Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: bin mir sehr unsicher auf eventuelle Probleme

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 26.09.2014, 08:59   #1
skull00
 
bin mir sehr unsicher auf eventuelle Probleme - Standard

bin mir sehr unsicher auf eventuelle Probleme



hallo, hier mein log, wäre toll wenn ein spezi von euch sich das mal anschauen könnte, was ich unbedingt machen muss oder verbessern sollte, vielen dank schonmal!


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-09-2014
Ran by skull00 at 2014-09-26 08:53:37
Running from C:\Users\skull00\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33870 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Audition CC (HKLM-x32\...\{DE1E055B-679C-42F8-B114-7B6ED0B8ED95}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Audition CC 2014 (HKLM-x32\...\{F3388E10-EFA9-4A80-B28E-2E647F8D00C4}) (Version: 7.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.30.100.40812 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0812.1103.17905 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{1113B31C-097E-644C-7242-829DFC0CED38}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2014.0812.1103.17905 - Ihr Firmenname) Hidden
AMD Media Foundation Decoders (Version: 1.0.81008.0920 - Advanced Micro Devices, Inc.) Hidden
AMD Steady Video Plug-In (Version: 2.07.0000 - AMD) Hidden
AMD USB 3.0 Device Detector (Version: 2.1.29.0 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
Amiga Forever (HKLM-x32\...\{7572012B-3D80-4425-97C7-D4ABA70C42DD}) (Version: 2013.3.2 - Cloanto)
Ashampoo Burning Studio 14 v.14.0.5 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.5 - Ashampoo GmbH & Co. KG)
Ashampoo Internet Accelerator 3 v.3.30 (HKLM-x32\...\{4209F371-C803-200D-89A4-5479B6569259}_is1) (Version: 3.3.0 - Ashampoo GmbH & Co. KG)
Ashampoo Movie Studio Pro v.1.0.17 (HKLM-x32\...\{91B33C97-EC92-2CD7-E21F-4FEF6AA572AA}_is1) (Version: 1.0.17 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer 6 v.6.0.0 (HKLM-x32\...\{91B33C97-546E-E89A-9F44-0BB2D57DBE96}_is1) (Version: 6.0.0 - Ashampoo GmbH & Co. KG)
Ashampoo Video Styler 1.0.1 (HKLM-x32\...\Ashampoo Video Styler_is1) (Version: 1.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 11 v.11.0.1 (HKLM-x32\...\{4209F371-8D72-8119-66FA-897D2D41E27F}_is1) (Version: 11.0.1 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Auslogics BoostSpeed 7 (HKLM-x32\...\{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1) (Version: 7.3.0.0 - Auslogics Labs Pty Ltd)
Auslogics Driver Updater (HKLM-x32\...\{23BB1B18-3537-48F7-BEF7-42BC65DBF993}_is1) (Version: 1.0.0.1 - Auslogics Labs Pty Ltd)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BayGenie eBay Auction Sniper Pro Edition 3.3.6.3 (HKLM-x32\...\BayGenie eBay Auction Sniper Pro Edition_is1) (Version: 3.3.6.3 - baygenie.com)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Boilsoft Video Joiner 6.57 (HKLM-x32\...\{FD39EF4B-0B5C-4B33-8D57-2EE865A80EB1}_is1) (Version: - Boilsoft, Inc.)
C64 Forever (HKLM-x32\...\{D457A5D1-F3FA-4B63-89BE-BA72216B7EF3}) (Version: 2013.3.2 - Cloanto)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0812.1103.17905 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0812.1103.17905 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0812.1103.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0812.1103.17905 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Clementine (HKLM-x32\...\Clementine) (Version: 1.2.3 - Clementine)
CoreAVC Professional Edition (remove only) (HKLM-x32\...\CoreAVC Professional Edition) (Version: - )
CS-80V2 2.0 (HKLM-x32\...\CS-80V2_is1) (Version: - Arturia)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{42CBCE27-DE9B-4094-B9EB-D4C4C135FFA8}) (Version: - Microsoft)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: - Steinberg Media Technologies GmbH)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Etron USB3.0 Host Controller (x32 Version: 0.101 - Etron Technology) Hidden
Exact Audio Copy 1.0beta3 (HKLM-x32\...\Exact Audio Copy) (Version: 1.0beta3 - Andre Wiethoff)
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 2.2.1 - Poikosoft)
FLAC 1.2.1b (remove only) (HKLM-x32\...\FLAC) (Version: 1.2.1b - Xiph.org)
foobar2000 v1.3.2 (HKLM-x32\...\foobar2000) (Version: 1.3.2 - Peter Pawlowski)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free Audio Converter version 5.0.46.820 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.46.820 - DVDVideoSoft Ltd.)
Free M4a to MP3 Converter 8.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Drive (HKLM-x32\...\{C6640705-7479-4EE5-BC86-879F05F65E74}) (Version: 1.17.7290.4094 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HandBrake 0.9.9.1 (HKLM-x32\...\HandBrake) (Version: 0.9.9.1 - )
ICQ 8.2 (build 6870) (HKCU\...\ICQ) (Version: 8.2.6870.0 - Mail.Ru)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Jupiter-8V2 2.5.2 (HKLM-x32\...\jupiter8v25_is1) (Version: 2.5.2 - Arturia)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{653C1B5A-3287-47B1-8613-0745D4E771C4}) (Version: 15.0.0.463 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.0.463 - Kaspersky Lab) Hidden
K-Lite Codec Pack 10.2.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.2.0 - )
Last.fm 1.5.4.27091 (HKLM-x32\...\LastFM_is1) (Version: - Last.fm)
Logitech SetPoint 6.61 (HKLM\...\sp6) (Version: 6.61.15 - Logitech)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Medieval II Total War (HKLM-x32\...\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}) (Version: 1.03.000 - SEGA)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Corporation (Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft Corporation (x32 Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
minimoog V2 2.0 (HKLM-x32\...\minimoog V2_is1) (Version: - Arturia)
mIRC (HKLM-x32\...\mIRC) (Version: 7.36 - mIRC Co. Ltd.)
Monkey's Audio (HKLM-x32\...\Monkey's Audio_is1) (Version: - )
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.4.0 - Mozilla)
Mozilla Thunderbird 31.1.2 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.1.2 (x86 de)) (Version: 31.1.2 - Mozilla)
Mp3tag v2.57 (HKLM-x32\...\Mp3tag) (Version: v2.57 - Florian Heidenreich)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Music NFO Builder Version 1.21a (HKLM-x32\...\{CC9F74BA-CA3D-4C13-A97A-738DA26ED686}_is1) (Version: 1.21a - Pawe³ Piecuch)
My Game Long Name (HKLM\...\UDK-1391652a-9328-4cbb-9a68-e1769c5184ff) (Version: - Epic Games, Inc.)
NetWorx 5.3.2 (HKLM\...\NetWorx_is1) (Version: - Softperfect Research)
NVIDIA Grafiktreiber 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.109.706 - NVIDIA Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Systemsteuerung 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden
O&O Defrag Professional (HKLM\...\{46CD29D7-580C-4E2E-8469-BD7F7CB1CCF8}) (Version: 18.0.39 - O&O Software GmbH)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Prophet-V2 2.0 (HKLM-x32\...\Prophet-V2_is1) (Version: - Arturia)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.80.218.2014 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6650 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Registry First Aid 9 (HKLM\...\RFA9_is1) (Version: 9.2.0 - RoseCitySoftware)
Revo Uninstaller Pro 3.0.7 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.7 - VS Revo Group, Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
Software Director (HKLM-x32\...\Cloanto Software Director) (Version: 3.8.12.0 - Cloanto Corporation)
SoulSeek 157 NS 13e (HKLM-x32\...\Soulseek2) (Version: - )
Spotify (HKCU\...\Spotify) (Version: 0.9.13.24.g5dbb3103 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Torchlight 2 (HKLM-x32\...\{049FF5E4-EB02-4c42-8DB0-226E2F7A9E53}) (Version: 1.21.2.1 - )
Total Commander Ultima Prime 5.9.0.0 (HKLM-x32\...\TC UP) (Version: 5.9.0.0 - Robert Łajka & Paweł Porwisz)
Total War: ROME II Emperor Edition (HKLM-x32\...\VG90YWxXYXJST01FSUk=_is1) (Version: 1 - )
TotalAudioConverter (HKLM-x32\...\Total Audio Converter_is1) (Version: 5.1 - Softplicity, Inc.)
Trillian (HKLM-x32\...\Trillian) (Version: - Cerulean Studios, LLC)
Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.6.3 - Tweaking.com)
Ultra Street Fighter IV (HKLM-x32\...\VWx0cmFTdHJlZXRGaWdodGVySVY=_is1) (Version: 1 - )
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version: - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{AC36E3B7-5095-43B9-9A74-928420F88714}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{84B191B5-5319-463A-A305-8C4D53B1D20A}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{1AA82E2E-7DB7-4C70-910C-BBB657A6B3A5}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553092) (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E636FE63-842B-4F4B-9884-DA189ACC0B91}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553092) (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{E636FE63-842B-4F4B-9884-DA189ACC0B91}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{B114A387-8A14-4C43-AE51-82F17EB81D49}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{6E760BBA-B83F-4C2D-918F-5F91EF6C9861}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{D1F3B526-7EB2-4701-92DB-0784988D78DE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{52BEF8AE-9324-40A1-9A92-E5A8FB63A475}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{56551B9F-2FE1-4705-ACF0-8FA920535E18}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{56551B9F-2FE1-4705-ACF0-8FA920535E18}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{8F699D53-05FB-488E-B7D3-E4E47257BE5D}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{4B9B2BAF-EE1F-4B60-A4D9-17B7BEEB13A1}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DDDC32A5-9528-4771-B91A-97A8E1D7957B}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{6164E0E5-C903-488C-93AF-1B7AF7EBC331}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A20A650C-F820-4CE4-AEA5-EC140192FAFB}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{FD360122-6829-4497-97C1-1BF578EF695B}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F6F342A1-530B-4D48-A468-1E3F70928984}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{C950A55F-82E3-4CC8-8FA2-E8A2A0F651F3}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{89FDC8D9-FB84-4EFE-950D-AF4EECC3B64C}) (Version: - Microsoft)
Viber (HKCU\...\Viber) (Version: 3.0.0.134678 - Viber Media Inc)
VirtualDJ 8 (HKLM-x32\...\{9ADBBA93-4625-4898-BB0D-BCE7EA9F8B4A}) (Version: 8.0.0 - Atomix Productions)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.2.0.7 - VSO Software)
Way Out Ware TimewARP2600 v1.15 (HKLM-x32\...\Way Out Ware TimewARP2600 v1.15) (Version: - )
Windows 7 Manager (HKLM\...\{0E427EF3-DD38-41B9-BBB1-593EFC6CDFBF}) (Version: 4.2.6 - Yamicsoft)
Windows Driver Package - Advanced Micro Devices, Inc System (03/16/2011 5.12.0.0015) (HKLM\...\A3A37EC031F134EDD1E9DB40819B1EAD0DB7C844) (Version: 03/16/2011 5.12.0.0015 - Advanced Micro Devices, Inc)
Windows Driver Package - AMD (amdkmafd) System (09/22/2012 9.002.0.0000) (HKLM\...\203795FBE6DF8F5E5F7AFFD457E83797A053787C) (Version: 09/22/2012 9.002.0.0000 - AMD)
Windows Driver Package - BYD COMPANY LIMITED (LPCFilter) System (07/20/2012 1.0.64.1) (HKLM\...\58A9219961448E2E858F63E340D4AD958D1DAB8E) (Version: 07/20/2012 1.0.64.1 - BYD COMPANY LIMITED)
Windows Driver Package - DT Soft Ltd (dtsoftbus01) System (02/19/2014 5.5.0000.0386) (HKLM\...\CA4C310BF38B65D636830CF16E54062D5B119F8E) (Version: 02/19/2014 5.5.0000.0386 - DT Soft Ltd)
Windows Driver Package - Etron Technology Inc. (EtronXHCI) USB (07/17/2013 1.00.0000.0118) (HKLM\...\2B936C8CC539EEBDFE03DCEB35C8DFE2BD586997) (Version: 07/17/2013 1.00.0000.0118 - Etron Technology Inc.)
Windows Driver Package - KernSafe Technologies (KScsiPrt) SCSIAdapter (06/23/2009 1.07.00623) (HKLM\...\04B9AEE2C25641AF37A62A4F916C8EAE7D64B8B1) (Version: 06/23/2009 1.07.00623 - KernSafe Technologies)
Windows Driver Package - O&O Software GmbH (oodivd) OODISKIMAGE (11/27/2012 7.0.98) (HKLM\...\0D375989F84E02414CEE80F07E198C33C1B76860) (Version: 11/27/2012 7.0.98 - O&O Software GmbH)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Phone app for desktop (HKLM-x32\...\{19773614-FC22-4ACC-AAA3-E6BDA81ACF92}) (Version: 1.1.2726.0 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
XFast LAN v9.05 (HKLM\...\XFast LAN) (Version: 9.05 - cFos Software GmbH, Bonn)
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.7.3.20131014 - Xilisoft)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2014-09-25 22:20 - 00000734 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {1A8658C4-669D-48BD-8BBE-762CDE0B84FF} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8b63d94addee => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-30] (Google Inc.)
Task: {1FCD3E4E-9672-42F0-96A2-8E187AC0CC58} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {2B4F0A8C-F779-4AFC-B760-F32213AF5CD8} - \Plus-HD-3.8-firefoxinstaller No Task File <==== ATTENTION
Task: {49E370FA-3C8D-4C64-A85A-5893DD6C2C58} - System32\Tasks\Auslogics\BoostSpeed\Start BoostSpeed оn skull00 logon => C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [2014-09-23] (Auslogics)
Task: {525BA13A-1CE6-492D-A883-E6897504B8DC} - \DriverNavigator Scheduled Scan No Task File <==== ATTENTION
Task: {530C357B-AA9A-4F30-A444-475A1EEC286D} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b63d97f3c34 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-30] (Google Inc.)
Task: {561985D5-2CA4-4C44-86E7-18D5332A0000} - System32\Tasks\{D1607110-4335-4289-AE99-FB58F9CC14F6} => Chrome.exe hxxp://ui.skype.com/ui/0/4.2.0.187/de/go/help.faq.installer?LastError=1603
Task: {5AB1D06A-36E5-48DA-B5D5-1E63BEE7BC3B} - System32\Tasks\Auslogics\Driver Updater\Start Driver Updater оn logon => C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe [2014-09-16] (Auslogics)
Task: {5BB9072D-38EC-4DDF-858E-B307EAC5538B} - \Plus-HD-3.8-updater No Task File <==== ATTENTION
Task: {688AF21C-2C43-43D4-8850-AF4FD1A5F079} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-11] (Adobe Systems Incorporated)
Task: {7633CC5E-CD73-4F7A-BFA9-611F1605AFC9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd)
Task: {881881B2-8095-4470-89E1-570C54F8524D} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2013-08-30] ()
Task: {8EF082B1-8266-4F9F-9A18-23EEB94E38E9} - System32\Tasks\Games\UpdateCheck_S-1-5-21-587166496-2713831522-2260052027-1000
Task: {957C7C5D-4CDF-4C02-A4A4-BB7EED584E46} - \Plus-HD-3.8-enabler No Task File <==== ATTENTION
Task: {AEAD0A8C-A937-43A3-A596-A8FC1F35F956} - \temp_Plus-HD-3.8-enabler No Task File <==== ATTENTION
Task: {AED87CB5-8E37-483A-B234-5626C6F96C2A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {BBF7C029-F17C-49EF-9F59-EC940D612135} - System32\Tasks\AdobeAAMUpdater-1.0-skull00-PC-skull00 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {C49C60C9-38DD-4C65-8B6D-8EE6FD10D8FC} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation)
Task: {CCD9E6D1-E08F-4405-972C-9A771EC4D744} - System32\Tasks\Auslogics\BoostSpeed\Scan and Repair => Rundll32.exe TaskSchedulerHelper.dll,RunTask "BoostSpeed.exe" "-UseTray -Schedule"
Task: {D24098C0-3D84-419C-8823-0588C80A54B2} - \Trojan Killer No Task File <==== ATTENTION
Task: {F337943D-57FD-42FE-B132-D5E2F66F17FE} - \Plus-HD-3.8-codedownloader No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8b63d94addee.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf8b63d97f3c34.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-30 12:39 - 2013-01-31 11:25 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-08-12 11:06 - 2014-08-12 11:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-09-21 21:41 - 2014-06-06 15:41 - 00718336 _____ () C:\Program Files\NetWorx\sqlite.dll
2014-05-01 16:13 - 2014-05-01 16:13 - 00470016 _____ () C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX64.dll
2014-07-18 14:02 - 2014-06-19 11:13 - 00930816 _____ () C:\Users\skull00\AppData\Local\Viber\Viber.exe
2014-08-12 11:06 - 2014-08-12 11:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-03-06 15:00 - 2014-03-06 15:00 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\kpcengine.2.3.dll
2014-05-01 16:15 - 2014-05-01 16:15 - 00463360 _____ () C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX32.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 43532288 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\libViber.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00770048 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\libGLESv2.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00098304 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\qfacebook.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00172032 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\libexif.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00049152 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\libEGL.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00876544 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\platforms\qwindows.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00024576 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qgif.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00024576 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qico.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00204800 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qjpeg.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00221184 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qmng.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00016384 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qsvg.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00016384 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qtga.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00311296 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qtiff.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00016384 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qwbmp.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00638976 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\sqldrivers\qsqlite.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00032768 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\iconengines\qsvgicon.dll
2014-09-04 00:00 - 2014-09-04 00:00 - 00059904 _____ () C:\Program Files (x86)\Trillian\zlib1.dll
2014-09-04 00:00 - 2014-09-04 00:00 - 00187392 _____ () C:\Program Files (x86)\Trillian\libpng15.dll
2014-09-04 00:00 - 2014-09-04 00:00 - 00065536 _____ () C:\Program Files (x86)\Trillian\libungif.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00002048 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\toolkit.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00007168 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\events.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00009728 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\buddy.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00006144 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\talk.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00005632 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\trillian.dll
2014-09-26 08:23 - 2014-09-26 08:23 - 00098816 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32api.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00110080 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\pywintypes27.dll
2014-09-26 08:23 - 2014-09-26 08:23 - 00364544 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\pythoncom27.dll
2014-09-26 08:23 - 2014-09-26 08:23 - 00045568 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_socket.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 01160704 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_ssl.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00320512 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32com.shell.shell.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00713216 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_hashlib.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 01175040 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._core_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00805888 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._gdi_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00811008 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._windows_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 01062400 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._controls_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00735232 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._misc_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00128512 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_elementtree.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00127488 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\pyexpat.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00557056 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\pysqlite2._sqlite.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00007168 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\hashobjs_ext.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00087552 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_ctypes.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00119808 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32file.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00108544 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32security.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00018432 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32event.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00038912 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32inet.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00070656 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._html2.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00167936 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32gui.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00011264 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32crypt.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00027136 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_multiprocessing.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00686080 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\unicodedata.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00122368 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._wizard.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00010240 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\select.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00024064 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32pipe.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00025600 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32pdh.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00525640 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\windows._lib_cacheinvalidation.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00035840 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32process.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00017408 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32profile.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00022528 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32ts.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00078336 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._animate.pyd
2014-09-16 18:59 - 2014-09-16 16:44 - 00896968 _____ () C:\Program Files (x86)\Auslogics\Driver Updater\GoogleAnalyticsHelper.dll
2014-09-26 08:48 - 2014-09-23 08:04 - 00565248 _____ () C:\Program Files (x86)\Auslogics\BoostSpeed\sqlite3.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\skull00:gs5sys
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\ProgramData\TEMP:07BF512B
AlternateDataStreams: C:\ProgramData\TEMP:76650B61
AlternateDataStreams: C:\ProgramData\TEMP:890CC2F3
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
AlternateDataStreams: C:\ProgramData\Templates:gs5sys
AlternateDataStreams: C:\ProgramData\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\skull00\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\skull00\Cookies:gs5sys
AlternateDataStreams: C:\Users\skull00\Lokale Einstellungen:gs5sys
AlternateDataStreams: C:\Users\skull00\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\skull00\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\skull00\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\skull00\AppData\Local\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\skull00\AppData\Local\Verlauf:gs5sys
AlternateDataStreams: C:\Users\skull00\Documents\desktop.ini:gs5sys

