Trojaner-Board - Firefox öffnet von allein Tabs mit Werbung

AdwCleaner Logfile:

Code:

# AdwCleaner v3.002 - Bericht erstellt am 06/09/2013 um 18:14:30

# Updated 01/09/2013 von Xplode

# Betriebssystem : Windows 8  (64 bits)

# Benutzername : Tim - TIM-PC

# Gestartet von : C:\Users\Tim\Downloads\adwcleaner.exe

# Option : Löschen
 

***** [ Dienste ] *****
 

[#] Dienst Gelöscht : SystemStoreService
 

***** [ Dateien / Ordner ] *****
 

Ordner Gelöscht : C:\ProgramData\Babylon

Ordner Gelöscht : C:\ProgramData\DealPlyLive

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Covus Freemium

Ordner Gelöscht : C:\Program Files (x86)\Conduit

Ordner Gelöscht : C:\Program Files (x86)\Covus Freemium

Ordner Gelöscht : C:\Program Files (x86)\DealPly

Ordner Gelöscht : C:\Program Files (x86)\DealPlyLive

Ordner Gelöscht : C:\Program Files (x86)\SoftwareUpdater

Ordner Gelöscht : C:\Program Files (x86)\WebConnect

Ordner Gelöscht : C:\Program Files (x86)\DVDvideoSoft_2.0

Ordner Gelöscht : C:\Users\Tim\AppData\Local\Conduit

Ordner Gelöscht : C:\Users\Tim\AppData\Local\DealPlyLive

Ordner Gelöscht : C:\Users\Tim\AppData\Local\DownloadGuide

Ordner Gelöscht : C:\Users\Tim\AppData\Local\Freemium

Ordner Gelöscht : C:\Users\Tim\AppData\Local\Temp\eIntaller

Ordner Gelöscht : C:\Users\Tim\AppData\Local\Temp\WebConnect

Ordner Gelöscht : C:\Users\Tim\AppData\LocalLow\Conduit

Ordner Gelöscht : C:\Users\Tim\AppData\LocalLow\delta

Ordner Gelöscht : C:\Users\Tim\AppData\LocalLow\PriceGong

Ordner Gelöscht : C:\Users\Tim\AppData\LocalLow\DVDvideoSoft_2.0

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\Babylon

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\Common\LuaRT

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\DataMgr

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\DealPly

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\DSite

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\file scout

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\Intermediate

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\OpenCandy

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\SCheck

Ordner Gelöscht : C:\Users\Tim\AppData\Roaming\SSync

Datei Gelöscht : C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\Extensions\om@offermosquito.com.xpi

Datei Gelöscht : C:\Users\Public\Desktop\eBay.lnk

Datei Gelöscht : C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\\invalidprefs.js

Datei Gelöscht : C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\foxydeal.sqlite

Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml

Datei Gelöscht : C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\searchplugins\search.xml

Datei Gelöscht : C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\user.js

Datei Gelöscht : C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage

Datei Gelöscht : C:\windows\Tasks\Dealply.job

Datei Gelöscht : C:\windows\System32\Tasks\Dealply

Datei Gelöscht : C:\windows\System32\Tasks\DSite

Datei Gelöscht : C:\windows\System32\Tasks\Software Updater
 

***** [ Verknüpfungen ] *****
 
 

***** [ Registrierungsdatenbank ] *****
 

Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [DataMgr]

Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Intermediate]

Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [scheck]

Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [ssync]

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\speedupmypc

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dealplylive.exe

Schlüssel Gelöscht : HKCU\Software\5e0db8be139eb48

Schlüssel Gelöscht : HKLM\SOFTWARE\5e0db8be139eb48

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT3279453

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{04A8DD1A-4754-48FE-A703-99846646EF04}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{17667902-A1A2-4DC4-8C42-CB1B60BF2202}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04A8DD1A-4754-48FE-A703-99846646EF04}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{04A8DD1A-4754-48FE-A703-99846646EF04}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{17667902-A1A2-4DC4-8C42-CB1B60BF2202}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{04A8DD1A-4754-48FE-A703-99846646EF04}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{17667902-A1A2-4DC4-8C42-CB1B60BF2202}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B4978A77-DE7A-4B75-8428-CA6E2936BA7F}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E88F186E-9875-42FF-B174-735463934A25}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{04A8DD1A-4754-48FE-A703-99846646EF04}]

Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{04A8DD1A-4754-48FE-A703-99846646EF04}]

Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{04A8DD1A-4754-48FE-A703-99846646EF04}]

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{04A8DD1A-4754-48FE-A703-99846646EF04}]

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gelöscht : HKCU\Software\BabSolution

Schlüssel Gelöscht : HKCU\Software\Conduit

Schlüssel Gelöscht : HKCU\Software\DataMngr

[#] Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar

Schlüssel Gelöscht : HKCU\Software\dealplylive

Schlüssel Gelöscht : HKCU\Software\delta LTD

Schlüssel Gelöscht : HKCU\Software\Delta

Schlüssel Gelöscht : HKCU\Software\dsiteproducts

Schlüssel Gelöscht : HKCU\Software\filescout

Schlüssel Gelöscht : HKCU\Software\FoxyDeal

Schlüssel Gelöscht : HKCU\Software\httogroup

Schlüssel Gelöscht : HKCU\Software\Iminent

Schlüssel Gelöscht : HKCU\Software\InstallCore

Schlüssel Gelöscht : HKCU\Software\piccshare

Schlüssel Gelöscht : HKCU\Software\Softonic

Schlüssel Gelöscht : HKCU\Software\DVDvideoSoft_2.0

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ConduitSearchScopes

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Lyrics_Monkey

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\DVDvideoSoft_2.0

Schlüssel Gelöscht : HKLM\Software\Babylon

Schlüssel Gelöscht : HKLM\Software\BabylonToolbar

Schlüssel Gelöscht : HKLM\Software\Conduit

Schlüssel Gelöscht : HKLM\Software\Covus Freemium GmbH

Schlüssel Gelöscht : HKLM\Software\DataMngr

Schlüssel Gelöscht : HKLM\Software\dealplylive

Schlüssel Gelöscht : HKLM\Software\Delta

Schlüssel Gelöscht : HKLM\Software\Iminent

Schlüssel Gelöscht : HKLM\Software\qvo6Software

Schlüssel Gelöscht : HKLM\Software\Uniblue\DriverScanner

Schlüssel Gelöscht : HKLM\Software\DVDvideoSoft_2.0

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15B291FD-AA72-4D0B-BD6E-604F24C5D14C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{421d35e3-d4bd-47a6-b6aa-d21ade07cf32}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDvideoSoft_2.0 Toolbar
 

***** [ Browser ] *****
 

-\\ Internet Explorer v10.0.9200.16660
 

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
 

-\\ Mozilla Firefox v23.0.1 (de)
 

[ Datei : C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\prefs.js ]
 

Zeile gelöscht : user_pref("extensions.delta.admin", false);

Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");

Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");

Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");

Zeile gelöscht : user_pref("extensions.delta.dfltLng", "de");

Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);

Zeile gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);

Zeile gelöscht : user_pref("extensions.delta.id", "565be57900000000000024ec99e1676f");

Zeile gelöscht : user_pref("extensions.delta.instlDay", "15953");

Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");

Zeile gelöscht : user_pref("extensions.delta.newTab", false);

Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");

Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");

Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");

Zeile gelöscht : user_pref("extensions.delta.smplGrp", "none");

Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");

Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");

Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.24.6");

Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.24.619:34:14");

Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.24.6");

Zeile gelöscht : user_pref("extensions.delta_i.babExt", "");

Zeile gelöscht : user_pref("extensions.delta_i.babTrack", "affID=119357&tsp=4996");

Zeile gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
 

-\\ Google Chrome v29.0.1547.66
 

[ Datei : C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 

Gelöscht : search_url

Gelöscht : keyword
 

*************************
 

AdwCleaner[R0].txt - [17747 octets] - [06/09/2013 18:10:10]

AdwCleaner[S0].txt - [15758 octets] - [06/09/2013 18:14:30]
 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15819 octets] ##########

--- --- ---

[/CODE]

Es ist jetzt weg. Weiß nicht warum aber es öffnen sich nun keine Tabs mehr unkontrolliert.

