____ () C:\Users\Timmy\Downloads\Mineshafter-launcher_downloader-8UICTeWm.exe
2014-05-09 17:15 - 2014-05-09 17:15 - 00643272 _____ () C:\Users\Timmy\Downloads\MineCraftSetup.exe
2014-05-08 15:36 - 2014-05-31 16:48 - 00000000 ____D () C:\Windows\Minidump
2014-05-08 15:07 - 2014-05-08 15:09 - 04582789 _____ () C:\Users\Timmy\Downloads\m2k-mod_Pserver.zip
2014-05-07 22:28 - 2014-05-07 22:30 - 03757782 _____ () C:\Users\Timmy\Downloads\Item Creator.zip
2014-05-07 22:27 - 2014-05-07 22:27 - 00000000 _____ () C:\Users\Timmy\Downloads\fileshare.ro_Metin2 Item Hack.rar
2014-05-07 22:09 - 2014-05-07 22:14 - 23488196 _____ () C:\Users\Timmy\Downloads\MultiHack (1).rar
2014-05-07 21:52 - 2014-05-07 21:58 - 23488196 _____ () C:\Users\Timmy\Downloads\MultiHack.rar
2014-05-07 21:48 - 2014-05-07 21:48 - 00236960 _____ () C:\Users\Timmy\Downloads\ClickHeretoDownloadSetup-bmrNRBCC.exe
2014-05-07 21:44 - 2014-05-07 21:44 - 00000000 ___SD () C:\Users\Timmy\AppData\Roaming\Frutas
2014-05-07 21:43 - 2014-05-07 21:43 - 00000000 ___HD () C:\Users\Timmy\Desktop\TempInstall
2014-05-07 21:42 - 2014-05-07 21:43 - 01151644 _____ () C:\Users\Timmy\Downloads\Bot_Metin2.rar
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\Users\Timmy\Documents\My Cheat Tables
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\Program Files\Cheat Engine 6.3
2014-05-07 21:34 - 2014-05-07 21:35 - 08065840 _____ (Cheat Engine ) C:\Users\Timmy\Downloads\CheatEngine63.exe
2014-05-07 16:31 - 2014-05-07 16:32 - 03511609 _____ () C:\Users\Timmy\Downloads\Metin 2 Yang Hack.rar
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\ProgramData\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\Program Files\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\Program Files\Elcomsoft
2014-05-07 16:22 - 2014-05-07 16:24 - 08435712 _____ () C:\Users\Timmy\Downloads\archpr454_setup_en.msi
2014-05-07 16:20 - 2014-05-07 16:20 - 00285675 _____ () C:\Users\Timmy\Downloads\Metin2 Hack 2014.rar
2014-05-07 16:17 - 2014-05-07 16:17 - 00630756 _____ (setup installer update 2014) C:\Users\Timmy\Downloads\setup 2014.exe
2014-05-07 15:31 - 2014-05-07 15:31 - 01010688 _____ () C:\Users\Timmy\Downloads\Metin2 Yang Hack - 2.11.2013.exe
2014-05-07 08:39 - 2014-05-07 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-05-06 22:07 - 2014-05-06 22:07 - 00882510 _____ () C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014] (2).rar
2014-05-06 20:48 - 2014-05-07 06:44 - 00000000 __SHD () C:\Windows\system32\28463
2014-05-06 20:47 - 2014-05-06 20:48 - 04600195 _____ () C:\Users\Timmy\Downloads\fileshare.ro_Metin2Mod PL 11 04 2014.rar
2014-05-06 20:46 - 2014-05-06 20:46 - 00295518 _____ () C:\Users\Timmy\Downloads\Metin2 - 2014 MultiHack.rar
2014-05-06 20:41 - 2014-05-06 20:41 - 04981341 _____ () C:\Users\Timmy\Downloads\V4_Mod 2014 (1).rar
2014-05-06 18:34 - 2014-05-06 18:34 - 00882510 _____ () C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014] (1).rar
2014-05-06 18:23 - 2014-05-06 18:23 - 00882510 _____ () C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014].rar
2014-05-06 17:04 - 2014-05-31 18:56 - 00000476 ____H () C:\Windows\Tasks\SN.Booster-S-014941198.job
2014-05-06 17:04 - 2014-05-06 17:13 - 00000000 ____D () C:\ProgramData\AppReady Software
2014-05-06 17:03 - 2014-05-06 17:03 - 04296192 _____ () C:\Program Files\SN.Booster
2014-05-06 17:03 - 2014-05-06 17:03 - 00174928 _____ () C:\Program Files\SNSvc.dll
2014-05-06 17:02 - 2014-05-06 17:02 - 00342232 _____ (AppReady Software) C:\Users\Timmy\Downloads\iTeebeutelMultihack.rar.exe
2014-05-06 17:00 - 2014-05-14 17:21 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-06 16:11 - 2014-05-06 16:54 - 126168308 _____ () C:\Users\Timmy\Downloads\Metin2_HackPack.rar
2014-05-05 15:41 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-05-05 15:36 - 2014-05-15 15:53 - 00000000 ____D () C:\Temp
2014-05-05 13:54 - 2014-05-30 11:55 - 00000000 ____D () C:\Program Files\GameforgeLive
2014-05-05 13:54 - 2014-05-30 11:46 - 00000000 ____D () C:\Users\Timmy\Downloads\Gameforge Live
2014-05-05 13:54 - 2014-05-30 11:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-05-05 13:54 - 2014-05-05 13:54 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Gameforge4d
2014-05-05 13:53 - 2014-05-05 13:53 - 20155712 _____ (Gameforge ) C:\Users\Timmy\Downloads\Metin2_GameforgeLiveSetup.exe

==================== One Month Modified Files and Folders =======

2014-05-31 20:36 - 2014-05-31 20:36 - 00059184 _____ () C:\Users\Timmy\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-31 20:34 - 2014-05-31 20:33 - 00011992 _____ () C:\Users\Timmy\Downloads\FRST.txt
2014-05-31 20:34 - 2013-01-13 21:44 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Temp
2014-05-31 20:33 - 2014-05-31 20:33 - 01056256 _____ (Farbar) C:\Users\Timmy\Downloads\FRST.exe
2014-05-31 20:33 - 2014-05-31 20:33 - 00000000 ____D () C:\FRST
2014-05-31 20:31 - 2014-04-15 08:26 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004UA.job
2014-05-31 20:08 - 2014-05-21 17:42 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\TS3Client
2014-05-31 19:58 - 2012-12-30 17:53 - 00000956 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1003UA.job
2014-05-31 19:48 - 2014-05-31 19:48 - 02056224 _____ () C:\Users\Timmy\Downloads\cpu-z-1692.zip
2014-05-31 19:43 - 2012-08-12 14:43 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-31 19:36 - 2014-05-31 19:36 - 00000000 ____D () C:\Program Files\GPU-Z
2014-05-31 19:36 - 2011-09-26 18:28 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-31 19:35 - 2014-05-31 19:35 - 01617624 _____ () C:\Users\Timmy\Downloads\GPU-Z.0.7.8.zip
2014-05-31 19:32 - 2014-04-16 15:43 - 00000000 ____D () C:\Program Files\Steam
2014-05-31 19:31 - 2014-05-13 18:28 - 00000000 ____D () C:\Users\Timmy\AppData\Local\DayZ
2014-05-31 19:30 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\tracing
2014-05-31 19:03 - 2009-07-14 06:34 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-31 19:03 - 2009-07-14 06:34 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-31 19:02 - 2014-04-13 15:09 - 00000000 ____D () C:\Users\Timmy\AppData\Local\LogMeIn Hamachi
2014-05-31 19:02 - 2011-08-13 15:55 - 00006446 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-31 19:02 - 2009-10-14 05:07 - 00000000 ____D () C:\Windows\Panther
2014-05-31 19:02 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-05-31 18:59 - 2011-08-13 15:49 - 01350952 ____N () C:\Windows\WindowsUpdate.log
2014-05-31 18:57 - 2014-05-31 18:57 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-31 18:57 - 2014-05-31 18:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-31 18:57 - 2014-05-31 18:57 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-05-31 18:56 - 2014-05-06 17:04 - 00000476 ____H () C:\Windows\Tasks\SN.Booster-S-014941198.job
2014-05-31 18:56 - 2012-02-18 20:18 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-05-31 18:56 - 2011-09-26 18:28 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-31 18:56 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-31 18:54 - 2014-05-31 18:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (2).exe
2014-05-31 18:40 - 2014-05-31 18:40 - 00001105 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-31 18:40 - 2014-04-14 19:39 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-31 18:39 - 2014-05-31 18:37 - 28852416 _____ (Mozilla) C:\Users\Timmy\Downloads\Firefox_Setup_de29.0.1.exe
2014-05-31 18:35 - 2014-04-20 22:42 - 00000000 ____D () C:\Users\Timmy\Desktop\Musik
2014-05-31 18:30 - 2014-05-31 18:30 - 00001421 _____ () C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-05-31 18:21 - 2014-05-31 18:21 - 14358016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-31 18:21 - 2014-05-31 18:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02049536 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01766400 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-31 18:21 - 2014-05-31 18:21 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-05-31 18:21 - 2014-05-31 18:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00745472 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00719360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-05-31 18:21 - 2014-05-31 18:21 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00242200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-05-31 18:21 - 2014-05-31 18:21 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-31 18:17 - 2014-05-31 18:16 - 30091776 _____ (Microsoft Corporation) C:\Users\Timmy\Downloads\IE10-Windows6.1-x86-de-de.exe
2014-05-31 18:11 - 2014-05-31 18:10 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-05-31 18:00 - 2014-04-14 18:46 - 00000000 ____D () C:\Users\Timmy\Desktop\Games
2014-05-31 17:54 - 2014-04-18 23:47 - 00000000 ____D () C:\AdwCleaner
2014-05-31 17:53 - 2014-05-31 17:52 - 25443244 _____ () C:\Users\Timmy\Downloads\DayZ 05.10.2014 - 14.06.59.01_1.mp4
2014-05-31 17:47 - 2014-05-31 17:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-31 17:46 - 2014-05-31 17:45 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-31 17:41 - 2014-05-31 17:41 - 01327971 _____ () C:\Users\Timmy\Downloads\adwcleaner_3.211.exe
2014-05-31 17:17 - 2014-05-31 17:17 - 00000000 ____D () C:\Windows\pss
2014-05-31 16:58 - 2012-12-30 17:53 - 00000934 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1003Core.job
2014-05-31 16:48 - 2014-05-08 15:36 - 00000000 ____D () C:\Windows\Minidump
2014-05-31 16:47 - 2014-05-31 16:47 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-31 16:47 - 2014-05-31 16:47 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-31 16:46 - 2014-05-31 16:45 - 04748896 _____ (Piriform Ltd) C:\Users\Timmy\Downloads\ccsetup414.exe
2014-05-31 16:43 - 2012-08-11 21:30 - 00000000 ____D () C:\Windows\system32\Adobe
2014-05-31 16:42 - 2014-05-31 16:42 - 04981160 _____ (Adobe Systems Inc.) C:\Users\Timmy\Downloads\Shockwave_Installer_Slim.exe
2014-05-31 09:31 - 2013-08-25 11:57 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\Skype
2014-05-30 13:11 - 2014-05-09 19:37 - 01557017 _____ (TeamExtreme) C:\Users\Timmy\Desktop\Minecraft.exe
2014-05-30 11:55 - 2014-05-05 13:54 - 00000000 ____D () C:\Program Files\GameforgeLive
2014-05-30 11:46 - 2014-05-05 13:54 - 00000000 ____D () C:\Users\Timmy\Downloads\Gameforge Live
2014-05-30 11:46 - 2014-05-05 13:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-05-26 22:05 - 2014-05-26 22:01 - 90513790 _____ () C:\Users\Timmy\Downloads\DayZ 05.26.2014 - 21.57.15.01.mp4
2014-05-25 08:44 - 2014-05-25 08:44 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-05-25 08:44 - 2014-05-10 22:56 - 00000000 ___RD () C:\Program Files\Skype
2014-05-25 08:44 - 2011-09-26 18:24 - 00000000 ____D () C:\ProgramData\Skype
2014-05-23 16:59 - 2014-04-17 14:52 - 00000000 ____D () C:\ProgramData\16eee1d900693bc
2014-05-21 17:42 - 2014-05-21 17:42 - 00001120 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-21 17:42 - 2014-05-21 17:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-21 17:42 - 2014-05-21 17:42 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-21 17:39 - 2014-05-21 17:38 - 00961360 _____ (Chip Digital GmbH) C:\Users\Timmy\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe
2014-05-21 17:35 - 2014-05-21 17:35 - 00000000 ____D () C:\ProgramData\HAippy2Savea
2014-05-19 14:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-19 07:02 - 2014-05-19 06:22 - 00000000 ____D () C:\Users\Timmy\Documents\DayZ
2014-05-19 06:41 - 2014-05-19 06:41 - 00000000 ____D () C:\Program Files\Common Files\BattlEye
2014-05-18 20:51 - 2014-05-09 19:38 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\.minecraft
2014-05-18 14:25 - 2014-05-18 14:25 - 00017791 _____ () C:\Users\Timmy\Downloads\Download.htm
2014-05-18 14:25 - 2014-05-18 14:25 - 00017791 _____ () C:\Users\Timmy\Downloads\Download (1).htm
2014-05-18 11:32 - 2014-04-21 17:10 - 00000000 ____D () C:\Program Files\Sirius MT2
2014-05-18 08:31 - 2014-04-15 08:26 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004Core.job
2014-05-17 16:28 - 2013-10-14 21:05 - 00000000 ____D () C:\Users\Timmy\Desktop\Alles
2014-05-17 16:27 - 2014-05-17 16:27 - 00000216 _____ () C:\Users\Timmy\Desktop\DayZ.url
2014-05-17 16:27 - 2014-05-17 16:27 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-15 19:46 - 2014-05-15 19:46 - 00000000 ____D () C:\Users\Timmy\Documents\Razer
2014-05-15 19:46 - 2014-05-15 19:46 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Razer_Inc
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\ProgramData\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\Program Files\Razer
2014-05-15 19:43 - 2014-05-15 19:39 - 41954352 _____ (Razer Inc. ) C:\Users\Timmy\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-05-15 18:29 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-05-15 17:47 - 2014-05-15 17:46 - 00818889 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.4_HD_U_D1.jar
2014-05-15 17:40 - 2014-05-15 17:40 - 00785243 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.2_HD_D1.jar
2014-05-15 17:40 - 2014-05-15 17:40 - 00539717 _____ () C:\Users\Timmy\Downloads\optifine_1.7.2.zip
2014-05-15 17:38 - 2014-05-15 17:38 - 00030566 _____ () C:\Users\Timmy\Downloads\§6Paolos §aLagLess §4Shaders §cv03 §1RC7 §eLite.zip
2014-05-15 17:34 - 2014-05-15 17:34 - 00445865 _____ () C:\Users\Timmy\Downloads\voxelmap-1.7.2-1.0.jar
2014-05-15 17:32 - 2014-05-15 17:32 - 00066184 _____ () C:\Users\Timmy\Downloads\yatc_b0.9.1_1.4.6.zip
2014-05-15 16:51 - 2014-05-15 16:51 - 00033217 _____ () C:\Users\Timmy\Downloads\§6Paolos §aLagLess §4Shaders §cv03 §3RC8.zip
2014-05-15 16:50 - 2014-05-15 16:50 - 00026598 _____ () C:\Users\Timmy\Downloads\MrMeep_x3s Shaders v04.0 RC4.zip
2014-05-15 16:34 - 2014-05-15 16:34 - 00811462 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.2_HD_U_D1.jar
2014-05-15 16:34 - 2014-05-15 16:34 - 00064982 _____ () C:\Users\Timmy\Downloads\seus-v10.1-Preview2.zip
2014-05-15 16:25 - 2014-05-15 16:25 - 02530401 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.997-installer.jar
2014-05-15 16:24 - 2014-05-15 16:24 - 00183946 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.0-beta-mc1.7.2-f997.jar
2014-05-15 16:21 - 2014-05-15 16:21 - 00177465 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.13mc1.7.4-zip.zip
2014-05-15 16:13 - 2014-05-15 16:12 - 00202061 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.12-mc1.7.2-f1040.jar
2014-05-15 16:13 - 2014-05-15 16:12 - 00046267 _____ () C:\Users\Timmy\Downloads\SEUS-v10.1-Ultra.zip
2014-05-15 16:07 - 2014-05-15 16:07 - 02632153 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.1024-installer.jar
2014-05-15 16:02 - 2014-05-15 16:02 - 00000000 ____D () C:\ProgramData\AllaboutApp
2014-05-15 16:02 - 2014-04-17 14:51 - 00000000 ____D () C:\ProgramData\InstallMate
2014-05-15 16:02 - 2014-04-14 21:56 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-15 16:02 - 2013-11-25 21:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-05-15 16:02 - 2013-11-25 21:56 - 00000000 ____D () C:\Program Files\Avira
2014-05-15 15:59 - 2014-05-15 15:59 - 00322080 _____ (AllaboutApp) C:\Users\Timmy\Downloads\IGG-DayZ.StandAlone.part1.rar.exe
2014-05-15 15:53 - 2014-05-05 15:36 - 00000000 ____D () C:\Temp
2014-05-15 15:50 - 2014-05-15 15:50 - 00000000 ____D () C:\Users\Timmy\AppData\Local\23690
2014-05-15 15:48 - 2014-05-15 15:48 - 00340992 _____ () C:\Users\Timmy\Downloads\DayZStandalone__7934_il12176725.exe
2014-05-15 15:48 - 2014-05-15 15:48 - 00340992 _____ () C:\Users\Timmy\Downloads\DayZStandalone__7934_il12176725 (1).exe
2014-05-14 20:25 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-05-14 19:02 - 2014-05-14 19:02 - 02630583 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.1040-installer.jar
2014-05-14 18:55 - 2014-05-14 18:55 - 03685975 _____ () C:\Users\Timmy\Downloads\Minecraft Force Op 1.7.9.zip
2014-05-14 18:52 - 2014-05-14 18:52 - 00469713 _____ () C:\Users\Timmy\Downloads\MINECRAFT_FORCEOP_2014.RAR
2014-05-14 17:21 - 2014-05-06 17:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-14 17:05 - 2013-07-12 17:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 17:02 - 2009-11-09 12:03 - 90547776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-14 13:37 - 2014-05-14 13:36 - 06647543 _____ () C:\Users\Timmy\Downloads\Nodus.zip
2014-05-14 13:22 - 2014-05-14 13:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-05-14 13:22 - 2014-05-14 13:22 - 00000000 ____D () C:\Program Files\LogMeIn Hamachi
2014-05-14 06:43 - 2012-08-12 14:43 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-14 06:43 - 2011-09-12 17:02 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-13 21:23 - 2014-04-13 17:02 - 00000000 ____D () C:\Program Files\7DaysToDie-Alpha
2014-05-13 18:28 - 2014-05-13 18:28 - 00000000 ____D () C:\Users\Timmy\Documents\BIS Core Engine
2014-05-13 18:27 - 2014-05-13 18:27 - 13987015 _____ () C:\Users\Timmy\Downloads\DayZ SA Multiplayer Crack.zip
2014-05-13 17:18 - 2014-05-13 17:18 - 00254645 _____ () C:\Users\Timmy\Downloads\[1.7.2]ReiMinimap_v3.4_03beta.zip
2014-05-13 17:17 - 2014-05-13 17:17 - 00859104 _____ () C:\Users\Timmy\Downloads\Player Setup.exe
2014-05-13 17:15 - 2014-05-13 17:14 - 28062081 _____ () C:\Users\Timmy\Downloads\Sphax PureBDcraft 128x MC17.zip
2014-05-13 16:51 - 2014-05-13 16:49 - 19329130 _____ () C:\Users\Timmy\Downloads\DayZ By NotAwim for HunteR26RuS 1.5.2 Modify.zip
2014-05-12 14:54 - 2014-05-12 14:54 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\.firefox
2014-05-12 14:52 - 2014-05-12 14:51 - 06647663 _____ () C:\Users\Timmy\Downloads\Nodus 1.7.9.zip
2014-05-12 07:26 - 2014-05-31 18:57 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-31 18:57 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:25 - 2014-05-31 18:57 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 18:06 - 2014-04-19 16:18 - 00000000 ____D () C:\Users\Timmy\Desktop\Hardcore Reloaded (2)
2014-05-11 18:03 - 2014-05-11 17:08 - 1197047898 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_24_01.rar
2014-05-11 17:07 - 2014-05-11 17:07 - 15568473 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_patcher (1).rar
2014-05-11 17:07 - 2014-05-11 17:04 - 08242902 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_patcher.rar
2014-05-10 22:56 - 2014-05-10 22:56 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Skype
2014-05-10 22:56 - 2014-05-10 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-05-10 22:55 - 2014-05-10 22:55 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Timmy\Downloads\SkypeSetup (1).exe
2014-05-10 16:00 - 2014-05-10 15:57 - 49268534 _____ () C:\Users\Timmy\Downloads\LIFE 128x (Vers. 81).zip
2014-05-10 09:24 - 2014-05-09 19:37 - 01771520 _____ (TeamExtreme) C:\Users\Timmy\Downloads\Minecraft.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-05-09 20:06 - 2014-05-09 20:05 - 00921512 _____ (Oracle Corporation) C:\Users\Timmy\Downloads\chromeinstall-7u55 (1).exe
2014-05-09 18:18 - 2014-05-09 18:18 - 00000009 _____ () C:\Users\Timmy\Downloads\ad_down.htm
2014-05-09 17:34 - 2013-01-13 22:05 - 00001265 _____ () C:\Users\Timmy\Desktop\chrome - Verknüpfung.lnk
2014-05-09 17:27 - 2014-05-09 17:26 - 00255189 _____ () C:\Users\Timmy\Downloads\Mineshafter-launcher.jar
2014-05-09 17:22 - 2014-05-09 17:21 - 00236936 _____ () C:\Users\Timmy\Downloads\Mineshafter-launcher_downloader-8UICTeWm.exe
2014-05-09 17:15 - 2014-05-09 17:15 - 00643272 _____ () C:\Users\Timmy\Downloads\MineCraftSetup.exe
2014-05-09 09:06 - 2014-05-14 13:29 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:04 - 2014-05-14 13:29 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 15:09 - 2014-05-08 15:07 - 04582789 _____ () C:\Users\Timmy\Downloads\m2k-mod_Pserver.zip
2014-05-07 22:30 - 2014-05-07 22:28 - 03757782 _____ () C:\Users\Timmy\Downloads\Item Creator.zip
2014-05-07 22:27 - 2014-05-07 22:27 - 00000000 _____ () C:\Users\Timmy\Downloads\fileshare.ro_Metin2 Item Hack.rar
2014-05-07 22:14 - 2014-05-07 22:09 - 23488196 _____ () C:\Users\Timmy\Downloads\MultiHack (1).rar
2014-05-07 21:58 - 2014-05-07 21:52 - 23488196 _____ () C:\Users\Timmy\Downloads\MultiHack.rar
2014-05-07 21:48 - 2014-05-07 21:48 - 00236960 _____ () C:\Users\Timmy\Downloads\ClickHeretoDownloadSetup-bmrNRBCC.exe
2014-05-07 21:44 - 2014-05-07 21:44 - 00000000 ___SD () C:\Users\Timmy\AppData\Roaming\Frutas
2014-05-07 21:43 - 2014-05-07 21:43 - 00000000 ___HD () C:\Users\Timmy\Desktop\TempInstall
2014-05-07 21:43 - 2014-05-07 21:42 - 01151644 _____ () C:\Users\Timmy\Downloads\Bot_Metin2.rar
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\Users\Timmy\Documents\My Cheat Tables
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\Program Files\Cheat Engine 6.3
2014-05-07 21:35 - 2014-05-07 21:34 - 08065840 _____ (Cheat Engine ) C:\Users\Timmy\Downloads\CheatEngine63.exe
2014-05-07 16:32 - 2014-05-07 16:31 - 03511609 _____ () C:\Users\Timmy\Downloads\Metin 2 Yang Hack.rar
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\ProgramData\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\Program Files\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\Program Files\Elcomsoft
2014-05-07 16:24 - 2014-05-07 16:22 - 08435712 _____ () C:\Users\Timmy\Downloads\archpr454_setup_en.msi
2014-05-07 16:20 - 2014-05-07 16:20 - 00285675 _____ () C:\Users\Timmy\Downloads\Metin2 Hack 2014.rar
2014-05-07 16:17 - 2014-05-07 16:17 - 00630756 _____ (setup installer update 2014) C:\Users\Timmy\Downloads\setup 2014.exe
2014-05-07 15:31 - 2014-05-07 15:31 - 01010688 _____ () C:\Users\Timmy\Downloads\Metin2 Yang Hack - 2.11.2013.exe
2014-05-07 08:39 - 2014-05-07 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-05-07 06:44 - 2014-05-06 20:48 - 00000000 __SHD () C:\Windows\system32\28463
2014-05-06 22:07 - 2014-05-06 22:07 - 00882510 _____ () C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014] (2).rar
2014-05-06 20:48 - 2014-05-06 20:47 - 04600195 _____ () C:\Users\Timmy\Downloads\fileshare.ro_Metin2Mod PL 11 04 2014.rar
2014-05-06 20:46 - 2014-05-06 20:46 - 00295518 _____ () C:\Users\Timmy\Downloads\Metin2 - 2014 MultiHack.rar
2014-05-06 20:41 - 2014-05-06 20:41 - 04981341 _____ () C:\Users\Timmy\Downloads\V4_Mod 2014 (1).rar
2014-05-06 18:34 - 2014-05-06 18:34 - 00882510 _____ () C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014] (1).rar
2014-05-06 18:23 - 2014-05-06 18:23 - 00882510 _____ () C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014].rar
2014-05-06 17:13 - 2014-05-06 17:04 - 00000000 ____D () C:\ProgramData\AppReady Software
2014-05-06 17:03 - 2014-05-06 17:03 - 04296192 _____ () C:\Program Files\SN.Booster
2014-05-06 17:03 - 2014-05-06 17:03 - 00174928 _____ () C:\Program Files\SNSvc.dll
2014-05-06 17:02 - 2014-05-06 17:02 - 00342232 _____ (AppReady Software) C:\Users\Timmy\Downloads\iTeebeutelMultihack.rar.exe
2014-05-06 16:54 - 2014-05-06 16:11 - 126168308 _____ () C:\Users\Timmy\Downloads\Metin2_HackPack.rar
2014-05-05 13:54 - 2014-05-05 13:54 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Gameforge4d
2014-05-05 13:53 - 2014-05-05 13:53 - 20155712 _____ (Gameforge ) C:\Users\Timmy\Downloads\Metin2_GameforgeLiveSetup.exe

