Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Dauernde malwares (https://www.trojaner-board.de/157132-dauernde-malwares.html)

WTFx3 01.08.2014 15:04
Dauernde malwares
 
Hallo leute.
Ich habe das Problem wenn ich auf fast jeder seite gehe das bei mir sone blöde Werbung immer kommt entweder irgendwas mit dem flashplugin oder das mein browser nicht geeignet wäre
und ich einen anderen downloaden sollte aus der werbung.
Könnte mir da jemand helfen?:headbang:
Danke im Vorraus:dankeschoen:

cosinus 01.08.2014 15:10
Hallo und :hallo:

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

WTFx3 01.08.2014 15:18
FRST dateien:
FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-07-2014 02
Ran by LOLKING (administrator) on PIERRESLAPPI on 01-08-2014 16:14:41
Running from C:\Users\LOLKING\Downloads
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Re-markit-soft\Re-markitfQL158.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(PriceMeter) C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe
() C:\Program Files (x86)\Re-markit-soft\Re-markitfQLOWw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Akamai Technologies, Inc.) C:\Users\LOLKING\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\LOLKING\AppData\Local\Akamai\netsession_win.exe
(Smartbar) C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.exe
() C:\Users\LOLKING\AppData\Local\LPT\srptm.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Pokki) C:\Users\LOLKING\AppData\Local\Pokki\Engine\HostAppService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Pokki) C:\Users\LOLKING\AppData\Local\Pokki\Engine\StartMenuIndexer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Users\LOLKING\AppData\Local\Smartbar\Application\Lrcnta.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\livecomm.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
() C:\Program Files (x86)\Opera\23.0.1522.60\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2777840 2013-08-14] (Synaptics Incorporated)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17111056 2014-02-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [193008 2014-02-08] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [552960 2013-05-14] (Vimicro)
HKLM-x32\...\Run: [Lenovo App Shop] => C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe [156000 2013-07-19] (Intel Corporation)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.)
HKLM-x32\...\Run: [Registry Helper] => "C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe" /boot
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Atheros Communications))
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [Pokki] => C:\WINDOWS\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [Akamai NetSession Interface] => C:\Users\LOLKING\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [PriceMeterW] => "C:\Users\LOLKING\AppData\Local\PriceMeter\pricemeterw.exe"
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [Browser Infrastructure Helper] => C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.exe [28952 2014-06-11] (Smartbar)
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [LPT System Updater] => C:\Users\LOLKING\AppData\Local\LPT\srptm.exe [23832 2014-06-11] ()
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\RunOnce: [Application Restart #0] => C:\Users\LOLKING\AppData\Local\Pokki\Engine\HostAppService.exe [7545160 2014-03-21] (Pokki)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\SPVC64~1.DLL => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1355040 2014-03-30] ()
AppInit_DLLs-x32: C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\SPVC32~1.DLL => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1050400 2014-03-30] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avsinit.vbs ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:13828
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HmP0UnqV1e5W-XOXwlEUIQMUgB1Ph_JaHtTlg874EGrDtdJsye6kLkrEsRNnKGtxXrwJt3elmi7Z7zIo2tdyt4ROxTGQ-u4Fjbtg,,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HqWwcXQDTvJvyYqTn4jf1PcaIlVGHWHiQJRbl4R2nnXiZTGr1iHMg_CsL6MAcBAEVRfZGhxuaZOFHU-c5DOzH3hK9lexA8s1Da7g,,
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HmP0UnqV1e5W-XOXwlEUIQMUgB1Ph_JaHtTlg874EGrDtdJsye6kLkrEsRNnKGtxXrwJt3elmi7Z7zIo2tdyt4ROxTGQ-u4Fjbtg,,&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKLM - {85D19919-6A2A-4725-86AA-A8BDB3FDD61B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=LCJB
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=53c4d263-d8e9-417f-567f-003d354e3032&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=14/03/2014&type=hp1000
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HmP0UnqV1e5W-XOXwlEUIQMUgB1Ph_JaHtTlg874EGrDtdJsye6kLkrEsRNnKGtxXrwJt3elmi7Z7zIo2tdyt4ROxTGQ-u4Fjbtg,,&q={searchTerms}
SearchScopes: HKCU - URL hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3319434&octid=EB_ORIGINAL_CTID&ISID=ISID_ID&SearchSource=58&CUI=&UM=5&UP=SPE86D6AB7-7BC0-4C39-9DF4-05D1E708BE7C&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HmP0UnqV1e5W-XOXwlEUIQMUgB1Ph_JaHtTlg874EGrDtdJsye6kLkrEsRNnKGtxXrwJt3elmi7Z7zIo2tdyt4ROxTGQ-u4Fjbtg,,&q={searchTerms}
BHO: HQ-V-Pro-1.9 -> {11111111-1111-1111-1111-110511311172} -> C:\Program Files (x86)\HQ-V-Pro-1.9\HQ-V-Pro-1.9-bho64.dll (HQ-V-1.9)
BHO: MediaPlayerplus -> {11111111-1111-1111-1111-110511421146} -> C:\Program Files (x86)\MediaPlayerplus\MediaPlayerplus-bho64.dll No File
BHO: Yahoo Community Smartbar (by Linkury)Engine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: Yahoo Community Smartbar (by Linkury)Engine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\WINDOWS\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: mysearchdial Helper Object -> {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} -> C:\PROGRA~2\MYSEAR~1\1829~1.0\bh\mysearchdial.dll No File
Toolbar: HKLM - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\WINDOWS\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - mysearchdial Toolbar - {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\PROGRA~2\MYSEAR~1\1829~1.0\mysearchdialTlbr.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: 85.114.135.48 path.pointblankonline.com.br
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=3 - C:\Program Files (x86)\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter)
FF Plugin-x32: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=9 - C:\Program Files (x86)\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\LOLKING\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: intel.com/AppUp - C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\npAppUp.dll (Intel)
FF Plugin HKCU: intel.com/AppUpx64 - C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\npAppUp_x64.dll (Intel)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\delta-homes.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\webssearches.xml
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\LOLKING\AppData\Roaming\Mozilla\Firefox\Profiles\05h94duq.default\extensions\quick_start@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\LOLKING\AppData\Roaming\Mozilla\Firefox\Profiles\05h94duq.default\extensions\faststartff@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Users\LOLKING\AppData\Roaming\Mozilla\Firefox\Profiles\05h94duq.default\extensions\shortcutff@gmail.com
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-04-10]
FF HKCU\...\Firefox\Extensions: [{372479DD-B552-F0A8-F0E5-EEEEA6602285}] - C:\Program Files (x86)\Re-markit-soft\158.xpi
FF Extension: Re-markit - C:\Program Files (x86)\Re-markit-soft\158.xpi [2014-04-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-04-20] (Microsoft Corporation)
R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [372224 2014-04-27] (Microsoft Corporation)
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [705136 2014-04-11] (Cherished Technololgy LIMITED)
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [761968 2014-06-12] (Cherished Technololgy LIMITED)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 iprip; C:\Windows\System32\iprip.dll [34816 2014-04-20] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [47616 2014-03-17] (Microsoft Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25600 2014-04-20] (Microsoft Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2013-07-24] (Nitro PDF Software)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [4600264 2013-11-05] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2014-07-19] ()
S2 pricemeterliveUpdate; C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [150504 2014-06-11] (PriceMeter)
S3 pricemeterliveUpdatem; C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [150504 2014-06-11] (PriceMeter)
R2 Re-markit; C:\Program Files (x86)\Re-markit-soft\Re-markitfQL158.exe [142336 2014-04-16] () [File not signed]
R2 SNMP; C:\Windows\System32\snmp.exe [50688 2014-04-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [46080 2014-04-20] (Microsoft Corporation)
S4 TlntSvr; C:\Windows\System32\tlntsvr.exe [146944 2014-04-20] (Microsoft Corporation)
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2014-02-08] ()
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-04-20] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2014-04-20] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros) [File not signed]
S3 WMPNetworkSvc; "%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-21] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [173568 2014-04-20] (Microsoft Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-14] (Synaptics Incorporated)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1065472 2013-08-30] (Vimicro Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
R1 {b99c8534-7800-48fa-bd71-519a46cdc7e1}Gw64; C:\Windows\System32\drivers\{b99c8534-7800-48fa-bd71-519a46cdc7e1}Gw64.sys [61120 2014-04-24] (StdLib)
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
S3 STHDA; \SystemRoot\system32\DRIVERS\stwrt64.sys [X]
S3 X6va015; \??\C:\WINDOWS\SysWOW64\Drivers\X6va015 [X]
S3 X6va022; \??\C:\WINDOWS\SysWOW64\Drivers\X6va022 [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 16:13 - 2014-08-01 16:14 - 02094080 _____ (Farbar) C:\Users\LOLKING\Downloads\FRST64 (1).exe
2014-08-01 15:47 - 2014-08-01 15:48 - 00036779 _____ () C:\Users\LOLKING\Downloads\Addition.txt
2014-08-01 15:45 - 2014-08-01 16:14 - 00024340 _____ () C:\Users\LOLKING\Downloads\FRST.txt
2014-08-01 15:45 - 2014-08-01 16:14 - 00000000 ____D () C:\FRST
2014-08-01 15:43 - 2014-08-01 15:43 - 02094080 _____ (Farbar) C:\Users\LOLKING\Downloads\FRST64.exe
2014-08-01 13:49 - 2014-08-01 13:49 - 00000222 _____ () C:\Users\LOLKING\Desktop\Warface.url
2014-07-29 00:37 - 2014-07-29 00:37 - 00006205 _____ () C:\Users\LOLKING\Desktop\logininfo.RAR
2014-07-28 22:06 - 2014-07-29 00:42 - 00000000 ____D () C:\Users\LOLKING\Desktop\Dark-Fusion
2014-07-28 22:04 - 2014-07-28 22:04 - 01864474 _____ () C:\Users\LOLKING\Downloads\Dark-Fusion Client.rar
2014-07-28 18:44 - 2014-07-29 01:07 - 00000000 ____D () C:\Users\LOLKING\Desktop\Firenze
2014-07-28 00:12 - 2014-07-28 00:12 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Publish Providers
2014-07-28 00:03 - 2014-07-28 00:07 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Sony
2014-07-27 23:41 - 2014-07-28 00:12 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Sony
2014-07-27 23:30 - 2014-07-27 23:36 - 56976398 _____ () C:\Users\LOLKING\Desktop\....mp4
2014-07-27 21:54 - 2014-07-27 21:54 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Python-Eggs
2014-07-27 20:22 - 2014-06-12 20:15 - 00000938 _____ () C:\Users\LOLKING\Desktop\Downloads.lnk
2014-07-27 01:03 - 2014-07-27 01:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BananaMt2
2014-07-26 23:33 - 2014-07-26 23:33 - 00000000 ____D () C:\Users\LOLKING\Documents\Arktos
2014-07-26 23:33 - 2014-07-26 23:33 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Arktos
2014-07-26 21:38 - 2014-07-26 21:38 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-07-26 21:38 - 2014-07-26 21:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-07-25 20:15 - 2014-07-27 21:45 - 00000000 ____D () C:\Users\LOLKING\Desktop\Sonstiges
2014-07-25 20:14 - 2014-07-26 19:22 - 00000000 ____D () C:\Users\LOLKING\Desktop\Metin2
2014-07-25 16:14 - 2014-07-25 16:16 - 1240453444 _____ () C:\Users\LOLKING\Downloads\RebellutioN.rar
2014-07-24 21:43 - 2014-07-24 21:43 - 00000000 ____D () C:\ProgramData\Free Download Manager
2014-07-24 21:41 - 2014-07-24 21:42 - 07830845 _____ (FreeDownloadManager.ORG ) C:\Users\LOLKING\Downloads\fdminst-3.9.4.1470.exe
2014-07-23 19:07 - 2014-07-23 19:07 - 00826192 _____ (Chip Digital GmbH) C:\Users\LOLKING\Downloads\Tor Browser Paket - CHIP-Installer.exe
2014-07-23 13:44 - 2014-07-10 06:03 - 04756992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-07-23 13:44 - 2014-07-10 05:33 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-07-23 13:43 - 2014-07-10 06:16 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-22 14:52 - 2014-07-22 14:53 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\QQSM
2014-07-22 14:48 - 2014-07-22 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hazard Ops
2014-07-22 14:35 - 2014-07-22 14:48 - 00000000 ____D () C:\Program Files (x86)\Hazard Ops
2014-07-22 14:14 - 2014-07-22 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-07-22 13:59 - 2014-07-22 14:00 - 01779712 _____ (Infernum Productions AG) C:\Users\LOLKING\Downloads\HazardOpsDLM.exe
2014-07-21 22:13 - 2014-07-21 22:13 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Injector
2014-07-21 20:45 - 2014-07-22 18:13 - 00000000 ____D () C:\Users\LOLKING\Documents\Cross Fire
2014-07-21 20:43 - 2014-07-21 20:43 - 00000851 _____ () C:\Users\Souljah\Desktop\Crossfire Europe.lnk
2014-07-21 20:43 - 2014-07-21 20:43 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2014-07-21 20:43 - 2014-07-21 20:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2014-07-21 20:33 - 2014-07-21 20:33 - 00000000 ____D () C:\SG Interactive
2014-07-21 20:20 - 2014-07-21 20:20 - 00000180 _____ () C:\console.log
2014-07-21 19:50 - 2014-07-21 19:50 - 02156048 _____ (Reloaded Technologies) C:\Users\LOLKING\Downloads\Crossfire_downloader.exe
2014-07-21 18:08 - 2014-07-21 18:08 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-07-19 19:59 - 2014-07-19 20:19 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2014-07-19 19:59 - 2014-07-19 19:59 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\PunkBuster
2014-07-19 19:59 - 2014-07-19 19:59 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Chromium
2014-07-18 18:10 - 2014-07-18 18:11 - 00017551 _____ () C:\WINDOWS\DirectX.log
2014-07-18 18:09 - 2014-07-19 20:19 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-07-18 18:09 - 2014-07-19 20:06 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2014-07-18 18:09 - 2014-07-18 18:09 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-18 18:08 - 2014-07-19 19:59 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-07-18 18:08 - 2011-12-19 15:16 - 03130440 _____ () C:\WINDOWS\SysWOW64\pbsvc_blr.exe
2014-07-17 16:24 - 2014-07-21 14:57 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Tunngle
2014-07-17 16:24 - 2014-07-17 16:24 - 00000000 ____D () C:\Users\LOLKING\Documents\Tunngle
2014-07-17 16:24 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2014-07-17 00:29 - 2014-07-17 00:29 - 00000000 ____D () C:\Users\LOLKING\Documents\Skype Voice Records
2014-07-17 00:29 - 2014-07-17 00:29 - 00000000 ____D () C:\Users\LOLKING\Documents\Clownfish Avatars
2014-07-16 21:51 - 2014-07-16 22:08 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Screaming Bee
2014-07-16 21:51 - 2014-07-16 21:51 - 00000000 ____D () C:\ProgramData\Screaming Bee
2014-07-16 18:33 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-07-16 18:33 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-07-16 18:33 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-07-16 18:33 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-07-16 18:32 - 2014-07-16 18:33 - 00004623 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-15 04:06 - 2014-07-15 04:06 - 00000000 _____ () C:\Users\LOLKING\AppData\Local\{2F1AFA4D-4761-4294-8015-E643091E9419}
2014-07-14 14:34 - 2014-07-14 14:34 - 00000295 _____ () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papierkorb.lnk
2014-07-13 18:19 - 2014-07-13 18:19 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-13 17:41 - 2014-07-13 17:41 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-07-13 17:34 - 2014-07-29 10:32 - 00003608 _____ () C:\WINDOWS\PFRO.log
2014-07-13 15:06 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2014-07-13 15:06 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2014-07-13 15:06 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-07-13 15:06 - 2014-05-31 12:07 - 00467800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-07-13 15:06 - 2014-05-31 12:07 - 00440664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-07-13 15:06 - 2014-05-31 12:07 - 00419672 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-07-13 15:06 - 2014-05-31 12:07 - 00089944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-07-13 15:06 - 2014-05-31 12:07 - 00027480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-07-13 15:06 - 2014-05-31 08:30 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-07-13 15:06 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2014-07-13 15:06 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2014-07-13 15:06 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2014-07-13 15:06 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2014-07-13 15:06 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll
2014-07-13 15:06 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-07-13 15:06 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-07-13 15:06 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2014-07-13 15:06 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-07-13 15:06 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-07-13 15:06 - 2014-05-13 09:01 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-07-13 15:06 - 2014-05-13 07:07 - 02844160 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-07-13 15:06 - 2014-05-13 06:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-07-13 15:06 - 2014-05-13 06:26 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-07-13 15:06 - 2014-05-13 05:59 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-07-13 15:06 - 2014-05-13 05:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-07-13 15:06 - 2014-05-03 13:29 - 01726224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-07-13 15:06 - 2014-05-03 11:20 - 01473080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-07-13 15:06 - 2014-05-03 07:36 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-07-13 15:06 - 2014-05-03 07:19 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-07-13 15:06 - 2014-05-03 07:08 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2014-07-13 15:06 - 2014-05-03 07:07 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2014-07-13 15:06 - 2014-05-03 06:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2014-07-13 15:06 - 2014-05-03 06:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2014-07-13 15:06 - 2014-05-03 06:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2014-07-13 15:06 - 2014-05-03 05:30 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-07-13 15:06 - 2014-05-03 05:27 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-07-13 15:06 - 2014-05-03 01:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat
2014-07-13 15:06 - 2014-05-01 07:44 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-07-13 15:06 - 2014-04-30 08:43 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2014-07-13 15:06 - 2014-04-30 08:41 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-07-13 15:06 - 2014-04-30 08:41 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2014-07-13 15:06 - 2014-04-30 08:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2014-07-13 15:06 - 2014-04-30 07:45 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-07-13 15:06 - 2014-04-30 06:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2014-07-13 15:06 - 2014-04-30 06:24 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-07-13 15:06 - 2014-04-30 06:23 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-07-13 15:06 - 2014-04-30 06:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-07-13 15:06 - 2014-04-30 06:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-07-13 15:06 - 2014-04-30 06:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-07-13 15:06 - 2014-04-30 05:59 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-07-13 15:06 - 2014-04-30 05:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-07-13 15:06 - 2014-04-30 05:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2014-07-13 15:06 - 2014-04-30 05:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2014-07-13 15:06 - 2014-04-30 05:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2014-07-13 15:06 - 2014-04-30 05:42 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-07-13 15:06 - 2014-04-29 00:40 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-07-13 15:06 - 2014-04-27 00:03 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-07-13 15:06 - 2014-04-26 22:14 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-07-13 15:06 - 2014-04-26 18:39 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-07-13 15:06 - 2014-04-14 11:37 - 02125344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-07-13 15:06 - 2014-04-14 10:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-07-13 15:06 - 2014-04-14 07:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-07-13 15:06 - 2014-04-09 08:11 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-07-13 15:06 - 2014-04-09 07:20 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-07-13 15:05 - 2014-05-31 08:27 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-07-13 00:29 - 2014-07-16 22:08 - 00001516 _____ () C:\WINDOWS\setupact.log
2014-07-13 00:29 - 2014-07-13 00:29 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-07-12 17:23 - 2014-08-01 15:24 - 01505363 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-12 15:54 - 2014-07-12 15:54 - 00000000 __SHD () C:\Users\LOLKING\AppData\Local\EmieUserList
2014-07-12 15:54 - 2014-07-12 15:54 - 00000000 __SHD () C:\Users\LOLKING\AppData\Local\EmieSiteList
2014-07-11 22:52 - 2014-07-15 14:28 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\wf-launcher
2014-07-11 22:52 - 2014-07-15 13:02 - 00000000 ____D () C:\ProgramData\GFACE
2014-07-11 22:10 - 2014-07-11 22:11 - 03736040 _____ (Piriform Ltd) C:\Users\LOLKING\Downloads\ccsetup415_slim.exe
2014-07-11 14:53 - 2014-08-01 13:47 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-11 14:53 - 2014-07-11 14:53 - 00000990 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-07-11 12:42 - 2014-07-11 12:42 - 00000174 _____ () C:\logininfo.xml
2014-07-11 12:42 - 2014-07-11 12:42 - 00000016 _____ () C:\Start.bat
2014-07-10 23:03 - 2014-07-10 23:03 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{8C874CFC-6F41-4281-AD72-29198BADF28A}
2014-07-10 16:39 - 2014-06-26 22:55 - 00703968 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-07-10 16:39 - 2014-06-26 22:55 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-10 16:34 - 2014-07-10 16:34 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-10 14:24 - 2014-04-14 05:29 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2014-07-09 20:12 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-09 20:12 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-09 20:12 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-09 20:12 - 2014-06-19 01:46 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-09 20:12 - 2014-06-19 00:57 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-09 20:12 - 2014-06-17 00:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-09 20:12 - 2014-06-17 00:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-09 20:12 - 2014-06-06 16:20 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-07-09 20:11 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-09 20:11 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-09 20:11 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-09 20:11 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-09 20:11 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-09 20:11 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-09 20:11 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-09 20:11 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-09 20:11 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-09 20:11 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-09 20:11 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-09 20:11 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-09 20:11 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-09 20:11 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-09 20:11 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-09 20:11 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-09 20:11 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-09 20:11 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-09 20:11 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-09 20:11 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-09 20:11 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-09 20:11 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-09 20:11 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-07-09 20:11 - 2014-05-29 14:02 - 00565576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-07-09 20:11 - 2014-05-29 09:55 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-07-09 20:11 - 2014-05-29 08:40 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-09 20:11 - 2014-05-29 08:37 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-07-09 20:11 - 2014-05-29 07:34 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-07-09 20:11 - 2014-05-29 07:27 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-07-09 20:10 - 2014-07-01 00:45 - 00688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-07-09 20:10 - 2014-06-28 09:48 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-07-09 20:10 - 2014-06-28 09:07 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-07-09 20:10 - 2014-06-06 15:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-09 20:10 - 2014-06-06 14:18 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-07-09 20:10 - 2014-05-31 12:07 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-09 20:10 - 2014-05-31 12:06 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-09 20:10 - 2014-05-31 05:40 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-09 20:10 - 2014-05-31 05:30 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-09 20:10 - 2014-05-31 05:12 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 20:10 - 2014-05-31 05:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-09 20:10 - 2014-05-31 05:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-09 20:10 - 2014-05-31 05:01 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 20:10 - 2014-05-31 04:56 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-09 20:10 - 2014-05-31 04:54 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-09 20:10 - 2014-05-31 04:48 - 03463680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-09 20:10 - 2014-05-31 04:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-07-09 20:10 - 2014-05-31 04:36 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-09 20:10 - 2014-05-31 04:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-07-09 20:10 - 2014-05-31 04:32 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-09 20:09 - 2014-07-09 20:09 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-09 10:08 - 2014-07-09 10:08 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{5D6E013E-834F-4E09-90B0-36FF7B11A406}
2014-07-07 14:37 - 2014-07-07 14:37 - 02592264 _____ () C:\Users\LOLKING\ts3_recording_14_07_07_14_37_26.wav
2014-07-06 19:25 - 2014-07-06 19:25 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{73B16248-A9BC-434D-8EDC-80EF842FA744}
2014-07-04 22:44 - 2014-07-04 22:44 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{6F1FA2AD-FD3B-4560-806A-0CB548F14E62}
2014-07-04 16:30 - 2014-07-04 16:30 - 00000000 ____D () C:\ProgramData\pwd
2014-07-04 13:21 - 2014-07-04 13:21 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{FFCCBBC4-1105-4BA2-A829-F4E105158481}
2014-07-04 13:21 - 2014-07-04 13:21 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{ADC7E92B-AB18-4610-AB55-FA2CBEA644CB}