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk => C:\Windows\pss\O&O Defrag Tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^skull00^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^alga.exe =>
MSCONFIG\startupfolder: C:^Users^skull00^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^skull00^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Wecker für Windows 6.lnk => C:\Windows\pss\Wecker für Windows 6.lnk.Startup
MSCONFIG\startupreg: "C: =>
MSCONFIG\startupreg: CloantoSoftwareDirector => "C:\Program Files (x86)\Common Files\Cloanto\Software Director\softdir.exe" -s
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: OODITRAY.EXE => C:\Program Files\OO Software\DiskImage\ooditray.exe
MSCONFIG\startupreg: Spotify => "C:\Users\skull00\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\skull00\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-587166496-2713831522-2260052027-500 - Disabled - Status: Degraded)
Gast (S-1-5-21-587166496-2713831522-2260052027-501 - Disabled - Status: Degraded)
HomeGroupUser$ (S-1-5-21-587166496-2713831522-2260052027-1002 - Enabled - Status: OK)
skull00 (S-1-5-21-587166496-2713831522-2260052027-1000 - Enabled - Status: OK) => C:\Users\skull00
UpdatusUser (S-1-5-21-587166496-2713831522-2260052027-1003 - Enabled - Status: OK) => C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============

Name: Microsoft-6zu4-Adapter
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft-ISATAP-Adapter
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft-ISATAP-Adapter #2
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft-ISATAP-Adapter #3
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: adgnetworktdi
Description: adgnetworktdi
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: adgnetworktdi
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/26/2014 08:53:38 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Erstellen der Schattenkopieanbieter-COM-Klasse mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
] ist ein Fehler aufgetreten.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
Schattenkopien abfragen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Snapshotkontext: 13
Snapshotkontext: 13
Ausführungskontext: Coordinator

Error: (09/26/2014 08:53:38 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} und dem Namen "SW_PROV" kann nicht gestartet werden. [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
]


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
Schattenkopien abfragen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Snapshotkontext: 13
Snapshotkontext: 13
Ausführungskontext: Coordinator

Error: (09/26/2014 08:45:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Removed O&O SafeErase Professional; Fehler = 0x80042302).

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "GetProviderMgmtInterface" ist ein unerwarteter Fehler aufgetreten. hr = 0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.
.

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Erstellen der Schattenkopieanbieter-COM-Klasse mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
] ist ein Fehler aufgetreten.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {00000000-0000-0000-0000-000000000000}
Snapshotkontext: -1
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} und dem Namen "SW_PROV" kann nicht gestartet werden. [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
]


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {00000000-0000-0000-0000-000000000000}
Snapshotkontext: -1
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:07 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Removed O&O SafeErase Professional; Fehler = 0x80042302).

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "GetProviderMgmtInterface" ist ein unerwarteter Fehler aufgetreten. hr = 0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.
.

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Erstellen der Schattenkopieanbieter-COM-Klasse mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
] ist ein Fehler aufgetreten.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {00000000-0000-0000-0000-000000000000}
Snapshotkontext: -1
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} und dem Namen "SW_PROV" kann nicht gestartet werden. [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
]


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {00000000-0000-0000-0000-000000000000}
Snapshotkontext: -1
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (09/26/2014 08:53:38 AM) (Source: VSS) (EventID: 12292) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
Schattenkopien abfragen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Snapshotkontext: 13
Snapshotkontext: 13
Ausführungskontext: Coordinator

Error: (09/26/2014 08:53:38 AM) (Source: VSS) (EventID: 13) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}SW_PROV0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
Schattenkopien abfragen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Snapshotkontext: 13
Snapshotkontext: 13
Ausführungskontext: Coordinator

Error: (09/26/2014 08:45:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Windows\system32\msiexec.exe /VRemoved O&O SafeErase Professional0x80042302

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 8193) (User: )
Description: GetProviderMgmtInterface0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 12292) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {00000000-0000-0000-0000-000000000000}
Snapshotkontext: -1
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 13) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}SW_PROV0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {00000000-0000-0000-0000-000000000000}
Snapshotkontext: -1
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:07 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Windows\system32\msiexec.exe /VRemoved O&O SafeErase Professional0x80042302

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 8193) (User: )
Description: GetProviderMgmtInterface0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 12292) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {00000000-0000-0000-0000-000000000000}
Snapshotkontext: -1
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 13) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}SW_PROV0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Klassen-ID: {00000000-0000-0000-0000-000000000000}
Snapshotkontext: -1
Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}


CodeIntegrity Errors:
===================================
Date: 2014-09-26 02:25:03.165
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-26 02:25:03.162
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-26 02:25:03.155
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-26 02:25:03.048
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-26 02:25:03.045
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-26 02:25:03.042
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-26 02:25:03.003
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-26 02:25:03.000
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-26 02:25:02.994
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-09-25 15:30:17.320
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\31BF.tmp" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info ===========================

Processor: AMD A8-3870 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 32%
Total physical RAM: 7677.23 MB
Available physical RAM: 5176.19 MB
Total Pagefile: 15352.64 MB
Available Pagefile: 12265.2 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:796.52 GB) (Free:55.85 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Volume) (Fixed) (Total:134.89 GB) (Free:1.31 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 5509E768)
Partition 1: (Active) - (Size=796.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=134.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Alt 26.09.2014, 09:00   #2
schrauber
/// the machine
/// TB-Ausbilder
 

bin mir sehr unsicher auf eventuelle Probleme - Standard

bin mir sehr unsicher auf eventuelle Probleme



hi,

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.