Files to move or delete:
====================
C:\ProgramData\dsgsdgdsgdsgw.pad


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe
[2014-05-14 13:29] - [2014-03-04 11:17] - 0304128 ____A (Microsoft Corporation) 998507B046BA314CE8245364C686FA67

C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-19 00:09

==================== End Of Log ============================
         
--- --- ---





Und hier die Addition!

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version:30-05-2014
Ran by Timmy at 2014-05-31 20:36:24
Running from C:\Users\Timmy\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Microsoft Security Essentials (Enabled - Out of date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Out of date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

7 Days to Die - Alpha version 0.9.1 (HKLM\...\{967E55B4-6DDD-4A2F-BFC7-07F1E327971E}_is1) (Version: 0.9.1 - The Fun Pimps LLC)
Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader X (10.1.4) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.4 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)
Advanced Archive Password Recovery (HKLM\...\{01011662-76A8-41E8-B1A8-4F8821570AC5}) (Version: 4.54.48.1338 - Elcomsoft Co. Ltd.)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira (HKLM\...\{70a79d1f-686d-4d5c-962b-07aa1294eae0}) (Version: 1.1.12.20002 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.12.20002 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Belkin 54Mbps Wireless Network Adapter (HKLM\...\{F3759A9F-7AFA-4FB4-8DF1-53F26B979DEE}) (Version: 1.00.01 - Belkin)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Cheat Engine 6.3 (HKLM\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
CLEO 4.3 (HKLM\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Command & Conquer Generals (Version: 0.50.0000 - Electronic Arts) Hidden
Cry of Fear (HKLM\...\Steam App 223710) (Version:  - Team Psykskallar)
DayZ (HKLM\...\Steam App 221100) (Version:  - Bohemia Interactive)
Facebook Messenger 2.1.4651.0 (HKLM\...\{17D26CDD-B87C-412B-92F0-2D5DD4313522}) (Version: 2.1.4651.0 - Facebook)
Facebook Messenger 2.1.4814.0 (HKLM\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook)
Gameforge Live 2.0.3 (HKLM\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.3 - Gameforge)
Google Chrome (HKLM\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
HAippy2Savea (HKLM\...\{E957849A-94AC-6F46-4623-C31474E3C170}) (Version:  - HapPy2Savea)
iCloud (HKLM\...\{20C6FF70-690B-4DF7-8F5D-269DD3A7FD23}) (Version: 3.0.2.163 - Apple Inc.)
iTunes (HKLM\...\{C197BC08-3D82-4651-8886-E68C21578A38}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.2.0.193 - LogMeIn, Inc.)
LogMeIn Hamachi (Version: 2.2.0.193 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Metin2 (HKLM\...\Metin2_is1) (Version:  - Gameforge 4D GmbH)
Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
No More Room in Hell (HKLM\...\Steam App 224260) (Version:  - No More Room in Hell Team)
Razer Game Booster (HKLM\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
San Andreas Mod Installer (HKLM\...\San Andreas Mod Installer1.0) (Version:  - )
San Andreas Mod Installer (HKLM\...\San Andreas Mod Installer1.1) (Version: 1.1 - cpmusick)
Sirius MT2 Version 20.13 (HKLM\...\{831D4B74-7A92-4363-869D-524876C480B1}_is1) (Version: 20.13 - Sirius MT2)
Skype™ 6.16 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
TP-LINK TL-WDN3200 Driver (HKLM\...\{C0C6BCBC-0884-4C66-B5EF-0B7668FE2B10}) (Version: 1.3.1 - TP-LINK)
TP-LINK TL-WN821N Driver (HKLM\...\{26B52E5B-1620-4676-9B46-B6C56B8105CE}) (Version: 1.2.1 - TP-LINK)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================

07-05-2014 14:25:27 Installed Advanced Archive Password Recovery
09-05-2014 15:32:16 Removed Bonjour
09-05-2014 15:32:42 Removed Bonjour
09-05-2014 15:34:45 Removed QuickTime
09-05-2014 18:08:33 Installed Java 7 Update 55
11-05-2014 08:16:26 Windows Update
14-05-2014 15:00:18 Windows Update
19-05-2014 04:21:05 DirectX wurde installiert
27-05-2014 16:50:07 Geplanter Prüfpunkt
31-05-2014 16:18:49 Windows Modules Installer

==================== Hosts content: ==========================

2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0A334AE4-C5ED-48D8-8A2A-F7C61B869309} - System32\Tasks\{27DC7C2A-217A-4DB3-960B-A7AB2D37AECD} => Firefox.exe hxxp://ui.skype.com/ui/0/6.0.0.126/de/abandoninstall?page=tsProgressBar
Task: {10293B7D-2158-417E-BFC7-712E3A9078B9} - System32\Tasks\{BACF188D-C607-455E-8456-54AAEF610087} => C:\Users\Lukas\Desktop\Games\Left 4 Dead 2\l4d2loader.exe
Task: {1F8B9C92-45B5-49CF-B181-72DED67D399A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004Core => C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-15] (Facebook Inc.)
Task: {2B69F114-6933-4CEF-824E-6B91E9A6D2A3} - System32\Tasks\{55501A5A-588F-4DA2-A4EB-101B0EAB3333} => Firefox.exe hxxp://ui.skype.com/ui/0/6.9.0.106/de/abandoninstall?page=tsProgressBar
Task: {3566B02B-7C8E-47CF-87A2-EDD1D8874A0E} - System32\Tasks\{E7B42520-65B0-4C3D-95A2-7FFD252476B5} => C:\Users\Lukas\Desktop\Games\Left 4 Dead 2\left4dead2.exe
Task: {3D5AD390-2F5E-4317-BFC2-85C3B509CF68} - System32\Tasks\SN.Booster-S-014941198 => c:\programdata\appready software\sn.booster\SN.Booster.exe [2013-05-06] ()
Task: {3FD01474-A3FE-4807-BFE1-0E503981C0E5} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1003UA => C:\Users\Andere Leute\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {49CC7660-60A6-432E-A727-D77B82396F81} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004UA => C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-15] (Facebook Inc.)
Task: {58B6B4AE-4336-416C-945C-7161BF4FA0A0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-26] (Google Inc.)
Task: {6DDA0401-A004-4B2F-99AA-1C9E38709FF5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-26] (Google Inc.)
Task: {8A6F08BC-AE9B-4D3D-B801-27D886041D1F} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1003Core => C:\Users\Andere Leute\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {9C649579-95C3-471D-A6F2-649C29AAB8C5} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [2013-09-14] (Apple Inc.)
Task: {AB09EA26-2657-4198-995A-AFB4139CF1A7} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B7AAA789-EC59-4E9E-AB01-226DC5499190} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {C542E156-B5EB-4FEB-B911-8C2B5A061457} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {DC0694BE-3100-44B0-BAA4-448FA69701E5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {F4CFF5D1-F170-4802-817E-201C3408E5FF} - System32\Tasks\{353B5FF4-FD13-45F6-B58C-312F8537F08F} => C:\Users\Lukas\Desktop\Games\Left 4 Dead 2\left4dead2.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1003Core.job => C:\Users\Andere Leute\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1003UA.job => C:\Users\Andere Leute\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004Core.job => C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004UA.job => C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SN.Booster-S-014941198.job => c:\programdata\appready software\sn.booster\SN.Booster.exe