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 16:14 - 2014-08-01 16:13 - 02094080 _____ (Farbar) C:\Users\LOLKING\Downloads\FRST64 (1).exe
2014-08-01 16:14 - 2014-08-01 15:45 - 00024340 _____ () C:\Users\LOLKING\Downloads\FRST.txt
2014-08-01 16:14 - 2014-08-01 15:45 - 00000000 ____D () C:\FRST
2014-08-01 16:13 - 2014-03-13 02:46 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Skype
2014-08-01 16:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-08-01 15:48 - 2014-08-01 15:47 - 00036779 _____ () C:\Users\LOLKING\Downloads\Addition.txt
2014-08-01 15:43 - 2014-08-01 15:43 - 02094080 _____ (Farbar) C:\Users\LOLKING\Downloads\FRST64.exe
2014-08-01 15:36 - 2014-04-16 21:16 - 00000994 _____ () C:\WINDOWS\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job
2014-08-01 15:24 - 2014-07-12 17:23 - 01505363 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-01 15:24 - 2014-03-14 12:22 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-01 15:21 - 2014-03-13 02:21 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1522620756-1697549942-4011926321-1001
2014-08-01 14:18 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-08-01 13:49 - 2014-08-01 13:49 - 00000222 _____ () C:\Users\LOLKING\Desktop\Warface.url
2014-08-01 13:49 - 2014-04-11 23:05 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-08-01 13:47 - 2014-07-11 14:53 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-01 13:32 - 2014-04-16 19:32 - 00001532 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5.job
2014-08-01 13:32 - 2014-04-16 19:32 - 00001456 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2.job
2014-08-01 13:32 - 2014-04-16 19:32 - 00001456 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-1.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00003150 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00002218 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00001492 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-5.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00001402 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-1.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00001396 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-2.job
2014-08-01 13:30 - 2014-04-16 19:30 - 00002802 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-3.job
2014-08-01 13:30 - 2014-04-16 19:30 - 00002400 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-4.job
2014-08-01 12:46 - 2014-03-13 02:13 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Pokki
2014-07-31 23:37 - 2014-03-13 02:20 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E69501A8-D6D4-4900-9049-20CF0BEF736C}
2014-07-31 16:36 - 2014-04-16 21:15 - 00000990 _____ () C:\WINDOWS\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job
2014-07-31 11:02 - 2014-04-20 19:04 - 00002179 _____ () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startmenü.lnk
2014-07-31 11:00 - 2014-04-12 00:31 - 00000000 __RDO () C:\Users\LOLKING\SkyDrive
2014-07-31 11:00 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-29 10:32 - 2014-07-13 17:34 - 00003608 _____ () C:\WINDOWS\PFRO.log
2014-07-29 01:07 - 2014-07-28 18:44 - 00000000 ____D () C:\Users\LOLKING\Desktop\Firenze
2014-07-29 00:42 - 2014-07-28 22:06 - 00000000 ____D () C:\Users\LOLKING\Desktop\Dark-Fusion
2014-07-29 00:37 - 2014-07-29 00:37 - 00006205 _____ () C:\Users\LOLKING\Desktop\logininfo.RAR
2014-07-28 23:39 - 2014-03-14 10:50 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\CrashDumps
2014-07-28 22:04 - 2014-07-28 22:04 - 01864474 _____ () C:\Users\LOLKING\Downloads\Dark-Fusion Client.rar
2014-07-28 20:52 - 2014-02-09 06:49 - 00884814 _____ () C:\WINDOWS\system32\perfh007.dat
2014-07-28 20:52 - 2014-02-09 06:49 - 00203032 _____ () C:\WINDOWS\system32\perfc007.dat
2014-07-28 20:52 - 2013-10-07 20:27 - 02078184 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-28 19:46 - 2014-03-13 02:31 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\TS3Client
2014-07-28 18:23 - 2014-06-14 00:30 - 00000000 ____D () C:\Fraps
2014-07-28 10:25 - 2014-03-13 02:58 - 01149440 ___SH () C:\Users\LOLKING\Desktop\Thumbs.db
2014-07-28 00:12 - 2014-07-28 00:12 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Publish Providers
2014-07-28 00:12 - 2014-07-27 23:41 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Sony
2014-07-28 00:07 - 2014-07-28 00:03 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Sony
2014-07-27 23:36 - 2014-07-27 23:30 - 56976398 _____ () C:\Users\LOLKING\Desktop\....mp4
2014-07-27 21:54 - 2014-07-27 21:54 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Python-Eggs
2014-07-27 21:45 - 2014-07-25 20:15 - 00000000 ____D () C:\Users\LOLKING\Desktop\Sonstiges
2014-07-27 01:03 - 2014-07-27 01:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BananaMt2
2014-07-26 23:33 - 2014-07-26 23:33 - 00000000 ____D () C:\Users\LOLKING\Documents\Arktos
2014-07-26 23:33 - 2014-07-26 23:33 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Arktos
2014-07-26 22:36 - 2014-04-13 15:22 - 00000000 ____D () C:\Users\LOLKING\Desktop\Musik
2014-07-26 21:38 - 2014-07-26 21:38 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-07-26 21:38 - 2014-07-26 21:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-07-26 19:22 - 2014-07-25 20:14 - 00000000 ____D () C:\Users\LOLKING\Desktop\Metin2
2014-07-26 00:44 - 2014-04-06 13:35 - 00000000 ___RD () C:\Users\LOLKING\Desktop\Programme
2014-07-25 19:56 - 2014-03-13 02:13 - 00000000 ____D () C:\Users\LOLKING
2014-07-25 16:16 - 2014-07-25 16:14 - 1240453444 _____ () C:\Users\LOLKING\Downloads\RebellutioN.rar
2014-07-25 15:40 - 2013-08-22 16:44 - 00344864 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-25 00:25 - 2014-02-08 22:35 - 00008704 _____ () C:\WINDOWS\system32\VfService.trf
2014-07-25 00:25 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-07-24 21:43 - 2014-07-24 21:43 - 00000000 ____D () C:\ProgramData\Free Download Manager
2014-07-24 21:42 - 2014-07-24 21:41 - 07830845 _____ (FreeDownloadManager.ORG ) C:\Users\LOLKING\Downloads\fdminst-3.9.4.1470.exe
2014-07-24 14:19 - 2014-05-25 20:49 - 00048640 ___SH () C:\Users\LOLKING\Downloads\Thumbs.db
2014-07-24 11:11 - 2013-08-22 17:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-07-23 22:38 - 2014-03-13 22:31 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Unity
2014-07-23 19:07 - 2014-07-23 19:07 - 00826192 _____ (Chip Digital GmbH) C:\Users\LOLKING\Downloads\Tor Browser Paket - CHIP-Installer.exe
2014-07-22 18:13 - 2014-07-21 20:45 - 00000000 ____D () C:\Users\LOLKING\Documents\Cross Fire
2014-07-22 14:53 - 2014-07-22 14:52 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\QQSM
2014-07-22 14:48 - 2014-07-22 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hazard Ops
2014-07-22 14:48 - 2014-07-22 14:35 - 00000000 ____D () C:\Program Files (x86)\Hazard Ops
2014-07-22 14:43 - 2014-04-07 00:15 - 00000000 ____D () C:\ProgramData\Solid State Networks
2014-07-22 14:15 - 2014-03-16 00:03 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Google
2014-07-22 14:14 - 2014-07-22 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-07-22 14:00 - 2014-07-22 13:59 - 01779712 _____ (Infernum Productions AG) C:\Users\LOLKING\Downloads\HazardOpsDLM.exe
2014-07-22 13:38 - 2014-06-13 15:30 - 00003858 _____ () C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1402666209
2014-07-22 13:38 - 2014-05-17 21:31 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-07-21 22:13 - 2014-07-21 22:13 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Injector
2014-07-21 20:43 - 2014-07-21 20:43 - 00000851 _____ () C:\Users\Souljah\Desktop\Crossfire Europe.lnk
2014-07-21 20:43 - 2014-07-21 20:43 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2014-07-21 20:43 - 2014-07-21 20:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2014-07-21 20:33 - 2014-07-21 20:33 - 00000000 ____D () C:\SG Interactive
2014-07-21 20:20 - 2014-07-21 20:20 - 00000180 _____ () C:\console.log
2014-07-21 19:50 - 2014-07-21 19:50 - 02156048 _____ (Reloaded Technologies) C:\Users\LOLKING\Downloads\Crossfire_downloader.exe
2014-07-21 18:08 - 2014-07-21 18:08 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-07-21 14:57 - 2014-07-17 16:24 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Tunngle
2014-07-19 20:19 - 2014-07-19 19:59 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2014-07-19 20:19 - 2014-07-18 18:09 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-07-19 20:06 - 2014-07-18 18:09 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2014-07-19 19:59 - 2014-07-19 19:59 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\PunkBuster
2014-07-19 19:59 - 2014-07-19 19:59 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Chromium
2014-07-19 19:59 - 2014-07-18 18:08 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-07-18 22:21 - 2014-06-14 00:57 - 00000000 ____D () C:\ProgramData\WinZip
2014-07-18 18:11 - 2014-07-18 18:10 - 00017551 _____ () C:\WINDOWS\DirectX.log
2014-07-18 18:09 - 2014-07-18 18:09 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-18 15:07 - 2014-06-04 20:37 - 00000000 ___HD () C:\ArcTemp
2014-07-18 12:46 - 2014-02-08 22:08 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-17 16:24 - 2014-07-17 16:24 - 00000000 ____D () C:\Users\LOLKING\Documents\Tunngle
2014-07-17 00:29 - 2014-07-17 00:29 - 00000000 ____D () C:\Users\LOLKING\Documents\Skype Voice Records
2014-07-17 00:29 - 2014-07-17 00:29 - 00000000 ____D () C:\Users\LOLKING\Documents\Clownfish Avatars
2014-07-16 22:08 - 2014-07-16 21:51 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Screaming Bee
2014-07-16 22:08 - 2014-07-13 00:29 - 00001516 _____ () C:\WINDOWS\setupact.log
2014-07-16 21:51 - 2014-07-16 21:51 - 00000000 ____D () C:\ProgramData\Screaming Bee
2014-07-16 18:33 - 2014-07-16 18:32 - 00004623 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 18:33 - 2014-04-06 23:59 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-16 18:33 - 2014-04-06 23:59 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-16 16:13 - 2014-03-13 02:30 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-07-15 14:28 - 2014-07-11 22:52 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\wf-launcher
2014-07-15 13:02 - 2014-07-11 22:52 - 00000000 ____D () C:\ProgramData\GFACE
2014-07-15 04:06 - 2014-07-15 04:06 - 00000000 _____ () C:\Users\LOLKING\AppData\Local\{2F1AFA4D-4761-4294-8015-E643091E9419}
2014-07-14 14:34 - 2014-07-14 14:34 - 00000295 _____ () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papierkorb.lnk
2014-07-14 01:11 - 2014-06-14 11:09 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Mozilla
2014-07-14 01:11 - 2014-04-05 11:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-13 18:19 - 2014-07-13 18:19 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-13 17:41 - 2014-07-13 17:41 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-07-13 17:38 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-07-13 17:38 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-07-13 17:38 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-07-13 15:05 - 2014-04-17 22:11 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-07-13 15:04 - 2014-06-11 15:34 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-07-13 00:29 - 2014-07-13 00:29 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-07-12 17:25 - 2014-03-20 04:39 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-12 17:23 - 2014-03-20 04:38 - 96441528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-12 16:04 - 2014-03-23 13:56 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-12 16:04 - 2014-03-22 12:17 - 00000000 ___DC () C:\Users\LOLKING\AppData\Local\MigWiz
2014-07-12 16:04 - 2013-10-07 21:23 - 00000000 ____D () C:\WINDOWS\Panther
2014-07-12 15:54 - 2014-07-12 15:54 - 00000000 __SHD () C:\Users\LOLKING\AppData\Local\EmieUserList
2014-07-12 15:54 - 2014-07-12 15:54 - 00000000 __SHD () C:\Users\LOLKING\AppData\Local\EmieSiteList
2014-07-11 22:11 - 2014-07-11 22:10 - 03736040 _____ (Piriform Ltd) C:\Users\LOLKING\Downloads\ccsetup415_slim.exe
2014-07-11 15:53 - 2014-06-21 18:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2014-07-11 15:53 - 2014-06-21 18:21 - 00000000 ____D () C:\Program Files (x86)\Mirillis
2014-07-11 15:52 - 2014-06-28 22:47 - 00000000 ____D () C:\ProgramData\gamigo
2014-07-11 14:53 - 2014-07-11 14:53 - 00000990 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-07-11 12:42 - 2014-07-11 12:42 - 00000174 _____ () C:\logininfo.xml
2014-07-11 12:42 - 2014-07-11 12:42 - 00000016 _____ () C:\Start.bat
2014-07-11 12:37 - 2014-03-13 02:15 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\VirtualStore
2014-07-11 03:02 - 2014-07-16 18:33 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-16 18:33 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-16 18:33 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-16 18:33 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-07-10 23:03 - 2014-07-10 23:03 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{8C874CFC-6F41-4281-AD72-29198BADF28A}
2014-07-10 16:34 - 2014-07-10 16:34 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-10 16:34 - 2013-08-22 21:12 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-10 16:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-07-10 16:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-10 16:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-10 16:34 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-07-10 14:27 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-07-10 06:16 - 2014-07-23 13:43 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-10 06:03 - 2014-07-23 13:44 - 04756992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-07-10 05:33 - 2014-07-23 13:44 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-07-09 20:09 - 2014-07-09 20:09 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-09 10:08 - 2014-07-09 10:08 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{5D6E013E-834F-4E09-90B0-36FF7B11A406}
2014-07-09 10:06 - 2014-04-16 19:30 - 00000436 _____ () C:\WINDOWS\Tasks\Re-markit Update.job
2014-07-09 10:06 - 2014-04-16 19:29 - 00000426 _____ () C:\WINDOWS\Tasks\Re-markit_wd.job
2014-07-08 23:11 - 2014-04-10 22:53 - 00000326 _____ () C:\WINDOWS\Tasks\MySearchDial.job
2014-07-08 19:24 - 2014-03-14 12:22 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-07-07 14:37 - 2014-07-07 14:37 - 02592264 _____ () C:\Users\LOLKING\ts3_recording_14_07_07_14_37_26.wav
2014-07-06 19:25 - 2014-07-06 19:25 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{73B16248-A9BC-434D-8EDC-80EF842FA744}
2014-07-04 22:44 - 2014-07-04 22:44 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{6F1FA2AD-FD3B-4560-806A-0CB548F14E62}
2014-07-04 16:30 - 2014-07-04 16:30 - 00000000 ____D () C:\ProgramData\pwd
2014-07-04 15:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-07-04 13:21 - 2014-07-04 13:21 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{FFCCBBC4-1105-4BA2-A829-F4E105158481}
2014-07-04 13:21 - 2014-07-04 13:21 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{ADC7E92B-AB18-4610-AB55-FA2CBEA644CB}