FRST

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-09-2013

Ran by Tim (administrator) on TIM-PC on 06-09-2013 19:05:35

Running from C:\Users\Tim\Downloads

Windows 8 (X64) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(AMD) C:\windows\system32\atiesrxx.exe

(AMD) C:\windows\system32\atieclxx.exe

(Microsoft Corporation) C:\windows\system32\WLANExt.exe

() C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe

(Adobe Systems Incorporated) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

(McAfee, Inc.) C:\Windows\system32\mfevtps.exe

(Microsoft Corporation) C:\windows\system32\dashost.exe

(TOSHIBA Corporation) C:\Windows\system32\TODDSrv.exe

() C:\Program Files (x86)\Tor\tor.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe

(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe

(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE

(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe

(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe

(McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe

(Toshiba) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe

(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe

(Microsoft Corporation) C:\windows\SysWOW64\schtasks.exe

(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe

(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe

(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe

(Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe

(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe

(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe

(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe

(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [] -  [x]

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor)

HKLM\...\Run: [SRS Premium Sound HD] - C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip [223245 2012-07-27] ()

HKLM\...\Run: [TCrdMain] - C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2608040 2012-08-14] (TOSHIBA Corporation)

HKLM\...\Run: [TecoResident] - C:\Program Files\TOSHIBA\Teco\TecoResident.exe [169896 2012-08-14] (TOSHIBA Corporation)

HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA Corporation)

HKLM\...\Run: [TODDMain] - C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [213136 2012-08-05] ()

HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1

HKLM\...\Policies\Explorer: [NoActiveDesktop] 1

HKLM\...\Policies\Explorer: [NoControlPanel] 0

HKCU\...\Run: [Facebook Update] - C:\Users\Tim\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-04-20] (Facebook Inc.)

HKCU\...\Run: [Snoozer] - C:\Users\Tim\AppData\Roaming\Snz\Snz.exe [1137764 2013-08-28] ()

HKCU\...\Run: [OMESupervisor] - C:\Users\Tim\AppData\Local\omesuperv.exe [2218359 2013-08-28] ()

MountPoints2: {320cad0b-a620-11e2-be70-806e6f6e6963} - "D:\RunGame.exe" 

HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-08-02] (Intel Corporation)

HKLM-x32\...\Run: [ToshibaDynamicIconUtility] - C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe [1498624 2012-08-09] (Toshiba)

HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [1532992 2013-03-13] (McAfee, Inc.)

HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-08] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [TPUReg] - C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe [6884352 2012-08-23] (Pegatron Corporation)

HKLM-x32\...\Run: [ControlCenter3] - C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)

HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2629632 2012-09-25] (Brother Industries, Ltd.)

HKLM-x32\...\Run: [Wondershare Helper Compact.exe] - C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1679360 2012-02-28] (Wondershare)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
 

==================== Internet (Whitelisted) ====================
 

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=hp&from=cor&uid=HitachiXHTS545050A7E380_120913TEJ51139J3DD5PX&ts=1378403152

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=hp&from=cor&uid=HitachiXHTS545050A7E380_120913TEJ51139J3DD5PX&ts=1378403152

SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 

SearchScopes: HKLM - {716C3BE3-3B8C-4E62-9638-B24804F6E2A9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS

SearchScopes: HKLM-x32 - {716C3BE3-3B8C-4E62-9638-B24804F6E2A9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS

SearchScopes: HKCU - {716C3BE3-3B8C-4E62-9638-B24804F6E2A9} URL = 

SearchScopes: HKCU - {B94B692C-B9E7-42FC-BA92-2ED8E0E8C0CA} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3279453&CUI=UN34701231664964264&UM=2

BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)

Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
 

FireFox:

========

FF ProfilePath: C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default

FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()

FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()

FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()

FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)

FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()

FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Tim\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Lyrics-Monkey - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\Extensions\126

FF Extension: WebConnect - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\Extensions\firefox@webconnect.co

FF Extension: WebToSave - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\Extensions\{f80bc79c-ab5e-418a-a0be-3d9e66b4e976}

FF Extension: ff_v0.6 - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\qg74owrw.default\Extensions\ff_v0.6@piccshare.com.xpi

FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] C:\Program Files\McAfee\MSK

FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK
 

Chrome: 

=======

CHR DefaultSearchURL: (qvo6) - hxxp://www.google.com

CHR DefaultSuggestURL: (qvo6) -       "suggest_url": ""

CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll ()

CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer

CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()

CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll ()

CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)

CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)

CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)

CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Tim\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()

CHR Plugin: (McAfee SecurityCenter) - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()

CHR Extension: (Google Drive) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0

CHR Extension: (YouTube) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0

CHR Extension: (Google Search) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0

CHR Extension: (OfferMosquito) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.6.1_0

CHR Extension: (Chrome In-App Payments service) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0

CHR Extension: (Lyrics-Monkey) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofnnlhbgdcabppjmlijllkhekcglbjlg\1.130_0

CHR Extension: (Gmail) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1

CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
 

==================== Services (Whitelisted) =================
 

R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [156672 2011-10-14] ()

S3 McAWFwk; c:\PROGRA~1\mcafee\msc\mcawfwk.exe [332080 2012-01-26] (McAfee, Inc.)

S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)

R2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

R2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

R2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [384048 2013-02-25] (McAfee, Inc.)

S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

R2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [241456 2013-02-19] (McAfee, Inc.)

R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218760 2013-02-19] (McAfee, Inc.)

R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-02-19] (McAfee, Inc.)

R2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [114656 2012-08-14] (Toshiba Europe GmbH)

R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-05] ()

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
 

==================== Drivers (Whitelisted) ====================
 

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-02-19] (McAfee, Inc.)

S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)

R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179280 2013-02-19] (McAfee, Inc.)

R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [309840 2013-02-19] (McAfee, Inc.)

S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69168 2013-02-19] (McAfee, Inc.)

R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [515968 2013-02-19] (McAfee, Inc.)

R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [771536 2013-02-19] (McAfee, Inc.)

S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106552 2013-02-19] (McAfee, Inc.)

R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [340216 2013-02-19] (McAfee, Inc.)

R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [14344 2009-09-12] (PEGATRON)

S3 RTL8192Ce; C:\Windows\system32\DRIVERS\rtwlane.sys [1496720 2012-08-13] (Realtek Semiconductor Corporation                           )

R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1496720 2012-08-13] (Realtek Semiconductor Corporation                           )

R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [28632 2012-07-31] (Windows (R) Win 7 DDK provider)

S3 WsAudioDevice_383; C:\Windows\system32\drivers\VirtualAudio.sys [31080 2013-05-30] (Wondershare)

U3 mfeavfk01; No ImagePath
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-09-06 18:10 - 2013-09-06 18:16 - 00000000 ____D C:\AdwCleaner

2013-09-06 18:08 - 2013-09-06 18:09 - 01037222 _____ C:\Users\Tim\Downloads\adwcleaner.exe

2013-09-06 18:05 - 2013-09-06 18:05 - 00003348 _____ C:\windows\System32\Tasks\{881A36D3-C08B-4848-A3DE-47F004A24CD9}

2013-09-05 20:53 - 2013-09-05 20:53 - 00002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2013-09-05 20:52 - 2013-09-05 20:52 - 00784880 _____ (Google Inc.) C:\Users\Tim\Downloads\ChromeSetup(1).exe

2013-09-05 20:39 - 2013-09-05 20:39 - 22243088 _____ (Mozilla) C:\Users\Tim\Downloads\Firefox Setup 23.0.1.exe

2013-09-05 20:03 - 2013-09-05 20:07 - 00039654 _____ C:\Users\Tim\Downloads\Addition.txt