FRST.txt fehlt noch
__________________

__________________

Alt 26.09.2014, 14:25   #3
skull00
 
bin mir sehr unsicher auf eventuelle Probleme - Standard

bin mir sehr unsicher auf eventuelle Probleme



Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-09-2014
Ran by skull00 at 2014-09-26 08:53:37
Running from C:\Users\skull00\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33870 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Audition CC (HKLM-x32\...\{DE1E055B-679C-42F8-B114-7B6ED0B8ED95}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Audition CC 2014 (HKLM-x32\...\{F3388E10-EFA9-4A80-B28E-2E647F8D00C4}) (Version: 7.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.30.100.40812 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0812.1103.17905 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{1113B31C-097E-644C-7242-829DFC0CED38}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2014.0812.1103.17905 - Ihr Firmenname) Hidden
AMD Media Foundation Decoders (Version: 1.0.81008.0920 - Advanced Micro Devices, Inc.) Hidden
AMD Steady Video Plug-In  (Version: 2.07.0000 - AMD) Hidden
AMD USB 3.0 Device Detector (Version: 2.1.29.0 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
Amiga Forever (HKLM-x32\...\{7572012B-3D80-4425-97C7-D4ABA70C42DD}) (Version: 2013.3.2 - Cloanto)
Ashampoo Burning Studio 14 v.14.0.5 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.5 - Ashampoo GmbH & Co. KG)
Ashampoo Internet Accelerator 3 v.3.30 (HKLM-x32\...\{4209F371-C803-200D-89A4-5479B6569259}_is1) (Version: 3.3.0 - Ashampoo GmbH & Co. KG)
Ashampoo Movie Studio Pro v.1.0.17 (HKLM-x32\...\{91B33C97-EC92-2CD7-E21F-4FEF6AA572AA}_is1) (Version: 1.0.17 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer 6 v.6.0.0 (HKLM-x32\...\{91B33C97-546E-E89A-9F44-0BB2D57DBE96}_is1) (Version: 6.0.0 - Ashampoo GmbH & Co. KG)
Ashampoo Video Styler 1.0.1 (HKLM-x32\...\Ashampoo Video Styler_is1) (Version: 1.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 11 v.11.0.1 (HKLM-x32\...\{4209F371-8D72-8119-66FA-897D2D41E27F}_is1) (Version: 11.0.1 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Auslogics BoostSpeed 7 (HKLM-x32\...\{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1) (Version: 7.3.0.0 - Auslogics Labs Pty Ltd)
Auslogics Driver Updater (HKLM-x32\...\{23BB1B18-3537-48F7-BEF7-42BC65DBF993}_is1) (Version: 1.0.0.1 - Auslogics Labs Pty Ltd)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BayGenie eBay Auction Sniper Pro Edition 3.3.6.3 (HKLM-x32\...\BayGenie eBay Auction Sniper Pro Edition_is1) (Version: 3.3.6.3 - baygenie.com)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Boilsoft Video Joiner 6.57 (HKLM-x32\...\{FD39EF4B-0B5C-4B33-8D57-2EE865A80EB1}_is1) (Version:  - Boilsoft, Inc.)
C64 Forever (HKLM-x32\...\{D457A5D1-F3FA-4B63-89BE-BA72216B7EF3}) (Version: 2013.3.2 - Cloanto)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0812.1103.17905 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0812.1103.17905 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0812.1103.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0812.1102.17905 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0812.1103.17905 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Clementine (HKLM-x32\...\Clementine) (Version: 1.2.3 - Clementine)
CoreAVC Professional Edition (remove only) (HKLM-x32\...\CoreAVC Professional Edition) (Version:  - )
CS-80V2 2.0 (HKLM-x32\...\CS-80V2_is1) (Version:  - Arturia)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{42CBCE27-DE9B-4094-B9EB-D4C4C135FFA8}) (Version:  - Microsoft)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version:  - Steinberg Media Technologies GmbH)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Etron USB3.0 Host Controller (x32 Version: 0.101 - Etron Technology) Hidden
Exact Audio Copy 1.0beta3 (HKLM-x32\...\Exact Audio Copy) (Version: 1.0beta3 - Andre Wiethoff)
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 2.2.1 - Poikosoft)
FLAC 1.2.1b (remove only) (HKLM-x32\...\FLAC) (Version: 1.2.1b - Xiph.org)
foobar2000 v1.3.2 (HKLM-x32\...\foobar2000) (Version: 1.3.2 - Peter Pawlowski)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free Audio Converter version 5.0.46.820 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.46.820 - DVDVideoSoft Ltd.)
Free M4a to MP3 Converter 8.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version:  - ManiacTools.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Drive (HKLM-x32\...\{C6640705-7479-4EE5-BC86-879F05F65E74}) (Version: 1.17.7290.4094 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HandBrake 0.9.9.1 (HKLM-x32\...\HandBrake) (Version: 0.9.9.1 - )
ICQ 8.2 (build 6870) (HKCU\...\ICQ) (Version: 8.2.6870.0 - Mail.Ru)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Jupiter-8V2 2.5.2 (HKLM-x32\...\jupiter8v25_is1) (Version: 2.5.2 - Arturia)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{653C1B5A-3287-47B1-8613-0745D4E771C4}) (Version: 15.0.0.463 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.0.463 - Kaspersky Lab) Hidden
K-Lite Codec Pack 10.2.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.2.0 - )
Last.fm 1.5.4.27091 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
Logitech SetPoint 6.61 (HKLM\...\sp6) (Version: 6.61.15 - Logitech)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Medieval II Total War (HKLM-x32\...\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}) (Version: 1.03.000 - SEGA)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Corporation (Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft Corporation (x32 Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
minimoog V2 2.0 (HKLM-x32\...\minimoog V2_is1) (Version:  - Arturia)
mIRC (HKLM-x32\...\mIRC) (Version: 7.36 - mIRC Co. Ltd.)
Monkey's Audio (HKLM-x32\...\Monkey's Audio_is1) (Version:  - )
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.4.0 - Mozilla)
Mozilla Thunderbird 31.1.2 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.1.2 (x86 de)) (Version: 31.1.2 - Mozilla)
Mp3tag v2.57 (HKLM-x32\...\Mp3tag) (Version: v2.57 - Florian Heidenreich)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Music NFO Builder Version 1.21a (HKLM-x32\...\{CC9F74BA-CA3D-4C13-A97A-738DA26ED686}_is1) (Version: 1.21a - Pawe³ Piecuch)
My Game Long Name (HKLM\...\UDK-1391652a-9328-4cbb-9a68-e1769c5184ff) (Version:  - Epic Games, Inc.)
NetWorx 5.3.2 (HKLM\...\NetWorx_is1) (Version:  - Softperfect Research)
NVIDIA Grafiktreiber 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.109.706 - NVIDIA Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Systemsteuerung 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden
O&O Defrag Professional (HKLM\...\{46CD29D7-580C-4E2E-8469-BD7F7CB1CCF8}) (Version: 18.0.39 - O&O Software GmbH)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Prophet-V2 2.0 (HKLM-x32\...\Prophet-V2_is1) (Version:  - Arturia)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.80.218.2014 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6650 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Registry First Aid 9 (HKLM\...\RFA9_is1) (Version: 9.2.0 - RoseCitySoftware)
Revo Uninstaller Pro 3.0.7 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.7 - VS Revo Group, Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
Software Director (HKLM-x32\...\Cloanto Software Director) (Version: 3.8.12.0 - Cloanto Corporation)
SoulSeek 157 NS 13e (HKLM-x32\...\Soulseek2) (Version:  - )
Spotify (HKCU\...\Spotify) (Version: 0.9.13.24.g5dbb3103 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Torchlight 2 (HKLM-x32\...\{049FF5E4-EB02-4c42-8DB0-226E2F7A9E53}) (Version: 1.21.2.1 - )
Total Commander Ultima Prime 5.9.0.0 (HKLM-x32\...\TC UP) (Version: 5.9.0.0 - Robert Łajka & Paweł Porwisz)
Total War: ROME II Emperor Edition (HKLM-x32\...\VG90YWxXYXJST01FSUk=_is1) (Version: 1 - )
TotalAudioConverter (HKLM-x32\...\Total Audio Converter_is1) (Version: 5.1 - Softplicity, Inc.)
Trillian (HKLM-x32\...\Trillian) (Version:  - Cerulean Studios, LLC)
Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.6.3 - Tweaking.com)
Ultra Street Fighter IV (HKLM-x32\...\VWx0cmFTdHJlZXRGaWdodGVySVY=_is1) (Version: 1 - )
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{AC36E3B7-5095-43B9-9A74-928420F88714}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{84B191B5-5319-463A-A305-8C4D53B1D20A}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{1AA82E2E-7DB7-4C70-910C-BBB657A6B3A5}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553092) (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E636FE63-842B-4F4B-9884-DA189ACC0B91}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553092) (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{E636FE63-842B-4F4B-9884-DA189ACC0B91}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{B114A387-8A14-4C43-AE51-82F17EB81D49}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{6E760BBA-B83F-4C2D-918F-5F91EF6C9861}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{D1F3B526-7EB2-4701-92DB-0784988D78DE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{52BEF8AE-9324-40A1-9A92-E5A8FB63A475}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{56551B9F-2FE1-4705-ACF0-8FA920535E18}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{56551B9F-2FE1-4705-ACF0-8FA920535E18}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{8F699D53-05FB-488E-B7D3-E4E47257BE5D}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{4B9B2BAF-EE1F-4B60-A4D9-17B7BEEB13A1}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DDDC32A5-9528-4771-B91A-97A8E1D7957B}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{6164E0E5-C903-488C-93AF-1B7AF7EBC331}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A20A650C-F820-4CE4-AEA5-EC140192FAFB}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{FD360122-6829-4497-97C1-1BF578EF695B}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F6F342A1-530B-4D48-A468-1E3F70928984}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{C950A55F-82E3-4CC8-8FA2-E8A2A0F651F3}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{89FDC8D9-FB84-4EFE-950D-AF4EECC3B64C}) (Version:  - Microsoft)
Viber (HKCU\...\Viber) (Version: 3.0.0.134678 - Viber Media Inc)
VirtualDJ 8 (HKLM-x32\...\{9ADBBA93-4625-4898-BB0D-BCE7EA9F8B4A}) (Version: 8.0.0 - Atomix Productions)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.2.0.7 - VSO Software)
Way Out Ware TimewARP2600 v1.15 (HKLM-x32\...\Way Out Ware TimewARP2600 v1.15) (Version:  - )
Windows 7 Manager (HKLM\...\{0E427EF3-DD38-41B9-BBB1-593EFC6CDFBF}) (Version: 4.2.6 - Yamicsoft)
Windows Driver Package - Advanced Micro Devices, Inc System  (03/16/2011 5.12.0.0015) (HKLM\...\A3A37EC031F134EDD1E9DB40819B1EAD0DB7C844) (Version: 03/16/2011 5.12.0.0015 - Advanced Micro Devices, Inc)
Windows Driver Package - AMD (amdkmafd) System  (09/22/2012 9.002.0.0000) (HKLM\...\203795FBE6DF8F5E5F7AFFD457E83797A053787C) (Version: 09/22/2012 9.002.0.0000 - AMD)
Windows Driver Package - BYD COMPANY LIMITED (LPCFilter) System  (07/20/2012 1.0.64.1) (HKLM\...\58A9219961448E2E858F63E340D4AD958D1DAB8E) (Version: 07/20/2012 1.0.64.1 - BYD COMPANY LIMITED)
Windows Driver Package - DT Soft Ltd (dtsoftbus01) System  (02/19/2014 5.5.0000.0386) (HKLM\...\CA4C310BF38B65D636830CF16E54062D5B119F8E) (Version: 02/19/2014 5.5.0000.0386 - DT Soft Ltd)
Windows Driver Package - Etron Technology Inc. (EtronXHCI) USB  (07/17/2013 1.00.0000.0118) (HKLM\...\2B936C8CC539EEBDFE03DCEB35C8DFE2BD586997) (Version: 07/17/2013 1.00.0000.0118 - Etron Technology Inc.)
Windows Driver Package - KernSafe Technologies (KScsiPrt) SCSIAdapter  (06/23/2009 1.07.00623) (HKLM\...\04B9AEE2C25641AF37A62A4F916C8EAE7D64B8B1) (Version: 06/23/2009 1.07.00623 - KernSafe Technologies)
Windows Driver Package - O&O Software GmbH (oodivd) OODISKIMAGE  (11/27/2012 7.0.98) (HKLM\...\0D375989F84E02414CEE80F07E198C33C1B76860) (Version: 11/27/2012 7.0.98 - O&O Software GmbH)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Phone app for desktop (HKLM-x32\...\{19773614-FC22-4ACC-AAA3-E6BDA81ACF92}) (Version: 1.1.2726.0 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
XFast LAN v9.05 (HKLM\...\XFast LAN) (Version: 9.05 - cFos Software GmbH, Bonn)