Some content of TEMP:
====================
C:\Users\LOLKING\AppData\Local\Temp\dbcclient.exe
C:\Users\LOLKING\AppData\Local\Temp\InstallManager_GEN_GEN.exe
C:\Users\LOLKING\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\LOLKING\AppData\Local\Temp\tmpE362.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-28 19:15

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---


Addition dateien:
FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-07-2014 02
Ran by LOLKING at 2014-08-01 16:15:09
Running from C:\Users\LOLKING\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Crossfire Europe (HKLM-x32\...\Crossfire Europe) (Version: 1.172 - SG Europe)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.3.2.2 - Dolby Laboratories Inc)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free YouTube to MP3 Converter version 3.12.35.514 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.35.514 - DVDVideoSoft Ltd.)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 0.2.0.2042 - Infernum Productions AG)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{4041B18B-DE30-4D78-9D60-6ADC586C5E00}) (Version: 2.1.003.00 - Lenovo Group Limited)
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837B34E3-7C30-493C-8F6A-2B0F04E2912C}) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version:  - )
Nitro Pro 8 (HKLM\...\{C0EE31FB-F593-4128-8A86-FDB37BA2486D}) (Version: 8.5.6.5 - Nitro)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Opera Stable 23.0.1522.60 (HKLM-x32\...\Opera 23.0.1522.60) (Version: 23.0.1522.60 - Opera Software ASA)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.13.3.38 - Client Connect LTD) <==== ATTENTION
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version:  - )
Startmenü (HKCU\...\Pokki) (Version: 0.269.2.430 - Pokki)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.9.1 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS)
Warface (HKLM-x32\...\Steam App 291480) (Version:  - Crytek GmbH)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
Yahoo Community Smartbar (HKLM-x32\...\{D62304BE-D5D3-4CCF-8973-123909491ADB}) (Version: 11.62.66.17712 - Linkury Inc.) <==== ATTENTION
Yahoo Community Smartbar Engine (HKCU\...\{e50893a4-0617-42bc-ae29-530a81456516}) (Version: 11.62.66.17712 - Linkury Inc.) <==== ATTENTION

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1522620756-1697549942-4011926321-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1522620756-1697549942-4011926321-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\npAppUp_x64.dll (Intel)
CustomCLSID: HKU\S-1-5-21-1522620756-1697549942-4011926321-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\npAppUp_x64.dll (Intel)

==================== Restore Points  =========================

12-07-2014 13:55:05 Entfernt Arc
16-07-2014 16:32:12 Installed Java 7 Update 65
17-07-2014 19:11:13 Removed MorphVOX Junior
17-07-2014 19:12:25 Removed MorphVOX Junior
22-07-2014 12:51:24 DirectX wurde installiert
24-07-2014 22:21:24 Removed LogMeIn Hamachi
28-07-2014 16:26:38 Removed Vegas Pro 13.0 (64-bit)

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2014-05-02 21:01 - 00000143 ____A C:\WINDOWS\system32\Drivers\etc\hosts
85.114.135.48 path.pointblankonline.com.br