==================== Loaded Modules (whitelisted) =============

2014-02-28 15:33 - 2014-02-28 15:33 - 00148480 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00864768 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 15:45 - 2014-02-27 15:45 - 00677376 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-02-28 15:41 - 2014-02-28 15:41 - 00092104 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2014-02-28 15:41 - 2014-02-28 15:41 - 00105416 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00025600 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00242688 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-02-28 15:42 - 2014-02-28 15:42 - 00477128 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-02-28 15:42 - 2014-02-28 15:42 - 00483784 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00123904 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2014-05-22 14:22 - 2014-04-30 02:08 - 01135104 _____ () C:\Program Files\Steam\libavcodec-55.dll
2014-04-24 19:40 - 2014-04-30 02:08 - 00471552 _____ () C:\Program Files\Steam\libavutil-53.dll
2014-05-22 14:22 - 2014-04-30 02:08 - 00404992 _____ () C:\Program Files\Steam\libavformat-55.dll
2013-12-12 14:19 - 2014-04-30 02:08 - 00340992 _____ () C:\Program Files\Steam\libavresample-1.dll
2014-02-10 18:34 - 2014-05-17 03:36 - 00756224 _____ () C:\Program Files\Steam\SDL2.dll
2014-05-22 14:22 - 2014-05-29 19:37 - 02139840 _____ () C:\Program Files\Steam\video.dll
2014-05-22 14:22 - 2014-04-29 02:37 - 00519168 _____ () C:\Program Files\Steam\libswscale-2.dll
2014-02-25 13:57 - 2014-05-29 19:36 - 01116864 _____ () C:\Program Files\Steam\bin\chromehtml.DLL
2014-01-10 15:33 - 2014-05-02 01:35 - 20628160 _____ () C:\Program Files\Steam\bin\libcef.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 01100800 _____ () C:\Program Files\Steam\bin\avcodec-53.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00124416 _____ () C:\Program Files\Steam\bin\avutil-51.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00192000 _____ () C:\Program Files\Steam\bin\avformat-53.dll
2014-02-25 13:57 - 2014-05-29 19:36 - 00359104 _____ () C:\Program Files\Steam\steam.dll
2014-05-19 06:41 - 2014-05-19 06:41 - 00614272 _____ () C:\Users\Timmy\AppData\Local\DayZ\BattlEye\BEClient.dll
2014-05-06 17:03 - 2014-05-06 17:03 - 04296192 _____ () C:\Program Files\SN.Booster
2014-05-21 17:35 - 2014-05-21 17:35 - 00372224 _____ () C:\ProgramData\HAippy2Savea\OMvNsr8Q.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^Timmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk => C:\Windows\pss\Facebook Messenger.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Timmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SleepTimer.lnk => C:\Windows\pss\SleepTimer.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Facebook Update => "C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Firewall => "C:\Program Files\Java\jre7\bin\javaw.exe" -jar "C:\Users\Timmy\AppData\Roaming\Frutas\servidorcito.jar"
MSCONFIG\startupreg: GoogleChromeAutoLaunch_EEB5F8AA0ED462375287D8C91BC9B185 => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: iCloudServices => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: RazerGameBooster => C:\Program Files\Razer\Razer Game Booster\RazerGameBooster.exe -autorun
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "C:\Program Files\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: HL-DT-ST DVDRAM GH41N ATA Device
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 80%
Total physical RAM: 3071.23 MB
Available physical RAM: 610.71 MB
Total Pagefile: 6140.76 MB
Available Pagefile: 1856.64 MB
Total Virtual: 2047.88 MB
Available Virtual: 1913.98 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:683.44 GB) (Free:560.71 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:0.2 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: DB52735D)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Not Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=683 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
__________________

Alt 31.05.2014, 19:42   #4
M-K-D-B
/// TB-Ausbilder
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Zitat:
Running from C:\Users\Timmy\Downloads
Alle Tools auf den Desktop abspeichern und von dort starten.






Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
Grüße aus Bayern
M-K-D-B

______________________________________

Das Trojaner-Board unterstützen

Alt 31.05.2014, 20:19   #5
Hippel02
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Liebes Trojaner-Team!

Danke für den schnellen Support!!!

Hier auch sofort die Combofix-Log!!!

Code:
ATTFilter
ComboFix 14-05-29.01 - Timmy 31.05.2014  21:07:03.1.2 - x86
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.49.1031.18.3071.729 [GMT 2:00]
ausgeführt von:: c:\users\Timmy\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Microsoft Security Essentials *Disabled/Outdated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Microsoft Security Essentials *Disabled/Outdated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\dsgsdgdsgdsgw.pad
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfejgccfbbopiioofdnhogojdcpcfid
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfejgccfbbopiioofdnhogojdcpcfid\6.3\background.html
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfejgccfbbopiioofdnhogojdcpcfid\6.3\content.js
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfejgccfbbopiioofdnhogojdcpcfid\6.3\I8TMy.js
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfejgccfbbopiioofdnhogojdcpcfid\6.3\lsdb.js
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfejgccfbbopiioofdnhogojdcpcfid\6.3\manifest.json
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\klofelfbengbfpnpodomloebpalbgjno
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\klofelfbengbfpnpodomloebpalbgjno\1.4\AnVC_3CD9C.js
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\klofelfbengbfpnpodomloebpalbgjno\1.4\background.html
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\klofelfbengbfpnpodomloebpalbgjno\1.4\content.js
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\klofelfbengbfpnpodomloebpalbgjno\1.4\lsdb.js
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\klofelfbengbfpnpodomloebpalbgjno\1.4\manifest.json
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jbfejgccfbbopiioofdnhogojdcpcfid_0.localstorage
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_klofelfbengbfpnpodomloebpalbgjno_0.localstorage
c:\users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\Timmy\AppData\Roaming\dclogs
c:\users\Timmy\AppData\Roaming\dclogs\2014-05-14-4.dc
c:\windows\system32\28463
c:\windows\system32\28463\AKV.exe
c:\windows\system32\28463\TGHV.001
c:\windows\system32\28463\TGHV.006
c:\windows\system32\28463\TGHV.007
c:\windows\system32\28463\TGHV.009.tmp
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-04-28 bis 2014-05-31  ))))))))))))))))))))))))))))))
.
.
2014-05-31 19:14 . 2014-05-31 19:14	--------	d-----w-	c:\users\Timmy\AppData\Local\temp
2014-05-31 19:14 . 2014-05-31 19:14	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-05-31 18:33 . 2014-05-31 18:36	--------	d-----w-	C:\FRST
2014-05-31 17:36 . 2014-05-31 17:36	39464	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{85214CD5-A231-4EE8-95BF-BCEFBB04F1B8}\MpKsled1f3119.sys
2014-05-31 17:36 . 2014-05-31 17:36	--------	d-----w-	c:\program files\GPU-Z
2014-05-31 16:57 . 2014-05-12 05:26	51928	----a-w-	c:\windows\system32\drivers\mwac.sys
2014-05-31 16:57 . 2014-05-12 05:25	74456	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2014-05-31 16:57 . 2014-05-31 16:57	--------	d-----w-	c:\program files\ Malwarebytes Anti-Malware 
2014-05-31 16:57 . 2014-05-12 05:25	23256	----a-w-	c:\windows\system32\drivers\mbam.sys
2014-05-31 16:27 . 2014-05-31 16:27	--------	d-----w-	c:\windows\system32\wbem\en-US
2014-05-31 15:47 . 2014-05-31 15:47	--------	d-----w-	c:\programdata\Malwarebytes
2014-05-31 14:47 . 2014-05-31 14:47	--------	d-----w-	c:\program files\CCleaner
2014-05-31 14:27 . 2014-04-16 09:25	8050496	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{85214CD5-A231-4EE8-95BF-BCEFBB04F1B8}\mpengine.dll
2014-05-25 06:44 . 2014-05-25 06:44	--------	d-----w-	c:\program files\Common Files\Skype
2014-05-21 15:42 . 2014-05-31 19:07	--------	d-----w-	c:\users\Timmy\AppData\Roaming\TS3Client
2014-05-21 15:42 . 2014-05-21 15:42	--------	d-----w-	c:\program files\TeamSpeak 3 Client
2014-05-21 15:35 . 2014-05-21 15:35	--------	d-----w-	c:\programdata\HAippy2Savea
2014-05-19 04:41 . 2014-05-19 04:41	--------	d-----w-	c:\program files\Common Files\BattlEye
2014-05-15 17:44 . 2014-05-15 17:44	--------	d-----w-	c:\users\Timmy\AppData\Local\Razer
2014-05-15 17:44 . 2014-05-15 17:44	--------	d-----w-	c:\programdata\Razer
2014-05-15 17:44 . 2014-05-15 17:44	--------	d-----w-	c:\program files\Razer
2014-05-15 14:02 . 2014-05-15 14:02	--------	d-----w-	c:\programdata\AllaboutApp
2014-05-15 13:50 . 2014-05-15 13:50	--------	d-----w-	c:\users\Timmy\AppData\Local\23690
2014-05-14 11:22 . 2014-05-14 11:22	--------	d-----w-	c:\program files\LogMeIn Hamachi
2014-05-13 16:28 . 2014-05-31 17:31	--------	d-----w-	c:\users\Timmy\AppData\Local\DayZ
2014-05-13 11:57 . 2014-05-01 19:38	765968	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{5CD6A5D3-A9A9-472A-839C-DD5941BD8EF1}\gapaengine.dll
2014-05-13 11:57 . 2014-04-16 09:25	8050496	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-05-12 12:54 . 2014-05-12 12:54	--------	d-----w-	c:\users\Timmy\AppData\Roaming\.firefox
2014-05-10 20:56 . 2014-05-10 20:56	--------	d-----w-	c:\users\Timmy\AppData\Local\Skype
2014-05-10 20:56 . 2014-05-25 06:44	--------	d-----r-	c:\program files\Skype
2014-05-09 18:09 . 2014-05-09 18:09	--------	d-----w-	c:\programdata\Oracle
2014-05-09 18:09 . 2014-05-09 18:09	--------	d-----w-	c:\program files\Common Files\Java
2014-05-09 18:09 . 2014-05-09 18:09	94632	----a-w-	c:\windows\system32\WindowsAccessBridge.dll
2014-05-09 17:38 . 2014-05-18 18:51	--------	d-----w-	c:\users\Timmy\AppData\Roaming\.minecraft
2014-05-07 19:44 . 2014-05-07 19:44	--------	d-s---w-	c:\users\Timmy\AppData\Roaming\Frutas
2014-05-07 19:38 . 2014-05-07 19:38	--------	d-----w-	c:\program files\Cheat Engine 6.3
2014-05-07 14:26 . 2014-05-07 14:26	--------	d-----w-	c:\program files\Elcomsoft
2014-05-07 14:26 . 2014-05-07 14:26	--------	d-----w-	c:\program files\Elcomsoft Password Recovery
2014-05-07 14:26 . 2014-05-07 14:26	--------	d-----w-	c:\programdata\Elcomsoft Password Recovery
2014-05-06 15:04 . 2014-05-06 15:13	--------	d-----w-	c:\programdata\AppReady Software
2014-05-06 15:03 . 2014-05-06 15:03	4296192	----a-w-	c:\program files\SN.Booster
2014-05-06 15:03 . 2014-05-06 15:03	174928	----a-w-	c:\program files\SNSvc.dll
2014-05-06 15:00 . 2014-05-14 15:21	--------	d-s---w-	c:\windows\system32\CompatTel
2014-05-05 13:41 . 2010-08-30 06:34	536576	----a-w-	c:\windows\system32\sqlite3.dll
2014-05-05 13:36 . 2014-05-15 13:53	--------	d-----w-	C:\Temp
2014-05-05 11:54 . 2014-05-05 11:54	--------	d-----w-	c:\users\Timmy\AppData\Local\Gameforge4d
2014-05-05 11:54 . 2014-05-30 09:55	--------	d-----w-	c:\program files\GameforgeLive
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-14 04:43 . 2012-08-12 12:43	692400	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2014-05-14 04:43 . 2011-09-12 15:02	70832	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-01 19:38 . 2011-10-11 14:54	765968	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-04-13 08:26 . 2014-04-13 08:26	1199079	----a-w-	c:\windows\unins000.exe
2014-03-11 07:52 . 2011-04-27 13:25	104264	----a-w-	c:\windows\system32\drivers\NisDrvWFP.sys
2014-03-05 08:15 . 2012-09-08 08:42	720896	----a-w-	c:\windows\iun6002ev.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{396E5F17-26E2-2AEC-C244-7C5E0A47D098}]
2014-05-21 15:35	372224	----a-w-	c:\programdata\HAippy2Savea\OMvNsr8Q.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 951576]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2014-03-02 689744]
"Avira Systray"="c:\program files\Avira\My Avira\Avira.OE.Systray.exe" [2014-05-05 182352]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLUA"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^Timmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
path=c:\users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
backup=c:\windows\pss\Facebook Messenger.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Timmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SleepTimer.lnk]
path=c:\users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SleepTimer.lnk
backup=c:\windows\pss\SleepTimer.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-11-21 16:57	959904	----a-w-	c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApplePhotoStreams]
2013-09-15 13:34	59720	----a-w-	c:\program files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2013-04-21 19:43	59720	----a-w-	c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
2014-04-15 06:26	138096	----atw-	c:\users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Firewall]
2014-05-09 18:09	175528	----a-w-	c:\program files\Java\jre7\bin\javaw.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_EEB5F8AA0ED462375287D8C91BC9B185]
2014-04-24 00:33	841032	----a-w-	c:\program files\Google\Chrome\Application\chrome.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iCloudServices]
2013-09-14 02:38	59720	----a-w-	c:\program files\Common Files\Apple\Internet Services\iCloudServices.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2013-11-01 23:29	152392	----a-w-	c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2014-05-13 12:29	3814736	----a-w-	c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RazerGameBooster]
2014-02-25 17:38	61152	----a-w-	c:\program files\Razer\Razer Game Booster\RazerGameBooster.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2014-05-08 07:51	21444224	----a-r-	c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
2014-05-29 17:36	1754816	----a-w-	c:\program files\Steam\Steam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-07-02 07:16	254336	----a-w-	c:\program files\Common Files\Java\Java Update\jusched.exe
.
R1 auvzfanh;auvzfanh;c:\windows\system32\drivers\auvzfanh.sys [x]
R1 avqsyljw;avqsyljw;c:\windows\system32\drivers\avqsyljw.sys [x]
R1 bcmezbwb;bcmezbwb;c:\windows\system32\drivers\bcmezbwb.sys [x]
R1 grdueolg;grdueolg;c:\windows\system32\drivers\grdueolg.sys [x]
R1 iyefgqnd;iyefgqnd;c:\windows\system32\drivers\iyefgqnd.sys [x]
R1 mmtotfij;mmtotfij;c:\windows\system32\drivers\mmtotfij.sys [x]
R1 ohfaloyf;ohfaloyf;c:\windows\system32\drivers\ohfaloyf.sys [x]
R1 osedppzt;osedppzt;c:\windows\system32\drivers\osedppzt.sys [x]
R1 srmiacxn;srmiacxn;c:\windows\system32\drivers\srmiacxn.sys [x]
R1 vjugzali;vjugzali;c:\windows\system32\drivers\vjugzali.sys [x]
R2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2014-03-02 440400]
R2 AntiVirWebService;Avira Browser-Schutz;c:\program files\Avira\AntiVir Desktop\avwebg7.exe [2014-03-02 1017424]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 BEService;BattlEye Service;c:\program files\Common Files\BattlEye\BEService.exe [2014-05-19 49152]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 netr73;Belkin Wireless 54G USB Network Adapter Driver for Vista;c:\windows\system32\DRIVERS\netr73.sys [2012-06-23 464384]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264]
R3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [2012-05-23 4598456]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 RTL8192cu;300Mbps Wireless USB Adapter;c:\windows\system32\DRIVERS\RTL8192cu.sys [2012-05-14 801896]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2013-11-25 37352]
S1 MpKsled1f3119;MpKsled1f3119;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{85214CD5-A231-4EE8-95BF-BCEFBB04F1B8}\MpKsled1f3119.sys [2014-05-31 39464]
S1 netfilter;netfilter;c:\windows\system32\drivers\netfilter.sys [2014-02-13 47488]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 176128]
S2 Avira.OE.ServiceHost;Avira Service Host;c:\program files\Avira\My Avira\Avira.OE.ServiceHost.exe [2014-05-05 124496]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys [2014-03-02 69240]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2014-05-13 1682768]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-04-15 375056]
S2 RzKLService;RzKLService;c:\program files\Razer\Razer Game Booster\RzKLService.exe [2014-02-25 105448]
S3 netr28u;TP-LINK Wireless Dual Band USB Adapter Driver;c:\windows\system32\DRIVERS\netr28u.sys [2012-12-27 1277504]
S3 RTL8167;Realtek 8167 NT-Treiber;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - GPU-Z
*NewlyCreated* - MPKSLED1F3119
*Deregistered* - GPU-Z
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-04-30 13:36	1078088	----a-w-	c:\program files\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-05-31 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-12 04:44]
.
2014-05-18 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004Core.job
- c:\users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-15 06:26]
.
2014-05-31 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004UA.job
- c:\users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-15 06:26]
.
2014-05-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-09-26 16:28]
.
2014-05-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-09-26 16:28]
.
2014-05-31 c:\windows\Tasks\SN.Booster-S-014941198.job
- c:\programdata\appready software\sn.booster\SN.Booster.exe [2013-05-06 15:04]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
uDefault_Search_URL = hxxp://www.google.com
mSearch Bar = hxxp://www.google.com
uSearchAssistant = hxxp://www.google.com
TCP: Interfaces\{62754FEB-049A-4289-9BDF-793AC7A69E05}: NameServer = 192.168.2.1
TCP: Interfaces\{7F2CA31C-D9AF-40B4-897D-1A4932D9B888}\1323034716765667F6E637F646F6D6: DhcpNameServer = 192.168.2.1
FF - ProfilePath - 
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-10 - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-05-31  21:16:40
ComboFix-quarantined-files.txt  2014-05-31 19:16
.
Vor Suchlauf: 10 Verzeichnis(se), 601.861.222.400 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 601.766.821.888 Bytes frei
.
- - End Of File - - EE7C9235A315AD73D49E06DFFBBC62C5
A36C5E4F47E84449FF07ED3517B43A31
         

Hoffe auf Hilfe!!!


mfg Hippel02!