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.7.3.20131014 - Xilisoft)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2014-09-25 22:20 - 00000734 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {1A8658C4-669D-48BD-8BBE-762CDE0B84FF} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8b63d94addee => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-30] (Google Inc.)
Task: {1FCD3E4E-9672-42F0-96A2-8E187AC0CC58} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {2B4F0A8C-F779-4AFC-B760-F32213AF5CD8} - \Plus-HD-3.8-firefoxinstaller No Task File <==== ATTENTION
Task: {49E370FA-3C8D-4C64-A85A-5893DD6C2C58} - System32\Tasks\Auslogics\BoostSpeed\Start BoostSpeed оn skull00 logon => C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [2014-09-23] (Auslogics)
Task: {525BA13A-1CE6-492D-A883-E6897504B8DC} - \DriverNavigator Scheduled Scan No Task File <==== ATTENTION
Task: {530C357B-AA9A-4F30-A444-475A1EEC286D} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b63d97f3c34 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-30] (Google Inc.)
Task: {561985D5-2CA4-4C44-86E7-18D5332A0000} - System32\Tasks\{D1607110-4335-4289-AE99-FB58F9CC14F6} => Chrome.exe hxxp://ui.skype.com/ui/0/4.2.0.187/de/go/help.faq.installer?LastError=1603
Task: {5AB1D06A-36E5-48DA-B5D5-1E63BEE7BC3B} - System32\Tasks\Auslogics\Driver Updater\Start Driver Updater оn logon => C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe [2014-09-16] (Auslogics)
Task: {5BB9072D-38EC-4DDF-858E-B307EAC5538B} - \Plus-HD-3.8-updater No Task File <==== ATTENTION
Task: {688AF21C-2C43-43D4-8850-AF4FD1A5F079} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-11] (Adobe Systems Incorporated)
Task: {7633CC5E-CD73-4F7A-BFA9-611F1605AFC9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd)
Task: {881881B2-8095-4470-89E1-570C54F8524D} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2013-08-30] ()
Task: {8EF082B1-8266-4F9F-9A18-23EEB94E38E9} - System32\Tasks\Games\UpdateCheck_S-1-5-21-587166496-2713831522-2260052027-1000
Task: {957C7C5D-4CDF-4C02-A4A4-BB7EED584E46} - \Plus-HD-3.8-enabler No Task File <==== ATTENTION
Task: {AEAD0A8C-A937-43A3-A596-A8FC1F35F956} - \temp_Plus-HD-3.8-enabler No Task File <==== ATTENTION
Task: {AED87CB5-8E37-483A-B234-5626C6F96C2A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {BBF7C029-F17C-49EF-9F59-EC940D612135} - System32\Tasks\AdobeAAMUpdater-1.0-skull00-PC-skull00 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {C49C60C9-38DD-4C65-8B6D-8EE6FD10D8FC} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation)
Task: {CCD9E6D1-E08F-4405-972C-9A771EC4D744} - System32\Tasks\Auslogics\BoostSpeed\Scan and Repair => Rundll32.exe TaskSchedulerHelper.dll,RunTask "BoostSpeed.exe" "-UseTray -Schedule"
Task: {D24098C0-3D84-419C-8823-0588C80A54B2} - \Trojan Killer No Task File <==== ATTENTION
Task: {F337943D-57FD-42FE-B132-D5E2F66F17FE} - \Plus-HD-3.8-codedownloader No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8b63d94addee.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf8b63d97f3c34.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-30 12:39 - 2013-01-31 11:25 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-08-12 11:06 - 2014-08-12 11:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-09-21 21:41 - 2014-06-06 15:41 - 00718336 _____ () C:\Program Files\NetWorx\sqlite.dll
2014-05-01 16:13 - 2014-05-01 16:13 - 00470016 _____ () C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX64.dll
2014-07-18 14:02 - 2014-06-19 11:13 - 00930816 _____ () C:\Users\skull00\AppData\Local\Viber\Viber.exe
2014-08-12 11:06 - 2014-08-12 11:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-03-06 15:00 - 2014-03-06 15:00 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\kpcengine.2.3.dll
2014-05-01 16:15 - 2014-05-01 16:15 - 00463360 _____ () C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX32.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 43532288 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\libViber.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00770048 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\libGLESv2.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00098304 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\qfacebook.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00172032 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\libexif.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00049152 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\libEGL.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00876544 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\platforms\qwindows.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00024576 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qgif.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00024576 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qico.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00204800 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qjpeg.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00221184 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qmng.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00016384 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qsvg.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00016384 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qtga.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00311296 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qtiff.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00016384 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\imageformats\qwbmp.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00638976 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\sqldrivers\qsqlite.dll
2014-09-15 15:01 - 2014-09-15 15:01 - 00032768 _____ () C:\Users\skull00\AppData\Local\Viber\4.3.0.1453\iconengines\qsvgicon.dll
2014-09-04 00:00 - 2014-09-04 00:00 - 00059904 _____ () C:\Program Files (x86)\Trillian\zlib1.dll
2014-09-04 00:00 - 2014-09-04 00:00 - 00187392 _____ () C:\Program Files (x86)\Trillian\libpng15.dll
2014-09-04 00:00 - 2014-09-04 00:00 - 00065536 _____ () C:\Program Files (x86)\Trillian\libungif.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00002048 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\toolkit.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00007168 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\events.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00009728 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\buddy.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00006144 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\talk.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 00005632 _____ () C:\Users\skull00\AppData\Roaming\Trillian\languages\de\trillian.dll
2014-09-26 08:23 - 2014-09-26 08:23 - 00098816 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32api.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00110080 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\pywintypes27.dll
2014-09-26 08:23 - 2014-09-26 08:23 - 00364544 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\pythoncom27.dll
2014-09-26 08:23 - 2014-09-26 08:23 - 00045568 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_socket.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 01160704 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_ssl.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00320512 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32com.shell.shell.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00713216 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_hashlib.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 01175040 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._core_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00805888 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._gdi_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00811008 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._windows_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 01062400 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._controls_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00735232 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._misc_.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00128512 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_elementtree.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00127488 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\pyexpat.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00557056 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\pysqlite2._sqlite.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00007168 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\hashobjs_ext.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00087552 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_ctypes.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00119808 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32file.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00108544 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32security.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00018432 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32event.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00038912 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32inet.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00070656 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._html2.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00167936 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32gui.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00011264 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32crypt.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00027136 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\_multiprocessing.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00686080 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\unicodedata.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00122368 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._wizard.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00010240 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\select.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00024064 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32pipe.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00025600 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32pdh.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00525640 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\windows._lib_cacheinvalidation.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00035840 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32process.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00017408 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32profile.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00022528 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\win32ts.pyd
2014-09-26 08:23 - 2014-09-26 08:23 - 00078336 _____ () C:\Users\skull00\AppData\Local\Temp\_MEI46082\wx._animate.pyd
2014-09-16 18:59 - 2014-09-16 16:44 - 00896968 _____ () C:\Program Files (x86)\Auslogics\Driver Updater\GoogleAnalyticsHelper.dll
2014-09-26 08:48 - 2014-09-23 08:04 - 00565248 _____ () C:\Program Files (x86)\Auslogics\BoostSpeed\sqlite3.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\skull00:gs5sys
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\ProgramData\TEMP:07BF512B
AlternateDataStreams: C:\ProgramData\TEMP:76650B61
AlternateDataStreams: C:\ProgramData\TEMP:890CC2F3
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
AlternateDataStreams: C:\ProgramData\Templates:gs5sys
AlternateDataStreams: C:\ProgramData\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\skull00\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\skull00\Cookies:gs5sys
AlternateDataStreams: C:\Users\skull00\Lokale Einstellungen:gs5sys
AlternateDataStreams: C:\Users\skull00\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\skull00\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\skull00\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\skull00\AppData\Local\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\skull00\AppData\Local\Verlauf:gs5sys
AlternateDataStreams: C:\Users\skull00\Documents\desktop.ini:gs5sys