2013-09-05 19:57 - 2013-09-05 19:57 - 00000000 ____D C:\FRST

2013-09-05 19:48 - 2013-09-05 19:48 - 00000000 ____D C:\Program Files (x86)\Tor

2013-09-02 20:11 - 2013-09-06 18:18 - 00001114 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-09-02 20:11 - 2013-09-06 18:16 - 00001118 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-09-02 20:11 - 2013-09-02 20:12 - 00000000 ____D C:\Program Files (x86)\Google

2013-09-02 20:11 - 2013-09-02 20:11 - 00784872 _____ (Google Inc.) C:\Users\Tim\Downloads\ChromeSetup.exe

2013-09-02 20:11 - 2013-09-02 20:11 - 00004090 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA

2013-09-02 20:11 - 2013-09-02 20:11 - 00003854 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore

2013-08-31 22:41 - 2013-08-31 22:44 - 111600168 _____ C:\Users\Tim\Downloads\Pawesome Items Pack V3.zip

2013-08-29 17:21 - 2013-08-29 17:21 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Snz

2013-08-28 20:47 - 2013-08-28 20:47 - 02218359 _____ C:\Users\Tim\AppData\Local\omesuperv.exe

2013-08-24 21:55 - 2013-08-24 21:55 - 00000641 _____ C:\Users\Public\Desktop\FeralHeart.lnk

2013-08-24 21:54 - 2013-09-05 21:49 - 00000000 ____D C:\FeralHeart

2013-08-24 21:52 - 2013-08-24 21:54 - 60391091 _____ (Kovuworks                                                   ) C:\Users\Tim\Downloads\FHSetup.exe

2013-08-24 19:42 - 2013-09-04 20:27 - 00000069 _____ C:\Users\Tim\AppData\Roaming\WB.CFG

2013-08-24 19:42 - 2013-09-04 20:27 - 00000005 _____ C:\Users\Tim\AppData\Roaming\WBPU-TTL.DAT

2013-08-23 19:39 - 2013-09-02 20:11 - 00000000 ____D C:\Users\Tim\AppData\Local\Google

2013-08-14 22:07 - 2013-08-14 22:13 - 00000000 ____D C:\windows\system32\MRT

2013-08-14 22:03 - 2013-07-02 02:44 - 00036288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdBoot.sys

2013-08-14 22:03 - 2013-07-02 00:08 - 00247216 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdFilter.sys

2013-08-14 21:43 - 2013-09-05 20:34 - 00004318 _____ C:\windows\System32\Tasks\Freemium1ClickMaint

2013-08-14 21:41 - 2013-08-14 21:41 - 00002563 _____ C:\Users\Public\Desktop\Free System Utilities.lnk

2013-08-14 21:41 - 2013-08-14 21:41 - 00000000 ____D C:\ProgramData\FreeSystemUtilities

2013-08-14 21:40 - 2013-08-14 21:40 - 00000000 ____D C:\ProgramData\Package Cache

2013-08-14 21:38 - 2013-08-14 21:38 - 00000206 _____ C:\Users\Tim\Desktop\Amazon.url

2013-08-14 21:21 - 2013-08-14 21:21 - 00007597 _____ C:\Users\Tim\AppData\Local\Resmon.ResmonCfg

2013-08-14 20:25 - 2013-07-09 08:07 - 02233168 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys

2013-08-14 20:25 - 2013-05-24 01:02 - 01314816 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll

2013-08-14 20:25 - 2013-05-24 00:25 - 00694272 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll

2013-08-14 20:24 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll

2013-08-14 20:24 - 2013-07-26 07:13 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll

2013-08-14 20:24 - 2013-07-26 07:13 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll

2013-08-14 20:24 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe

2013-08-14 20:24 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll

2013-08-14 20:24 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll

2013-08-14 20:24 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll

2013-08-14 20:24 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb

2013-08-14 20:24 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll

2013-08-14 20:24 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll

2013-08-14 20:24 - 2013-07-26 05:13 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll

2013-08-14 20:24 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll

2013-08-14 20:24 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll

2013-08-14 20:24 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll

2013-08-14 20:24 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll

2013-08-14 20:24 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll

2013-08-14 20:24 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll

2013-08-14 20:24 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb

2013-08-14 20:24 - 2013-07-26 02:54 - 00534528 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll

2013-08-14 20:23 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll

2013-08-14 20:23 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll

2013-08-14 20:23 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll

2013-08-14 20:23 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll

2013-08-14 20:23 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll

2013-08-14 20:23 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll

2013-08-14 20:21 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll

2013-08-14 20:21 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll

2013-08-14 20:21 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll

2013-08-14 20:21 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll

2013-08-14 20:21 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll

2013-08-14 20:21 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll

2013-08-14 20:19 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll

2013-08-14 20:19 - 2013-07-13 08:16 - 01889280 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll

2013-08-14 20:19 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll

2013-08-14 20:19 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\apprepapi.dll

2013-08-14 20:19 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\apprepsync.dll

2013-08-14 20:19 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll

2013-08-14 20:19 - 2013-07-13 06:23 - 01568256 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll

2013-08-14 20:19 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\apprepapi.dll

2013-08-14 20:19 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\apprepsync.dll
 

==================== One Month Modified Files and Folders =======
 

2013-09-06 19:04 - 2013-09-06 19:04 - 01948360 _____ (Farbar) C:\Users\Tim\Downloads\FRST64.exe

2013-09-06 19:00 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\sru

2013-09-06 18:56 - 2013-04-20 21:51 - 00000934 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2359482389-669878268-1928233592-1001UA.job

2013-09-06 18:31 - 2013-04-20 20:25 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job

2013-09-06 18:24 - 2012-09-11 19:50 - 00001839 _____ C:\Users\Public\Desktop\McAfee Internet Security.lnk

2013-09-06 18:23 - 2013-04-15 16:23 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2359482389-669878268-1928233592-1001

2013-09-06 18:18 - 2013-09-02 20:11 - 00001114 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-09-06 18:17 - 2012-09-12 04:19 - 00028230 _____ C:\windows\PFRO.log

2013-09-06 18:17 - 2012-07-26 09:22 - 00000006 ____H C:\windows\Tasks\SA.DAT

2013-09-06 18:16 - 2013-09-06 18:10 - 00000000 ____D C:\AdwCleaner

2013-09-06 18:16 - 2013-09-02 20:11 - 00001118 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-09-06 18:16 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\BBI

2013-09-06 18:15 - 2013-07-23 20:16 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Common

2013-09-06 18:10 - 2013-04-15 16:09 - 01116273 _____ C:\windows\WindowsUpdate.log

2013-09-06 18:09 - 2013-09-06 18:08 - 01037222 _____ C:\Users\Tim\Downloads\adwcleaner.exe

2013-09-06 18:05 - 2013-09-06 18:05 - 00003348 _____ C:\windows\System32\Tasks\{881A36D3-C08B-4848-A3DE-47F004A24CD9}

2013-09-06 07:35 - 2013-04-20 20:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-09-05 21:56 - 2013-04-20 21:51 - 00000912 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2359482389-669878268-1928233592-1001Core.job

2013-09-05 21:49 - 2013-08-24 21:54 - 00000000 ____D C:\FeralHeart

2013-09-05 20:53 - 2013-09-05 20:53 - 00002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2013-09-05 20:52 - 2013-09-05 20:52 - 00784880 _____ (Google Inc.) C:\Users\Tim\Downloads\ChromeSetup(1).exe

2013-09-05 20:41 - 2013-04-20 20:06 - 00001158 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk

2013-09-05 20:40 - 2013-04-20 20:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-09-05 20:39 - 2013-09-05 20:39 - 22243088 _____ (Mozilla) C:\Users\Tim\Downloads\Firefox Setup 23.0.1.exe

2013-09-05 20:34 - 2013-08-14 21:43 - 00004318 _____ C:\windows\System32\Tasks\Freemium1ClickMaint

2013-09-05 20:07 - 2013-09-05 20:03 - 00039654 _____ C:\Users\Tim\Downloads\Addition.txt