Alt 31.05.2014, 20:25   #6
M-K-D-B
/// TB-Ausbilder
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



So geht es weiter:





Schritt 1
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).





Schritt 2

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.






Schritt 3
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.







Schritt 4
Bitte deaktiviere dein Anti-Viren-Programm, da es das Ergebnis beeinflussen oder ggf. die Bereinigung stören kann.
Bitte lade dir zoek.exe von hier: http://hijackthis.nl/smeenk/ und speichere die Datei auf deinem Desktop.
  • Starte Zoek.exe mit einem Doppelklick.
  • Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und könnte andere Computer beschädigen.
  • Kopiere den Text der folgenden Box in das Skriptfenster von zoek:
    Code:
    ATTFilter
    iedefaults;
    resetIEproxy;
    FFdefaults;
    CHRdefaults;
    emptyclsid;
    autoclean;
             
  • Nun klicke auf "Run script" und sei geduldig bis das Skript durchgelaufen ist.
  • Wenn das Tool fertig ist, wird sich Notepad mit der Logdatei öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:\ .
  • Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken).





Schritt 5
  • Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Scan.
  • FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei von AdwCleaner,
  • die Logdatei von JRT,
  • die Logdatei von MBAM,
  • die Logdatei von Zoek,
  • die beiden neuen Logdateien von FRST.
__________________
--> Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering

Alt 31.05.2014, 20:44   #7
Hippel02
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Liebes Trojaner-Board!

Hier Schritt 1, die folgenden Schritte (2-5) folgen!!!

Info: AdwCleaner-Log

Code:
ATTFilter
# AdwCleaner v3.211 - Bericht erstellt am 31/05/2014 um 21:32:45
# Aktualisiert 26/05/2014 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (32 bits)
# Benutzername : Timmy - LUKAS-PC
# Gestartet von : C:\Users\Timmy\Downloads\adwcleaner_3.211 (1).exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16866


-\\ Google Chrome v34.0.1847.131

*************************

AdwCleaner[R0].txt - [29101 octets] - [18/04/2014 23:47:23]
AdwCleaner[R1].txt - [1190 octets] - [19/04/2014 10:51:28]
AdwCleaner[R2].txt - [5797 octets] - [05/05/2014 15:41:12]
AdwCleaner[R3].txt - [10442 octets] - [06/05/2014 18:25:21]
AdwCleaner[R4].txt - [1651 octets] - [07/05/2014 06:44:05]
AdwCleaner[R5].txt - [9967 octets] - [15/05/2014 15:53:12]
AdwCleaner[R6].txt - [5398 octets] - [31/05/2014 17:49:49]
AdwCleaner[R7].txt - [1787 octets] - [31/05/2014 21:31:13]
AdwCleaner[S0].txt - [23091 octets] - [18/04/2014 23:48:53]
AdwCleaner[S1].txt - [1252 octets] - [19/04/2014 10:52:24]
AdwCleaner[S2].txt - [5858 octets] - [05/05/2014 15:42:02]
AdwCleaner[S3].txt - [9165 octets] - [06/05/2014 18:27:03]
AdwCleaner[S4].txt - [1626 octets] - [07/05/2014 06:44:50]
AdwCleaner[S5].txt - [9602 octets] - [15/05/2014 15:54:07]
AdwCleaner[S6].txt - [5373 octets] - [31/05/2014 17:53:50]
AdwCleaner[S7].txt - [1622 octets] - [31/05/2014 21:32:45]

########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [1682 octets] ##########
         
mfg Hippel02

Liebes Trojaner-Board Team!

Hier Schritt 2!

JunkwareRemovalTool-Log:

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Ultimate x86
Ran by Timmy on 31.05.2014 at 21:39:51,22
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-24558719-2126205106-1827937244-1004\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\appshat-distribution_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\appshat-distribution_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricemeterd_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricemeterd_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_downloader_steam_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_downloader_steam_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{396E5F17-26E2-2AEC-C244-7C5E0A47D098}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{396E5F17-26E2-2AEC-C244-7C5E0A47D098}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{396E5F17-26E2-2AEC-C244-7C5E0A47D098}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 31.05.2014 at 21:41:56,06
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
mfg Hippel02

Alt 31.05.2014, 20:56   #8
M-K-D-B
/// TB-Ausbilder
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Gut gemacht, immer weiter.
__________________
Grüße aus Bayern
M-K-D-B

______________________________________

Das Trojaner-Board unterstützen

Alt 31.05.2014, 21:05   #9
Hippel02
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Liebes Trojaner-Board Team!!

Hier Schritt 3 von 5 !!

Malwarebytes Anti-Malware -Log:

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 31.05.2014
Suchlauf-Zeit: 21:52:36
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.05.31.09
Rootkit Datenbank: v2014.05.21.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x86
Dateisystem: NTFS
Benutzer: Timmy

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 285231
Verstrichene Zeit: 7 Min, 27 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 1
PUP.Optional.MultiPlug.A, C:\ProgramData\AppReady Software\SN.Booster\SN.Booster.exe, 336, Löschen bei Neustart, [39bcc98ec3b84bebe53d81b2bf42c23e]

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 7
PUP.Optional.CouponDownloader.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{10AD2C61-0898-4348-8600-14A342F22AC3}, In Quarantäne, [7d78c29599e289ad232c71be897943bd], 
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{E957849A-94AC-6F46-4623-C31474E3C170}, In Quarantäne, [c233c6919ae137ff3f41f6559b66a65a], 
PUP.Optional.Tarma.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\233df3d5-0503-4a36-8aaf-f3b35ab61bdb, In Quarantäne, [43b2c196b5c61224f0f5a4a128d8768a], 
PUP.Optional.Tarma.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\6206b9d9-558d-49f9-b1c9-d23c0025865a, In Quarantäne, [8372de79aecd7bbb10d52c197a8617e9], 
PUP.Optional.Tarma.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\8ff9a27f-d16a-4f1f-b37a-01d696a65f1e, In Quarantäne, [3fb693c43447d462cc1965e034cc7b85], 
PUP.Optional.SNBoost.A, HKLM\SOFTWARE\SN.Booster, In Quarantäne, [668f124578033bfba165593faf538878], 
PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Feven 1.5, In Quarantäne, [9065045386f5e1552e218c1c2ad88a76], 

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 1
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-24558719-2126205106-1827937244-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), hxxp://search.certified-toolbar.com?si=75087&st=bs&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&q=%s, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.certified-toolbar.com?si=75087&st=bs&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&q=%s),Ersetzt,[d12426315e1d8bab37685808ed1743bd]

Ordner: 0
(No malicious items detected)

Dateien: 37
PUP.Optional.MultiPlug.A, C:\ProgramData\AppReady Software\SN.Booster\SN.Booster.exe, Löschen bei Neustart, [39bcc98ec3b84bebe53d81b2bf42c23e], 
PUP.Optional.MultiPlug.A, C:\ProgramData\HAippy2Savea\OMvNsr8Q.dll, In Quarantäne, [787d23342e4dd2647f01b29969987d83], 
PUP.Optional.MultiPlug.A, C:\ProgramData\HAippy2Savea\OMvNsr8Q.exe, In Quarantäne, [c233c6919ae137ff3f41f6559b66a65a], 
PUP.Optional.Tarma.A, C:\ProgramData\InstallMate\{579E7C0C-5E48-4569-A782-166A8C7D5EFA}\Setup.exe, In Quarantäne, [43b2c196b5c61224f0f5a4a128d8768a], 
PUP.Optional.Tarma.A, C:\ProgramData\InstallMate\{CCE445D9-9094-4486-A66D-D8B61707672F}\Setup.exe, In Quarantäne, [8372de79aecd7bbb10d52c197a8617e9], 
PUP.Optional.Tarma.A, C:\ProgramData\InstallMate\{CEC1B8C2-9212-4135-A3DE-DA3015229A34}\Setup.exe, In Quarantäne, [3fb693c43447d462cc1965e034cc7b85], 
Trojan.SProtector, C:\Program Files\SN.Booster, In Quarantäne, [dd18bc9b95e6b58163730a514fb27987], 
Trojan.SProtector, C:\Program Files\SNSvc.dll, In Quarantäne, [3abbbd9a89f22b0b7d5a3b2022df867a], 
PUP.Optional.AdPeak.A, C:\Temp\t.msi, In Quarantäne, [797c1d3a92e9241265226ee59173fe02], 
PUP.Optional.Domalq, C:\Users\Timmy\Downloads\Player Setup.exe, In Quarantäne, [c92c1f385e1d8fa75a4dd1738878966a], 
PUP.Optional.OutBrowse, C:\Users\Timmy\Downloads\setup (1).exe, In Quarantäne, [9f568bccd2a9cd69d27f5521de232ed2], 
PUP.Optional.InstalleRex, C:\Users\Timmy\Downloads\IGG-DayZ.StandAlone.part1.rar.exe, In Quarantäne, [ce27015686f558deee0c6716fb069967], 
PUP.Optional.AppReady, C:\Users\Timmy\Downloads\iTeebeutelMultihack.rar.exe, In Quarantäne, [db1ac0972853c373ed915c1e52af48b8], 
Trojan.Keylogger.MSIL, C:\Users\Timmy\Downloads\V4_Mod 2014 (1).rar, In Quarantäne, [a45168ef7902b3832aadef87ff019769], 
PUP.Optional.4Shared, C:\Users\Timmy\Downloads\chaos a.d keybinder 2.2.exe.part, In Quarantäne, [9f564c0b9ddef14570ed63bb748cb54b], 
Trojan.Ardamax, C:\Users\Timmy\Downloads\fileshare.ro_Metin2Mod PL 11 04 2014.rar, In Quarantäne, [c332dc7bceade65084708ee37789956b], 
PUP.Optional.OutBrowse, C:\Users\Timmy\Downloads\setup (2).exe, In Quarantäne, [04f1282f7308142252ffafc7b24f9070], 
PUP.Optional.Somoto, C:\Users\Timmy\Downloads\Mineshafter-launcher_downloader-8UICTeWm.exe, In Quarantäne, [995c35221863ad8981f4f8f4a45fa060], 
PUP.Optional.Somoto, C:\Users\Timmy\Downloads\7ZipSetup-cMnDyu3.exe, In Quarantäne, [c530be99cdae989eca598201ba4a58a8], 
PUP.Optional.Somoto.A, C:\Users\Timmy\Downloads\ClickHeretoDownloadSetup-bmrNRBCC.exe, In Quarantäne, [8d68a7b0a7d45adc66869c50e61d0df3], 
PUP.Optional.OutBrowse, C:\Users\Timmy\Downloads\COD 4 Full.exe, In Quarantäne, [10e53027532881b5995eb26b3dc340c0], 
PUP.Optional.Softonic, C:\Users\Timmy\Downloads\SoftonicDownloader_for_killing-floor.exe, In Quarantäne, [26cf97c075061026fafa9471946da65a], 
PUP.Optional.Softonic.A, C:\Users\Timmy\Downloads\Softonic_downloader_steam.exe, In Quarantäne, [e510480f3c3f3afcb89b2cf51de4f010], 
Spyware.MSIL, C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014] (1).rar, In Quarantäne, [fafbb3a49ae1d0663fae2925ed13d42c], 
Spyware.MSIL, C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014] (2).rar, In Quarantäne, [e0152c2bb4c7e254915cde704db39769], 
Spyware.MSIL, C:\Users\Timmy\Downloads\Metin2ModPL[14.02.2014].rar, In Quarantäne, [7e77ce894932181e74791e30f30d22de], 
PUP.Optional.Amonetize, C:\Users\Timmy\Downloads\DayZStandalone__7934_il12176725 (1).exe, In Quarantäne, [797cd97e334867cf4f2ec0c10ef3a35d], 
PUP.Optional.Amonetize, C:\Users\Timmy\Downloads\DayZStandalone__7934_il12176725.exe, In Quarantäne, [85702136e09b70c65c21bdc43cc546ba], 
PUP.Optional.OutBrowse, C:\Users\Timmy\Downloads\setup 2014.exe, In Quarantäne, [1fd6b7a0205bc37350a7ba63b848b848], 
PUP.Optional.Domalq, C:\Users\Timmy\Downloads\Setup(1).exe, In Quarantäne, [ee07322592e9b0862ba6b254dd23c937], 
PUP.Optional.Bechiro, C:\Users\Timmy\Downloads\Setup.exe, In Quarantäne, [eb0a5205f685241201b115d739cac43c], 
PUP.Optional.Amonetize.A, C:\Users\Timmy\AppData\Local\23690\a1923.exe, In Quarantäne, [52a33b1cceadd066c0991033c739b14f], 
PUP.Optional.AdPeak.A, C:\Windows\Installer\638b64.msi, In Quarantäne, [4baa5dfae5961c1af69194bf699b12ee], 
PUP.Optional.SNBooster.A, C:\Program Files\SN.Booster, In Quarantäne, [1adb1d3ade9d2f07ebeed7b83bc7b749], 
PUP.Optional.SNBooster.A, C:\Program Files\SNSvc.dll, In Quarantäne, [c4311b3cf8831026a03a147ba959649c], 
PUP.Optional.Superfish.A, C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, In Quarantäne, [12e3e1762d4ebf77da38f89c10f2e11f], 
PUP.Optional.Superfish.A, C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, In Quarantäne, [8075b7a0bbc0bb7b41d16034d42e926e], 

Physische Sektoren: 0
(No malicious items detected)


(end)
         
mfg Hippel02!!

Alt 31.05.2014, 21:13   #10
M-K-D-B
/// TB-Ausbilder
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Fehlen nur noch Zoek und FRST, dann kann es weitergehen.
__________________
Grüße aus Bayern
M-K-D-B

______________________________________

Das Trojaner-Board unterstützen

Alt 31.05.2014, 21:23   #11
Hippel02
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Liebes Trojaner-Board Team,

Hier Schritt 4 !!

Ich sage hier schonma Dankeschön im Vorraus!!

Zoek.exe-Log:

Code:
ATTFilter
Zoek.exe v5.0.0.0 Updated 22-05-2014
Tool run by Timmy on 31.05.2014 at 22:06:58,25.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Timmy\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

31.05.2014 22:08:32 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-24558719-2126205106-1827937244-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{396E5F17-26E2-2AEC-C244-7C5E0A47D098} deleted successfully
HKEY_USERS\S-1-5-21-24558719-2126205106-1827937244-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{396E5F17-26E2-2AEC-C244-7C5E0A47D098} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\Timmy\AppData\LocalLow\{18EFC9FE-4235-A3E5-8EA1-D0F446646227} deleted
C:\Users\Timmy\AppData\LocalLow\{1CF67973-C380-3115-A8A6-BA4C958673E1} deleted
C:\Users\Timmy\AppData\LocalLow\{396E5F17-26E2-2AEC-C244-7C5E0A47D098} deleted
C:\Users\Timmy\AppData\LocalLow\{460D08C8-1B07-C60A-64E2-2C684AA107F2} deleted
C:\Users\Timmy\AppData\LocalLow\{9EF49866-DED5-8121-8B45-5CCCDFD52ABC} deleted
C:\Users\Timmy\AppData\LocalLow\{D93E1A42-3C60-522A-1BD8-C77671C868B6} deleted
C:\Users\Timmy\AppData\LocalLow\{F1D1E649-0A44-F44E-2F0C-4E25E1AD32BC} deleted
C:\PROGRA~2\16eee1d900693bc deleted
C:\PROGRA~2\HAippy2Savea deleted
C:\PROGRA~2\rebootpending.txt deleted
C:\PROGRA~2\ICQ deleted
C:\PROGRA~2\InstallMate deleted
C:\PROGRA~2\Package Cache deleted
C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat deleted
C:\Windows\System32\searchplugins deleted
C:\Windows\System32\Extensions deleted

==== Chrome Look ======================

YoutubeAdblocker - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna
Search-NewTab - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp
saavea neTa - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn
WbSvCouponApp - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo
YoutubeAdblocker - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf
save naett - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc
Whitelist for Chrome - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
Whitelist for Chrome - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
YoutubeAdblocker - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna
Search-NewTab - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp
saavea neTa - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn
WbSvCouponApp - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo
YoutubeAdblocker - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf
save naett - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc
Whitelist for Chrome - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
YoutubeAdblocker - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna
Search-NewTab - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp
saavea neTa - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn
WbSvCouponApp - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo
YoutubeAdblocker - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf
save naett - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc
Whitelist for Chrome - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
Whitelist for Chrome - ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
YoutubeAdblocker - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna
Search-NewTab - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp
saavea neTa - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn
WbSvCouponApp - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo
YoutubeAdblocker - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf
save naett - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc
Whitelist for Chrome - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
YoutubeAdblocker - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna
Search-NewTab - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp
saavea neTa - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn
WbSvCouponApp - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo
YoutubeAdblocker - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf
save naett - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc
Whitelist for Chrome - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
Whitelist for Chrome - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
YoutubeAdblocker - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna
Search-NewTab - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp
saavea neTa - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn
WbSvCouponApp - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo
YoutubeAdblocker - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf
save naett - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc
Whitelist for Chrome - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
YoutubeAdblocker - Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna
Search-NewTab - Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp
saavea neTa - Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn
WbSvCouponApp - Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo
YoutubeAdblocker - Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf
save naett - Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc
Whitelist for Chrome - Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
South Park - Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoiakcboakkfknbginpmpfkcdmcmpnfm
Whitelist for Chrome - Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh
YoutubeAdblocker - Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna
Search-NewTab - Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp
saavea neTa - Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn
WbSvCouponApp - Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo
YoutubeAdblocker - Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf
save naett - Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc
Whitelist for Chrome - Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh

==== Chrome Fix ======================

C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gjacpkpfkgcfeepgahjjnlhfdbjkmkgo deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gjacpkpfkgcfeepgahjjnlhfdbjkmkgo_0.localstorage deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bdfddpnmglkcpeheepklofojcodfhnna deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bdfddpnmglkcpeheepklofojcodfhnna_0.localstorage deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\heaajcjgaahbcgfapfgkikfadafgalaf deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bjpeeilgibooglpegodokndckclmnmgp_0.localstorage deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bjpeeilgibooglpegodokndckclmnmgp deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dcdjafebgafbgjcpddclkhlihofegapn_0.localstorage deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dcdjafebgafbgjcpddclkhlihofegapn deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iickdjpegpdhiceaigdpkjpmkdpceimc deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_iickdjpegpdhiceaigdpkjpmkdpceimc_0.localstorage deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Timmy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pocjkchlmhkjafdpmkklknmjhokobgmh deleted successfully
C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pocjkchlmhkjafdpmkklknmjhokobgmh_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Default_Page_URL"="hxxp://www.google.com"
"Default_Search_URL"="hxxp://www.google.com"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://search.certified-toolbar.com?si=75087&st=home&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB"
"Start Default_Page_URL"="hxxp://search.certified-toolbar.com?si=75087&st=home&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB"
"Default_Search_URL"="hxxp://search.certified-toolbar.com?si=75087&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&st=chrome&q="
"Search Bar"="hxxp://search.certified-toolbar.com?si=75087&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&st=chrome&q="
"Search Page"="hxxp://search.certified-toolbar.com?si=75087&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&st=chrome&q="
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Default_Page_URL"="hxxp://www.google.com"
"Search Bar"="hxxp://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchURI]
"(Default)"="hxxp://search.certified-toolbar.com?si=75087&st=bs&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.certified-toolbar.com?si=75087&st=bs&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="hxxp://search.certified-toolbar.com?si=75087&st=bs&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&q=%s"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="hxxp://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://www.google.com"
"Default"="hxxp://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Search]
"Start Page"="hxxp://search.certified-toolbar.com?si=75087&st=home&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB"
"Start Default_Page_URL"="hxxp://search.certified-toolbar.com?si=75087&st=home&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB"
"Default_Search_URL"="hxxp://search.certified-toolbar.com?si=75087&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&st=chrome&q="
"Search Bar"="hxxp://search.certified-toolbar.com?si=75087&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&st=chrome&q="
"Search Page"="hxxp://search.certified-toolbar.com?si=75087&tid=8679&ver=5.1&ts=1385496338873&tguid=75087-8679-1385496338873-853B9854D534B2751E1E8ED31C0544AB&st=chrome&q="
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"Start Page"="hxxp://www.google.com"
"Start Default_Page_URL"="hxxp://www.google.com"
"Default_Search_URL"="hxxp://www.google.com"
"Search Bar"="hxxp://www.google.com"
"Search Page"="hxxp://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Start Page"="hxxp://www.google.com"
"Start Default_Page_URL"="hxxp://www.google.com"
"Default_Search_URL"="hxxp://www.google.com"
"Search Bar"="hxxp://www.google.com"
"Search Page"="hxxp://www.google.com"
"SearchAssistant"="hxxp://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Start Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchURI]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Empty IE Cache ======================

C:\Users\Timmy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=408 folders=173 22456050 bytes)

==== Empty Temp Folders ======================

C:\Users\Administrator\AppData\Local\temp emptied successfully
C:\Users\ASPNET\AppData\Local\temp emptied successfully
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Gast\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\Timmy\AppData\Local\temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Timmy\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 31.05.2014 at 22:19:48,73 ======================
         

Alt 31.05.2014, 21:29   #12
Hippel02
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Liebes Trojaner-Board Team!

Hier der Letzte Schritt!

FRST-Log:


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:30-05-2014
Ran by Timmy (administrator) on LUKAS-PC on 31-05-2014 22:25:11
Running from C:\Users\Timmy\Downloads
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Razer Inc.) C:\Program Files\Razer\Razer Game Booster\RzKLService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [951576 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744 2014-03-02] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [182352 2014-05-05] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-24558719-2126205106-1827937244-1004\...\Policies\Explorer: [NoCDBurning] 0

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{62754FEB-049A-4289-9BDF-793AC7A69E05}: [NameServer]192.168.2.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Timmy\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml

Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-31]
CHR Extension: (Google Drive) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-31]
CHR Extension: (YouTube) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-31]
CHR Extension: (Google-Suche) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-31]
CHR Extension: (Google Wallet) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-17]
CHR Extension: (Google Mail) - C:\Users\Timmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-31]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

S2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440400 2014-03-02] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440400 2014-03-02] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-03-02] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [124496 2014-05-05] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [49152 2014-05-19] ()
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1682768 2014-05-13] (LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [375056 2014-04-15] (LogMeIn, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
S3 npggsvc; C:\Windows\system32\GameMon.des [4598456 2012-05-23] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [66872 2012-12-10] ()
R2 RzKLService; C:\Program Files\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2014-03-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2014-03-02] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69240 2014-03-02] (Avira Operations GmbH & Co. KG)
R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R1 netfilter; C:\Windows\System32\drivers\netfilter.sys [47488 2014-02-13] (NetFilterSDK.com)
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [1277504 2012-12-27] (Ralink Technology Corp.)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [801896 2012-05-14] (Realtek Semiconductor Corporation                           )
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-11-25] (Avira GmbH)
S1 auvzfanh; \??\C:\Windows\system32\drivers\auvzfanh.sys [X]
S1 avqsyljw; \??\C:\Windows\system32\drivers\avqsyljw.sys [X]
S1 bcmezbwb; \??\C:\Windows\system32\drivers\bcmezbwb.sys [X]
S3 catchme; \??\C:\Users\Timmy\AppData\Local\Temp\catchme.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
U5 GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [26840 2012-08-21] (GEAR Software Inc.)
S1 grdueolg; \??\C:\Windows\system32\drivers\grdueolg.sys [X]
S1 iyefgqnd; \??\C:\Windows\system32\drivers\iyefgqnd.sys [X]
S1 mmtotfij; \??\C:\Windows\system32\drivers\mmtotfij.sys [X]
S1 ohfaloyf; \??\C:\Windows\system32\drivers\ohfaloyf.sys [X]
S1 osedppzt; \??\C:\Windows\system32\drivers\osedppzt.sys [X]
S1 srmiacxn; \??\C:\Windows\system32\drivers\srmiacxn.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S1 vjugzali; \??\C:\Windows\system32\drivers\vjugzali.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-31 22:18 - 2014-05-31 22:25 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Public\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Gast\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Default\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Default User\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Administrator\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:06 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-05-31 22:08 - 2014-05-31 22:19 - 00030612 _____ () C:\zoek-results.log
2014-05-31 22:06 - 2014-05-31 22:17 - 00000000 ____D () C:\zoek_backup
2014-05-31 22:06 - 2014-05-31 22:06 - 01285120 _____ () C:\Users\Timmy\Downloads\zoek.exe
2014-05-31 21:50 - 2014-05-31 22:02 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-31 21:50 - 2014-05-31 21:50 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-31 21:50 - 2014-05-31 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-31 21:50 - 2014-05-31 21:50 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-05-31 21:50 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-31 21:50 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-31 21:50 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-31 21:44 - 2014-05-31 21:48 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (3).exe
2014-05-31 21:39 - 2014-05-31 21:39 - 01016261 _____ (Thisisu) C:\Users\Timmy\Downloads\JRT.exe
2014-05-31 21:39 - 2014-05-31 21:39 - 00000000 ____D () C:\Windows\ERUNT
2014-05-31 21:34 - 2014-05-31 22:20 - 00000000 ____D () C:\Users\Timmy\Desktop\Moskitos Auftrag
2014-05-31 21:33 - 2014-05-31 22:19 - 00010454 _____ () C:\Windows\PFRO.log
2014-05-31 21:33 - 2014-05-31 22:19 - 00000224 _____ () C:\Windows\setupact.log
2014-05-31 21:33 - 2014-05-31 21:33 - 00270424 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-31 21:33 - 2014-05-31 21:33 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-31 21:30 - 2014-05-31 21:31 - 01327971 _____ () C:\Users\Timmy\Downloads\adwcleaner_3.211 (1).exe
2014-05-31 21:16 - 2014-05-31 21:16 - 00017920 _____ () C:\ComboFix.txt
2014-05-31 21:03 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-05-31 21:03 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-05-31 21:03 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-05-31 21:03 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-05-31 21:03 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-05-31 21:03 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-05-31 21:03 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-05-31 21:03 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-05-31 21:02 - 2014-05-31 21:16 - 00000000 ____D () C:\Qoobox
2014-05-31 21:02 - 2014-05-31 21:15 - 00000000 ____D () C:\Windows\erdnt
2014-05-31 21:00 - 2014-05-31 21:01 - 05203398 ____R (Swearware) C:\Users\Timmy\Downloads\ComboFix.exe
2014-05-31 20:36 - 2014-05-31 20:36 - 00059184 _____ () C:\Users\Timmy\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-31 20:36 - 2014-05-31 20:36 - 00019708 _____ () C:\Users\Timmy\Downloads\Addition.txt
2014-05-31 20:33 - 2014-05-31 22:25 - 00009950 _____ () C:\Users\Timmy\Downloads\FRST.txt
2014-05-31 20:33 - 2014-05-31 22:25 - 00000000 ____D () C:\FRST
2014-05-31 20:33 - 2014-05-31 20:33 - 01056256 _____ (Farbar) C:\Users\Timmy\Downloads\FRST.exe
2014-05-31 19:48 - 2014-05-31 19:48 - 02056224 _____ () C:\Users\Timmy\Downloads\cpu-z-1692.zip
2014-05-31 19:36 - 2014-05-31 19:36 - 00000000 ____D () C:\Program Files\GPU-Z
2014-05-31 19:35 - 2014-05-31 19:35 - 01617624 _____ () C:\Users\Timmy\Downloads\GPU-Z.0.7.8.zip
2014-05-31 18:52 - 2014-05-31 18:54 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (2).exe
2014-05-31 18:40 - 2014-05-31 18:40 - 00001105 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-31 18:37 - 2014-05-31 18:39 - 28852416 _____ (Mozilla) C:\Users\Timmy\Downloads\Firefox_Setup_de29.0.1.exe
2014-05-31 18:30 - 2014-05-31 18:30 - 00001421 _____ () C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-31 18:21 - 2014-05-31 18:21 - 14358016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-31 18:21 - 2014-05-31 18:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02049536 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01766400 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-31 18:21 - 2014-05-31 18:21 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-05-31 18:21 - 2014-05-31 18:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00745472 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00719360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-05-31 18:21 - 2014-05-31 18:21 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00242200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-05-31 18:21 - 2014-05-31 18:21 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-31 18:16 - 2014-05-31 18:17 - 30091776 _____ (Microsoft Corporation) C:\Users\Timmy\Downloads\IE10-Windows6.1-x86-de-de.exe
2014-05-31 18:10 - 2014-05-31 18:11 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-05-31 17:52 - 2014-05-31 17:53 - 25443244 _____ () C:\Users\Timmy\Downloads\DayZ 05.10.2014 - 14.06.59.01_1.mp4
2014-05-31 17:47 - 2014-05-31 17:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-31 17:45 - 2014-05-31 17:46 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-31 17:41 - 2014-05-31 17:41 - 01327971 _____ () C:\Users\Timmy\Downloads\adwcleaner_3.211.exe
2014-05-31 17:17 - 2014-05-31 17:17 - 00000000 ____D () C:\Windows\pss
2014-05-31 16:47 - 2014-05-31 16:47 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-31 16:47 - 2014-05-31 16:47 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-31 16:45 - 2014-05-31 16:46 - 04748896 _____ (Piriform Ltd) C:\Users\Timmy\Downloads\ccsetup414.exe
2014-05-31 16:42 - 2014-05-31 16:42 - 04981160 _____ (Adobe Systems Inc.) C:\Users\Timmy\Downloads\Shockwave_Installer_Slim.exe
2014-05-26 22:01 - 2014-05-26 22:05 - 90513790 _____ () C:\Users\Timmy\Downloads\DayZ 05.26.2014 - 21.57.15.01.mp4
2014-05-25 08:44 - 2014-05-25 08:44 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-05-21 17:42 - 2014-05-31 22:20 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\TS3Client
2014-05-21 17:42 - 2014-05-21 17:42 - 00001120 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-21 17:42 - 2014-05-21 17:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-21 17:42 - 2014-05-21 17:42 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-21 17:38 - 2014-05-21 17:39 - 00961360 _____ (Chip Digital GmbH) C:\Users\Timmy\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe
2014-05-19 06:41 - 2014-05-19 06:41 - 00000000 ____D () C:\Program Files\Common Files\BattlEye
2014-05-19 06:22 - 2014-05-19 07:02 - 00000000 ____D () C:\Users\Timmy\Documents\DayZ
2014-05-18 14:25 - 2014-05-18 14:25 - 00017791 _____ () C:\Users\Timmy\Downloads\Download.htm
2014-05-18 14:25 - 2014-05-18 14:25 - 00017791 _____ () C:\Users\Timmy\Downloads\Download (1).htm
2014-05-17 16:27 - 2014-05-17 16:27 - 00000216 _____ () C:\Users\Timmy\Desktop\DayZ.url
2014-05-17 16:27 - 2014-05-17 16:27 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-15 19:46 - 2014-05-15 19:46 - 00000000 ____D () C:\Users\Timmy\Documents\Razer
2014-05-15 19:46 - 2014-05-15 19:46 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Razer_Inc
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\ProgramData\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\Program Files\Razer
2014-05-15 19:39 - 2014-05-15 19:43 - 41954352 _____ (Razer Inc. ) C:\Users\Timmy\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-05-15 17:46 - 2014-05-15 17:47 - 00818889 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.4_HD_U_D1.jar
2014-05-15 17:40 - 2014-05-15 17:40 - 00785243 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.2_HD_D1.jar
2014-05-15 17:40 - 2014-05-15 17:40 - 00539717 _____ () C:\Users\Timmy\Downloads\optifine_1.7.2.zip
2014-05-15 17:38 - 2014-05-15 17:38 - 00030566 _____ () C:\Users\Timmy\Downloads\§6Paolos §aLagLess §4Shaders §cv03 §1RC7 §eLite.zip
2014-05-15 17:34 - 2014-05-15 17:34 - 00445865 _____ () C:\Users\Timmy\Downloads\voxelmap-1.7.2-1.0.jar
2014-05-15 17:32 - 2014-05-15 17:32 - 00066184 _____ () C:\Users\Timmy\Downloads\yatc_b0.9.1_1.4.6.zip
2014-05-15 16:51 - 2014-05-15 16:51 - 00033217 _____ () C:\Users\Timmy\Downloads\§6Paolos §aLagLess §4Shaders §cv03 §3RC8.zip
2014-05-15 16:50 - 2014-05-15 16:50 - 00026598 _____ () C:\Users\Timmy\Downloads\MrMeep_x3s Shaders v04.0 RC4.zip
2014-05-15 16:34 - 2014-05-15 16:34 - 00811462 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.2_HD_U_D1.jar
2014-05-15 16:34 - 2014-05-15 16:34 - 00064982 _____ () C:\Users\Timmy\Downloads\seus-v10.1-Preview2.zip
2014-05-15 16:25 - 2014-05-15 16:25 - 02530401 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.997-installer.jar
2014-05-15 16:24 - 2014-05-15 16:24 - 00183946 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.0-beta-mc1.7.2-f997.jar
2014-05-15 16:21 - 2014-05-15 16:21 - 00177465 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.13mc1.7.4-zip.zip
2014-05-15 16:12 - 2014-05-15 16:13 - 00202061 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.12-mc1.7.2-f1040.jar
2014-05-15 16:12 - 2014-05-15 16:13 - 00046267 _____ () C:\Users\Timmy\Downloads\SEUS-v10.1-Ultra.zip
2014-05-15 16:07 - 2014-05-15 16:07 - 02632153 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.1024-installer.jar
2014-05-15 16:02 - 2014-05-15 16:02 - 00000000 ____D () C:\ProgramData\AllaboutApp
2014-05-15 15:50 - 2014-05-31 22:00 - 00000000 ____D () C:\Users\Timmy\AppData\Local\23690
2014-05-14 19:02 - 2014-05-14 19:02 - 02630583 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.1040-installer.jar
2014-05-14 18:55 - 2014-05-14 18:55 - 03685975 _____ () C:\Users\Timmy\Downloads\Minecraft Force Op 1.7.9.zip
2014-05-14 18:52 - 2014-05-14 18:52 - 00469713 _____ () C:\Users\Timmy\Downloads\MINECRAFT_FORCEOP_2014.RAR
2014-05-14 13:36 - 2014-05-14 13:37 - 06647543 _____ () C:\Users\Timmy\Downloads\Nodus.zip
2014-05-14 13:29 - 2014-05-09 09:06 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 13:29 - 2014-05-09 09:04 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 13:29 - 2014-04-12 04:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 13:29 - 2014-04-12 04:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 13:29 - 2014-04-12 04:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 13:29 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 13:29 - 2014-04-12 04:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 13:29 - 2014-04-12 04:11 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 13:29 - 2014-04-12 04:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 13:29 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-05-14 13:29 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 13:29 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 13:29 - 2014-03-04 11:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 13:29 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 13:28 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 13:22 - 2014-05-14 13:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-05-14 13:22 - 2014-05-14 13:22 - 00000000 ____D () C:\Program Files\LogMeIn Hamachi
2014-05-13 18:28 - 2014-05-31 19:31 - 00000000 ____D () C:\Users\Timmy\AppData\Local\DayZ
2014-05-13 18:28 - 2014-05-13 18:28 - 00000000 ____D () C:\Users\Timmy\Documents\BIS Core Engine
2014-05-13 18:27 - 2014-05-13 18:27 - 13987015 _____ () C:\Users\Timmy\Downloads\DayZ SA Multiplayer Crack.zip
2014-05-13 17:18 - 2014-05-13 17:18 - 00254645 _____ () C:\Users\Timmy\Downloads\[1.7.2]ReiMinimap_v3.4_03beta.zip
2014-05-13 17:14 - 2014-05-13 17:15 - 28062081 _____ () C:\Users\Timmy\Downloads\Sphax PureBDcraft 128x MC17.zip
2014-05-13 16:49 - 2014-05-13 16:51 - 19329130 _____ () C:\Users\Timmy\Downloads\DayZ By NotAwim for HunteR26RuS 1.5.2 Modify.zip
2014-05-12 14:54 - 2014-05-12 14:54 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\.firefox
2014-05-12 14:51 - 2014-05-12 14:52 - 06647663 _____ () C:\Users\Timmy\Downloads\Nodus 1.7.9.zip
2014-05-11 17:08 - 2014-05-11 18:03 - 1197047898 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_24_01.rar
2014-05-11 17:07 - 2014-05-11 17:07 - 15568473 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_patcher (1).rar
2014-05-11 17:04 - 2014-05-11 17:07 - 08242902 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_patcher.rar
2014-05-10 22:56 - 2014-05-25 08:44 - 00000000 ___RD () C:\Program Files\Skype
2014-05-10 22:56 - 2014-05-10 22:56 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Skype
2014-05-10 22:56 - 2014-05-10 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-05-10 22:55 - 2014-05-10 22:55 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Timmy\Downloads\SkypeSetup (1).exe
2014-05-10 15:57 - 2014-05-10 16:00 - 49268534 _____ () C:\Users\Timmy\Downloads\LIFE 128x (Vers. 81).zip
2014-05-09 20:09 - 2014-05-09 20:09 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-05-09 20:05 - 2014-05-09 20:06 - 00921512 _____ (Oracle Corporation) C:\Users\Timmy\Downloads\chromeinstall-7u55 (1).exe
2014-05-09 19:38 - 2014-05-18 20:51 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\.minecraft
2014-05-09 19:37 - 2014-05-30 13:11 - 01557017 _____ (TeamExtreme) C:\Users\Timmy\Desktop\Minecraft.exe
2014-05-09 19:37 - 2014-05-10 09:24 - 01771520 _____ (TeamExtreme) C:\Users\Timmy\Downloads\Minecraft.exe
2014-05-09 18:18 - 2014-05-09 18:18 - 00000009 _____ () C:\Users\Timmy\Downloads\ad_down.htm
2014-05-09 17:26 - 2014-05-09 17:27 - 00255189 _____ () C:\Users\Timmy\Downloads\Mineshafter-launcher.jar
2014-05-09 17:15 - 2014-05-09 17:15 - 00643272 _____ () C:\Users\Timmy\Downloads\MineCraftSetup.exe
2014-05-08 15:36 - 2014-05-31 16:48 - 00000000 ____D () C:\Windows\Minidump
2014-05-08 15:07 - 2014-05-08 15:09 - 04582789 _____ () C:\Users\Timmy\Downloads\m2k-mod_Pserver.zip
2014-05-07 22:28 - 2014-05-07 22:30 - 03757782 _____ () C:\Users\Timmy\Downloads\Item Creator.zip
2014-05-07 22:09 - 2014-05-07 22:14 - 23488196 _____ () C:\Users\Timmy\Downloads\MultiHack (1).rar
2014-05-07 21:52 - 2014-05-07 21:58 - 23488196 _____ () C:\Users\Timmy\Downloads\MultiHack.rar
2014-05-07 21:44 - 2014-05-07 21:44 - 00000000 ___SD () C:\Users\Timmy\AppData\Roaming\Frutas
2014-05-07 21:43 - 2014-05-07 21:43 - 00000000 ___HD () C:\Users\Timmy\Desktop\TempInstall
2014-05-07 21:42 - 2014-05-07 21:43 - 01151644 _____ () C:\Users\Timmy\Downloads\Bot_Metin2.rar
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\Users\Timmy\Documents\My Cheat Tables
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\Program Files\Cheat Engine 6.3
2014-05-07 21:34 - 2014-05-07 21:35 - 08065840 _____ (Cheat Engine ) C:\Users\Timmy\Downloads\CheatEngine63.exe
2014-05-07 16:31 - 2014-05-07 16:32 - 03511609 _____ () C:\Users\Timmy\Downloads\Metin 2 Yang Hack.rar
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\ProgramData\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\Program Files\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\Program Files\Elcomsoft
2014-05-07 16:22 - 2014-05-07 16:24 - 08435712 _____ () C:\Users\Timmy\Downloads\archpr454_setup_en.msi
2014-05-07 08:39 - 2014-05-07 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-05-06 17:04 - 2014-05-31 22:19 - 00000476 ____H () C:\Windows\Tasks\SN.Booster-S-014941198.job
2014-05-06 17:04 - 2014-05-06 17:13 - 00000000 ____D () C:\ProgramData\AppReady Software
2014-05-06 17:00 - 2014-05-14 17:21 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-05 15:41 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-05-05 15:36 - 2014-05-31 22:00 - 00000000 ____D () C:\Temp
2014-05-05 13:54 - 2014-05-30 11:55 - 00000000 ____D () C:\Program Files\GameforgeLive
2014-05-05 13:54 - 2014-05-30 11:46 - 00000000 ____D () C:\Users\Timmy\Downloads\Gameforge Live
2014-05-05 13:54 - 2014-05-30 11:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-05-05 13:54 - 2014-05-05 13:54 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Gameforge4d
2014-05-05 13:53 - 2014-05-05 13:53 - 20155712 _____ (Gameforge ) C:\Users\Timmy\Downloads\Metin2_GameforgeLiveSetup.exe