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk => C:\Windows\pss\O&O Defrag Tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^skull00^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^alga.exe => 
MSCONFIG\startupfolder: C:^Users^skull00^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^skull00^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Wecker für Windows 6.lnk => C:\Windows\pss\Wecker für Windows 6.lnk.Startup
MSCONFIG\startupreg: "C: => 
MSCONFIG\startupreg: CloantoSoftwareDirector => "C:\Program Files (x86)\Common Files\Cloanto\Software Director\softdir.exe" -s
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: OODITRAY.EXE => C:\Program Files\OO Software\DiskImage\ooditray.exe
MSCONFIG\startupreg: Spotify => "C:\Users\skull00\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\skull00\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-587166496-2713831522-2260052027-500 - Disabled - Status: Degraded)
Gast (S-1-5-21-587166496-2713831522-2260052027-501 - Disabled - Status: Degraded)
HomeGroupUser$ (S-1-5-21-587166496-2713831522-2260052027-1002 - Enabled - Status: OK)
skull00 (S-1-5-21-587166496-2713831522-2260052027-1000 - Enabled - Status: OK) => C:\Users\skull00
UpdatusUser (S-1-5-21-587166496-2713831522-2260052027-1003 - Enabled - Status: OK) => C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============

Name: Microsoft-6zu4-Adapter
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft-ISATAP-Adapter
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft-ISATAP-Adapter #2
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft-ISATAP-Adapter #3
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: adgnetworktdi
Description: adgnetworktdi
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: adgnetworktdi
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/26/2014 08:53:38 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Erstellen der Schattenkopieanbieter-COM-Klasse mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
] ist ein Fehler aufgetreten.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (09/26/2014 08:53:38 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} und dem Namen "SW_PROV" kann nicht gestartet werden. [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
]


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (09/26/2014 08:45:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Removed O&O SafeErase Professional; Fehler = 0x80042302).

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "GetProviderMgmtInterface" ist ein unerwarteter Fehler aufgetreten. hr = 0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.
.

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Erstellen der Schattenkopieanbieter-COM-Klasse mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
] ist ein Fehler aufgetreten.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {00000000-0000-0000-0000-000000000000}
   Snapshotkontext: -1
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} und dem Namen "SW_PROV" kann nicht gestartet werden. [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
]


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {00000000-0000-0000-0000-000000000000}
   Snapshotkontext: -1
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:07 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Removed O&O SafeErase Professional; Fehler = 0x80042302).

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "GetProviderMgmtInterface" ist ein unerwarteter Fehler aufgetreten. hr = 0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.
.

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Erstellen der Schattenkopieanbieter-COM-Klasse mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
] ist ein Fehler aufgetreten.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {00000000-0000-0000-0000-000000000000}
   Snapshotkontext: -1
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} und dem Namen "SW_PROV" kann nicht gestartet werden. [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
]


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {00000000-0000-0000-0000-000000000000}
   Snapshotkontext: -1
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (09/26/2014 08:53:38 AM) (Source: VSS) (EventID: 12292) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (09/26/2014 08:53:38 AM) (Source: VSS) (EventID: 13) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}SW_PROV0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (09/26/2014 08:45:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Windows\system32\msiexec.exe /VRemoved O&O SafeErase Professional0x80042302

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 8193) (User: )
Description: GetProviderMgmtInterface0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 12292) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {00000000-0000-0000-0000-000000000000}
   Snapshotkontext: -1
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:12 AM) (Source: VSS) (EventID: 13) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}SW_PROV0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {00000000-0000-0000-0000-000000000000}
   Snapshotkontext: -1
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:07 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Windows\system32\msiexec.exe /VRemoved O&O SafeErase Professional0x80042302

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 8193) (User: )
Description: GetProviderMgmtInterface0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 12292) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {00000000-0000-0000-0000-000000000000}
   Snapshotkontext: -1
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (09/26/2014 08:45:07 AM) (Source: VSS) (EventID: 13) (User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}SW_PROV0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Anbieterverwaltungsschnittstelle wird abgerufen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {00000000-0000-0000-0000-000000000000}
   Snapshotkontext: -1
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}


CodeIntegrity Errors:
===================================
  Date: 2014-09-26 02:25:03.165
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-26 02:25:03.162
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-26 02:25:03.155
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-26 02:25:03.048
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-26 02:25:03.045
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-26 02:25:03.042
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-26 02:25:03.003
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-26 02:25:03.000
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-26 02:25:02.994
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-09-25 15:30:17.320
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\31BF.tmp" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Processor: AMD A8-3870 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 32%
Total physical RAM: 7677.23 MB
Available physical RAM: 5176.19 MB
Total Pagefile: 15352.64 MB
Available Pagefile: 12265.2 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:796.52 GB) (Free:55.85 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Volume) (Fixed) (Total:134.89 GB) (Free:1.31 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 5509E768)
Partition 1: (Active) - (Size=796.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=134.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
danke schrauber ! ist das jetzt gut so ? was brauchst du noch für den check? vg

Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-09-26 09:15:54
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\00000074 WDC_WD10 rev.51.0 931,51GB
Running: vz9wb5du.exe; Driver: C:\Users\skull00\AppData\Local\Temp\pxlirfod.sys


---- Devices - GMER 2.1 ----

Device   \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0                                                                             fffffa80067e62c0
Device   \Driver\atapi \Device\Ide\IdePort0                                                                                      fffffa80067e62c0
Device   \Driver\atapi \Device\Ide\IdePort1                                                                                      fffffa80067e62c0
Device   \Driver\apc5p401 \Device\Scsi\apc5p4011Port3Path0Target0Lun0                                                            fffffa8007f8f2c0
Device   \Driver\apc5p401 \Device\Scsi\apc5p4011                                                                                 fffffa8007f8f2c0
Device   \FileSystem\Ntfs \Ntfs                                                                                                  fffffa80067f92c0

---- Modules - GMER 2.1 ----

Module   \SystemRoot\System32\Drivers\apc5p401.SYS                                                                               fffff880083a3000-fffff880083f4000 (331776 bytes)
---- Processes - GMER 2.1 ----

Library  C:\Program Files\OO Software\DiskImage\oodishi.dll (*** suspicious ***) @ C:\Program Files\NetWorx\networx.exe [4084]   000007fef5ed0000
Library  C:\Program Files\OO Software\DiskImage\oodishrs.dll (*** suspicious ***) @ C:\Program Files\NetWorx\networx.exe [4084]  000007fef5e70000
Library  C:\Program Files\OO Software\DiskImage\oodishi.dll (*** suspicious ***) @ C:\Windows\explorer.exe [11268]               000007fef5ed0000
Library  C:\Program Files\OO Software\DiskImage\oodishrs.dll (*** suspicious ***) @ C:\Windows\explorer.exe [11268]              000007fef5e70000
Library  C:\Program Files\OO Software\SafeErase\oosesh.dll (*** suspicious ***) @ C:\Windows\explorer.exe [11268]                000007fee2ad0000
Library  C:\Program Files\OO Software\SafeErase\OOSESHRS.DLL (*** suspicious ***) @ C:\Windows\explorer.exe [11268]              000007fef6580000

---- EOF - GMER 2.1 ----
         
Code:
ATTFilter
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at , on 
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!