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00ACB66F-2F36-4ADA-8104-815995C03135} - System32\Tasks\Opera scheduled Autoupdate 1402666209 => C:\Program Files (x86)\Opera\launcher.exe [2014-07-18] (Opera Software)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0673324E-7952-4E3A-8363-0758755B9182} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-1 => C:\Program Files (x86)\HQ-V-Pro-1.9\HQ-V-Pro-1.9-codedownloader.exe
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0D8BB5B8-2B75-4711-BED4-84E69F03BF21} - System32\Tasks\Price Meter Updater => C:\Users\LOLKING\AppData\Roaming\PRICEM~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {0DB78347-0326-4AC7-9743-B417AD73D514} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-08] (Adobe Systems Incorporated)
Task: {16DBEEB8-928F-48D1-9115-4F0E2A6B3202} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {1CFBDAA0-521B-41A3-B455-BD59D3C95CC9} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {20E7DD5F-89B8-4154-B2FD-3965CCAF5C2E} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {24CF8B66-5BDD-429B-B28D-C675885F7E8E} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-4 => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-4.exe
Task: {26A05B9E-7841-4524-AECB-8D8EF7660419} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2 => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2.exe <==== ATTENTION
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2D549A93-F56E-4A65-BB11-B69292F89324} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {41F222BD-F193-45F5-BB5B-4F3A386E2866} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {482216D5-CC96-49F1-85FA-5DC0093097FB} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-2 => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-2.exe
Task: {492E4B81-29CD-40A7-B725-7304A39D0DFE} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4D0F6359-F24C-4D81-A145-F6B0825A5BEF} - System32\Tasks\MySearchDial => C:\Users\LOLKING\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {4D2E0682-5F6E-48BC-B0B1-095B8B04FEEE} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {4EA5DB4C-9C24-440B-8628-E7E0F13FD8F8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-07-12] (Microsoft Corporation)
Task: {4ED96036-30D9-468C-A0C3-BB924D5EDE17} - System32\Tasks\{FFCCBBC4-1105-4BA2-A829-F4E105158481} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {522F21F9-A296-475F-BE20-C12C85F7596B} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-1 => C:\Program Files (x86)\MediaPlayerplus\MediaPlayerplus-codedownloader.exe <==== ATTENTION
Task: {54C3342B-ADAB-4FA5-A96D-B0529410735A} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-3 => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-3.exe
Task: {5644A3F4-88A5-4F0A-9762-9E015ED2D51A} - System32\Tasks\{40A3EA3E-3DBD-4CE2-9D5F-271BBAF48AA9} => c:\program files (x86)\opera\launcher.exe [2014-07-18] (Opera Software)
Task: {5B2CAB2D-B2B5-49E5-ACC4-265E6955B533} - System32\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore => C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [2014-06-11] (PriceMeter)
Task: {6A38CEF0-DD56-4C4D-B914-666ED4ABDA18} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3 => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3.exe <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {71778F20-1A98-4F23-9681-40E20825B5F8} - System32\Tasks\{ADC7E92B-AB18-4610-AB55-FA2CBEA644CB} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {74109512-25AD-48E3-80A8-75E339D2A458} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {784B2FF9-4F36-49ED-BA29-3A26483A49DA} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {7AD1C631-8678-4247-9F28-5200AA93B608} - System32\Tasks\{73B16248-A9BC-434D-8EDC-80EF842FA744} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {89060BFB-D3AE-4A40-9BFE-6811953FE419} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-05-17] (Lenovo)
Task: {8C02BBD0-1095-46DA-AC9C-6D1688C76754} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9AEAAD87-E818-4684-829B-72EA77FD2C16} - System32\Tasks\{5D6E013E-834F-4E09-90B0-36FF7B11A406} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {9C46F5FB-F5DC-4F2B-A098-E39E594CF8DC} - System32\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA => C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [2014-06-11] (PriceMeter)
Task: {9CC8E2CA-63E3-438B-9E71-BD7410C42834} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files (x86)\YourFileDownloader Updater\YourFileUpdater.exe <==== ATTENTION
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A4CA51CC-C3EE-4C3B-89EC-F6DB47110506} - System32\Tasks\pricemeterdownloader => C:\Users\LOLKING\AppData\Local\PriceMeter\pricemeterd.exe
Task: {AAA89DAF-1B4F-447D-AF21-7F0559AC9962} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe
Task: {B58AE326-3C60-4623-98AA-3B920EF1C709} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-5 => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-5.exe
Task: {BB563889-A379-41E4-8C1A-7EF41397170B} - System32\Tasks\Re-markit_wd => C:\Program Files (x86)\Re-markit-soft\Re-markitfQLOWw.exe [2014-04-16] () <==== ATTENTION
Task: {C559E62D-053A-49D3-917E-D542AE8F7327} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D12C7834-F2E4-4CE2-B533-B4256B53DC89} - System32\Tasks\{8C874CFC-6F41-4281-AD72-29198BADF28A} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {D690E248-8769-45BA-B939-EC3390210FF9} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-05-17] ()
Task: {D765B4CB-8052-4F1C-A888-A01242FCDD8D} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4 => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4.exe <==== ATTENTION
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DBEC0451-870F-4114-8435-EF21F8845D9E} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5 => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5.exe <==== ATTENTION
Task: {DC143922-E3F2-45C3-BF67-7A431A96428E} - System32\Tasks\{6F1FA2AD-FD3B-4560-806A-0CB548F14E62} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {E54B63CF-DBCB-47C1-9CAC-9BA84990E85A} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F019571C-92DE-452C-9D04-C9249A0F5D5B} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {F864721A-48CA-4BAE-B5FF-F1FC211760E2} - System32\Tasks\Re-markit Update => C:\Program Files (x86)\Re-markit-soft\Re-markitfQL.exe [2014-04-16] () <==== ATTENTION
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-1.job => C:\Program Files (x86)\HQ-V-Pro-1.9\HQ-V-Pro-1.9-codedownloader.exe
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-2.job => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-2.exe
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-3.job => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-3.exe
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-4.job => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-4.exe
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-5.job => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-5.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-1.job => C:\Program Files (x86)\MediaPlayerplus\MediaPlayerplus-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2.job => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3.job => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4.job => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5.job => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\MySearchDial.job => C:\Users\LOLKING\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\Price Meter Updater.job => C:\Users\LOLKING\AppData\Roaming\PRICEM~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Re-markit Update.job => C:\Program Files (x86)\Re-markit-soft\Re-markitfQL.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Re-markit_wd.job => C:\Program Files (x86)\Re-markit-soft\Re-markitfQLOWw.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-07-18 18:08 - 2014-07-19 19:59 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-04-16 19:29 - 2014-04-16 19:29 - 00142336 _____ () C:\Program Files (x86)\Re-markit-soft\Re-markitfQL158.exe
2014-02-08 22:35 - 2014-02-08 22:35 - 00068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
2014-02-08 22:35 - 2014-02-08 22:35 - 00669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll
2014-04-16 19:29 - 2014-04-16 19:29 - 00077312 _____ () C:\Program Files (x86)\Re-markit-soft\Re-markitfQLOWw.exe
2014-06-11 14:13 - 2014-06-11 14:13 - 00023832 _____ () C:\Users\LOLKING\AppData\Local\LPT\srptm.exe
2014-06-11 14:11 - 2014-06-11 14:11 - 00024344 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Lrcnta.exe
2014-05-23 12:45 - 2014-05-23 12:45 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\ErrorReporting.dll
2014-07-22 13:37 - 2014-07-22 13:37 - 01401464 _____ () C:\Program Files (x86)\Opera\23.0.1522.60\opera_crashreporter.exe
2014-04-16 19:29 - 2014-04-16 19:29 - 00133120 _____ () C:\Program Files (x86)\Re-markit-soft\Re-markitfQL158.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00045848 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00070936 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srau.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00166680 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 02337048 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00067864 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\spbl.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00156440 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00015128 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\siem.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00066840 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\sppsm.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00697624 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00015640 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00079640 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00027928 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00060184 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srut.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00030488 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srsbs.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00066328 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00150296 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\smti.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00032024 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srom.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00031512 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\smtu.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00039704 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\smta.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00046872 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srbu.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00024856 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\sgml.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00062744 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00025880 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srpdm.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00044312 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2014-06-11 14:03 - 2014-06-11 14:03 - 00025880 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00036120 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00256280 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srns.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00077592 _____ () C:\Users\LOLKING\AppData\Local\LPT\srpt.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00043288 _____ () C:\Users\LOLKING\AppData\Local\LPT\srptc.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00018200 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Common.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00060184 _____ () C:\Users\LOLKING\AppData\Local\LPT\srut.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00066840 _____ () C:\Users\LOLKING\AppData\Local\LPT\sppsm.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00156440 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00027928 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Personalization.Common.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00166680 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Infrastructure.Utilities.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00046872 _____ () C:\Users\LOLKING\AppData\Local\LPT\srbu.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00025880 _____ () C:\Users\LOLKING\AppData\Local\LPT\srpdm.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00026904 _____ () C:\Users\LOLKING\AppData\Local\LPT\ProxySettings.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00046360 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Monetization.Proxy.ProxyService.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00055064 _____ () C:\Users\LOLKING\AppData\Local\LPT\srprl.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00049432 _____ () C:\Users\LOLKING\AppData\Local\LPT\lrrot.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00053528 _____ () C:\Users\LOLKING\AppData\Local\LPT\Proxy.Lib.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00028440 _____ () C:\Users\LOLKING\AppData\Local\LPT\sreu.dll
2014-02-08 22:08 - 2013-09-04 01:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-07-11 14:54 - 2014-07-12 02:53 - 01116672 _____ () C:\Program Files (x86)\Steam\libavcodec-55.dll
2014-07-11 14:54 - 2014-07-12 02:53 - 00399360 _____ () C:\Program Files (x86)\Steam\libavformat-55.dll
2014-07-11 14:54 - 2014-07-12 02:53 - 00331264 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-07-11 14:54 - 2014-07-12 02:53 - 00438784 _____ () C:\Program Files (x86)\Steam\libavutil-53.dll
2014-07-11 14:54 - 2014-06-27 00:40 - 00764416 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-07-11 14:54 - 2014-07-16 04:28 - 02139328 _____ () C:\Program Files (x86)\Steam\video.dll
2014-07-11 14:54 - 2014-04-29 02:37 - 00519168 _____ () C:\Program Files (x86)\Steam\libswscale-2.dll
2014-07-11 14:54 - 2014-07-16 04:28 - 01116864 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-07-11 14:54 - 2014-05-02 01:35 - 20628160 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00034072 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\lrcnt.dll
2014-07-22 13:37 - 2014-07-22 13:37 - 00880248 _____ () C:\Program Files (x86)\Opera\23.0.1522.60\libglesv2.dll
2014-07-22 13:37 - 2014-07-22 13:37 - 00135800 _____ () C:\Program Files (x86)\Opera\23.0.1522.60\libegl.dll
2014-07-22 13:37 - 2014-07-22 13:37 - 00957048 _____ () C:\Program Files (x86)\Opera\23.0.1522.60\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\LOLKING\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\LOLKING\SkyDrive (2).old:ms-properties
AlternateDataStreams: C:\Users\LOLKING\SkyDrive.old:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/01/2014 01:23:32 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/31/2014 11:05:55 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20498 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: aac

Startzeit: 01cfac9de46f7186

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: d98695c9-1891-11e4-82ef-40f02fe7d330

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (07/29/2014 06:42:07 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/28/2014 11:36:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fusion-Network.exe, Version: 0.0.0.0, Zeitstempel: 0x7375705f
Name des fehlerhaften Moduls: granny2.dll, Version: 0.0.0.0, Zeitstempel: 0x40493d28
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00008183
ID des fehlerhaften Prozesses: 0xd3e4
Startzeit der fehlerhaften Anwendung: 0xFusion-Network.exe0
Pfad der fehlerhaften Anwendung: Fusion-Network.exe1
Pfad des fehlerhaften Moduls: Fusion-Network.exe2
Berichtskennung: Fusion-Network.exe3
Vollständiger Name des fehlerhaften Pakets: Fusion-Network.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Fusion-Network.exe5

Error: (07/28/2014 10:14:28 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (07/28/2014 10:14:27 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (07/28/2014 10:14:26 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (07/28/2014 10:14:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4

Error: (07/28/2014 10:14:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll4

Error: (07/28/2014 10:14:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll4


System errors:
=============
Error: (07/31/2014 11:03:29 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {EA022610-0748-4C24-B229-6C507EBDFDBB}

Error: (07/31/2014 11:00:19 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: Beim Zugreifen auf den Registrierungsschlüssel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration ist ein Fehler aufgetreten.

Error: (07/31/2014 10:59:47 AM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.

Error: (07/31/2014 11:00:09 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎30.‎07.‎2014 um 12:25:30 unerwartet heruntergefahren.

Error: (07/29/2014 10:32:54 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: Beim Zugreifen auf den Registrierungsschlüssel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration ist ein Fehler aufgetreten.

Error: (07/29/2014 10:32:17 AM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.

Error: (07/29/2014 10:32:51 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎29.‎07.‎2014 um 00:32:25 unerwartet heruntergefahren.

Error: (07/28/2014 11:01:37 AM) (Source: DCOM) (EventID: 10010) (User: PIERRESLAPPI)
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}

Error: (07/28/2014 10:24:27 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: Beim Zugreifen auf den Registrierungsschlüssel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration ist ein Fehler aufgetreten.

Error: (07/28/2014 10:23:46 AM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.


Microsoft Office Sessions:
=========================
Error: (08/01/2014 01:23:32 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/31/2014 11:05:55 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20498aac01cfac9de46f71864294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exed98695c9-1891-11e4-82ef-40f02fe7d330microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (07/29/2014 06:42:07 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/28/2014 11:36:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fusion-Network.exe0.0.0.07375705fgranny2.dll0.0.0.040493d28c000000500008183d3e401cfaaa448ff2da5C:\Users\LOLKING\Desktop\Dark-Fusion\Fusion-Network.exeC:\Users\LOLKING\Desktop\Dark-Fusion\granny2.dll385cf2a1-169f-11e4-82ed-40f02fe7d330

Error: (07/28/2014 10:14:28 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (07/28/2014 10:14:27 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (07/28/2014 10:14:26 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (07/28/2014 10:14:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4

Error: (07/28/2014 10:14:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll4

Error: (07/28/2014 10:14:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll4


==================== Memory info ===========================

Percentage of memory in use: 45%
Total physical RAM: 3986.27 MB
Available physical RAM: 2182.03 MB
Total Pagefile: 6162.27 MB
Available Pagefile: 3232.94 MB
Total Virtual: 131072 MB
Available Virtual: 131071.85 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:427.21 GB) (Free:316.28 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 5F32F702)

Partition: GPT Partition Type.

==================== End Of Log ============================
--- --- ---

Ok und jetzt?:confused::confused:

cosinus 01.08.2014 15:21
Was ist mit meiner Frage nach bisherigen Funden?

Zitat:
Hosts: 85.114.135.48 path.pointblankonline.com.br
Wasndas?