==================== One Month Modified Files and Folders =======

2014-05-31 22:25 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Temp
2014-05-31 22:25 - 2014-05-31 20:33 - 00009950 _____ () C:\Users\Timmy\Downloads\FRST.txt
2014-05-31 22:25 - 2014-05-31 20:33 - 00000000 ____D () C:\FRST
2014-05-31 22:22 - 2011-08-13 15:49 - 01391537 _____ () C:\Windows\WindowsUpdate.log
2014-05-31 22:20 - 2014-05-31 21:34 - 00000000 ____D () C:\Users\Timmy\Desktop\Moskitos Auftrag
2014-05-31 22:20 - 2014-05-21 17:42 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\TS3Client
2014-05-31 22:19 - 2014-05-31 22:08 - 00030612 _____ () C:\zoek-results.log
2014-05-31 22:19 - 2014-05-31 21:33 - 00010454 _____ () C:\Windows\PFRO.log
2014-05-31 22:19 - 2014-05-31 21:33 - 00000224 _____ () C:\Windows\setupact.log
2014-05-31 22:19 - 2014-05-06 17:04 - 00000476 ____H () C:\Windows\Tasks\SN.Booster-S-014941198.job
2014-05-31 22:19 - 2014-04-13 15:09 - 00000000 ____D () C:\Users\Timmy\AppData\Local\LogMeIn Hamachi
2014-05-31 22:19 - 2012-02-18 20:18 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-05-31 22:19 - 2011-09-26 18:28 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-31 22:19 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Public\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Gast\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Default\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Default User\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\temp
2014-05-31 22:18 - 2014-05-31 22:18 - 00000000 ____D () C:\Users\Administrator\AppData\Local\temp
2014-05-31 22:17 - 2014-05-31 22:06 - 00000000 ____D () C:\zoek_backup
2014-05-31 22:08 - 2009-07-14 06:34 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-31 22:08 - 2009-07-14 06:34 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-31 22:07 - 2011-08-13 15:55 - 00006446 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-31 22:06 - 2014-05-31 22:18 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-05-31 22:06 - 2014-05-31 22:06 - 01285120 _____ () C:\Users\Timmy\Downloads\zoek.exe
2014-05-31 22:02 - 2014-05-31 21:50 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-31 22:01 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\twain_32
2014-05-31 22:00 - 2014-05-15 15:50 - 00000000 ____D () C:\Users\Timmy\AppData\Local\23690
2014-05-31 22:00 - 2014-05-05 15:36 - 00000000 ____D () C:\Temp
2014-05-31 21:50 - 2014-05-31 21:50 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-31 21:50 - 2014-05-31 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-31 21:50 - 2014-05-31 21:50 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-05-31 21:48 - 2014-05-31 21:44 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (3).exe
2014-05-31 21:47 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\tracing
2014-05-31 21:43 - 2012-08-12 14:43 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-31 21:39 - 2014-05-31 21:39 - 01016261 _____ (Thisisu) C:\Users\Timmy\Downloads\JRT.exe
2014-05-31 21:39 - 2014-05-31 21:39 - 00000000 ____D () C:\Windows\ERUNT
2014-05-31 21:36 - 2011-09-26 18:28 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-31 21:33 - 2014-05-31 21:33 - 00270424 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-31 21:33 - 2014-05-31 21:33 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-31 21:33 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-05-31 21:32 - 2014-04-18 23:47 - 00000000 ____D () C:\AdwCleaner
2014-05-31 21:31 - 2014-05-31 21:30 - 01327971 _____ () C:\Users\Timmy\Downloads\adwcleaner_3.211 (1).exe
2014-05-31 21:16 - 2014-05-31 21:16 - 00017920 _____ () C:\ComboFix.txt
2014-05-31 21:16 - 2014-05-31 21:02 - 00000000 ____D () C:\Qoobox
2014-05-31 21:16 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Default
2014-05-31 21:16 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-05-31 21:15 - 2014-05-31 21:02 - 00000000 ____D () C:\Windows\erdnt
2014-05-31 21:14 - 2009-07-14 04:04 - 00000215 _____ () C:\Windows\system.ini
2014-05-31 21:01 - 2014-05-31 21:00 - 05203398 ____R (Swearware) C:\Users\Timmy\Downloads\ComboFix.exe
2014-05-31 20:36 - 2014-05-31 20:36 - 00059184 _____ () C:\Users\Timmy\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-31 20:36 - 2014-05-31 20:36 - 00019708 _____ () C:\Users\Timmy\Downloads\Addition.txt
2014-05-31 20:33 - 2014-05-31 20:33 - 01056256 _____ (Farbar) C:\Users\Timmy\Downloads\FRST.exe
2014-05-31 20:31 - 2014-04-15 08:26 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004UA.job
2014-05-31 19:48 - 2014-05-31 19:48 - 02056224 _____ () C:\Users\Timmy\Downloads\cpu-z-1692.zip
2014-05-31 19:36 - 2014-05-31 19:36 - 00000000 ____D () C:\Program Files\GPU-Z
2014-05-31 19:35 - 2014-05-31 19:35 - 01617624 _____ () C:\Users\Timmy\Downloads\GPU-Z.0.7.8.zip
2014-05-31 19:32 - 2014-04-16 15:43 - 00000000 ____D () C:\Program Files\Steam
2014-05-31 19:31 - 2014-05-13 18:28 - 00000000 ____D () C:\Users\Timmy\AppData\Local\DayZ
2014-05-31 19:02 - 2009-10-14 05:07 - 00000000 ____D () C:\Windows\Panther
2014-05-31 18:54 - 2014-05-31 18:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (2).exe
2014-05-31 18:40 - 2014-05-31 18:40 - 00001105 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-31 18:40 - 2014-04-14 19:39 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-31 18:39 - 2014-05-31 18:37 - 28852416 _____ (Mozilla) C:\Users\Timmy\Downloads\Firefox_Setup_de29.0.1.exe
2014-05-31 18:35 - 2014-04-20 22:42 - 00000000 ____D () C:\Users\Timmy\Desktop\Musik
2014-05-31 18:30 - 2014-05-31 18:30 - 00001421 _____ () C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-05-31 18:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-05-31 18:21 - 2014-05-31 18:21 - 14358016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-31 18:21 - 2014-05-31 18:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 02049536 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01766400 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-31 18:21 - 2014-05-31 18:21 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-05-31 18:21 - 2014-05-31 18:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00745472 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00719360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-05-31 18:21 - 2014-05-31 18:21 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00242200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-05-31 18:21 - 2014-05-31 18:21 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-05-31 18:21 - 2014-05-31 18:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-31 18:21 - 2014-05-31 18:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-31 18:17 - 2014-05-31 18:16 - 30091776 _____ (Microsoft Corporation) C:\Users\Timmy\Downloads\IE10-Windows6.1-x86-de-de.exe
2014-05-31 18:11 - 2014-05-31 18:10 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-05-31 18:00 - 2014-04-14 18:46 - 00000000 ____D () C:\Users\Timmy\Desktop\Games
2014-05-31 17:53 - 2014-05-31 17:52 - 25443244 _____ () C:\Users\Timmy\Downloads\DayZ 05.10.2014 - 14.06.59.01_1.mp4
2014-05-31 17:47 - 2014-05-31 17:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-31 17:46 - 2014-05-31 17:45 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Timmy\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-31 17:41 - 2014-05-31 17:41 - 01327971 _____ () C:\Users\Timmy\Downloads\adwcleaner_3.211.exe
2014-05-31 17:17 - 2014-05-31 17:17 - 00000000 ____D () C:\Windows\pss
2014-05-31 16:48 - 2014-05-08 15:36 - 00000000 ____D () C:\Windows\Minidump
2014-05-31 16:47 - 2014-05-31 16:47 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-31 16:47 - 2014-05-31 16:47 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-31 16:46 - 2014-05-31 16:45 - 04748896 _____ (Piriform Ltd) C:\Users\Timmy\Downloads\ccsetup414.exe
2014-05-31 16:43 - 2012-08-11 21:30 - 00000000 ____D () C:\Windows\system32\Adobe
2014-05-31 16:42 - 2014-05-31 16:42 - 04981160 _____ (Adobe Systems Inc.) C:\Users\Timmy\Downloads\Shockwave_Installer_Slim.exe
2014-05-31 09:31 - 2013-08-25 11:57 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\Skype
2014-05-30 13:11 - 2014-05-09 19:37 - 01557017 _____ (TeamExtreme) C:\Users\Timmy\Desktop\Minecraft.exe
2014-05-30 11:55 - 2014-05-05 13:54 - 00000000 ____D () C:\Program Files\GameforgeLive
2014-05-30 11:46 - 2014-05-05 13:54 - 00000000 ____D () C:\Users\Timmy\Downloads\Gameforge Live
2014-05-30 11:46 - 2014-05-05 13:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-05-26 22:05 - 2014-05-26 22:01 - 90513790 _____ () C:\Users\Timmy\Downloads\DayZ 05.26.2014 - 21.57.15.01.mp4
2014-05-25 08:44 - 2014-05-25 08:44 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-05-25 08:44 - 2014-05-10 22:56 - 00000000 ___RD () C:\Program Files\Skype
2014-05-25 08:44 - 2011-09-26 18:24 - 00000000 ____D () C:\ProgramData\Skype
2014-05-21 17:42 - 2014-05-21 17:42 - 00001120 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-21 17:42 - 2014-05-21 17:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-21 17:42 - 2014-05-21 17:42 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-21 17:39 - 2014-05-21 17:38 - 00961360 _____ (Chip Digital GmbH) C:\Users\Timmy\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe
2014-05-19 14:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-19 07:02 - 2014-05-19 06:22 - 00000000 ____D () C:\Users\Timmy\Documents\DayZ
2014-05-19 06:41 - 2014-05-19 06:41 - 00000000 ____D () C:\Program Files\Common Files\BattlEye
2014-05-18 20:51 - 2014-05-09 19:38 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\.minecraft
2014-05-18 14:25 - 2014-05-18 14:25 - 00017791 _____ () C:\Users\Timmy\Downloads\Download.htm
2014-05-18 14:25 - 2014-05-18 14:25 - 00017791 _____ () C:\Users\Timmy\Downloads\Download (1).htm
2014-05-18 11:32 - 2014-04-21 17:10 - 00000000 ____D () C:\Program Files\Sirius MT2
2014-05-18 08:31 - 2014-04-15 08:26 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004Core.job
2014-05-17 16:28 - 2013-10-14 21:05 - 00000000 ____D () C:\Users\Timmy\Desktop\Alles
2014-05-17 16:27 - 2014-05-17 16:27 - 00000216 _____ () C:\Users\Timmy\Desktop\DayZ.url
2014-05-17 16:27 - 2014-05-17 16:27 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-15 19:46 - 2014-05-15 19:46 - 00000000 ____D () C:\Users\Timmy\Documents\Razer
2014-05-15 19:46 - 2014-05-15 19:46 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Razer_Inc
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\ProgramData\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-15 19:44 - 2014-05-15 19:44 - 00000000 ____D () C:\Program Files\Razer
2014-05-15 19:43 - 2014-05-15 19:39 - 41954352 _____ (Razer Inc. ) C:\Users\Timmy\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-05-15 18:29 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-05-15 17:47 - 2014-05-15 17:46 - 00818889 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.4_HD_U_D1.jar
2014-05-15 17:40 - 2014-05-15 17:40 - 00785243 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.2_HD_D1.jar
2014-05-15 17:40 - 2014-05-15 17:40 - 00539717 _____ () C:\Users\Timmy\Downloads\optifine_1.7.2.zip
2014-05-15 17:38 - 2014-05-15 17:38 - 00030566 _____ () C:\Users\Timmy\Downloads\§6Paolos §aLagLess §4Shaders §cv03 §1RC7 §eLite.zip
2014-05-15 17:34 - 2014-05-15 17:34 - 00445865 _____ () C:\Users\Timmy\Downloads\voxelmap-1.7.2-1.0.jar
2014-05-15 17:32 - 2014-05-15 17:32 - 00066184 _____ () C:\Users\Timmy\Downloads\yatc_b0.9.1_1.4.6.zip
2014-05-15 16:51 - 2014-05-15 16:51 - 00033217 _____ () C:\Users\Timmy\Downloads\§6Paolos §aLagLess §4Shaders §cv03 §3RC8.zip
2014-05-15 16:50 - 2014-05-15 16:50 - 00026598 _____ () C:\Users\Timmy\Downloads\MrMeep_x3s Shaders v04.0 RC4.zip
2014-05-15 16:34 - 2014-05-15 16:34 - 00811462 _____ () C:\Users\Timmy\Downloads\OptiFine_1.7.2_HD_U_D1.jar
2014-05-15 16:34 - 2014-05-15 16:34 - 00064982 _____ () C:\Users\Timmy\Downloads\seus-v10.1-Preview2.zip
2014-05-15 16:25 - 2014-05-15 16:25 - 02530401 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.997-installer.jar
2014-05-15 16:24 - 2014-05-15 16:24 - 00183946 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.0-beta-mc1.7.2-f997.jar
2014-05-15 16:21 - 2014-05-15 16:21 - 00177465 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.13mc1.7.4-zip.zip
2014-05-15 16:13 - 2014-05-15 16:12 - 00202061 _____ () C:\Users\Timmy\Downloads\ShadersModCore-v2.3.12-mc1.7.2-f1040.jar
2014-05-15 16:13 - 2014-05-15 16:12 - 00046267 _____ () C:\Users\Timmy\Downloads\SEUS-v10.1-Ultra.zip
2014-05-15 16:07 - 2014-05-15 16:07 - 02632153 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.1024-installer.jar
2014-05-15 16:02 - 2014-05-15 16:02 - 00000000 ____D () C:\ProgramData\AllaboutApp
2014-05-15 16:02 - 2013-11-25 21:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-05-15 16:02 - 2013-11-25 21:56 - 00000000 ____D () C:\Program Files\Avira
2014-05-14 20:25 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-05-14 19:02 - 2014-05-14 19:02 - 02630583 _____ () C:\Users\Timmy\Downloads\forge-1.7.2-10.12.0.1040-installer.jar
2014-05-14 18:55 - 2014-05-14 18:55 - 03685975 _____ () C:\Users\Timmy\Downloads\Minecraft Force Op 1.7.9.zip
2014-05-14 18:52 - 2014-05-14 18:52 - 00469713 _____ () C:\Users\Timmy\Downloads\MINECRAFT_FORCEOP_2014.RAR
2014-05-14 17:21 - 2014-05-06 17:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-14 17:05 - 2013-07-12 17:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 17:02 - 2009-11-09 12:03 - 90547776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-14 13:37 - 2014-05-14 13:36 - 06647543 _____ () C:\Users\Timmy\Downloads\Nodus.zip
2014-05-14 13:22 - 2014-05-14 13:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-05-14 13:22 - 2014-05-14 13:22 - 00000000 ____D () C:\Program Files\LogMeIn Hamachi
2014-05-14 06:43 - 2012-08-12 14:43 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-14 06:43 - 2011-09-12 17:02 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-13 21:23 - 2014-04-13 17:02 - 00000000 ____D () C:\Program Files\7DaysToDie-Alpha