2013-09-05 19:57 - 2013-09-05 19:57 - 00000000 ____D C:\FRST

2013-09-05 19:56 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\ELAM

2013-09-05 19:48 - 2013-09-05 19:48 - 00000000 ____D C:\Program Files (x86)\Tor

2013-09-05 19:46 - 2013-04-15 16:15 - 00001769 _____ C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-09-05 18:38 - 2012-07-26 10:12 - 00000000 ____D C:\windows\AUInstallAgent

2013-09-04 20:27 - 2013-08-24 19:42 - 00000069 _____ C:\Users\Tim\AppData\Roaming\WB.CFG

2013-09-04 20:27 - 2013-08-24 19:42 - 00000005 _____ C:\Users\Tim\AppData\Roaming\WBPU-TTL.DAT

2013-09-02 20:12 - 2013-09-02 20:11 - 00000000 ____D C:\Program Files (x86)\Google

2013-09-02 20:11 - 2013-09-02 20:11 - 00784872 _____ (Google Inc.) C:\Users\Tim\Downloads\ChromeSetup.exe

2013-09-02 20:11 - 2013-09-02 20:11 - 00004090 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA

2013-09-02 20:11 - 2013-09-02 20:11 - 00003854 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore

2013-09-02 20:11 - 2013-08-23 19:39 - 00000000 ____D C:\Users\Tim\AppData\Local\Google

2013-08-31 22:44 - 2013-08-31 22:41 - 111600168 _____ C:\Users\Tim\Downloads\Pawesome Items Pack V3.zip

2013-08-29 17:21 - 2013-08-29 17:21 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Snz

2013-08-28 20:47 - 2013-08-28 20:47 - 02218359 _____ C:\Users\Tim\AppData\Local\omesuperv.exe

2013-08-27 20:33 - 2012-08-01 18:55 - 00780976 _____ C:\windows\system32\perfh010.dat

2013-08-27 20:33 - 2012-08-01 18:55 - 00152608 _____ C:\windows\system32\perfc010.dat

2013-08-27 20:33 - 2012-08-01 18:38 - 00753134 _____ C:\windows\system32\perfh007.dat

2013-08-27 20:33 - 2012-08-01 18:38 - 00155826 _____ C:\windows\system32\perfc007.dat

2013-08-27 20:33 - 2012-07-26 09:28 - 02679026 _____ C:\windows\system32\PerfStringBackup.INI

2013-08-24 22:00 - 2013-07-25 22:18 - 00000000 ____D C:\windows\SysWOW64\directx

2013-08-24 21:56 - 2013-07-25 22:18 - 00000000 ___HD C:\windows\msdownld.tmp

2013-08-24 21:55 - 2013-08-24 21:55 - 00000641 _____ C:\Users\Public\Desktop\FeralHeart.lnk

2013-08-24 21:54 - 2013-08-24 21:52 - 60391091 _____ (Kovuworks                                                   ) C:\Users\Tim\Downloads\FHSetup.exe

2013-08-23 19:05 - 2013-04-21 13:55 - 00002524 _____ C:\Users\Tim\Desktop\Bedeutung.txt

2013-08-18 14:31 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Defender

2013-08-18 14:31 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender

2013-08-18 10:54 - 2013-06-03 14:59 - 00000000 ____D C:\Users\Tim\AppData\Local\Paint.NET

2013-08-14 22:13 - 2013-08-14 22:07 - 00000000 ____D C:\windows\system32\MRT

2013-08-14 22:07 - 2013-04-17 19:43 - 78161360 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe

2013-08-14 21:41 - 2013-08-14 21:41 - 00002563 _____ C:\Users\Public\Desktop\Free System Utilities.lnk

2013-08-14 21:41 - 2013-08-14 21:41 - 00000000 ____D C:\ProgramData\FreeSystemUtilities

2013-08-14 21:40 - 2013-08-14 21:40 - 00000000 ____D C:\ProgramData\Package Cache

2013-08-14 21:38 - 2013-08-14 21:38 - 00000206 _____ C:\Users\Tim\Desktop\Amazon.url

2013-08-14 21:21 - 2013-08-14 21:21 - 00007597 _____ C:\Users\Tim\AppData\Local\Resmon.ResmonCfg

2013-08-07 15:01 - 2013-05-28 14:43 - 00000000 ____D C:\Users\Tim\Documents\SimCity 4
 

Files to move or delete:

====================

C:\Users\Tim\AppData\Local\Temp\mltmp.exe

C:\Users\Tim\AppData\Local\Temp\Quarantine.exe

C:\Users\Tim\AppData\Local\Temp\uninst1.exe

C:\Users\Tim\AppData\Local\Temp\{95F86D17-8645-4341-A2E8-6592F36FAF88}\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}\Browny02\brlm03a.dll

C:\Users\Tim\AppData\Local\Temp\{95F86D17-8645-4341-A2E8-6592F36FAF88}\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}\Browny02\Company\BrFirmUpdateCheck.dll

C:\Users\Tim\AppData\Local\Temp\{95F86D17-8645-4341-A2E8-6592F36FAF88}\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}\Browny02\Company\prnadmin.dll

C:\Users\Tim\AppData\Local\Temp\{95F86D17-8645-4341-A2E8-6592F36FAF88}\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}\Browny02\Company\THoop.dll

C:\Users\Tim\AppData\Local\Temp\nsz2150.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsz2150.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsxA430.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsxA430.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsuA787.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsuA787.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nssA62A.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nssA62A.tmp\uph.dll

C:\Users\Tim\AppData\Local\Temp\nssA62A.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsr5684.tmp\CRCCheck.dll

C:\Users\Tim\AppData\Local\Temp\nsr5684.tmp\inetc.dll

C:\Users\Tim\AppData\Local\Temp\nsr5684.tmp\IpConfig.dll

C:\Users\Tim\AppData\Local\Temp\nsr5684.tmp\NSISEncrypt.dll

C:\Users\Tim\AppData\Local\Temp\nsr5684.tmp\nsJSON.dll

C:\Users\Tim\AppData\Local\Temp\nsr5684.tmp\System.dll

C:\Users\Tim\AppData\Local\Temp\nsr5684.tmp\UserInfo.dll

C:\Users\Tim\AppData\Local\Temp\nsr5684.tmp\version.dll

C:\Users\Tim\AppData\Local\Temp\nsr444A.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsr444A.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsqD4A9.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsqD4A9.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsoC60F.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsoC60F.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nso8B75.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nso8B75.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsm1F49.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsm1F49.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nslB2BC.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nslB2BC.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsl11EA.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsl11EA.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsi1E9F.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsi1E9F.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsf149C.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsf149C.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsd98.tmp\inetc.dll

C:\Users\Tim\AppData\Local\Temp\nsd98.tmp\IpConfig.dll

C:\Users\Tim\AppData\Local\Temp\nsd98.tmp\NSISEncrypt.dll

C:\Users\Tim\AppData\Local\Temp\nsd98.tmp\nsJSON.dll

C:\Users\Tim\AppData\Local\Temp\nsd98.tmp\System.dll

C:\Users\Tim\AppData\Local\Temp\nsd98.tmp\UserInfo.dll

C:\Users\Tim\AppData\Local\Temp\nsd98.tmp\version.dll

C:\Users\Tim\AppData\Local\Temp\nscD56D.tmp\replacebf.dll

C:\Users\Tim\AppData\Local\Temp\nscD56D.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nscD56D.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsc9900.tmp\uph.dll

C:\Users\Tim\AppData\Local\Temp\nsb480A.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsb480A.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsaCAAD.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsaCAAD.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsa8BCB.tmp\replacebf.dll

C:\Users\Tim\AppData\Local\Temp\nsa8BCB.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsa8BCB.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\nsa5457.tmp\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\nsa5457.tmp\userid.dll