WTFx3 01.08.2014 15:36
Ich habe keine ahnung von sowas >.<
Deswegen suche ich ja auch hilfe :wtf:

Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-07-2014 02
Ran by LOLKING at 2014-08-01 16:15:09
Running from C:\Users\LOLKING\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Crossfire Europe (HKLM-x32\...\Crossfire Europe) (Version: 1.172 - SG Europe)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.3.2.2 - Dolby Laboratories Inc)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free YouTube to MP3 Converter version 3.12.35.514 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.35.514 - DVDVideoSoft Ltd.)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 0.2.0.2042 - Infernum Productions AG)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{4041B18B-DE30-4D78-9D60-6ADC586C5E00}) (Version: 2.1.003.00 - Lenovo Group Limited)
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837B34E3-7C30-493C-8F6A-2B0F04E2912C}) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version:  - )
Nitro Pro 8 (HKLM\...\{C0EE31FB-F593-4128-8A86-FDB37BA2486D}) (Version: 8.5.6.5 - Nitro)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Opera Stable 23.0.1522.60 (HKLM-x32\...\Opera 23.0.1522.60) (Version: 23.0.1522.60 - Opera Software ASA)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.13.3.38 - Client Connect LTD) <==== ATTENTION
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version:  - )
Startmenü (HKCU\...\Pokki) (Version: 0.269.2.430 - Pokki)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.9.1 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS)
Warface (HKLM-x32\...\Steam App 291480) (Version:  - Crytek GmbH)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
Yahoo Community Smartbar (HKLM-x32\...\{D62304BE-D5D3-4CCF-8973-123909491ADB}) (Version: 11.62.66.17712 - Linkury Inc.) <==== ATTENTION
Yahoo Community Smartbar Engine (HKCU\...\{e50893a4-0617-42bc-ae29-530a81456516}) (Version: 11.62.66.17712 - Linkury Inc.) <==== ATTENTION

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1522620756-1697549942-4011926321-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1522620756-1697549942-4011926321-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\npAppUp_x64.dll (Intel)
CustomCLSID: HKU\S-1-5-21-1522620756-1697549942-4011926321-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\npAppUp_x64.dll (Intel)

==================== Restore Points  =========================

12-07-2014 13:55:05 Entfernt Arc
16-07-2014 16:32:12 Installed Java 7 Update 65
17-07-2014 19:11:13 Removed MorphVOX Junior
17-07-2014 19:12:25 Removed MorphVOX Junior
22-07-2014 12:51:24 DirectX wurde installiert
24-07-2014 22:21:24 Removed LogMeIn Hamachi
28-07-2014 16:26:38 Removed Vegas Pro 13.0 (64-bit)

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2014-05-02 21:01 - 00000143 ____A C:\WINDOWS\system32\Drivers\etc\hosts
85.114.135.48 path.pointblankonline.com.br

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00ACB66F-2F36-4ADA-8104-815995C03135} - System32\Tasks\Opera scheduled Autoupdate 1402666209 => C:\Program Files (x86)\Opera\launcher.exe [2014-07-18] (Opera Software)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0673324E-7952-4E3A-8363-0758755B9182} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-1 => C:\Program Files (x86)\HQ-V-Pro-1.9\HQ-V-Pro-1.9-codedownloader.exe
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0D8BB5B8-2B75-4711-BED4-84E69F03BF21} - System32\Tasks\Price Meter Updater => C:\Users\LOLKING\AppData\Roaming\PRICEM~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {0DB78347-0326-4AC7-9743-B417AD73D514} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-08] (Adobe Systems Incorporated)
Task: {16DBEEB8-928F-48D1-9115-4F0E2A6B3202} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {1CFBDAA0-521B-41A3-B455-BD59D3C95CC9} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {20E7DD5F-89B8-4154-B2FD-3965CCAF5C2E} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {24CF8B66-5BDD-429B-B28D-C675885F7E8E} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-4 => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-4.exe
Task: {26A05B9E-7841-4524-AECB-8D8EF7660419} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2 => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2.exe <==== ATTENTION
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2D549A93-F56E-4A65-BB11-B69292F89324} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {41F222BD-F193-45F5-BB5B-4F3A386E2866} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {482216D5-CC96-49F1-85FA-5DC0093097FB} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-2 => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-2.exe
Task: {492E4B81-29CD-40A7-B725-7304A39D0DFE} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4D0F6359-F24C-4D81-A145-F6B0825A5BEF} - System32\Tasks\MySearchDial => C:\Users\LOLKING\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {4D2E0682-5F6E-48BC-B0B1-095B8B04FEEE} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {4EA5DB4C-9C24-440B-8628-E7E0F13FD8F8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-07-12] (Microsoft Corporation)
Task: {4ED96036-30D9-468C-A0C3-BB924D5EDE17} - System32\Tasks\{FFCCBBC4-1105-4BA2-A829-F4E105158481} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {522F21F9-A296-475F-BE20-C12C85F7596B} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-1 => C:\Program Files (x86)\MediaPlayerplus\MediaPlayerplus-codedownloader.exe <==== ATTENTION
Task: {54C3342B-ADAB-4FA5-A96D-B0529410735A} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-3 => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-3.exe
Task: {5644A3F4-88A5-4F0A-9762-9E015ED2D51A} - System32\Tasks\{40A3EA3E-3DBD-4CE2-9D5F-271BBAF48AA9} => c:\program files (x86)\opera\launcher.exe [2014-07-18] (Opera Software)
Task: {5B2CAB2D-B2B5-49E5-ACC4-265E6955B533} - System32\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore => C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [2014-06-11] (PriceMeter)
Task: {6A38CEF0-DD56-4C4D-B914-666ED4ABDA18} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3 => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3.exe <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {71778F20-1A98-4F23-9681-40E20825B5F8} - System32\Tasks\{ADC7E92B-AB18-4610-AB55-FA2CBEA644CB} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {74109512-25AD-48E3-80A8-75E339D2A458} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {784B2FF9-4F36-49ED-BA29-3A26483A49DA} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {7AD1C631-8678-4247-9F28-5200AA93B608} - System32\Tasks\{73B16248-A9BC-434D-8EDC-80EF842FA744} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {89060BFB-D3AE-4A40-9BFE-6811953FE419} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-05-17] (Lenovo)
Task: {8C02BBD0-1095-46DA-AC9C-6D1688C76754} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9AEAAD87-E818-4684-829B-72EA77FD2C16} - System32\Tasks\{5D6E013E-834F-4E09-90B0-36FF7B11A406} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {9C46F5FB-F5DC-4F2B-A098-E39E594CF8DC} - System32\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA => C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [2014-06-11] (PriceMeter)
Task: {9CC8E2CA-63E3-438B-9E71-BD7410C42834} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files (x86)\YourFileDownloader Updater\YourFileUpdater.exe <==== ATTENTION
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A4CA51CC-C3EE-4C3B-89EC-F6DB47110506} - System32\Tasks\pricemeterdownloader => C:\Users\LOLKING\AppData\Local\PriceMeter\pricemeterd.exe
Task: {AAA89DAF-1B4F-447D-AF21-7F0559AC9962} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe
Task: {B58AE326-3C60-4623-98AA-3B920EF1C709} - System32\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-5 => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-5.exe
Task: {BB563889-A379-41E4-8C1A-7EF41397170B} - System32\Tasks\Re-markit_wd => C:\Program Files (x86)\Re-markit-soft\Re-markitfQLOWw.exe [2014-04-16] () <==== ATTENTION
Task: {C559E62D-053A-49D3-917E-D542AE8F7327} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D12C7834-F2E4-4CE2-B533-B4256B53DC89} - System32\Tasks\{8C874CFC-6F41-4281-AD72-29198BADF28A} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {D690E248-8769-45BA-B939-EC3390210FF9} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-05-17] ()
Task: {D765B4CB-8052-4F1C-A888-A01242FCDD8D} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4 => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4.exe <==== ATTENTION
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DBEC0451-870F-4114-8435-EF21F8845D9E} - System32\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5 => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5.exe <==== ATTENTION
Task: {DC143922-E3F2-45C3-BF67-7A431A96428E} - System32\Tasks\{6F1FA2AD-FD3B-4560-806A-0CB548F14E62} => Firefox.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {E54B63CF-DBCB-47C1-9CAC-9BA84990E85A} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F019571C-92DE-452C-9D04-C9249A0F5D5B} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {F864721A-48CA-4BAE-B5FF-F1FC211760E2} - System32\Tasks\Re-markit Update => C:\Program Files (x86)\Re-markit-soft\Re-markitfQL.exe [2014-04-16] () <==== ATTENTION
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-1.job => C:\Program Files (x86)\HQ-V-Pro-1.9\HQ-V-Pro-1.9-codedownloader.exe
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-2.job => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-2.exe
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-3.job => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-3.exe
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-4.job => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-4.exe
Task: C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-5.job => C:\Program Files (x86)\HQ-V-Pro-1.9\0646f96d-e73e-48bf-9ca9-58255af83235-5.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-1.job => C:\Program Files (x86)\MediaPlayerplus\MediaPlayerplus-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2.job => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3.job => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4.job => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5.job => C:\Program Files (x86)\MediaPlayerplus\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\MySearchDial.job => C:\Users\LOLKING\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\Price Meter Updater.job => C:\Users\LOLKING\AppData\Roaming\PRICEM~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Re-markit Update.job => C:\Program Files (x86)\Re-markit-soft\Re-markitfQL.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Re-markit_wd.job => C:\Program Files (x86)\Re-markit-soft\Re-markitfQLOWw.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-07-18 18:08 - 2014-07-19 19:59 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-04-16 19:29 - 2014-04-16 19:29 - 00142336 _____ () C:\Program Files (x86)\Re-markit-soft\Re-markitfQL158.exe
2014-02-08 22:35 - 2014-02-08 22:35 - 00068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
2014-02-08 22:35 - 2014-02-08 22:35 - 00669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll
2014-04-16 19:29 - 2014-04-16 19:29 - 00077312 _____ () C:\Program Files (x86)\Re-markit-soft\Re-markitfQLOWw.exe
2014-06-11 14:13 - 2014-06-11 14:13 - 00023832 _____ () C:\Users\LOLKING\AppData\Local\LPT\srptm.exe
2014-06-11 14:11 - 2014-06-11 14:11 - 00024344 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Lrcnta.exe
2014-05-23 12:45 - 2014-05-23 12:45 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\ErrorReporting.dll
2014-07-22 13:37 - 2014-07-22 13:37 - 01401464 _____ () C:\Program Files (x86)\Opera\23.0.1522.60\opera_crashreporter.exe
2014-04-16 19:29 - 2014-04-16 19:29 - 00133120 _____ () C:\Program Files (x86)\Re-markit-soft\Re-markitfQL158.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00045848 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00070936 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srau.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00166680 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 02337048 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00067864 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\spbl.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00156440 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00015128 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\siem.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00066840 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\sppsm.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00697624 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00015640 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00079640 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00027928 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00060184 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srut.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00030488 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srsbs.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00066328 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00150296 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\smti.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00032024 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srom.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00031512 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\smtu.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00039704 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\smta.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00046872 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srbu.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00024856 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\sgml.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00062744 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00025880 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srpdm.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00044312 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2014-06-11 14:03 - 2014-06-11 14:03 - 00025880 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00036120 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00256280 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\srns.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00077592 _____ () C:\Users\LOLKING\AppData\Local\LPT\srpt.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00043288 _____ () C:\Users\LOLKING\AppData\Local\LPT\srptc.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00018200 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Common.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00060184 _____ () C:\Users\LOLKING\AppData\Local\LPT\srut.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00066840 _____ () C:\Users\LOLKING\AppData\Local\LPT\sppsm.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00156440 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00027928 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Personalization.Common.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00166680 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Infrastructure.Utilities.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00046872 _____ () C:\Users\LOLKING\AppData\Local\LPT\srbu.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00025880 _____ () C:\Users\LOLKING\AppData\Local\LPT\srpdm.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00026904 _____ () C:\Users\LOLKING\AppData\Local\LPT\ProxySettings.dll
2014-06-11 14:12 - 2014-06-11 14:12 - 00046360 _____ () C:\Users\LOLKING\AppData\Local\LPT\Smartbar.Monetization.Proxy.ProxyService.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00055064 _____ () C:\Users\LOLKING\AppData\Local\LPT\srprl.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00049432 _____ () C:\Users\LOLKING\AppData\Local\LPT\lrrot.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00053528 _____ () C:\Users\LOLKING\AppData\Local\LPT\Proxy.Lib.dll
2014-06-11 14:13 - 2014-06-11 14:13 - 00028440 _____ () C:\Users\LOLKING\AppData\Local\LPT\sreu.dll
2014-02-08 22:08 - 2013-09-04 01:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-07-11 14:54 - 2014-07-12 02:53 - 01116672 _____ () C:\Program Files (x86)\Steam\libavcodec-55.dll
2014-07-11 14:54 - 2014-07-12 02:53 - 00399360 _____ () C:\Program Files (x86)\Steam\libavformat-55.dll
2014-07-11 14:54 - 2014-07-12 02:53 - 00331264 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-07-11 14:54 - 2014-07-12 02:53 - 00438784 _____ () C:\Program Files (x86)\Steam\libavutil-53.dll
2014-07-11 14:54 - 2014-06-27 00:40 - 00764416 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-07-11 14:54 - 2014-07-16 04:28 - 02139328 _____ () C:\Program Files (x86)\Steam\video.dll
2014-07-11 14:54 - 2014-04-29 02:37 - 00519168 _____ () C:\Program Files (x86)\Steam\libswscale-2.dll
2014-07-11 14:54 - 2014-07-16 04:28 - 01116864 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-07-11 14:54 - 2014-05-02 01:35 - 20628160 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-06-11 14:11 - 2014-06-11 14:11 - 00034072 _____ () C:\Users\LOLKING\AppData\Local\Smartbar\Application\lrcnt.dll
2014-07-22 13:37 - 2014-07-22 13:37 - 00880248 _____ () C:\Program Files (x86)\Opera\23.0.1522.60\libglesv2.dll
2014-07-22 13:37 - 2014-07-22 13:37 - 00135800 _____ () C:\Program Files (x86)\Opera\23.0.1522.60\libegl.dll
2014-07-22 13:37 - 2014-07-22 13:37 - 00957048 _____ () C:\Program Files (x86)\Opera\23.0.1522.60\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\LOLKING\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\LOLKING\SkyDrive (2).old:ms-properties
AlternateDataStreams: C:\Users\LOLKING\SkyDrive.old:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/01/2014 01:23:32 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/31/2014 11:05:55 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20498 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: aac

Startzeit: 01cfac9de46f7186

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: d98695c9-1891-11e4-82ef-40f02fe7d330

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (07/29/2014 06:42:07 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/28/2014 11:36:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fusion-Network.exe, Version: 0.0.0.0, Zeitstempel: 0x7375705f
Name des fehlerhaften Moduls: granny2.dll, Version: 0.0.0.0, Zeitstempel: 0x40493d28
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00008183
ID des fehlerhaften Prozesses: 0xd3e4
Startzeit der fehlerhaften Anwendung: 0xFusion-Network.exe0
Pfad der fehlerhaften Anwendung: Fusion-Network.exe1
Pfad des fehlerhaften Moduls: Fusion-Network.exe2
Berichtskennung: Fusion-Network.exe3
Vollständiger Name des fehlerhaften Pakets: Fusion-Network.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Fusion-Network.exe5

Error: (07/28/2014 10:14:28 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (07/28/2014 10:14:27 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (07/28/2014 10:14:26 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (07/28/2014 10:14:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4

Error: (07/28/2014 10:14:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll4

Error: (07/28/2014 10:14:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll4


System errors:
=============
Error: (07/31/2014 11:03:29 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {EA022610-0748-4C24-B229-6C507EBDFDBB}

Error: (07/31/2014 11:00:19 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: Beim Zugreifen auf den Registrierungsschlüssel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration ist ein Fehler aufgetreten.