2014-05-13 18:28 - 2014-05-13 18:28 - 00000000 ____D () C:\Users\Timmy\Documents\BIS Core Engine
2014-05-13 18:27 - 2014-05-13 18:27 - 13987015 _____ () C:\Users\Timmy\Downloads\DayZ SA Multiplayer Crack.zip
2014-05-13 17:18 - 2014-05-13 17:18 - 00254645 _____ () C:\Users\Timmy\Downloads\[1.7.2]ReiMinimap_v3.4_03beta.zip
2014-05-13 17:15 - 2014-05-13 17:14 - 28062081 _____ () C:\Users\Timmy\Downloads\Sphax PureBDcraft 128x MC17.zip
2014-05-13 16:51 - 2014-05-13 16:49 - 19329130 _____ () C:\Users\Timmy\Downloads\DayZ By NotAwim for HunteR26RuS 1.5.2 Modify.zip
2014-05-12 14:54 - 2014-05-12 14:54 - 00000000 ____D () C:\Users\Timmy\AppData\Roaming\.firefox
2014-05-12 14:52 - 2014-05-12 14:51 - 06647663 _____ () C:\Users\Timmy\Downloads\Nodus 1.7.9.zip
2014-05-12 07:26 - 2014-05-31 21:50 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-31 21:50 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:25 - 2014-05-31 21:50 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 18:06 - 2014-04-19 16:18 - 00000000 ____D () C:\Users\Timmy\Desktop\Hardcore Reloaded (2)
2014-05-11 18:03 - 2014-05-11 17:08 - 1197047898 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_24_01.rar
2014-05-11 17:07 - 2014-05-11 17:07 - 15568473 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_patcher (1).rar
2014-05-11 17:07 - 2014-05-11 17:04 - 08242902 _____ () C:\Users\Timmy\Downloads\Hardcore-RELOADED_patcher.rar
2014-05-10 22:56 - 2014-05-10 22:56 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Skype
2014-05-10 22:56 - 2014-05-10 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-05-10 22:55 - 2014-05-10 22:55 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Timmy\Downloads\SkypeSetup (1).exe
2014-05-10 16:00 - 2014-05-10 15:57 - 49268534 _____ () C:\Users\Timmy\Downloads\LIFE 128x (Vers. 81).zip
2014-05-10 09:24 - 2014-05-09 19:37 - 01771520 _____ (TeamExtreme) C:\Users\Timmy\Downloads\Minecraft.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-05-09 20:09 - 2014-05-09 20:09 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-09 20:09 - 2014-05-09 20:09 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-05-09 20:06 - 2014-05-09 20:05 - 00921512 _____ (Oracle Corporation) C:\Users\Timmy\Downloads\chromeinstall-7u55 (1).exe
2014-05-09 18:18 - 2014-05-09 18:18 - 00000009 _____ () C:\Users\Timmy\Downloads\ad_down.htm
2014-05-09 17:34 - 2013-01-13 22:05 - 00001265 _____ () C:\Users\Timmy\Desktop\chrome - Verknüpfung.lnk
2014-05-09 17:27 - 2014-05-09 17:26 - 00255189 _____ () C:\Users\Timmy\Downloads\Mineshafter-launcher.jar
2014-05-09 17:15 - 2014-05-09 17:15 - 00643272 _____ () C:\Users\Timmy\Downloads\MineCraftSetup.exe
2014-05-09 09:06 - 2014-05-14 13:29 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:04 - 2014-05-14 13:29 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 15:09 - 2014-05-08 15:07 - 04582789 _____ () C:\Users\Timmy\Downloads\m2k-mod_Pserver.zip
2014-05-07 22:30 - 2014-05-07 22:28 - 03757782 _____ () C:\Users\Timmy\Downloads\Item Creator.zip
2014-05-07 22:14 - 2014-05-07 22:09 - 23488196 _____ () C:\Users\Timmy\Downloads\MultiHack (1).rar
2014-05-07 21:58 - 2014-05-07 21:52 - 23488196 _____ () C:\Users\Timmy\Downloads\MultiHack.rar
2014-05-07 21:44 - 2014-05-07 21:44 - 00000000 ___SD () C:\Users\Timmy\AppData\Roaming\Frutas
2014-05-07 21:43 - 2014-05-07 21:43 - 00000000 ___HD () C:\Users\Timmy\Desktop\TempInstall
2014-05-07 21:43 - 2014-05-07 21:42 - 01151644 _____ () C:\Users\Timmy\Downloads\Bot_Metin2.rar
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\Users\Timmy\Documents\My Cheat Tables
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2014-05-07 21:38 - 2014-05-07 21:38 - 00000000 ____D () C:\Program Files\Cheat Engine 6.3
2014-05-07 21:35 - 2014-05-07 21:34 - 08065840 _____ (Cheat Engine ) C:\Users\Timmy\Downloads\CheatEngine63.exe
2014-05-07 16:32 - 2014-05-07 16:31 - 03511609 _____ () C:\Users\Timmy\Downloads\Metin 2 Yang Hack.rar
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\ProgramData\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\Program Files\Elcomsoft Password Recovery
2014-05-07 16:26 - 2014-05-07 16:26 - 00000000 ____D () C:\Program Files\Elcomsoft
2014-05-07 16:24 - 2014-05-07 16:22 - 08435712 _____ () C:\Users\Timmy\Downloads\archpr454_setup_en.msi
2014-05-07 08:39 - 2014-05-07 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-05-06 17:13 - 2014-05-06 17:04 - 00000000 ____D () C:\ProgramData\AppReady Software
2014-05-05 13:54 - 2014-05-05 13:54 - 00000000 ____D () C:\Users\Timmy\AppData\Local\Gameforge4d
2014-05-05 13:53 - 2014-05-05 13:53 - 20155712 _____ (Gameforge ) C:\Users\Timmy\Downloads\Metin2_GameforgeLiveSetup.exe

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe
[2014-05-14 13:29] - [2014-03-04 11:17] - 0304128 ____A (Microsoft Corporation) 998507B046BA314CE8245364C686FA67

C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-19 00:09

==================== End Of Log ============================
         
--- --- ---


und hier die Addition.txt

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version:30-05-2014
Ran by Timmy at 2014-05-31 22:26:16
Running from C:\Users\Timmy\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Microsoft Security Essentials (Disabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Disabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

7 Days to Die - Alpha version 0.9.1 (HKLM\...\{967E55B4-6DDD-4A2F-BFC7-07F1E327971E}_is1) (Version: 0.9.1 - The Fun Pimps LLC)
Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader X (10.1.4) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.4 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)
Advanced Archive Password Recovery (HKLM\...\{01011662-76A8-41E8-B1A8-4F8821570AC5}) (Version: 4.54.48.1338 - Elcomsoft Co. Ltd.)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira (HKLM\...\{70a79d1f-686d-4d5c-962b-07aa1294eae0}) (Version: 1.1.12.20002 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.12.20002 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Belkin 54Mbps Wireless Network Adapter (HKLM\...\{F3759A9F-7AFA-4FB4-8DF1-53F26B979DEE}) (Version: 1.00.01 - Belkin)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Cheat Engine 6.3 (HKLM\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
CLEO 4.3 (HKLM\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Command & Conquer Generals (Version: 0.50.0000 - Electronic Arts) Hidden
Cry of Fear (HKLM\...\Steam App 223710) (Version:  - Team Psykskallar)
DayZ (HKLM\...\Steam App 221100) (Version:  - Bohemia Interactive)
Facebook Messenger 2.1.4651.0 (HKLM\...\{17D26CDD-B87C-412B-92F0-2D5DD4313522}) (Version: 2.1.4651.0 - Facebook)
Facebook Messenger 2.1.4814.0 (HKLM\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook)
Gameforge Live 2.0.3 (HKLM\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.3 - Gameforge)
Google Chrome (HKLM\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
iCloud (HKLM\...\{20C6FF70-690B-4DF7-8F5D-269DD3A7FD23}) (Version: 3.0.2.163 - Apple Inc.)
iTunes (HKLM\...\{C197BC08-3D82-4651-8886-E68C21578A38}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.2.0.193 - LogMeIn, Inc.)
LogMeIn Hamachi (Version: 2.2.0.193 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Metin2 (HKLM\...\Metin2_is1) (Version:  - Gameforge 4D GmbH)
Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
No More Room in Hell (HKLM\...\Steam App 224260) (Version:  - No More Room in Hell Team)
Razer Game Booster (HKLM\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
San Andreas Mod Installer (HKLM\...\San Andreas Mod Installer1.0) (Version:  - )
San Andreas Mod Installer (HKLM\...\San Andreas Mod Installer1.1) (Version: 1.1 - cpmusick)
Sirius MT2 Version 20.13 (HKLM\...\{831D4B74-7A92-4363-869D-524876C480B1}_is1) (Version: 20.13 - Sirius MT2)
Skype™ 6.16 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
TP-LINK TL-WDN3200 Driver (HKLM\...\{C0C6BCBC-0884-4C66-B5EF-0B7668FE2B10}) (Version: 1.3.1 - TP-LINK)
TP-LINK TL-WN821N Driver (HKLM\...\{26B52E5B-1620-4676-9B46-B6C56B8105CE}) (Version: 1.2.1 - TP-LINK)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================

09-05-2014 15:32:16 Removed Bonjour
09-05-2014 15:32:42 Removed Bonjour
09-05-2014 15:34:45 Removed QuickTime
09-05-2014 18:08:33 Installed Java 7 Update 55
11-05-2014 08:16:26 Windows Update
14-05-2014 15:00:18 Windows Update
19-05-2014 04:21:05 DirectX wurde installiert
27-05-2014 16:50:07 Geplanter Prüfpunkt
31-05-2014 16:18:49 Windows Modules Installer
31-05-2014 19:35:37 Windows Update
31-05-2014 20:08:16 zoek.exe restore point

==================== Hosts content: ==========================

2009-07-14 04:04 - 2014-05-31 21:14 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0A334AE4-C5ED-48D8-8A2A-F7C61B869309} - System32\Tasks\{27DC7C2A-217A-4DB3-960B-A7AB2D37AECD} => Firefox.exe hxxp://ui.skype.com/ui/0/6.0.0.126/de/abandoninstall?page=tsProgressBar
Task: {10293B7D-2158-417E-BFC7-712E3A9078B9} - System32\Tasks\{BACF188D-C607-455E-8456-54AAEF610087} => C:\Users\Lukas\Desktop\Games\Left 4 Dead 2\l4d2loader.exe
Task: {1F8B9C92-45B5-49CF-B181-72DED67D399A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004Core => C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-15] (Facebook Inc.)
Task: {2B69F114-6933-4CEF-824E-6B91E9A6D2A3} - System32\Tasks\{55501A5A-588F-4DA2-A4EB-101B0EAB3333} => Firefox.exe hxxp://ui.skype.com/ui/0/6.9.0.106/de/abandoninstall?page=tsProgressBar
Task: {3566B02B-7C8E-47CF-87A2-EDD1D8874A0E} - System32\Tasks\{E7B42520-65B0-4C3D-95A2-7FFD252476B5} => C:\Users\Lukas\Desktop\Games\Left 4 Dead 2\left4dead2.exe
Task: {3D5AD390-2F5E-4317-BFC2-85C3B509CF68} - System32\Tasks\SN.Booster-S-014941198 => c:\programdata\appready software\sn.booster\SN.Booster.exe
Task: {49CC7660-60A6-432E-A727-D77B82396F81} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004UA => C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-15] (Facebook Inc.)
Task: {58B6B4AE-4336-416C-945C-7161BF4FA0A0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-26] (Google Inc.)
Task: {6DDA0401-A004-4B2F-99AA-1C9E38709FF5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-26] (Google Inc.)
Task: {9C649579-95C3-471D-A6F2-649C29AAB8C5} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [2013-09-14] (Apple Inc.)
Task: {AB09EA26-2657-4198-995A-AFB4139CF1A7} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B7AAA789-EC59-4E9E-AB01-226DC5499190} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {C542E156-B5EB-4FEB-B911-8C2B5A061457} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {DC0694BE-3100-44B0-BAA4-448FA69701E5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {F4CFF5D1-F170-4802-817E-201C3408E5FF} - System32\Tasks\{353B5FF4-FD13-45F6-B58C-312F8537F08F} => C:\Users\Lukas\Desktop\Games\Left 4 Dead 2\left4dead2.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004Core.job => C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-24558719-2126205106-1827937244-1004UA.job => C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SN.Booster-S-014941198.job => c:\programdata\appready software\sn.booster\SN.Booster.exe

==================== Loaded Modules (whitelisted) =============

2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-12-10 14:13 - 2012-12-10 14:13 - 00066872 _____ () C:\Windows\system32\PnkBstrA.exe
2014-05-05 10:37 - 2014-05-05 10:37 - 00138320 _____ () C:\Program Files\Avira\My Avira\Avira.OE.NativeCore.dll
2014-05-05 10:37 - 2014-05-05 10:37 - 00065616 _____ () C:\Program Files\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2014-02-28 15:33 - 2014-02-28 15:33 - 00148480 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00864768 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 15:45 - 2014-02-27 15:45 - 00677376 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-02-28 15:41 - 2014-02-28 15:41 - 00092104 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2014-02-28 15:41 - 2014-02-28 15:41 - 00105416 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00025600 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00242688 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-02-28 15:42 - 2014-02-28 15:42 - 00477128 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-02-28 15:42 - 2014-02-28 15:42 - 00483784 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00123904 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^Timmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk => C:\Windows\pss\Facebook Messenger.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Timmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SleepTimer.lnk => C:\Windows\pss\SleepTimer.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Facebook Update => "C:\Users\Timmy\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Firewall => "C:\Program Files\Java\jre7\bin\javaw.exe" -jar "C:\Users\Timmy\AppData\Roaming\Frutas\servidorcito.jar"
MSCONFIG\startupreg: GoogleChromeAutoLaunch_EEB5F8AA0ED462375287D8C91BC9B185 => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: iCloudServices => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: RazerGameBooster => C:\Program Files\Razer\Razer Game Booster\RazerGameBooster.exe -autorun
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "C:\Program Files\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: HL-DT-ST DVDRAM GH41N ATA Device
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/31/2014 10:25:43 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (05/31/2014 10:25:43 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (05/31/2014 10:25:43 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (05/31/2014 10:07:32 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (05/31/2014 10:07:32 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (05/31/2014 10:07:32 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (05/31/2014 09:53:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (05/31/2014 09:53:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (05/31/2014 09:53:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.