C:\Users\Tim\AppData\Local\Temp\is357113909\chrome_logic.exe

C:\Users\Tim\AppData\Local\Temp\is357113909\cor_ar_201381417179_qvo6.exe

C:\Users\Tim\AppData\Local\Temp\is357113909\DeltaTB.exe

C:\Users\Tim\AppData\Local\Temp\is357113909\dp.exe

C:\Users\Tim\AppData\Local\Temp\is357113909\OpenItSetup.exe

C:\Users\Tim\AppData\Local\Temp\is357113909\uninstaller.exe

C:\Users\Tim\AppData\Local\Temp\is357113909\wajam_download.exe

C:\Users\Tim\AppData\Local\Temp\is357113909\wajam_validate.exe

C:\Users\Tim\AppData\Local\Temp\is357113909\WebConnect.exe

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\BabMaint.exe

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\BExternal.dll

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\BUSolForMontiera.dll

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\BUSolution.dll

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\ccp.exe

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\ChromeToolbarSetup.dll

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\CrxInstaller.dll

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\GUninstaller.exe

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\IEHelper.dll

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\MntrDLLInstall.dll

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\MyDeltaTB.exe

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\Setup.exe

C:\Users\Tim\AppData\Local\Temp\43638AB7-BAB0-7891-A1FB-66827E464B3B\Latest\sqlite3.dll

C:\Users\Tim\AppData\Local\Temp\37934731.Uninstall\uninstaller.exe

C:\Users\Tim\AppData\Local\Temp\37900708.Uninstall\uninstaller.exe

C:\Users\Tim\AppData\Local\Temp\37851255.Uninstall\uninstaller.exe

C:\Users\Tim\AppData\Local\Temp\37823768.Uninstall\uninstaller.exe

C:\Users\Tim\AppData\Local\Temp\37775096.Uninstall\uninstaller.exe

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\BabMaint.exe

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\BExternal.dll

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\BUSolForMontiera.dll

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\BUSolution.dll

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\ccp.exe

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\ChromeToolbarSetup.dll

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\CrxInstaller.dll

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\enhancedNT.dll

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\GUninstaller.exe

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\IEHelper.dll

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\MntrDLLInstall.dll

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\MyDeltaTB.exe

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\Setup.exe

C:\Users\Tim\AppData\Local\Temp\11F45727-BAB0-7891-AB04-2A79E001F482\Latest\sqlite3.dll
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-09-05 16:37
 

==================== End Of Log ============================

--- --- ---

[/CODE]

Addition

Code:



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-09-2013

Ran by Tim at 2013-09-06 19:08:59

Running from C:\Users\Tim\Downloads

Boot Mode: Normal

==========================================================
 
 

==================== Installed Programs =======================
 

   

Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)

Aloha TriPeaks (x32 Version: 2.2.0.98)

AMD Accelerated Video Transcoding (Version: 12.5.100.20808)

AMD APP SDK Runtime (Version: 10.0.938.2)

AMD Catalyst Install Manager (Version: 8.0.881.0)

AMD VISION Engine Control Center (x32 Version: 2012.0808.1024.16666)

aptics Pointing Device Driver (Version: 16.2.10.3)

Bejeweled 3 (x32 Version: 2.2.0.98)

Brother MFL-Pro Suite MFC-J415W (x32 Version: 2.0.0.0)

Catalyst Control Center - Branding (x32 Version: 1.00.0000)

Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0808.1024.16666)

Catalyst Control Center InstallProxy (x32 Version: 2012.0808.1024.16666)

Catalyst Control Center Localization All (x32 Version: 2012.0808.1024.16666)

CCC Help Chinese Standard (x32 Version: 2012.0808.1023.16666)

CCC Help Chinese Traditional (x32 Version: 2012.0808.1023.16666)

CCC Help Czech (x32 Version: 2012.0808.1023.16666)

CCC Help Danish (x32 Version: 2012.0808.1023.16666)

CCC Help Dutch (x32 Version: 2012.0808.1023.16666)

CCC Help English (x32 Version: 2012.0808.1023.16666)

CCC Help Finnish (x32 Version: 2012.0808.1023.16666)

CCC Help French (x32 Version: 2012.0808.1023.16666)

CCC Help German (x32 Version: 2012.0808.1023.16666)

CCC Help Greek (x32 Version: 2012.0808.1023.16666)

CCC Help Hungarian (x32 Version: 2012.0808.1023.16666)

CCC Help Italian (x32 Version: 2012.0808.1023.16666)

CCC Help Japanese (x32 Version: 2012.0808.1023.16666)

CCC Help Korean (x32 Version: 2012.0808.1023.16666)

CCC Help Norwegian (x32 Version: 2012.0808.1023.16666)

CCC Help Polish (x32 Version: 2012.0808.1023.16666)

CCC Help Portuguese (x32 Version: 2012.0808.1023.16666)

CCC Help Russian (x32 Version: 2012.0808.1023.16666)

CCC Help Spanish (x32 Version: 2012.0808.1023.16666)

CCC Help Swedish (x32 Version: 2012.0808.1023.16666)

CCC Help Thai (x32 Version: 2012.0808.1023.16666)

CCC Help Turkish (x32 Version: 2012.0808.1023.16666)

ccc-utility64 (Version: 2012.0808.1024.16666)

Chuzzle Deluxe (x32 Version: 2.2.0.95)

Empress of the Deep - The Darkest Secret (x32 Version: 2.2.0.98)

Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)

FeralHeart version 1.13 (x32 Version: 1.13)

Free YouTube to MP3 Converter version 3.12.2.430 (x32 Version: 3.12.2.430)

Google Chrome (x32 Version: 29.0.1547.66)

Google Update Helper (x32 Version: 1.3.23.0)

Intel AppUp(SM) center (x32 Version: 3.6.1.33268.15)

Island Tribe (x32 Version: 2.2.0.98)

Jewel Quest Solitaire 2 (x32 Version: 2.2.0.98)

Landwirtschafts Simulator 2013 (x32 Version: 1.0)

Magic Academy (x32 Version: 2.2.0.98)

McAfee Internet Security (x32 Version: 11.6.511)

McAfee Security Scan Plus (x32 Version: 3.0.318.3)

Microsoft Office (x32 Version: 14.0.6120.5004)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)

Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)

Mozilla Maintenance Service (x32 Version: 23.0.1)

Nero 12 Essentials Toshiba (x32 Version: 12.0.00400)

Nero BackItUp (x32 Version: 12.0.1000)

Nero BackItUp Help (CHM) (x32 Version: 12.0.3000)

Nero Blu-ray Player (x32 Version: 12.0.12600)

Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.3000)

Nero BurnRights (x32 Version: 12.0.3000)

Nero BurnRights Help (CHM) (x32 Version: 12.0.3000)

Nero ControlCenter (x32 Version: 11.0.14800.0.48)

Nero ControlCenter Help (CHM) (x32 Version: 12.0.3000)

Nero Core Components (x32 Version: 11.0.17600.2.3)

Nero Express (x32 Version: 12.0.14001)

Nero Express Help (CHM) (x32 Version: 12.0.3000)

Nero Kwik Media (x32 Version: 1.18.16800)

Nero Kwik Media Help (CHM) (x32 Version: 12.0.4000)

Nero Kwik Themes Basic (x32 Version: 12.0.11500)

Nero Launcher (x32 Version: 12.2.1000)

Nero RescueAgent (x32 Version: 12.0.7002)

Nero RescueAgent Help (CHM) (x32 Version: 12.0.3000)

Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0)

Nero Update (x32 Version: 11.0.11800.31.0)

Paint.NET v3.5.10 (Version: 3.60.0)

Peggle Nights (x32 Version: 2.2.0.98)

Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98)

Polar Bowler (x32 Version: 2.2.0.97)

Premium Sound HD (Version: 1.12.4600)

Prerequisite installer (x32 Version: 12.0.0002)

Realtek Ethernet Controller Driver (x32 Version: 8.3.730.2012)

Realtek High Definition Audio Driver (x32 Version: 6.0.1.6687)

Realtek USB 2.0 Card Reader (x32 Version: 6.1.8400.30136)

Realtek WLAN Driver (x32 Version: 2.00.0020)

Shared C Run-time for x64 (Version: 10.0.0)

SimCity 4 Deluxe (x32)

TOSHIBA Desktop Assist (Version: 1.00.0007.00002)

TOSHIBA eco Utility (Version: 2.0.0.6414)