Error: (07/31/2014 10:59:47 AM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.

Error: (07/31/2014 11:00:09 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎30.‎07.‎2014 um 12:25:30 unerwartet heruntergefahren.

Error: (07/29/2014 10:32:54 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: Beim Zugreifen auf den Registrierungsschlüssel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration ist ein Fehler aufgetreten.

Error: (07/29/2014 10:32:17 AM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.

Error: (07/29/2014 10:32:51 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎29.‎07.‎2014 um 00:32:25 unerwartet heruntergefahren.

Error: (07/28/2014 11:01:37 AM) (Source: DCOM) (EventID: 10010) (User: PIERRESLAPPI)
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}

Error: (07/28/2014 10:24:27 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: Beim Zugreifen auf den Registrierungsschlüssel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration ist ein Fehler aufgetreten.

Error: (07/28/2014 10:23:46 AM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.


Microsoft Office Sessions:
=========================
Error: (08/01/2014 01:23:32 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/31/2014 11:05:55 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20498aac01cfac9de46f71864294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exed98695c9-1891-11e4-82ef-40f02fe7d330microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (07/29/2014 06:42:07 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/28/2014 11:36:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fusion-Network.exe0.0.0.07375705fgranny2.dll0.0.0.040493d28c000000500008183d3e401cfaaa448ff2da5C:\Users\LOLKING\Desktop\Dark-Fusion\Fusion-Network.exeC:\Users\LOLKING\Desktop\Dark-Fusion\granny2.dll385cf2a1-169f-11e4-82ed-40f02fe7d330

Error: (07/28/2014 10:14:28 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (07/28/2014 10:14:27 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (07/28/2014 10:14:26 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (07/28/2014 10:14:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4

Error: (07/28/2014 10:14:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll4

Error: (07/28/2014 10:14:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll4


==================== Memory info ===========================

Percentage of memory in use: 45%
Total physical RAM: 3986.27 MB
Available physical RAM: 2182.03 MB
Total Pagefile: 6162.27 MB
Available Pagefile: 3232.94 MB
Total Virtual: 131072 MB
Available Virtual: 131071.85 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:427.21 GB) (Free:316.28 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 5F32F702)

Partition: GPT Partition Type.