FIREFOX: 30.0 (de)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
C:\Users\skull00\AppData\Roaming\uTorrent\uTorrent.exe
C:\Users\skull00\AppData\Local\Viber\Viber.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\skull00\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Users\skull00\AppData\Local\MEGAsync\MEGAsync.exe
C:\Program Files (x86)\Trillian\trillian.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe
C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\plugin-nm-server.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\klwtblfs.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\skull00\Downloads\HijackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\skull00\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
O4 - HKCU\..\Run: [Viber] "C:\Users\skull00\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\skull00\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O4 - Startup: MEGAsync.lnk = C:\Users\skull00\AppData\Local\MEGAsync\MEGAsync.exe
O4 - Startup: Trillian.lnk = C:\Program Files (x86)\Trillian\trillian.exe
O4 - Global Startup: O&O Defrag Tray.lnk = ?
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\ie_banner_deny.htm
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O9 - Extra button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\windows\syswow64\networkdlllsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus Service 15.0.0 (AVP15.0.0) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\ASRock\XFast LAN\spd.exe
O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-Dienst (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Ashampoo LiveTuner 2 Service (WO_LiveService2) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTunerService.exe

--
End of file - 11746 bytes
         
hallo schrauber, schaust du dir es mal an , habe die logs gepostet
__________________

Geändert von skull00 (26.09.2014 um 09:18 Uhr)

Alt 26.09.2014, 17:09   #4
schrauber
/// the machine
/// TB-Ausbilder
 

bin mir sehr unsicher auf eventuelle Probleme - Standard

bin mir sehr unsicher auf eventuelle Probleme



FRST.txt fehlt immer noch
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 26.09.2014, 18:06   #5
skull00
 
bin mir sehr unsicher auf eventuelle Probleme - Standard

bin mir sehr unsicher auf eventuelle Probleme



ah, sorry schrauber!!! find ich super das es so leute wie euch gibt!!!

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-09-2014
Ran by skull00 (administrator) on SKULL00-PC on 26-09-2014 18:03:51
Running from C:\Users\skull00\Downloads
Loaded Profile: skull00 (Available profiles: skull00 & UpdatusUser)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Auslogics) C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(CrypKey (Canada) Ltd.) C:\Windows\System32\Crypserv.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(BitTorrent Inc.) C:\Users\skull00\AppData\Roaming\uTorrent\uTorrent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() C:\Users\skull00\AppData\Local\Viber\Viber.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mega Limited) C:\Users\skull00\AppData\Local\MEGAsync\MEGAsync.exe
(Cerulean Studios) C:\Program Files (x86)\Trillian\trillian.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\ibVPN\ibVPN.com.exe
(Auslogics) C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\avpui.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\avp.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\avp.exe
(The OpenVPN Project) C:\Program Files (x86)\ibVPN\compose
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NUSB3MON] => C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [2009952 2013-05-31] (cFos Software GmbH)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4465448 2014-08-29] (O&O Software GmbH)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-09] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-08-12] (Advanced Micro Devices, Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-587166496-2713831522-2260052027-1000\...\Run: [uTorrent] => C:\Users\skull00\AppData\Roaming\uTorrent\uTorrent.exe [1416016 2014-09-24] (BitTorrent Inc.)
HKU\S-1-5-21-587166496-2713831522-2260052027-1000\...\Run: [Viber] => C:\Users\skull00\AppData\Local\Viber\Viber.exe [930816 2014-06-19] ()
HKU\S-1-5-21-587166496-2713831522-2260052027-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22734160 2014-08-08] (Google)
HKU\S-1-5-21-587166496-2713831522-2260052027-1000\...\Policies\system: [DisableLockWorkstation] 1
HKU\S-1-5-21-587166496-2713831522-2260052027-1000\...\MountPoints2: {a4aea2e9-3bd5-11e3-90bb-806e6f6e6963} - C:\Users\skull00\AppData\Roaming\Microsoft\Windows\Templates\G\USBAutoRun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk
ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{46CD29D7-580C-4E2E-8469-BD7F7CB1CCF8}\app_icon.ico ()
Startup: C:\Users\skull00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk
ShortcutTarget: MEGAsync.lnk -> C:\Users\skull00\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\skull00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trillian.lnk
ShortcutTarget: Trillian.lnk -> C:\Program Files (x86)\Trillian\trillian.exe (Cerulean Studios)
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - %SystemRoot%\system32\wpdshserviceobj.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: ###MegaShellExtPending -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers: ###MegaShellExtSynced -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers: ###MegaShellExtSyncing -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers-x32: ###MegaShellExtPending -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX32.dll ()
ShellIconOverlayIdentifiers-x32: ###MegaShellExtSynced -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX32.dll ()
ShellIconOverlayIdentifiers-x32: ###MegaShellExtSyncing -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\skull00\AppData\Local\MEGAsync\ShellExtX32.dll ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/androidnews/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\syswow64\urlmon.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Winsock: Catalog5 05 C:\Windows\SysWOW64\networkdlllsp.dll [427376] (Network Tunnel Lab)
Tcpip\Parameters: [DhcpNameServer] 217.112.87.147 217.112.88.10 217.112.88.90

FireFox:
========
FF ProfilePath: C:\Users\skull00\AppData\Roaming\Mozilla\Firefox\Profiles\9qw2jx6t.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\content_blocker@kaspersky.com ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\virtual_keyboard@kaspersky.com ()
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\CDex\Plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Users\skull00\AppData\Roaming\mozilla\plugins\np-mswmp.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\content_blocker@kaspersky.com [2014-09-26]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-09-26]
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\url_advisor@kaspersky.com [2014-09-26]