TOSHIBA Function Key (Version: 1.00.6425)

TOSHIBA Manuals (x32 Version: 10.10)

Toshiba Password Utility (x32 Version: 2.00.910)

TOSHIBA PC Health Monitor (Version: 1.8.17.640104)

Toshiba Places Icon Utility (Version: 2.1.1)

TOSHIBA Recovery Media Creator (x32 Version: 2.2.0.54043005)

TOSHIBA Service Station (Version: 2.4.4)

TOSHIBA System Driver (x32 Version: 1.00.0012)

TOSHIBA System Settings (x32 Version: 1.00.0002.32002)

Toshiba TEMPRO (x32 Version: 4.2.1)

TOSHIBA VIDEO PLAYER (Version: 5.1.0.12-A)

Update Installer for WildTangent Games App (x32)

Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98)

Welcome App (Start-up experience) (x32 Version: 12.0.13000)

WildTangent Games (x32 Version: 1.0.3.0)

WildTangent Games App (Toshiba Games) (x32 Version: 4.0.5.37)
 

==================== Restore Points  =========================
 

03-06-2013 12:59:19 Paint.NET v3.5.10

23-06-2013 09:06:56 Windows Update

12-07-2013 18:27:57 Windows Update

25-07-2013 20:21:41 DirectX wurde installiert

27-07-2013 15:17:58 TuneUp Utilities 2013 wird entfernt

04-08-2013 09:19:59 Windows Update

13-08-2013 10:40:14 Windows Update

14-08-2013 19:38:56 Free System Utilities

18-08-2013 12:23:45 Free System Utilities 18.08.2013 14:23:37
 

==================== Hosts content: ==========================
 

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {08E3004E-31C0-46F0-9B98-6E86D2BA6620} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup

Task: {0CE5AA0F-614A-4D72-B600-071BEBD8DA57} - System32\Tasks\Freemium1ClickMaint => C:\Users\Tim\Desktop\1Click.exe

Task: {0E2AE4F6-53FC-4E38-BF26-E04BB01C5441} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2012-08-14] (Toshiba Europe GmbH)

Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation)

Task: {1198954F-BBC7-4F16-A2DF-E83D6B6F9A03} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-02] (Google Inc.)

Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical

Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler

Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\System32\sysmain.dll [2013-05-04] (Microsoft Corporation)

Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents

Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance

Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy

Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\WSClient.dll [2012-09-20] (Microsoft Corporation)

Task: {27BCF7A6-A883-4518-9F05-04005FEE9F2C} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2359482389-669878268-1928233592-1001UA => C:\Users\Tim\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-20] (Facebook Inc.)

Task: {2B831402-E62E-4624-99AD-43E0E5FDCAE2} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect

Task: {2BE9C2BA-07FF-407B-A24B-AFC1BE1F6E2F} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\windows\System32\lpksetup.exe [2012-09-20] (Microsoft Corporation)

Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh

Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks

Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update

Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator

Task: {3938269F-E612-43E7-9E6B-836F9CA850E0} - System32\Tasks\AdobeFlashPlayerUpdate => C:\windows\SysWOW64\FlashPlayerUpdateService.exe [2013-05-28] (Adobe Systems Incorporated)

Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask

Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem

Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance

Task: {409EC937-A69B-4975-A633-B6E7BD743CA8} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-28] (Adobe Systems Incorporated)

Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage

Task: {457C4FD5-BA76-44B5-9DF1-30D7B22EA0E6} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall

Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2013-06-01] (Microsoft Corporation)

Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon

Task: {4CF47360-33B6-419D-BE9E-B6C7A2DEC9F9} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2359482389-669878268-1928233592-500

Task: {4CF901C7-70AE-408D-A1B8-8AB75FCD3E9E} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe [2012-08-15] (Microsoft Corporation)

Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance

Task: {5916E273-77F4-400D-92DD-BBCDF783E9E4} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-14] (Synaptics Incorporated)

Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required

Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation)

Task: {652EFD41-EA6C-4711-89F0-7503EF5A7BA8} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\windows\SysWOW64\FlashPlayerUpdateService.exe [2013-05-28] (Adobe Systems Incorporated)

Task: {678329D6-D330-4A04-A9C3-62ED64887F02} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2359482389-669878268-1928233592-1001Core => C:\Users\Tim\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-20] (Facebook Inc.)

Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-09-20] (Microsoft Corporation)

Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319

Task: {716DFE37-8D0A-42E7-B84A-70981EF4A7A4} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2012-07-28] (TOSHIBA Corporation)

Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update

Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance

Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance

Task: {85A226B4-25B3-4209-9668-33E6D6DC529B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => Sc.exe start wuauserv

Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode)

Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses

Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime

Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64

Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic

Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\WSClient.dll [2012-09-20] (Microsoft Corporation)

Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask

Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh

Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask

Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask

Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan

Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific

Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan

Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender

Task: {C6220CE9-571B-4A16-B65E-C97B6343062C} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall

Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\System32\Windows.Storage.ApplicationData.dll [2012-07-26] (Microsoft Corporation)

Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork

Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical

Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery

Task: {E070BF39-A6E0-45BC-BB05-AF5F5884327C} - \DSite No Task File

Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask

Task: {E5D99D8A-248F-4BAC-9EC9-0774B858427F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-02] (Google Inc.)

Task: {E7C44BE0-1CEA-401E-8B58-E015672ACBC0} - \Software Updater No Task File

Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-09-20] (Microsoft Corporation)

Task: {EAD237E7-D276-4257-9F16-51DF41548733} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started

Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\System32\Startupscan.dll [2012-07-26] (Microsoft Corporation)

Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM

Task: {F82B41E8-86CE-4B2A-9C07-575D0E257B62} - \Dealply No Task File

Task: {F838C8AE-D5E5-4333-A1A2-8BE8C3542807} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2359482389-669878268-1928233592-1001

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2359482389-669878268-1928233592-1001Core.job => C:\Users\Tim\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2359482389-669878268-1928233592-1001UA.job => C:\Users\Tim\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 

==================== Loaded Modules (whitelisted) =============
 

2012-08-14 18:39 - 2012-08-14 18:39 - 01046328 _____ (Synaptics Incorporated) C:\windows\system32\SynCOM.dll

2012-08-14 18:39 - 2012-08-14 18:39 - 00228664 _____ (Synaptics Incorporated) C:\windows\SYSTEM32\SynTPAPI.dll

2013-04-20 21:08 - 2012-10-11 07:46 - 01395712 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Immersive.dll

2012-07-26 01:33 - 2012-07-26 05:07 - 00069632 _____ (Microsoft Corporation) C:\Windows\System32\windows.immersiveshell.serviceprovider.dll

2012-07-26 02:04 - 2012-07-26 05:07 - 00046592 _____ (Microsoft Corporation) C:\windows\SYSTEM32\windows.globalization.fontgroups.dll

2013-04-17 18:24 - 2013-02-02 10:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Networking.Connectivity.dll

2012-07-26 03:22 - 2012-07-26 05:05 - 00060416 _____ (Microsoft Corporation) C:\windows\System32\IME\SHARED\IMEROAMING.DLL

2012-07-26 01:58 - 2012-07-26 05:07 - 00068096 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll

2012-08-09 01:54 - 2012-08-09 01:54 - 00052224 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIBasePlace.dll

2012-08-09 01:54 - 2012-08-09 01:54 - 00042496 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDesktopEventCaptor.dll

2012-08-09 01:54 - 2012-08-09 01:54 - 00014336 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIPlaceFileEntity.dll

2013-04-30 21:09 - 2013-03-02 04:45 - 00951808 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Globalization.dll

2013-04-20 20:56 - 2012-09-20 08:33 - 01304064 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.Streaming.dll

2012-07-26 01:33 - 2012-07-26 05:07 - 00175616 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Storage.ApplicationData.dll

2012-07-26 04:01 - 2012-07-26 05:07 - 00056320 _____ (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.dll

2013-05-18 15:10 - 2013-04-09 06:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Networking.BackgroundTransfer.dll