==================== End Of Log ============================

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-07-2014 02
Ran by LOLKING (administrator) on PIERRESLAPPI on 01-08-2014 16:14:41
Running from C:\Users\LOLKING\Downloads
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Re-markit-soft\Re-markitfQL158.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(PriceMeter) C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe
() C:\Program Files (x86)\Re-markit-soft\Re-markitfQLOWw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Akamai Technologies, Inc.) C:\Users\LOLKING\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\LOLKING\AppData\Local\Akamai\netsession_win.exe
(Smartbar) C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.exe
() C:\Users\LOLKING\AppData\Local\LPT\srptm.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Pokki) C:\Users\LOLKING\AppData\Local\Pokki\Engine\HostAppService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Pokki) C:\Users\LOLKING\AppData\Local\Pokki\Engine\StartMenuIndexer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Users\LOLKING\AppData\Local\Smartbar\Application\Lrcnta.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\livecomm.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
() C:\Program Files (x86)\Opera\23.0.1522.60\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\23.0.1522.60\opera.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2777840 2013-08-14] (Synaptics Incorporated)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17111056 2014-02-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [193008 2014-02-08] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [552960 2013-05-14] (Vimicro)
HKLM-x32\...\Run: [Lenovo App Shop] => C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe [156000 2013-07-19] (Intel Corporation)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.)
HKLM-x32\...\Run: [Registry Helper] => "C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe" /boot
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Atheros Communications))
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [Pokki] => C:\WINDOWS\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [Akamai NetSession Interface] => C:\Users\LOLKING\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [PriceMeterW] => "C:\Users\LOLKING\AppData\Local\PriceMeter\pricemeterw.exe"
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [Browser Infrastructure Helper] => C:\Users\LOLKING\AppData\Local\Smartbar\Application\Smartbar.exe [28952 2014-06-11] (Smartbar)
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\Run: [LPT System Updater] => C:\Users\LOLKING\AppData\Local\LPT\srptm.exe [23832 2014-06-11] ()
HKU\S-1-5-21-1522620756-1697549942-4011926321-1001\...\RunOnce: [Application Restart #0] => C:\Users\LOLKING\AppData\Local\Pokki\Engine\HostAppService.exe [7545160 2014-03-21] (Pokki)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\SPVC64~1.DLL => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1355040 2014-03-30] ()
AppInit_DLLs-x32: C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\SPVC32~1.DLL => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1050400 2014-03-30] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avsinit.vbs ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:13828
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HmP0UnqV1e5W-XOXwlEUIQMUgB1Ph_JaHtTlg874EGrDtdJsye6kLkrEsRNnKGtxXrwJt3elmi7Z7zIo2tdyt4ROxTGQ-u4Fjbtg,,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HqWwcXQDTvJvyYqTn4jf1PcaIlVGHWHiQJRbl4R2nnXiZTGr1iHMg_CsL6MAcBAEVRfZGhxuaZOFHU-c5DOzH3hK9lexA8s1Da7g,,
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HmP0UnqV1e5W-XOXwlEUIQMUgB1Ph_JaHtTlg874EGrDtdJsye6kLkrEsRNnKGtxXrwJt3elmi7Z7zIo2tdyt4ROxTGQ-u4Fjbtg,,&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1402606536&from=wpm0612&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1397669454&from=tugs&uid=HGSTXHTS545050A7E380_TMA55DGL0LT2XR0LT2XRX
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKLM - {85D19919-6A2A-4725-86AA-A8BDB3FDD61B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=LCJB
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=53c4d263-d8e9-417f-567f-003d354e3032&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=14/03/2014&type=hp1000
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HmP0UnqV1e5W-XOXwlEUIQMUgB1Ph_JaHtTlg874EGrDtdJsye6kLkrEsRNnKGtxXrwJt3elmi7Z7zIo2tdyt4ROxTGQ-u4Fjbtg,,&q={searchTerms}
SearchScopes: HKCU - URL hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3319434&octid=EB_ORIGINAL_CTID&ISID=ISID_ID&SearchSource=58&CUI=&UM=5&UP=SPE86D6AB7-7BC0-4C39-9DF4-05D1E708BE7C&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb6lUS5x5oph7HfZfACi9GYV_SDWIRLEHJVUlI4RU4yYEAxYIl3YHD-zaAhGSpgk0HmP0UnqV1e5W-XOXwlEUIQMUgB1Ph_JaHtTlg874EGrDtdJsye6kLkrEsRNnKGtxXrwJt3elmi7Z7zIo2tdyt4ROxTGQ-u4Fjbtg,,&q={searchTerms}
BHO: HQ-V-Pro-1.9 -> {11111111-1111-1111-1111-110511311172} -> C:\Program Files (x86)\HQ-V-Pro-1.9\HQ-V-Pro-1.9-bho64.dll (HQ-V-1.9)
BHO: MediaPlayerplus -> {11111111-1111-1111-1111-110511421146} -> C:\Program Files (x86)\MediaPlayerplus\MediaPlayerplus-bho64.dll No File
BHO: Yahoo Community Smartbar (by Linkury)Engine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: Yahoo Community Smartbar (by Linkury)Engine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\WINDOWS\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: mysearchdial Helper Object -> {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} -> C:\PROGRA~2\MYSEAR~1\1829~1.0\bh\mysearchdial.dll No File
Toolbar: HKLM - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\WINDOWS\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - mysearchdial Toolbar - {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\PROGRA~2\MYSEAR~1\1829~1.0\mysearchdialTlbr.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: 85.114.135.48 path.pointblankonline.com.br
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=3 - C:\Program Files (x86)\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter)
FF Plugin-x32: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=9 - C:\Program Files (x86)\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\LOLKING\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: intel.com/AppUp - C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\npAppUp.dll (Intel)
FF Plugin HKCU: intel.com/AppUpx64 - C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\npAppUp_x64.dll (Intel)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\delta-homes.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\webssearches.xml
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\LOLKING\AppData\Roaming\Mozilla\Firefox\Profiles\05h94duq.default\extensions\quick_start@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\LOLKING\AppData\Roaming\Mozilla\Firefox\Profiles\05h94duq.default\extensions\faststartff@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Users\LOLKING\AppData\Roaming\Mozilla\Firefox\Profiles\05h94duq.default\extensions\shortcutff@gmail.com
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-04-10]
FF HKCU\...\Firefox\Extensions: [{372479DD-B552-F0A8-F0E5-EEEEA6602285}] - C:\Program Files (x86)\Re-markit-soft\158.xpi
FF Extension: Re-markit - C:\Program Files (x86)\Re-markit-soft\158.xpi [2014-04-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-04-20] (Microsoft Corporation)
R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [372224 2014-04-27] (Microsoft Corporation)
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [705136 2014-04-11] (Cherished Technololgy LIMITED)
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [761968 2014-06-12] (Cherished Technololgy LIMITED)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 iprip; C:\Windows\System32\iprip.dll [34816 2014-04-20] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [47616 2014-03-17] (Microsoft Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25600 2014-04-20] (Microsoft Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2013-07-24] (Nitro PDF Software)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [4600264 2013-11-05] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2014-07-19] ()
S2 pricemeterliveUpdate; C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [150504 2014-06-11] (PriceMeter)
S3 pricemeterliveUpdatem; C:\Program Files (x86)\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [150504 2014-06-11] (PriceMeter)
R2 Re-markit; C:\Program Files (x86)\Re-markit-soft\Re-markitfQL158.exe [142336 2014-04-16] () [File not signed]
R2 SNMP; C:\Windows\System32\snmp.exe [50688 2014-04-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [46080 2014-04-20] (Microsoft Corporation)
S4 TlntSvr; C:\Windows\System32\tlntsvr.exe [146944 2014-04-20] (Microsoft Corporation)
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2014-02-08] ()
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-04-20] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2014-04-20] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros) [File not signed]
S3 WMPNetworkSvc; "%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-21] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [173568 2014-04-20] (Microsoft Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-14] (Synaptics Incorporated)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1065472 2013-08-30] (Vimicro Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
R1 {b99c8534-7800-48fa-bd71-519a46cdc7e1}Gw64; C:\Windows\System32\drivers\{b99c8534-7800-48fa-bd71-519a46cdc7e1}Gw64.sys [61120 2014-04-24] (StdLib)
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
S3 STHDA; \SystemRoot\system32\DRIVERS\stwrt64.sys [X]
S3 X6va015; \??\C:\WINDOWS\SysWOW64\Drivers\X6va015 [X]
S3 X6va022; \??\C:\WINDOWS\SysWOW64\Drivers\X6va022 [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 16:13 - 2014-08-01 16:14 - 02094080 _____ (Farbar) C:\Users\LOLKING\Downloads\FRST64 (1).exe
2014-08-01 15:47 - 2014-08-01 15:48 - 00036779 _____ () C:\Users\LOLKING\Downloads\Addition.txt
2014-08-01 15:45 - 2014-08-01 16:14 - 00024340 _____ () C:\Users\LOLKING\Downloads\FRST.txt
2014-08-01 15:45 - 2014-08-01 16:14 - 00000000 ____D () C:\FRST
2014-08-01 15:43 - 2014-08-01 15:43 - 02094080 _____ (Farbar) C:\Users\LOLKING\Downloads\FRST64.exe
2014-08-01 13:49 - 2014-08-01 13:49 - 00000222 _____ () C:\Users\LOLKING\Desktop\Warface.url
2014-07-29 00:37 - 2014-07-29 00:37 - 00006205 _____ () C:\Users\LOLKING\Desktop\logininfo.RAR
2014-07-28 22:06 - 2014-07-29 00:42 - 00000000 ____D () C:\Users\LOLKING\Desktop\Dark-Fusion
2014-07-28 22:04 - 2014-07-28 22:04 - 01864474 _____ () C:\Users\LOLKING\Downloads\Dark-Fusion Client.rar
2014-07-28 18:44 - 2014-07-29 01:07 - 00000000 ____D () C:\Users\LOLKING\Desktop\Firenze
2014-07-28 00:12 - 2014-07-28 00:12 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Publish Providers
2014-07-28 00:03 - 2014-07-28 00:07 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Sony
2014-07-27 23:41 - 2014-07-28 00:12 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Sony
2014-07-27 23:30 - 2014-07-27 23:36 - 56976398 _____ () C:\Users\LOLKING\Desktop\....mp4
2014-07-27 21:54 - 2014-07-27 21:54 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Python-Eggs
2014-07-27 20:22 - 2014-06-12 20:15 - 00000938 _____ () C:\Users\LOLKING\Desktop\Downloads.lnk
2014-07-27 01:03 - 2014-07-27 01:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BananaMt2
2014-07-26 23:33 - 2014-07-26 23:33 - 00000000 ____D () C:\Users\LOLKING\Documents\Arktos
2014-07-26 23:33 - 2014-07-26 23:33 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Arktos
2014-07-26 21:38 - 2014-07-26 21:38 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-07-26 21:38 - 2014-07-26 21:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-07-25 20:15 - 2014-07-27 21:45 - 00000000 ____D () C:\Users\LOLKING\Desktop\Sonstiges
2014-07-25 20:14 - 2014-07-26 19:22 - 00000000 ____D () C:\Users\LOLKING\Desktop\Metin2
2014-07-25 16:14 - 2014-07-25 16:16 - 1240453444 _____ () C:\Users\LOLKING\Downloads\RebellutioN.rar
2014-07-24 21:43 - 2014-07-24 21:43 - 00000000 ____D () C:\ProgramData\Free Download Manager
2014-07-24 21:41 - 2014-07-24 21:42 - 07830845 _____ (FreeDownloadManager.ORG ) C:\Users\LOLKING\Downloads\fdminst-3.9.4.1470.exe
2014-07-23 19:07 - 2014-07-23 19:07 - 00826192 _____ (Chip Digital GmbH) C:\Users\LOLKING\Downloads\Tor Browser Paket - CHIP-Installer.exe
2014-07-23 13:44 - 2014-07-10 06:03 - 04756992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-07-23 13:44 - 2014-07-10 05:33 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-07-23 13:43 - 2014-07-10 06:16 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-22 14:52 - 2014-07-22 14:53 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\QQSM
2014-07-22 14:48 - 2014-07-22 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hazard Ops
2014-07-22 14:35 - 2014-07-22 14:48 - 00000000 ____D () C:\Program Files (x86)\Hazard Ops
2014-07-22 14:14 - 2014-07-22 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-07-22 13:59 - 2014-07-22 14:00 - 01779712 _____ (Infernum Productions AG) C:\Users\LOLKING\Downloads\HazardOpsDLM.exe
2014-07-21 22:13 - 2014-07-21 22:13 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Injector
2014-07-21 20:45 - 2014-07-22 18:13 - 00000000 ____D () C:\Users\LOLKING\Documents\Cross Fire
2014-07-21 20:43 - 2014-07-21 20:43 - 00000851 _____ () C:\Users\Souljah\Desktop\Crossfire Europe.lnk
2014-07-21 20:43 - 2014-07-21 20:43 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2014-07-21 20:43 - 2014-07-21 20:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2014-07-21 20:33 - 2014-07-21 20:33 - 00000000 ____D () C:\SG Interactive
2014-07-21 20:20 - 2014-07-21 20:20 - 00000180 _____ () C:\console.log
2014-07-21 19:50 - 2014-07-21 19:50 - 02156048 _____ (Reloaded Technologies) C:\Users\LOLKING\Downloads\Crossfire_downloader.exe
2014-07-21 18:08 - 2014-07-21 18:08 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-07-19 19:59 - 2014-07-19 20:19 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2014-07-19 19:59 - 2014-07-19 19:59 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\PunkBuster
2014-07-19 19:59 - 2014-07-19 19:59 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Chromium
2014-07-18 18:10 - 2014-07-18 18:11 - 00017551 _____ () C:\WINDOWS\DirectX.log
2014-07-18 18:09 - 2014-07-19 20:19 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-07-18 18:09 - 2014-07-19 20:06 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2014-07-18 18:09 - 2014-07-18 18:09 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-18 18:08 - 2014-07-19 19:59 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-07-18 18:08 - 2011-12-19 15:16 - 03130440 _____ () C:\WINDOWS\SysWOW64\pbsvc_blr.exe
2014-07-17 16:24 - 2014-07-21 14:57 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Tunngle
2014-07-17 16:24 - 2014-07-17 16:24 - 00000000 ____D () C:\Users\LOLKING\Documents\Tunngle
2014-07-17 16:24 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2014-07-17 00:29 - 2014-07-17 00:29 - 00000000 ____D () C:\Users\LOLKING\Documents\Skype Voice Records
2014-07-17 00:29 - 2014-07-17 00:29 - 00000000 ____D () C:\Users\LOLKING\Documents\Clownfish Avatars
2014-07-16 21:51 - 2014-07-16 22:08 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Screaming Bee
2014-07-16 21:51 - 2014-07-16 21:51 - 00000000 ____D () C:\ProgramData\Screaming Bee
2014-07-16 18:33 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-07-16 18:33 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-07-16 18:33 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-07-16 18:33 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-07-16 18:32 - 2014-07-16 18:33 - 00004623 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-15 04:06 - 2014-07-15 04:06 - 00000000 _____ () C:\Users\LOLKING\AppData\Local\{2F1AFA4D-4761-4294-8015-E643091E9419}
2014-07-14 14:34 - 2014-07-14 14:34 - 00000295 _____ () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papierkorb.lnk
2014-07-13 18:19 - 2014-07-13 18:19 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-13 17:41 - 2014-07-13 17:41 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-07-13 17:34 - 2014-07-29 10:32 - 00003608 _____ () C:\WINDOWS\PFRO.log
2014-07-13 15:06 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2014-07-13 15:06 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2014-07-13 15:06 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-07-13 15:06 - 2014-05-31 12:07 - 00467800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-07-13 15:06 - 2014-05-31 12:07 - 00440664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-07-13 15:06 - 2014-05-31 12:07 - 00419672 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-07-13 15:06 - 2014-05-31 12:07 - 00089944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-07-13 15:06 - 2014-05-31 12:07 - 00027480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-07-13 15:06 - 2014-05-31 08:30 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-07-13 15:06 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2014-07-13 15:06 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2014-07-13 15:06 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2014-07-13 15:06 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2014-07-13 15:06 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll
2014-07-13 15:06 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-07-13 15:06 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-07-13 15:06 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2014-07-13 15:06 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-07-13 15:06 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-07-13 15:06 - 2014-05-13 09:01 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-07-13 15:06 - 2014-05-13 07:07 - 02844160 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-07-13 15:06 - 2014-05-13 06:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-07-13 15:06 - 2014-05-13 06:26 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-07-13 15:06 - 2014-05-13 05:59 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-07-13 15:06 - 2014-05-13 05:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-07-13 15:06 - 2014-05-03 13:29 - 01726224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-07-13 15:06 - 2014-05-03 11:20 - 01473080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-07-13 15:06 - 2014-05-03 07:36 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-07-13 15:06 - 2014-05-03 07:19 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-07-13 15:06 - 2014-05-03 07:08 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2014-07-13 15:06 - 2014-05-03 07:07 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2014-07-13 15:06 - 2014-05-03 06:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2014-07-13 15:06 - 2014-05-03 06:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2014-07-13 15:06 - 2014-05-03 06:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2014-07-13 15:06 - 2014-05-03 05:30 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-07-13 15:06 - 2014-05-03 05:27 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-07-13 15:06 - 2014-05-03 01:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat
2014-07-13 15:06 - 2014-05-01 07:44 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-07-13 15:06 - 2014-04-30 08:43 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2014-07-13 15:06 - 2014-04-30 08:41 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-07-13 15:06 - 2014-04-30 08:41 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2014-07-13 15:06 - 2014-04-30 08:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2014-07-13 15:06 - 2014-04-30 07:45 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-07-13 15:06 - 2014-04-30 06:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2014-07-13 15:06 - 2014-04-30 06:24 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-07-13 15:06 - 2014-04-30 06:23 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-07-13 15:06 - 2014-04-30 06:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-07-13 15:06 - 2014-04-30 06:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-07-13 15:06 - 2014-04-30 06:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-07-13 15:06 - 2014-04-30 05:59 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-07-13 15:06 - 2014-04-30 05:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-07-13 15:06 - 2014-04-30 05:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2014-07-13 15:06 - 2014-04-30 05:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2014-07-13 15:06 - 2014-04-30 05:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2014-07-13 15:06 - 2014-04-30 05:42 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-07-13 15:06 - 2014-04-29 00:40 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-07-13 15:06 - 2014-04-27 00:03 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-07-13 15:06 - 2014-04-26 22:14 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-07-13 15:06 - 2014-04-26 18:39 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-07-13 15:06 - 2014-04-14 11:37 - 02125344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-07-13 15:06 - 2014-04-14 10:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-07-13 15:06 - 2014-04-14 07:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-07-13 15:06 - 2014-04-09 08:11 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-07-13 15:06 - 2014-04-09 07:20 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-07-13 15:05 - 2014-05-31 08:27 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-07-13 00:29 - 2014-07-16 22:08 - 00001516 _____ () C:\WINDOWS\setupact.log
2014-07-13 00:29 - 2014-07-13 00:29 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-07-12 17:23 - 2014-08-01 15:24 - 01505363 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-12 15:54 - 2014-07-12 15:54 - 00000000 __SHD () C:\Users\LOLKING\AppData\Local\EmieUserList
2014-07-12 15:54 - 2014-07-12 15:54 - 00000000 __SHD () C:\Users\LOLKING\AppData\Local\EmieSiteList
2014-07-11 22:52 - 2014-07-15 14:28 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\wf-launcher
2014-07-11 22:52 - 2014-07-15 13:02 - 00000000 ____D () C:\ProgramData\GFACE
2014-07-11 22:10 - 2014-07-11 22:11 - 03736040 _____ (Piriform Ltd) C:\Users\LOLKING\Downloads\ccsetup415_slim.exe
2014-07-11 14:53 - 2014-08-01 13:47 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-11 14:53 - 2014-07-11 14:53 - 00000990 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-07-11 12:42 - 2014-07-11 12:42 - 00000174 _____ () C:\logininfo.xml
2014-07-11 12:42 - 2014-07-11 12:42 - 00000016 _____ () C:\Start.bat
2014-07-10 23:03 - 2014-07-10 23:03 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{8C874CFC-6F41-4281-AD72-29198BADF28A}
2014-07-10 16:39 - 2014-06-26 22:55 - 00703968 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-07-10 16:39 - 2014-06-26 22:55 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-10 16:34 - 2014-07-10 16:34 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-10 14:24 - 2014-04-14 05:29 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2014-07-09 20:12 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-09 20:12 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-09 20:12 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-09 20:12 - 2014-06-19 01:46 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-09 20:12 - 2014-06-19 00:57 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-09 20:12 - 2014-06-17 00:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-09 20:12 - 2014-06-17 00:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-09 20:12 - 2014-06-06 16:20 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-07-09 20:11 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-09 20:11 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-09 20:11 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-09 20:11 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-09 20:11 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-09 20:11 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-09 20:11 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-09 20:11 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-09 20:11 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-09 20:11 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-09 20:11 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-09 20:11 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-09 20:11 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-09 20:11 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-09 20:11 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-09 20:11 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-09 20:11 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-09 20:11 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-09 20:11 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-09 20:11 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-09 20:11 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-09 20:11 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-09 20:11 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-07-09 20:11 - 2014-05-29 14:02 - 00565576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-07-09 20:11 - 2014-05-29 09:55 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-07-09 20:11 - 2014-05-29 08:40 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-09 20:11 - 2014-05-29 08:37 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-07-09 20:11 - 2014-05-29 07:34 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-07-09 20:11 - 2014-05-29 07:27 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-07-09 20:10 - 2014-07-01 00:45 - 00688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-07-09 20:10 - 2014-06-28 09:48 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-07-09 20:10 - 2014-06-28 09:07 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-07-09 20:10 - 2014-06-06 15:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-09 20:10 - 2014-06-06 14:18 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-07-09 20:10 - 2014-05-31 12:07 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-09 20:10 - 2014-05-31 12:06 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-09 20:10 - 2014-05-31 05:40 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-09 20:10 - 2014-05-31 05:30 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-09 20:10 - 2014-05-31 05:12 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 20:10 - 2014-05-31 05:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-09 20:10 - 2014-05-31 05:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-09 20:10 - 2014-05-31 05:01 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 20:10 - 2014-05-31 04:56 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-09 20:10 - 2014-05-31 04:54 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-09 20:10 - 2014-05-31 04:48 - 03463680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-09 20:10 - 2014-05-31 04:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-07-09 20:10 - 2014-05-31 04:36 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-09 20:10 - 2014-05-31 04:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-07-09 20:10 - 2014-05-31 04:32 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-09 20:09 - 2014-07-09 20:09 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-09 10:08 - 2014-07-09 10:08 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{5D6E013E-834F-4E09-90B0-36FF7B11A406}
2014-07-07 14:37 - 2014-07-07 14:37 - 02592264 _____ () C:\Users\LOLKING\ts3_recording_14_07_07_14_37_26.wav
2014-07-06 19:25 - 2014-07-06 19:25 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{73B16248-A9BC-434D-8EDC-80EF842FA744}
2014-07-04 22:44 - 2014-07-04 22:44 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{6F1FA2AD-FD3B-4560-806A-0CB548F14E62}
2014-07-04 16:30 - 2014-07-04 16:30 - 00000000 ____D () C:\ProgramData\pwd
2014-07-04 13:21 - 2014-07-04 13:21 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{FFCCBBC4-1105-4BA2-A829-F4E105158481}
2014-07-04 13:21 - 2014-07-04 13:21 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{ADC7E92B-AB18-4610-AB55-FA2CBEA644CB}