Chrome: 
=======
CHR Profile: C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pop Block Pro - The Ultimate Popup Blocker) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhjmjkdknjeokcmgjmdpkccpmahfmiib [2014-09-26]
CHR Extension: (MEGA) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2014-09-26]
CHR Extension: (Poper Blocker) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2014-09-26]
CHR Extension: (Last updated at $time$ on $date$) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-09-26]
CHR Extension: (Adblock for Youtube™) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2014-09-26]
CHR Extension: (AdBlock) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-26]
CHR Extension: (ProxMate) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifalmiidchkjjmkkbkoaibpmoeichmki [2014-09-26]
CHR Extension: (Facebook Unseen) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2014-09-26]
CHR Extension: (ProxMate Beta) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkijfpdhghdgfjcabjelbmmoocpefnih [2014-09-26]
CHR Extension: (Facebook AdBlock) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpacabphcagfehdgnigmfnbjdampbaa [2014-09-26]
CHR Extension: (Last updated at $time$ on $date$) - C:\Users\skull00\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2014-09-26]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\skull00\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-09-26]
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2014-09-26]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-08-12] (Advanced Micro Devices, Inc.) [File not signed]
R2 AVP15.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [652640 2013-05-31] (cFos Software GmbH)
R2 Crypkey License; C:\Windows\system32\crypserv.exe [122880 2007-05-23] (CrypKey (Canada) Ltd.) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1660200 2014-08-29] (O&O Software GmbH)
S3 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTunerService.exe [223624 2014-04-14] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S1 adgnetworktdi; No ImagePath
R1 Ai2Chroniker; C:\Windows\System32\DRIVERS\Ai2Chroniker.sys [12904 2012-05-16] (Ai Squared )
R3 Ai2Mmpd; C:\Windows\System32\DRIVERS\Ai2Mmpd.sys [11880 2012-05-16] (Ai Squared )
R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11944 2012-12-03] (Advanced Micro Devices Inc.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-09-18] (Disc Soft Ltd)
S4 HBtnKey; No ImagePath
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [457824 2014-02-20] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [140384 2014-04-18] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [243808 2014-04-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [792160 2014-04-18] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)
S3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)
S3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2014-03-25] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [179296 2014-03-26] (Kaspersky Lab ZAO)
R0 KScsiPrt; C:\Windows\System32\DRIVERS\KSPrt64.sys [128856 2011-08-25] (KernSafe Technologies)
R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTuner64.sys [14320 2014-03-20] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-26] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 MEMSWEEP2; C:\Windows\system32\31BF.tmp [6144 2009-06-18] (Sophos Plc) [File not signed]
R1 NetworkX; C:\Windows\system32\ckldrv.sys [27904 2007-05-18] ()
R1 networx; C:\Windows\System32\drivers\networx.sys [59384 2014-05-09] (NetFilterSDK.com)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2014-09-18] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
S3 tapSF0901; C:\Windows\System32\DRIVERS\tapSF0901.sys [39104 2014-08-05] (Spotflux, Inc.)
S3 usbbus; No ImagePath
S3 UsbDiag; No ImagePath
S3 USBModem; No ImagePath
R1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (CaptainFlint Software)
S3 VGPU; No ImagePath
U3 anj9mgjo; C:\Windows\System32\Drivers\anj9mgjo.sys [0 ] (Advanced Micro Devices)
U3 DfSdkS; No ImagePath
R4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-26 18:01 - 2014-09-26 18:01 - 00001119 _____ () C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2014-09-26 18:01 - 2014-09-26 18:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2014-09-26 18:01 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2014-09-26 18:00 - 2014-09-26 18:02 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-09-26 18:00 - 2014-09-26 18:00 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-09-26 18:00 - 2014-04-18 16:35 - 00792160 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-09-26 18:00 - 2014-04-18 16:35 - 00140384 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-09-26 18:00 - 2014-04-10 17:25 - 00243808 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys
2014-09-26 17:59 - 2014-09-02 08:54 - 00000000 ____D () C:\Users\skull00\Desktop\kav15.0.0.463ENGLISH
2014-09-26 17:18 - 2014-09-26 17:50 - 00000000 ____D () C:\Program Files (x86)\ibVPN
2014-09-26 17:18 - 2014-09-26 17:18 - 00000978 _____ () C:\Users\Public\Desktop\ibVPN.lnk
2014-09-26 17:18 - 2014-09-26 17:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ibVPN
2014-09-26 17:07 - 2014-09-26 17:10 - 00000000 ____D () C:\Program Files (x86)\Spotflux
2014-09-26 17:07 - 2014-09-26 17:07 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\OpenCandy
2014-09-26 17:07 - 2014-08-05 06:07 - 00060160 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\netfilter2.sys
2014-09-26 17:06 - 2014-09-26 17:10 - 00000000 ____D () C:\ProgramData\spotflux
2014-09-26 16:30 - 2014-09-26 17:47 - 00000496 _____ () C:\Windows\error.log
2014-09-26 16:30 - 2014-09-26 17:47 - 00000224 _____ () C:\Windows\setupact.log
2014-09-26 16:30 - 2014-09-26 17:46 - 00001970 _____ () C:\Windows\PFRO.log
2014-09-26 16:30 - 2014-09-26 16:30 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-26 16:23 - 2014-09-26 16:30 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\21B23DC1.sys
2014-09-26 15:59 - 2014-09-26 16:30 - 00000514 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task a84e439b-d107-4e3e-9fea-3f06d626c1f1.job
2014-09-26 15:59 - 2014-09-26 16:30 - 00000514 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 4b5f9d7c-1b16-45e7-8d87-2eac14724213.job
2014-09-26 15:59 - 2014-09-26 16:23 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-09-26 15:59 - 2014-09-26 15:59 - 00003596 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task a84e439b-d107-4e3e-9fea-3f06d626c1f1
2014-09-26 15:59 - 2014-09-26 15:59 - 00003522 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 4b5f9d7c-1b16-45e7-8d87-2eac14724213
2014-09-26 15:59 - 2014-09-26 15:59 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\SUPERAntiSpyware.com
2014-09-26 15:59 - 2014-09-26 15:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-09-26 15:59 - 2014-09-26 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-09-26 14:29 - 2014-09-26 14:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\6AE06493.sys
2014-09-26 12:35 - 2014-09-26 12:35 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\1F2B1719.sys
2014-09-26 11:53 - 2014-09-26 11:53 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\0A3904C1.sys
2014-09-26 08:52 - 2014-09-26 18:04 - 00023818 _____ () C:\Users\skull00\Downloads\FRST.txt
2014-09-26 07:57 - 2014-09-26 18:03 - 00000000 ____D () C:\FRST
2014-09-26 07:57 - 2014-09-26 07:57 - 00000000 ____D () C:\Windows\ERUNT
2014-09-26 07:57 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-26 07:56 - 2014-09-26 09:53 - 00000000 ____D () C:\AdwCleaner
2014-09-26 07:56 - 2014-09-26 07:56 - 02108928 _____ (Farbar) C:\Users\skull00\Downloads\FRST64.exe
2014-09-26 07:56 - 2014-09-26 07:56 - 01373475 _____ () C:\Users\skull00\Downloads\AdwCleaner_3.310.exe
2014-09-26 07:56 - 2014-09-26 07:56 - 01024790 _____ (Thisisu) C:\Users\skull00\Downloads\JRT.exe
2014-09-25 23:32 - 2014-09-26 00:02 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Nico Mak Computing
2014-09-25 22:46 - 2014-09-25 22:46 - 00022119 _____ () C:\Users\skull00\Downloads\[rutracker.org].t2680958.torrent
2014-09-25 22:32 - 2014-09-23 20:57 - 00000000 ____D () C:\Users\skull00\Desktop\Klaus_Fiehe--1LiVE_Fiehe-DVBS-09-21-2014-OMA
2014-09-25 22:18 - 2000-07-15 00:00 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6STKIT.DLL
2014-09-25 22:18 - 2000-06-13 00:00 - 01046288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJET35.DLL
2014-09-25 22:18 - 2000-06-13 00:00 - 00415504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSREPL35.DLL
2014-09-25 22:18 - 1998-04-24 00:00 - 00252176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSRD2X35.DLL
2014-09-25 22:18 - 1998-04-24 00:00 - 00123664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJINT35.DLL
2014-09-25 22:18 - 1998-04-24 00:00 - 00024848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJTER35.DLL
2014-09-25 22:18 - 1997-07-01 00:00 - 00250128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl35.dll
2014-09-25 22:18 - 1997-06-23 00:00 - 00287504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbse35.dll
2014-09-25 22:18 - 1997-06-23 00:00 - 00166160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus35.dll
2014-09-25 22:18 - 1997-06-23 00:00 - 00165648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext35.dll
2014-09-25 21:03 - 2014-09-26 08:16 - 00000000 ____D () C:\Program Files\Loaris
2014-09-25 20:58 - 2014-09-25 20:58 - 00000000 ____D () C:\ProgramData\GridinSoft
2014-09-25 20:10 - 2014-09-25 20:10 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Arrowhead
2014-09-25 19:32 - 2014-09-25 19:32 - 00007717 ____H () C:\Users\skull00\Desktop\vReveal.settings.xml
2014-09-25 19:06 - 2014-09-25 19:19 - 1848889738 _____ () C:\Users\skull00\Desktop\Csak Semmi Panik(1).mkv
2014-09-25 19:02 - 2014-09-25 19:02 - 1292529715 _____ () C:\Users\skull00\Desktop\Csak Semmi Panik.mkv
2014-09-25 17:28 - 2014-09-25 17:29 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-09-25 15:30 - 2009-06-18 12:54 - 00006144 ____N (Sophos Plc) C:\Windows\system32\31BF.tmp
2014-09-25 15:05 - 2009-06-18 12:54 - 00006144 ____N (Sophos Plc) C:\Windows\system32\D26F.tmp
2014-09-25 14:01 - 2014-09-25 14:01 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-09-25 14:01 - 2009-06-18 12:54 - 00006144 ____N (Sophos Plc) C:\Windows\system32\FA67.tmp
2014-09-25 12:38 - 2014-09-25 12:45 - 00000000 ____D () C:\Users\skull00\Desktop\Gymnosphere Song Of The Rose
2014-09-25 01:19 - 2014-09-25 01:22 - 00000000 ____D () C:\Users\skull00\Downloads\The.Rocky.Horror.Picture.Show.1975.German.Subbed.AC3.720p.BluRay.x264-iFPD
2014-09-24 23:21 - 2014-09-24 23:44 - 00000000 ____D () C:\Users\skull00\Desktop\Yeast Culture ‎–Shit On A Shingle_mp3
2014-09-24 23:16 - 2014-09-24 23:22 - 00000000 ____D () C:\Users\skull00\Desktop\yeast culture
2014-09-24 22:55 - 2014-09-24 22:55 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-09-24 22:55 - 2014-09-24 22:55 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-09-24 21:31 - 2011-08-25 23:54 - 00128856 _____ (KernSafe Technologies) C:\Windows\system32\Drivers\KSPrt64.sys
2014-09-24 20:55 - 2014-09-24 20:55 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Steam
2014-09-24 16:18 - 2014-09-25 17:31 - 00000986 _____ () C:\Users\skull00\Desktop\hop.lnk
2014-09-23 22:12 - 2014-09-23 22:12 - 00441834 _____ () C:\Users\skull00\Desktop\ug's 100.fpl
2014-09-23 21:31 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-23 21:31 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-22 20:09 - 2014-09-22 20:09 - 00000483 _____ () C:\Windows\CDRipper.ini
2014-09-22 20:00 - 2014-09-22 20:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-22 13:55 - 2014-09-23 15:15 - 00001108 _____ () C:\Users\skull00\Desktop\UG's Brutal 100.lnk
2014-09-21 21:41 - 2014-09-21 21:41 - 00000000 ____D () C:\ProgramData\SoftPerfect
2014-09-21 21:41 - 2014-09-21 21:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetWorx
2014-09-21 21:41 - 2014-09-21 21:41 - 00000000 ____D () C:\Program Files\NetWorx
2014-09-21 21:41 - 2014-05-09 18:04 - 00059384 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\networx.sys
2014-09-21 21:09 - 2014-09-21 21:11 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\TrafficMonitor
2014-09-21 21:09 - 2014-09-21 21:09 - 00000000 ____D () C:\ProgramData\TrafficMonitor
2014-09-20 15:48 - 2014-09-19 17:09 - 21231872 _____ () C:\Users\skull00\Desktop\01 Coronus, the Terminator.flac
2014-09-19 17:54 - 2014-09-19 17:54 - 00001055 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC 2014.lnk
2014-09-19 12:43 - 2014-09-19 12:47 - 3051838547 _____ () C:\Users\skull00\Downloads\Maleficent.2014.720p.BluRay.DD5.1.x264-LolHDgerman.mkv
2014-09-19 00:21 - 2014-09-19 00:23 - 00001823 _____ () C:\Users\skull00\Desktop\elektrix - Verknüpfung.lnk
2014-09-18 15:17 - 2014-09-18 16:17 - 00000000 ____D () C:\Program Files (x86)\Total War Rome II
2014-09-18 15:17 - 2014-09-18 15:17 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-09-18 15:17 - 2014-09-18 15:17 - 00000848 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total War Rome II.lnk
2014-09-18 14:02 - 2014-09-18 14:02 - 00381440 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2014-09-18 05:43 - 2014-09-14 00:09 - 00000000 ____D () C:\Users\skull00\Downloads\Das.Boot.Teil.4.German.720p.BluRay.x264-iNTENTiON