2013-04-30 21:09 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll

2012-11-23 19:23 - 2012-06-20 17:26 - 00110592 _____ (Real Sound Lab SIA) C:\windows\SYSTEM32\CONEQMSAPOGUILibrary.dll

2012-02-06 00:39 - 2012-02-06 00:39 - 00112512 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdEvnt.dll

2012-07-19 19:53 - 2012-07-19 19:53 - 00265728 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain.dll

2012-07-19 04:38 - 2012-07-19 04:38 - 00349608 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\ButtonSupport\TBSMain.dll

2012-07-30 18:45 - 2012-07-30 18:45 - 00035240 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\Hotkey\Brightness_Win8.dll

2012-07-19 04:38 - 2012-07-19 04:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll

2012-07-19 04:38 - 2012-07-19 04:38 - 00097192 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TWarnMsg\TWarnMsg.dll

2012-07-30 18:46 - 2012-07-30 18:46 - 00126888 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\Hotkey\Touchpad.dll

2012-08-04 02:16 - 2012-08-04 02:16 - 00130984 _____ (TOSHIBA Corporator) C:\Program Files\TOSHIBA\Hotkey\Hotkey\Wlan.dll

2012-07-19 04:38 - 2012-07-19 04:38 - 00049064 _____ () C:\Program Files\TOSHIBA\Hotkey\Hotkey\FnZ.dll

2012-03-17 04:40 - 2012-03-17 04:40 - 00081824 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\Hotkey\FnSpace.dll

2012-08-04 02:15 - 2012-08-04 02:15 - 00143272 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\Hotkey\ToastNotifier.dll

2012-08-14 05:13 - 2012-08-14 05:13 - 00038824 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoToastMgr.dll

2012-08-14 05:13 - 2012-08-14 05:13 - 00124840 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TADOMgr.dll

2012-08-14 05:14 - 2012-08-14 05:14 - 00168872 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoPower.dll

2012-08-14 05:13 - 2012-08-14 05:13 - 00044456 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoHook.dll

2012-08-14 05:13 - 2012-08-14 05:13 - 00060328 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoHookDll.dll

2012-08-14 05:13 - 2012-08-14 05:13 - 00018344 _____ () C:\Program Files\TOSHIBA\Teco\TecoMUI.dll

2012-08-02 05:59 - 2012-08-02 05:59 - 00123816 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\ToastNotifier.dll

2012-08-09 14:09 - 2012-08-09 14:09 - 00073216 _____ (Toshiba) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIInternal.dll

2012-08-09 01:54 - 2012-08-09 01:54 - 00006656 _____ (Toshiba) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDILangPack.dll

2012-07-31 09:11 - 2012-07-31 09:11 - 00024576 _____ () C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\de\TosDILangPack.resources.dll

2012-07-28 00:35 - 2012-07-28 00:35 - 00060552 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\PluginLib.dll

2012-07-27 06:22 - 2012-07-27 06:22 - 00775680 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\ToshibaServiceStation.resources.dll

2012-07-28 00:35 - 2012-07-28 00:35 - 00023176 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\libTMachInfo.dll

2012-07-27 06:22 - 2012-07-27 06:22 - 00068608 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\Plugins\Alerts.dll

2012-07-27 06:22 - 2012-07-27 06:22 - 00004608 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\PluginLib.resources.dll

2012-07-27 06:22 - 2012-07-27 06:22 - 00016896 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\Alerts.resources.dll

2012-07-27 06:22 - 2012-07-27 06:22 - 00087552 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\Plugins\PCHealthInfo.dll

2012-07-27 06:22 - 2012-07-27 06:22 - 00022016 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\PCHealthInfo.resources.dll

2012-07-27 06:22 - 2012-07-27 06:22 - 00097280 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\Plugins\SwUpdates.dll

2012-07-27 06:22 - 2012-07-27 06:22 - 00018944 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\SwUpdates.resources.dll

2012-07-28 00:34 - 2012-07-28 00:34 - 00023176 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\FilterLib.dll

2012-06-12 23:28 - 2012-06-12 23:28 - 00156072 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll

2012-06-12 23:28 - 2012-06-12 23:28 - 00265640 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TReport.dll

2012-07-28 19:20 - 2012-07-28 19:20 - 00111528 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHMui.dll

2012-07-28 19:20 - 2012-07-28 19:20 - 00101800 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\TPHM\ShockNotifier.dll

2012-08-08 20:19 - 2012-08-08 20:19 - 00311296 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll

2012-08-08 20:19 - 2012-08-08 20:19 - 00196608 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll

2011-10-19 08:08 - 2011-10-19 08:08 - 00007168 _____ ( ) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll

2012-08-08 20:23 - 2012-08-08 20:23 - 00028672 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll

2012-08-08 20:22 - 2012-08-08 20:22 - 00369664 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll

2012-08-14 15:36 - 2012-08-14 15:36 - 00051672 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproCommon.dll

2012-08-14 15:36 - 2012-08-14 15:36 - 06414296 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproUI.dll

2012-08-14 15:36 - 2012-08-14 15:36 - 00038360 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\ToshibaCommon.dll

2012-08-14 15:36 - 2012-08-14 15:36 - 00040920 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\de\TemproUI.resources.dll

2013-05-04 21:51 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll

2013-05-04 21:51 - 2010-03-10 18:16 - 00770048 ____N (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll

2013-05-04 21:51 - 2010-03-29 04:53 - 00159744 ____N (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\brccger.dll

2013-05-04 21:51 - 2009-09-28 13:38 - 05390336 ____N (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll

2013-05-04 21:51 - 2012-10-09 15:30 - 00372736 ____N (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll

2013-06-24 19:47 - 2013-06-28 00:05 - 14375800 _____ (Adobe Systems, Inc.) C:\Windows\SYSTEM32\Macromed\Flash\Flash.ocx

2013-05-04 21:52 - 2011-10-07 14:39 - 00626688 ____N (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll

2012-07-26 02:47 - 2012-07-26 05:08 - 00667136 _____ (Microsoft Corporation) C:\Windows\SYSTEM32\hhctrl.ocx

2013-05-04 21:52 - 2009-12-25 15:08 - 00208896 ____R (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll

2013-04-20 20:06 - 2013-08-14 19:55 - 03551640 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
 

==================== Alternate Data Streams (whitelisted) ==========
 

AlternateDataStreams: C:\Users\Tim\Documents\Thumbs.db:encryptable
 
 

==================== Faulty Device Manager Devices =============
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (09/06/2013 06:31:00 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: FlashPlayerUpdateService.exe, Version: 11.6.602.180, Zeitstempel: 0x51a4ab8c

Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e

Ausnahmecode: 0xc0000005

Fehleroffset: 0x0002fa8b

ID des fehlerhaften Prozesses: 0x1094

Startzeit der fehlerhaften Anwendung: 0xFlashPlayerUpdateService.exe0

Pfad der fehlerhaften Anwendung: FlashPlayerUpdateService.exe1

Pfad des fehlerhaften Moduls: FlashPlayerUpdateService.exe2

Berichtskennung: FlashPlayerUpdateService.exe3

Vollständiger Name des fehlerhaften Pakets: FlashPlayerUpdateService.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FlashPlayerUpdateService.exe5
 

Error: (09/06/2013 06:16:02 PM) (Source: MsiInstaller) (User: NT-AUTORITÄT)

Description: Product: Google Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\Google\Update\1.3.21.153\DealPlyLiveHelper.msi
 

Error: (09/06/2013 07:37:31 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: TIM-PC)

Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 

Error: (09/06/2013 07:37:31 AM) (Source: Application Hang) (User: )

Description: Programm LiveComm.exe, Version 17.0.1114.318 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
 

Prozess-ID: f6c
 

Startzeit: 01ceaac30206c75a
 

Endzeit: 4294967295
 

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe
 

Berichts-ID: 6592c850-16b6-11e3-be95-7054d23fc507
 

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe
 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Microsoft.WindowsLive.Mail
 

Error: (09/06/2013 07:37:17 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: TIM-PC)

Description: Die App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.
 