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 16:14 - 2014-08-01 16:13 - 02094080 _____ (Farbar) C:\Users\LOLKING\Downloads\FRST64 (1).exe
2014-08-01 16:14 - 2014-08-01 15:45 - 00024340 _____ () C:\Users\LOLKING\Downloads\FRST.txt
2014-08-01 16:14 - 2014-08-01 15:45 - 00000000 ____D () C:\FRST
2014-08-01 16:13 - 2014-03-13 02:46 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Skype
2014-08-01 16:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-08-01 15:48 - 2014-08-01 15:47 - 00036779 _____ () C:\Users\LOLKING\Downloads\Addition.txt
2014-08-01 15:43 - 2014-08-01 15:43 - 02094080 _____ (Farbar) C:\Users\LOLKING\Downloads\FRST64.exe
2014-08-01 15:36 - 2014-04-16 21:16 - 00000994 _____ () C:\WINDOWS\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job
2014-08-01 15:24 - 2014-07-12 17:23 - 01505363 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-01 15:24 - 2014-03-14 12:22 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-01 15:21 - 2014-03-13 02:21 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1522620756-1697549942-4011926321-1001
2014-08-01 14:18 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-08-01 13:49 - 2014-08-01 13:49 - 00000222 _____ () C:\Users\LOLKING\Desktop\Warface.url
2014-08-01 13:49 - 2014-04-11 23:05 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-08-01 13:47 - 2014-07-11 14:53 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-01 13:32 - 2014-04-16 19:32 - 00001532 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-5.job
2014-08-01 13:32 - 2014-04-16 19:32 - 00001456 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-2.job
2014-08-01 13:32 - 2014-04-16 19:32 - 00001456 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-1.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00003150 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-3.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00002218 _____ () C:\WINDOWS\Tasks\cf5e64e3-8c82-4a2c-9310-db0821db11bd-4.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00001492 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-5.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00001402 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-1.job
2014-08-01 13:31 - 2014-04-16 19:31 - 00001396 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-2.job
2014-08-01 13:30 - 2014-04-16 19:30 - 00002802 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-3.job
2014-08-01 13:30 - 2014-04-16 19:30 - 00002400 _____ () C:\WINDOWS\Tasks\0646f96d-e73e-48bf-9ca9-58255af83235-4.job
2014-08-01 12:46 - 2014-03-13 02:13 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Pokki
2014-07-31 23:37 - 2014-03-13 02:20 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E69501A8-D6D4-4900-9049-20CF0BEF736C}
2014-07-31 16:36 - 2014-04-16 21:15 - 00000990 _____ () C:\WINDOWS\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job
2014-07-31 11:02 - 2014-04-20 19:04 - 00002179 _____ () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startmenü.lnk
2014-07-31 11:00 - 2014-04-12 00:31 - 00000000 __RDO () C:\Users\LOLKING\SkyDrive
2014-07-31 11:00 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-29 10:32 - 2014-07-13 17:34 - 00003608 _____ () C:\WINDOWS\PFRO.log
2014-07-29 01:07 - 2014-07-28 18:44 - 00000000 ____D () C:\Users\LOLKING\Desktop\Firenze
2014-07-29 00:42 - 2014-07-28 22:06 - 00000000 ____D () C:\Users\LOLKING\Desktop\Dark-Fusion
2014-07-29 00:37 - 2014-07-29 00:37 - 00006205 _____ () C:\Users\LOLKING\Desktop\logininfo.RAR
2014-07-28 23:39 - 2014-03-14 10:50 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\CrashDumps
2014-07-28 22:04 - 2014-07-28 22:04 - 01864474 _____ () C:\Users\LOLKING\Downloads\Dark-Fusion Client.rar
2014-07-28 20:52 - 2014-02-09 06:49 - 00884814 _____ () C:\WINDOWS\system32\perfh007.dat
2014-07-28 20:52 - 2014-02-09 06:49 - 00203032 _____ () C:\WINDOWS\system32\perfc007.dat
2014-07-28 20:52 - 2013-10-07 20:27 - 02078184 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-28 19:46 - 2014-03-13 02:31 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\TS3Client
2014-07-28 18:23 - 2014-06-14 00:30 - 00000000 ____D () C:\Fraps
2014-07-28 10:25 - 2014-03-13 02:58 - 01149440 ___SH () C:\Users\LOLKING\Desktop\Thumbs.db
2014-07-28 00:12 - 2014-07-28 00:12 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Publish Providers
2014-07-28 00:12 - 2014-07-27 23:41 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Sony
2014-07-28 00:07 - 2014-07-28 00:03 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Sony
2014-07-27 23:36 - 2014-07-27 23:30 - 56976398 _____ () C:\Users\LOLKING\Desktop\....mp4
2014-07-27 21:54 - 2014-07-27 21:54 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Python-Eggs
2014-07-27 21:45 - 2014-07-25 20:15 - 00000000 ____D () C:\Users\LOLKING\Desktop\Sonstiges
2014-07-27 01:03 - 2014-07-27 01:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BananaMt2
2014-07-26 23:33 - 2014-07-26 23:33 - 00000000 ____D () C:\Users\LOLKING\Documents\Arktos
2014-07-26 23:33 - 2014-07-26 23:33 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Arktos
2014-07-26 22:36 - 2014-04-13 15:22 - 00000000 ____D () C:\Users\LOLKING\Desktop\Musik
2014-07-26 21:38 - 2014-07-26 21:38 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-07-26 21:38 - 2014-07-26 21:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-07-26 19:22 - 2014-07-25 20:14 - 00000000 ____D () C:\Users\LOLKING\Desktop\Metin2
2014-07-26 00:44 - 2014-04-06 13:35 - 00000000 ___RD () C:\Users\LOLKING\Desktop\Programme
2014-07-25 19:56 - 2014-03-13 02:13 - 00000000 ____D () C:\Users\LOLKING
2014-07-25 16:16 - 2014-07-25 16:14 - 1240453444 _____ () C:\Users\LOLKING\Downloads\RebellutioN.rar
2014-07-25 15:40 - 2013-08-22 16:44 - 00344864 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-25 00:25 - 2014-02-08 22:35 - 00008704 _____ () C:\WINDOWS\system32\VfService.trf
2014-07-25 00:25 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-07-24 21:43 - 2014-07-24 21:43 - 00000000 ____D () C:\ProgramData\Free Download Manager
2014-07-24 21:42 - 2014-07-24 21:41 - 07830845 _____ (FreeDownloadManager.ORG ) C:\Users\LOLKING\Downloads\fdminst-3.9.4.1470.exe
2014-07-24 14:19 - 2014-05-25 20:49 - 00048640 ___SH () C:\Users\LOLKING\Downloads\Thumbs.db
2014-07-24 11:11 - 2013-08-22 17:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-07-23 22:38 - 2014-03-13 22:31 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Unity
2014-07-23 19:07 - 2014-07-23 19:07 - 00826192 _____ (Chip Digital GmbH) C:\Users\LOLKING\Downloads\Tor Browser Paket - CHIP-Installer.exe
2014-07-22 18:13 - 2014-07-21 20:45 - 00000000 ____D () C:\Users\LOLKING\Documents\Cross Fire
2014-07-22 14:53 - 2014-07-22 14:52 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\QQSM
2014-07-22 14:48 - 2014-07-22 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hazard Ops
2014-07-22 14:48 - 2014-07-22 14:35 - 00000000 ____D () C:\Program Files (x86)\Hazard Ops
2014-07-22 14:43 - 2014-04-07 00:15 - 00000000 ____D () C:\ProgramData\Solid State Networks
2014-07-22 14:15 - 2014-03-16 00:03 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Google
2014-07-22 14:14 - 2014-07-22 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-07-22 14:00 - 2014-07-22 13:59 - 01779712 _____ (Infernum Productions AG) C:\Users\LOLKING\Downloads\HazardOpsDLM.exe
2014-07-22 13:38 - 2014-06-13 15:30 - 00003858 _____ () C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1402666209
2014-07-22 13:38 - 2014-05-17 21:31 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-07-21 22:13 - 2014-07-21 22:13 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Injector
2014-07-21 20:43 - 2014-07-21 20:43 - 00000851 _____ () C:\Users\Souljah\Desktop\Crossfire Europe.lnk
2014-07-21 20:43 - 2014-07-21 20:43 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2014-07-21 20:43 - 2014-07-21 20:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2014-07-21 20:33 - 2014-07-21 20:33 - 00000000 ____D () C:\SG Interactive
2014-07-21 20:20 - 2014-07-21 20:20 - 00000180 _____ () C:\console.log
2014-07-21 19:50 - 2014-07-21 19:50 - 02156048 _____ (Reloaded Technologies) C:\Users\LOLKING\Downloads\Crossfire_downloader.exe
2014-07-21 18:08 - 2014-07-21 18:08 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-07-21 14:57 - 2014-07-17 16:24 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Tunngle
2014-07-19 20:19 - 2014-07-19 19:59 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2014-07-19 20:19 - 2014-07-18 18:09 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-07-19 20:06 - 2014-07-18 18:09 - 00283032 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2014-07-19 19:59 - 2014-07-19 19:59 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\PunkBuster
2014-07-19 19:59 - 2014-07-19 19:59 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\Chromium
2014-07-19 19:59 - 2014-07-18 18:08 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-07-18 22:21 - 2014-06-14 00:57 - 00000000 ____D () C:\ProgramData\WinZip
2014-07-18 18:11 - 2014-07-18 18:10 - 00017551 _____ () C:\WINDOWS\DirectX.log
2014-07-18 18:09 - 2014-07-18 18:09 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-18 15:07 - 2014-06-04 20:37 - 00000000 ___HD () C:\ArcTemp
2014-07-18 12:46 - 2014-02-08 22:08 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-17 16:24 - 2014-07-17 16:24 - 00000000 ____D () C:\Users\LOLKING\Documents\Tunngle
2014-07-17 00:29 - 2014-07-17 00:29 - 00000000 ____D () C:\Users\LOLKING\Documents\Skype Voice Records
2014-07-17 00:29 - 2014-07-17 00:29 - 00000000 ____D () C:\Users\LOLKING\Documents\Clownfish Avatars
2014-07-16 22:08 - 2014-07-16 21:51 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Screaming Bee
2014-07-16 22:08 - 2014-07-13 00:29 - 00001516 _____ () C:\WINDOWS\setupact.log
2014-07-16 21:51 - 2014-07-16 21:51 - 00000000 ____D () C:\ProgramData\Screaming Bee
2014-07-16 18:33 - 2014-07-16 18:32 - 00004623 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 18:33 - 2014-04-06 23:59 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-16 18:33 - 2014-04-06 23:59 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-16 16:13 - 2014-03-13 02:30 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-07-15 14:28 - 2014-07-11 22:52 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\wf-launcher
2014-07-15 13:02 - 2014-07-11 22:52 - 00000000 ____D () C:\ProgramData\GFACE
2014-07-15 04:06 - 2014-07-15 04:06 - 00000000 _____ () C:\Users\LOLKING\AppData\Local\{2F1AFA4D-4761-4294-8015-E643091E9419}
2014-07-14 14:34 - 2014-07-14 14:34 - 00000295 _____ () C:\Users\LOLKING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papierkorb.lnk
2014-07-14 01:11 - 2014-06-14 11:09 - 00000000 ____D () C:\Users\LOLKING\AppData\Roaming\Mozilla
2014-07-14 01:11 - 2014-04-05 11:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-13 18:19 - 2014-07-13 18:19 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-13 17:41 - 2014-07-13 17:41 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-07-13 17:38 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-07-13 17:38 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-07-13 17:38 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-07-13 15:05 - 2014-04-17 22:11 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-07-13 15:04 - 2014-06-11 15:34 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-07-13 00:29 - 2014-07-13 00:29 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-07-12 17:25 - 2014-03-20 04:39 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-12 17:23 - 2014-03-20 04:38 - 96441528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-12 16:04 - 2014-03-23 13:56 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-12 16:04 - 2014-03-22 12:17 - 00000000 ___DC () C:\Users\LOLKING\AppData\Local\MigWiz
2014-07-12 16:04 - 2013-10-07 21:23 - 00000000 ____D () C:\WINDOWS\Panther
2014-07-12 15:54 - 2014-07-12 15:54 - 00000000 __SHD () C:\Users\LOLKING\AppData\Local\EmieUserList
2014-07-12 15:54 - 2014-07-12 15:54 - 00000000 __SHD () C:\Users\LOLKING\AppData\Local\EmieSiteList
2014-07-11 22:11 - 2014-07-11 22:10 - 03736040 _____ (Piriform Ltd) C:\Users\LOLKING\Downloads\ccsetup415_slim.exe
2014-07-11 15:53 - 2014-06-21 18:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2014-07-11 15:53 - 2014-06-21 18:21 - 00000000 ____D () C:\Program Files (x86)\Mirillis
2014-07-11 15:52 - 2014-06-28 22:47 - 00000000 ____D () C:\ProgramData\gamigo
2014-07-11 14:53 - 2014-07-11 14:53 - 00000990 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-07-11 12:42 - 2014-07-11 12:42 - 00000174 _____ () C:\logininfo.xml
2014-07-11 12:42 - 2014-07-11 12:42 - 00000016 _____ () C:\Start.bat
2014-07-11 12:37 - 2014-03-13 02:15 - 00000000 ____D () C:\Users\LOLKING\AppData\Local\VirtualStore
2014-07-11 03:02 - 2014-07-16 18:33 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-16 18:33 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-16 18:33 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-16 18:33 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-07-10 23:03 - 2014-07-10 23:03 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{8C874CFC-6F41-4281-AD72-29198BADF28A}
2014-07-10 16:34 - 2014-07-10 16:34 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-10 16:34 - 2013-08-22 21:12 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-10 16:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-07-10 16:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-10 16:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-10 16:34 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-07-10 14:27 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-07-10 06:16 - 2014-07-23 13:43 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-10 06:03 - 2014-07-23 13:44 - 04756992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-07-10 05:33 - 2014-07-23 13:44 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-07-09 20:09 - 2014-07-09 20:09 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-09 10:08 - 2014-07-09 10:08 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{5D6E013E-834F-4E09-90B0-36FF7B11A406}
2014-07-09 10:06 - 2014-04-16 19:30 - 00000436 _____ () C:\WINDOWS\Tasks\Re-markit Update.job
2014-07-09 10:06 - 2014-04-16 19:29 - 00000426 _____ () C:\WINDOWS\Tasks\Re-markit_wd.job
2014-07-08 23:11 - 2014-04-10 22:53 - 00000326 _____ () C:\WINDOWS\Tasks\MySearchDial.job
2014-07-08 19:24 - 2014-03-14 12:22 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-07-07 14:37 - 2014-07-07 14:37 - 02592264 _____ () C:\Users\LOLKING\ts3_recording_14_07_07_14_37_26.wav
2014-07-06 19:25 - 2014-07-06 19:25 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{73B16248-A9BC-434D-8EDC-80EF842FA744}
2014-07-04 22:44 - 2014-07-04 22:44 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{6F1FA2AD-FD3B-4560-806A-0CB548F14E62}
2014-07-04 16:30 - 2014-07-04 16:30 - 00000000 ____D () C:\ProgramData\pwd
2014-07-04 15:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-07-04 13:21 - 2014-07-04 13:21 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{FFCCBBC4-1105-4BA2-A829-F4E105158481}
2014-07-04 13:21 - 2014-07-04 13:21 - 00003094 _____ () C:\WINDOWS\System32\Tasks\{ADC7E92B-AB18-4610-AB55-FA2CBEA644CB}

Some content of TEMP:
====================
C:\Users\LOLKING\AppData\Local\Temp\dbcclient.exe
C:\Users\LOLKING\AppData\Local\Temp\InstallManager_GEN_GEN.exe
C:\Users\LOLKING\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\LOLKING\AppData\Local\Temp\tmpE362.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-28 19:15

==================== End Of Log ============================
--- --- ---

--- --- ---

cosinus 01.08.2014 15:46
Zitat:
Ich habe keine ahnung von sowas >.<
Deswegen suche ich ja auch hilfe
Es war ja auch nur eine Frage ob du das Zeug kennst, denn viele editieren absichtlich ihre Hosts-Datei!

Was ist jetzt mit meiner Frage nach bisherigen Funden?

Warum hast du schon wieder die FRST Logs gepostet?


Alle Zeitangaben in WEZ +1. Es ist jetzt 03:49 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131