System errors:
=============
Error: (05/31/2014 10:19:53 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom

Error: (05/31/2014 10:19:42 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Avira Browser-Schutz" ist vom Dienst "Avira Echtzeit-Scanner" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1053

Error: (05/31/2014 10:19:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/31/2014 10:19:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Avira Echtzeit-Scanner erreicht.

Error: (05/31/2014 10:19:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Avira Planer" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/31/2014 10:19:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Avira Planer erreicht.

Error: (05/31/2014 10:19:38 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (05/31/2014 10:19:38 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (05/31/2014 10:18:52 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WerSvc" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1352

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (05/31/2014 10:15:48 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.


Microsoft Office Sessions:
=========================
Error: (05/31/2014 10:25:43 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (05/31/2014 10:25:43 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (05/31/2014 10:25:43 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (05/31/2014 10:07:32 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (05/31/2014 10:07:32 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (05/31/2014 10:07:32 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (05/31/2014 09:53:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (05/31/2014 09:53:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (05/31/2014 09:53:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000


==================== Memory info =========================== 

Percentage of memory in use: 31%
Total physical RAM: 3071.23 MB
Available physical RAM: 2113.48 MB
Total Pagefile: 6140.76 MB
Available Pagefile: 5145.47 MB
Total Virtual: 2047.88 MB
Available Virtual: 1933.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:683.44 GB) (Free:560.94 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:0.2 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: DB52735D)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Not Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=683 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
mfg Hippel02!

Alt 01.06.2014, 10:45   #13
M-K-D-B
/// TB-Ausbilder
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Mehrere Anti-Virus-Programme

Code:
ATTFilter
Microsoft Security Essentials
Avira
         
Mir ist aufgefallen, dass Du mehr als ein Anti-Virus-Programm mit Hintergrundwächter laufen hast. Das ist gefährlich, da sich die Programme in die Quere kommen können und dadurch Viren erst recht auf dem Rechner landen können. Ausserdem bremst es auch das System aus. Entscheide Dich für eine Variante und deinstalliere die andere über Systemsteuerung => Software.
Berichte, für welches Anti-Virus-Programm Du Dich entschieden hast.

Zitat:
Speedy hat letztens eine einleuchtende Erklärung dazu geliefert: "Man stelle sich einen Torwart vor, der das Tor hüten soll (Anti-Virus-Programm), der Ball kommt angeflogen (Virus), der Torhüter konzentriert sich auf den Ball und fängt ihn. Jetzt stelle Dir zwei Torhüter im Tor vor ...., die knallen aneinander und der Ball kann ungehindert ins Tor wandern."






Wir entfernen die letzten Reste und kontrollieren nochmal alles. ESET kann länger (> 3 h) dauern.
Im Anschluss entfernen wir alle verwendeten Tools und ich gebe dir noch ein paar Tipps mit auf den Weg.




Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument


Code:
ATTFilter
start
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM - DefaultScope value is missing.
S1 auvzfanh; \??\C:\Windows\system32\drivers\auvzfanh.sys [X]
S1 avqsyljw; \??\C:\Windows\system32\drivers\avqsyljw.sys [X]
S1 bcmezbwb; \??\C:\Windows\system32\drivers\bcmezbwb.sys [X]
S1 grdueolg; \??\C:\Windows\system32\drivers\grdueolg.sys [X]
S1 iyefgqnd; \??\C:\Windows\system32\drivers\iyefgqnd.sys [X]
S1 mmtotfij; \??\C:\Windows\system32\drivers\mmtotfij.sys [X]
S1 ohfaloyf; \??\C:\Windows\system32\drivers\ohfaloyf.sys [X]
S1 osedppzt; \??\C:\Windows\system32\drivers\osedppzt.sys [X]
S1 srmiacxn; \??\C:\Windows\system32\drivers\srmiacxn.sys [X]
S1 vjugzali; \??\C:\Windows\system32\drivers\vjugzali.sys [X]
C:\Users\Timmy\AppData\Local\23690
Task: {3D5AD390-2F5E-4317-BFC2-85C3B509CF68} - System32\Tasks\SN.Booster-S-014941198 => c:\programdata\appready software\sn.booster\SN.Booster.exe
Task: C:\Windows\Tasks\SN.Booster-S-014941198.job => c:\programdata\appready software\sn.booster\SN.Booster.exe
c:\programdata\appready software
Reboot:
end
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.






Schritt 2
Lade dir die passende Version von SystemLook vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop:
SystemLook (32 bit) | SystemLook (64 bit)
  • Doppelklicke auf die SystemLook.exe, um das Tool zu starten.
  • Kopiere den Inhalt der folgenden Codebox in das Textfeld des Tools:

    Code:
    ATTFilter
    :folderfind
    appready software
    SN.Booster
    
    :regfind
    appready software
    SN.Booster
    HAippy2Savea
             
  • Klicke nun auf den Button Look, um den Scan zu starten.
  • Der Suchlauf kann einige Zeit dauern.
  • Wenn der Suchlauf beendet ist, wird sich dein Editor mit den Ergebnissen öffnen, poste diese in deinen Thread.
  • Die Ergebnisse werden auch auf dem Desktop als SystemLook.txt gespeichert.







Schritt 3

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset







Schritt 4
Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei von FRST,
  • die Logdatei von SystemLook,
  • die Logdatei von ESET,
  • die Logdatei von SecurityCheck.
__________________
Grüße aus Bayern
M-K-D-B

______________________________________

Das Trojaner-Board unterstützen

Alt 01.06.2014, 15:21   #14
Hippel02
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



Liebe Trojaner-Board Community!

Habe mich für Microsoft-Security Essentials entschieden, jedoch wenn ich Avira deinstallieren will, dann kommt bei mir die Fehlermeldung: Setup konnte das angegebene Feature nicht finden. Fehlercode: 7

1. Hier die Logfile von Fixlog.txt:

Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:01-06-2014
Ran by Timmy at 2014-06-01 14:18:55 Run:1
Running from C:\Users\Timmy\Downloads
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
start
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM - DefaultScope value is missing.
S1 auvzfanh; \??\C:\Windows\system32\drivers\auvzfanh.sys [X]
S1 avqsyljw; \??\C:\Windows\system32\drivers\avqsyljw.sys [X]
S1 bcmezbwb; \??\C:\Windows\system32\drivers\bcmezbwb.sys [X]
S1 grdueolg; \??\C:\Windows\system32\drivers\grdueolg.sys [X]
S1 iyefgqnd; \??\C:\Windows\system32\drivers\iyefgqnd.sys [X]
S1 mmtotfij; \??\C:\Windows\system32\drivers\mmtotfij.sys [X]
S1 ohfaloyf; \??\C:\Windows\system32\drivers\ohfaloyf.sys [X]
S1 osedppzt; \??\C:\Windows\system32\drivers\osedppzt.sys [X]
S1 srmiacxn; \??\C:\Windows\system32\drivers\srmiacxn.sys [X]
S1 vjugzali; \??\C:\Windows\system32\drivers\vjugzali.sys [X]
C:\Users\Timmy\AppData\Local\23690
Task: {3D5AD390-2F5E-4317-BFC2-85C3B509CF68} - System32\Tasks\SN.Booster-S-014941198 => c:\programdata\appready software\sn.booster\SN.Booster.exe
Task: C:\Windows\Tasks\SN.Booster-S-014941198.job => c:\programdata\appready software\sn.booster\SN.Booster.exe
c:\programdata\appready software
Reboot:
end
         
*****************

HKLM\Software\Microsoft\Internet Explorer\URLSearchHooks\\ => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
auvzfanh => Service deleted successfully.
avqsyljw => Service deleted successfully.
bcmezbwb => Service deleted successfully.
grdueolg => Service deleted successfully.
iyefgqnd => Service deleted successfully.
mmtotfij => Service deleted successfully.
ohfaloyf => Service deleted successfully.
osedppzt => Service deleted successfully.
srmiacxn => Service deleted successfully.
vjugzali => Service deleted successfully.
C:\Users\Timmy\AppData\Local\23690 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3D5AD390-2F5E-4317-BFC2-85C3B509CF68} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D5AD390-2F5E-4317-BFC2-85C3B509CF68} => Key deleted successfully.
C:\Windows\System32\Tasks\SN.Booster-S-014941198 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SN.Booster-S-014941198 => Key deleted successfully.
C:\Windows\Tasks\SN.Booster-S-014941198.job => Moved successfully.
c:\programdata\appready software => Moved successfully.


The system needed a reboot. 

==== End of Fixlog ====
         
mfg Hippel02

Liebe Trojaner-Board Community!

Hier die SystemLook.txt:

Code:
ATTFilter
SystemLook 30.07.11 by jpshortstuff
Log created at 14:26 on 01/06/2014 by Timmy
Administrator - Elevation successful

========== folderfind ==========

Searching for "appready software"
C:\FRST\Quarantine\C\programdata\appready software	d------	[15:04 06/05/2014]

Searching for "SN.Booster"
C:\FRST\Quarantine\C\programdata\appready software\SN.Booster	d------	[15:04 06/05/2014]

========== regfind ==========

Searching for "appready software"
No data found.

Searching for "SN.Booster"
No data found.

Searching for "HAippy2Savea"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\HapPy2Savea.HapPy2Savea]
@="HAippy2Savea"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\HapPy2Savea.HapPy2Savea.2.5]
@="HAippy2Savea"

-= EOF =-
         
mfg Hippel02

Hallo Liebes Trojaner-Team!

zu Schritt 3: Fehlercode 2002 beim download.

Hier aber direkt danach das erfolgreiche Log von Schritt 4:

Security Check-Log:

Code:
ATTFilter
 Results of screen317's Security Check version 0.99.83  
 Windows 7 Service Pack 1 x86 (UAC is disabled!)  
 Internet Explorer 10 Out of date! 
``````````````Antivirus/Firewall Check:`````````````` 
Avira Desktop                   
Microsoft Security Essentials   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 CCleaner     
 JavaFX 2.1.1    
 Java 7 Update 55  
 Adobe Flash Player 	13.0.0.214  
 Adobe Reader 10.1.4 Adobe Reader out of Date!  
 Mozilla Firefox (29.0.1) 
 Google Chrome 34.0.1847.116  
 Google Chrome 34.0.1847.131  
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe 
 Microsoft Security Essentials msseces.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
         
mfg Hippel02

Alt 02.06.2014, 14:08   #15
M-K-D-B
/// TB-Ausbilder
 
Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Standard

Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering



dann eben HitmanPro statt ESET:



Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.
  • Starte die HitmanPro.exe
  • Klicke auf
  • Entferne den Haken bei
  • Klicke auf
    und
  • Akzeptiere die Lizenzbedingungen und klicke auf
  • Klicke auf

    und auf
  • Wenn der Scan beendet wurde, nichts löschen lassen etc. sondern wähle unten links auf der Button-Leiste
    und speichere die Logdatei auf Deinem Desktop.
  • Schließe HitmanPro und poste mir das Log.

 

__________________
Grüße aus Bayern
M-K-D-B

______________________________________

Das Trojaner-Board unterstützen

Antwort

Themen zu Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering
downloadgeschwindigkeit, pup.optional.4shared, pup.optional.adpeak.a, pup.optional.amonetize, pup.optional.amonetize.a, pup.optional.appready, pup.optional.bechiro, pup.optional.coupondownloader.a, pup.optional.domalq, pup.optional.feven.a, pup.optional.installerex, pup.optional.multiplug.a, pup.optional.outbrowse, pup.optional.searchcertifiedtb.a, pup.optional.snboost.a, pup.optional.snbooster.a, pup.optional.softonic, pup.optional.softonic.a, pup.optional.somoto, pup.optional.somoto.a, pup.optional.superfish.a, pup.optional.tarma.a, spyware.msil, trojan.ardamax, trojan.keylogger.msil, trojan.sprotector



Ähnliche Themen: Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering


  1. Nach Download läuft alles sehr sehr langsam, Internet funktioniert nicht, Programme lassen sich nicht deinstallieren
    Plagegeister aller Art und deren Bekämpfung - 02.09.2015 (3)
  2. AntiViren Programme lassen sich nicht starten/installieren. Und beim MicrosoftSecurityCenter kann ich den EchtzeitSchutz nicht aktivieren!
    Plagegeister aller Art und deren Bekämpfung - 24.06.2015 (41)
  3. Nach Neuinstallation von Win 7 Downloadgeschwindigkeit sehr gering
    Plagegeister aller Art und deren Bekämpfung - 27.05.2015 (3)
  4. Kurz nach Update auf Windows 8.1 Laptop sehr langsam und scheinbar Arbeitsspeicher zu gering
    Plagegeister aller Art und deren Bekämpfung - 27.11.2014 (17)
  5. Laptop läd Programme sehr langsam, Programme-Fehlermeldung (keine Rückmeldung) & im Chrome Seiten laden nicht
    Plagegeister aller Art und deren Bekämpfung - 06.10.2014 (5)
  6. Browser startet temporär nicht, Dateien lassen sich nur sehr langsam öffnen....
    Plagegeister aller Art und deren Bekämpfung - 30.04.2013 (9)
  7. Kein Zugriff mehr auf jegliche Programme
    Plagegeister aller Art und deren Bekämpfung - 21.03.2013 (46)
  8. Downloadgeschwindigkeit zu gering - Upload perfekt
    Log-Analyse und Auswertung - 07.05.2012 (22)
  9. Antiviren Programme nicht aktivierbar, kein Suchlauf startbar
    Plagegeister aller Art und deren Bekämpfung - 04.10.2011 (13)
  10. Packed.Win32.Tdss!IK: browser stürzt ab, antiviren programme blockiert, ...
    Plagegeister aller Art und deren Bekämpfung - 09.02.2010 (1)
  11. Google verlinkt auf andere Seiten / Antiviren Programme lassen sich nicht öffnen
    Log-Analyse und Auswertung - 05.01.2010 (1)
  12. Browser startet verdächtige Websites, Schutz-Programme können nicht ausgeführt werden
    Plagegeister aller Art und deren Bekämpfung - 16.11.2009 (6)
  13. Antiviren Seiten lassen sich nicht öffnen und Programme nicht updaten
    Plagegeister aller Art und deren Bekämpfung - 10.09.2009 (18)
  14. Rechner startet sehr langsam und Programme brauchen ewig zum öffnen
    Log-Analyse und Auswertung - 09.03.2009 (1)
  15. PC startet selbstständig neu ohne jegliche Voranmeldung
    Log-Analyse und Auswertung - 07.01.2009 (0)
  16. Trotz sämtlicher Antiviren-Programme läuft der PC sehr langsam und friert ein.
    Log-Analyse und Auswertung - 09.04.2008 (3)
  17. Antiviren Programme nicht installierbar
    Plagegeister aller Art und deren Bekämpfung - 31.10.2007 (1)

Zum Thema Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering - Guten Tag, liebe Trojaner-Board Community! Zuerst ist mir aufgefallen, das wenn ich mir bei Steam ein Spiel heruntergeladen habe, das die Download-Rate am Anfang wie gewohnt so um die 800kbs - Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering...
Archiv
Du betrachtest: Browser Startet nicht, sowie jegliche Antiviren Programme, Downloadgeschwindigkeit sehr gering auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.