Error: (09/05/2013 09:31:00 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: FlashPlayerUpdateService.exe, Version: 11.6.602.180, Zeitstempel: 0x51a4ab8c

Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e

Ausnahmecode: 0xc0000005

Fehleroffset: 0x0002fa8b

ID des fehlerhaften Prozesses: 0x1444

Startzeit der fehlerhaften Anwendung: 0xFlashPlayerUpdateService.exe0

Pfad der fehlerhaften Anwendung: FlashPlayerUpdateService.exe1

Pfad des fehlerhaften Moduls: FlashPlayerUpdateService.exe2

Berichtskennung: FlashPlayerUpdateService.exe3

Vollständiger Name des fehlerhaften Pakets: FlashPlayerUpdateService.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FlashPlayerUpdateService.exe5
 

Error: (09/05/2013 09:16:01 PM) (Source: MsiInstaller) (User: NT-AUTORITÄT)

Description: Product: Google Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\Google\Update\1.3.21.153\DealPlyLiveHelper.msi
 

Error: (09/05/2013 08:31:02 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: FlashPlayerUpdateService.exe, Version: 11.6.602.180, Zeitstempel: 0x51a4ab8c

Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e

Ausnahmecode: 0xc0000005

Fehleroffset: 0x0002fa8b

ID des fehlerhaften Prozesses: 0xde4

Startzeit der fehlerhaften Anwendung: 0xFlashPlayerUpdateService.exe0

Pfad der fehlerhaften Anwendung: FlashPlayerUpdateService.exe1

Pfad des fehlerhaften Moduls: FlashPlayerUpdateService.exe2

Berichtskennung: FlashPlayerUpdateService.exe3

Vollständiger Name des fehlerhaften Pakets: FlashPlayerUpdateService.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FlashPlayerUpdateService.exe5
 

Error: (09/05/2013 08:16:05 PM) (Source: MsiInstaller) (User: NT-AUTORITÄT)

Description: Product: Google Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\Google\Update\1.3.21.153\DealPlyLiveHelper.msi
 

Error: (09/05/2013 07:31:02 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: FlashPlayerUpdateService.exe, Version: 11.6.602.180, Zeitstempel: 0x51a4ab8c

Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e

Ausnahmecode: 0xc0000005

Fehleroffset: 0x0002fa8b

ID des fehlerhaften Prozesses: 0x18c4

Startzeit der fehlerhaften Anwendung: 0xFlashPlayerUpdateService.exe0

Pfad der fehlerhaften Anwendung: FlashPlayerUpdateService.exe1

Pfad des fehlerhaften Moduls: FlashPlayerUpdateService.exe2

Berichtskennung: FlashPlayerUpdateService.exe3

Vollständiger Name des fehlerhaften Pakets: FlashPlayerUpdateService.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FlashPlayerUpdateService.exe5
 
 

System errors:

=============

Error: (09/06/2013 07:35:43 AM) (Source: EventLog) (User: )

Description: Das System wurde zuvor am ‎05.‎09.‎2013 um 21:48:03 unerwartet heruntergefahren.
 

Error: (09/06/2013 07:35:06 AM) (Source: Microsoft-Windows-Kernel-Boot) (User: NT-AUTORITÄT)

Description: 32212265131147280
 

Error: (09/05/2013 07:48:03 PM) (Source: EventLog) (User: )

Description: Das System wurde zuvor am ‎05.‎09.‎2013 um 19:19:25 unerwartet heruntergefahren.
 

Error: (09/04/2013 09:13:01 PM) (Source: DCOM) (User: TIM-PC)

Description: Windows.Networking.BackgroundTransfer.Internal.BackgroundTransferTask.ClassId.1
 

Error: (09/03/2013 08:43:23 PM) (Source: DCOM) (User: TIM-PC)

Description: {209500FC-6B45-4693-8871-6296C4843751}
 

Error: (09/03/2013 08:42:48 PM) (Source: DCOM) (User: TIM-PC)

Description: {209500FC-6B45-4693-8871-6296C4843751}
 

Error: (09/03/2013 08:02:48 PM) (Source: DCOM) (User: TIM-PC)

Description: {209500FC-6B45-4693-8871-6296C4843751}
 

Error: (09/01/2013 01:50:02 AM) (Source: DCOM) (User: TIM-PC)

Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
 

Error: (09/01/2013 01:50:02 AM) (Source: DCOM) (User: TIM-PC)

Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
 

Error: (08/30/2013 06:03:54 PM) (Source: DCOM) (User: TIM-PC)

Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
 
 

Microsoft Office Sessions:

=========================

Error: (09/06/2013 06:31:00 PM) (Source: Application Error)(User: )

Description: FlashPlayerUpdateService.exe11.6.602.18051a4ab8cntdll.dll6.2.9200.16578515fac6ec00000050002fa8b109401ceab1e78a03724C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeC:\windows\SYSTEM32\ntdll.dllb6a57c21-1711-11e3-be96-7054d23fc507
 

Error: (09/06/2013 06:16:02 PM) (Source: MsiInstaller)(User: NT-AUTORITÄT)

Description: Product: Google Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\Google\Update\1.3.21.153\DealPlyLiveHelper.msi(NULL)(NULL)(NULL)(NULL)(NULL)
 

Error: (09/06/2013 07:37:31 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: TIM-PC)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2144927142
 

Error: (09/06/2013 07:37:31 AM) (Source: Application Hang)(User: )

Description: LiveComm.exe17.0.1114.318f6c01ceaac30206c75a4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe6592c850-16b6-11e3-be95-7054d23fc507microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbweMicrosoft.WindowsLive.Mail
 

Error: (09/06/2013 07:37:17 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: TIM-PC)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail
 

Error: (09/05/2013 09:31:00 PM) (Source: Application Error)(User: )

Description: FlashPlayerUpdateService.exe11.6.602.18051a4ab8cntdll.dll6.2.9200.16578515fac6ec00000050002fa8b144401ceaa6e73773da4C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeC:\windows\SYSTEM32\ntdll.dllb155c6fd-1661-11e3-be94-7054d23fc507
 

Error: (09/05/2013 09:16:01 PM) (Source: MsiInstaller)(User: NT-AUTORITÄT)

Description: Product: Google Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\Google\Update\1.3.21.153\DealPlyLiveHelper.msi(NULL)(NULL)(NULL)(NULL)(NULL)
 

Error: (09/05/2013 08:31:02 PM) (Source: Application Error)(User: )

Description: FlashPlayerUpdateService.exe11.6.602.18051a4ab8cntdll.dll6.2.9200.16578515fac6ec00000050002fa8bde401ceaa6611bc6441C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeC:\windows\SYSTEM32\ntdll.dll50cf4f93-1659-11e3-be94-7054d23fc507
 

Error: (09/05/2013 08:16:05 PM) (Source: MsiInstaller)(User: NT-AUTORITÄT)

Description: Product: Google Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\Google\Update\1.3.21.153\DealPlyLiveHelper.msi(NULL)(NULL)(NULL)(NULL)(NULL)
 

Error: (09/05/2013 07:31:02 PM) (Source: Application Error)(User: )

Description: FlashPlayerUpdateService.exe11.6.602.18051a4ab8cntdll.dll6.2.9200.16578515fac6ec00000050002fa8b18c401ceaa5db05368d6C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeC:\windows\SYSTEM32\ntdll.dlleecf8f18-1650-11e3-be93-7054d23fc507
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 33%

Total physical RAM: 3684.73 MB

Available physical RAM: 2450.99 MB

Total Pagefile: 4324.73 MB

Available Pagefile: 2575.01 MB

Total Virtual: 8192 MB

Available Virtual: 8191.84 MB
 

==================== Drives ================================
 

Drive c: (TI30993600A) (Fixed) (Total:455.44 GB) (Free:402.87 GB) NTFS

Drive d: (SC4DELUXE2) (CDROM) (Total:0.65 GB) (Free:0 GB) CDFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (Size: 466 GB) (Disk ID: 00000000)
 

Partition: GPT Partition Type

==================== End Of Log ============================