2014-09-18 05:34 - 2014-09-14 00:09 - 00000000 ____D () C:\Users\skull00\Downloads\Das.Boot.Teil.6.German.720p.BluRay.x264-iNTENTiON
2014-09-18 05:28 - 2014-09-14 00:09 - 00000000 ____D () C:\Users\skull00\Downloads\Das.Boot.Teil.3.German.720p.BluRay.x264-iNTENTiON
2014-09-18 05:27 - 2014-09-14 00:09 - 00000000 ____D () C:\Users\skull00\Downloads\Das.Boot.Teil.2.German.720p.BluRay.x264-iNTENTiON
2014-09-18 05:22 - 2014-09-17 14:11 - 00000000 ____D () C:\Users\skull00\Downloads\Edge.of.Tomorrow.2014.German.AC3LD.DL.720p.BluRay.x264-LameHD
2014-09-18 02:40 - 2014-09-14 00:09 - 00000000 ____D () C:\Users\skull00\Downloads\Das.Boot.Teil.5.German.720p.BluRay.x264-iNTENTiON
2014-09-18 01:21 - 2014-09-14 00:09 - 00000000 ____D () C:\Users\skull00\Downloads\Das.Boot.Teil.1.German.720p.BluRay.x264-iNTENTiON
2014-09-17 23:34 - 2014-09-18 06:22 - 1298399456 _____ () C:\Users\skull00\Downloads\Meteo (1990) by András Monory Mész.mkv
2014-09-17 22:49 - 2014-09-26 08:43 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\MotionDSP
2014-09-17 22:49 - 2014-09-26 08:43 - 00000000 ____D () C:\Users\skull00\AppData\Local\MotionDSP
2014-09-17 22:49 - 2014-09-26 08:43 - 00000000 ____D () C:\Program Files (x86)\vReveal 3
2014-09-17 15:38 - 2014-09-16 11:31 - 3644567618 _____ () C:\Users\skull00\Downloads\epd-bloodties.720p.mkv
2014-09-16 23:05 - 2014-09-17 15:05 - 00000000 ____D () C:\Windows\Minidump
2014-09-16 20:52 - 2014-09-16 20:52 - 00062096 _____ () C:\Windows\SysWOW64\CCCInstall_201409162052136481.log
2014-09-16 20:52 - 2014-09-16 20:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-09-16 20:52 - 2014-09-16 20:52 - 00000000 ____D () C:\ProgramData\ATI
2014-09-16 20:52 - 2014-09-16 20:52 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-09-16 20:49 - 2014-08-12 18:49 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-09-16 20:49 - 2014-08-12 18:49 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-09-16 20:49 - 2014-08-12 18:49 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-09-16 20:49 - 2014-08-12 18:49 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-09-16 20:49 - 2014-08-12 18:49 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-09-16 20:49 - 2014-08-12 18:49 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-09-16 20:49 - 2014-08-12 18:48 - 01331424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-09-16 20:49 - 2014-08-12 18:48 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-09-16 20:49 - 2014-08-12 18:47 - 10527312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-09-16 20:49 - 2014-08-12 18:47 - 09023464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-09-16 20:49 - 2014-08-12 18:47 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-09-16 20:49 - 2014-08-12 18:47 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-09-16 20:49 - 2014-08-12 17:56 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-09-16 20:49 - 2014-08-12 17:20 - 15965184 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-09-16 20:49 - 2014-08-12 17:07 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-09-16 20:49 - 2014-08-12 17:06 - 32876544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-09-16 20:49 - 2014-08-12 17:06 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-09-16 20:49 - 2014-08-12 17:06 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-09-16 20:49 - 2014-08-12 17:06 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-09-16 20:49 - 2014-08-12 17:06 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-09-16 20:49 - 2014-08-12 17:03 - 27843072 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-09-16 20:49 - 2014-08-12 17:00 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-09-16 20:49 - 2014-08-12 17:00 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-09-16 20:49 - 2014-08-12 16:49 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-09-16 20:49 - 2014-08-12 16:49 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-09-16 20:49 - 2014-08-12 16:48 - 05225472 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-09-16 20:49 - 2014-08-12 16:41 - 27528704 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-09-16 20:49 - 2014-08-12 16:32 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-09-16 20:49 - 2014-08-12 16:21 - 23027712 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-09-16 20:49 - 2014-08-12 16:17 - 00598656 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-09-16 20:49 - 2014-08-12 16:17 - 00598656 _____ () C:\Windows\system32\atiapfxx.blb
2014-09-16 20:49 - 2014-08-12 16:16 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-09-16 20:49 - 2014-08-12 16:16 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-09-16 20:49 - 2014-08-12 16:16 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-09-16 20:49 - 2014-08-12 16:16 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-09-16 20:49 - 2014-08-12 16:16 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-09-16 20:49 - 2014-08-12 16:16 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-09-16 20:49 - 2014-08-12 16:16 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-09-16 20:49 - 2014-08-12 16:16 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-09-16 20:49 - 2014-08-12 16:13 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-09-16 20:49 - 2014-08-12 16:00 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-09-16 20:49 - 2014-08-12 16:00 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-09-16 20:49 - 2014-08-12 16:00 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-09-16 20:49 - 2014-08-12 15:59 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-09-16 20:49 - 2014-08-12 15:59 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-09-16 20:49 - 2014-08-12 15:59 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-09-16 20:49 - 2014-08-12 15:58 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-09-16 20:49 - 2014-08-12 15:55 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-09-16 20:49 - 2014-08-12 15:44 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-09-16 20:49 - 2014-08-12 15:43 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.20.dll
2014-09-16 20:49 - 2014-08-12 15:34 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-09-16 20:49 - 2014-08-12 15:34 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-09-16 20:49 - 2014-08-12 15:34 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-09-16 20:49 - 2014-08-12 15:34 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-09-16 20:49 - 2014-08-12 15:34 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-09-16 20:49 - 2014-08-12 15:34 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-09-16 20:49 - 2014-08-12 15:33 - 00557568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-09-16 20:49 - 2014-08-12 15:33 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-09-16 20:49 - 2014-08-12 15:28 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-09-16 20:49 - 2014-06-21 19:01 - 00094720 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2014-09-16 20:49 - 2014-06-21 18:59 - 00110080 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2014-09-16 20:49 - 2014-05-09 21:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-09-16 20:49 - 2014-05-09 21:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-09-16 20:49 - 2014-04-29 18:00 - 00158816 _____ () C:\Windows\system32\ativce03.dat
2014-09-16 20:49 - 2014-04-29 16:22 - 00319668 _____ () C:\Windows\system32\ativvaxy_vi.dat
2014-09-16 20:49 - 2014-04-29 16:20 - 00318000 _____ () C:\Windows\system32\ativvaxy_vi_nd.dat
2014-09-16 20:49 - 2014-04-23 08:38 - 00715877 _____ () C:\Windows\system32\amdicdxx.dat
2014-09-16 20:49 - 2014-04-04 15:50 - 00082128 _____ () C:\Windows\system32\ativce02.dat
2014-09-16 20:49 - 2014-04-01 07:21 - 00734861 _____ () C:\Windows\system32\atiicdxx.dat
2014-09-16 19:04 - 2014-09-16 19:04 - 00000000 ____D () C:\Program Files\DIFX
2014-09-16 19:03 - 2013-07-17 14:23 - 00065408 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronHub3.sys
2014-09-16 18:59 - 2014-09-16 18:59 - 00000000 ____D () C:\ProgramData\BSD
2014-09-15 21:12 - 2014-09-16 00:50 - 3517434416 _____ () C:\Users\skull00\Downloads\F.2014.limited.720-geckos.mkv
2014-09-15 15:42 - 2014-08-16 16:24 - 1560573138 _____ () C:\Users\skull00\Downloads\LucyAC3DTS720IND.mkv
2014-09-15 09:58 - 2014-09-15 09:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clementine
2014-09-15 09:58 - 2014-09-15 09:58 - 00000000 ____D () C:\Program Files (x86)\Clementine
2014-09-14 17:25 - 2014-09-14 17:25 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-09-14 17:25 - 2014-05-14 18:37 - 03962840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-09-14 17:25 - 2014-05-14 16:00 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-09-14 17:25 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-09-14 17:25 - 2014-04-28 15:48 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-09-14 17:25 - 2014-04-25 13:51 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-09-14 17:25 - 2014-04-25 13:23 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-09-14 17:25 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-09-14 17:25 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-09-14 17:25 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-09-14 17:25 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-09-14 17:25 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-09-14 17:25 - 2012-11-14 11:41 - 00378000 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2014-09-14 17:25 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-09-14 17:25 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-09-14 17:25 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-09-14 17:25 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-09-14 17:25 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-09-14 17:25 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-09-14 17:25 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-09-14 17:25 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-09-14 17:25 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-09-14 17:25 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-09-14 17:25 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-09-14 17:25 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-09-14 17:25 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-09-14 17:25 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-09-14 17:25 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-09-14 17:25 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-09-14 17:25 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-09-14 17:24 - 2014-05-12 20:11 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-09-14 17:24 - 2014-04-30 11:34 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-09-14 17:24 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-09-14 17:24 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-09-14 17:24 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-09-14 17:24 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-09-14 17:24 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-09-14 17:24 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-09-14 17:24 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-09-14 17:24 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-09-14 17:24 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-09-14 17:24 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-09-14 17:24 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-09-14 17:24 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-09-14 17:24 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-09-14 17:24 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-09-14 17:24 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-09-14 17:24 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-09-14 17:24 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-09-14 17:24 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-09-14 17:24 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-09-14 17:24 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-09-14 17:24 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-09-14 12:45 - 2014-09-14 12:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Monkey's Audio
2014-09-14 12:45 - 2014-09-14 12:45 - 00000000 ____D () C:\Program Files (x86)\Monkey's Audio
2014-09-14 12:45 - 2013-06-26 22:38 - 00446976 _____ (Matthew T. Ashland) C:\Windows\SysWOW64\MACDll.dll
2014-09-13 17:59 - 2014-09-25 02:03 - 00000000 ____D () C:\Windows\rescache
2014-09-13 16:10 - 2014-09-14 17:26 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-09-13 16:07 - 2014-09-26 14:31 - 00000000 ____D () C:\AMD
2014-09-13 15:48 - 2011-02-08 14:58 - 01882104 _____ (Codejock Software) C:\Windows\SysWOW64\Codejock.Controls.v15.0.1.ocx
2014-09-13 15:48 - 2005-01-12 11:19 - 00456536 _____ (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) C:\Windows\SysWOW64\XCEEDZIP.DLL
2014-09-13 15:48 - 2004-09-28 11:13 - 00526184 _____ (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) C:\Windows\SysWOW64\XceedCry.dll
2014-09-13 15:48 - 2004-08-11 15:55 - 00110602 _____ () C:\Windows\SysWOW64\xcdsfx32.bin
2014-09-13 15:48 - 2004-03-09 00:00 - 00132880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msinet.ocx
2014-09-13 15:44 - 2014-09-13 15:44 - 00000000 ____D () C:\ProgramData\EZ CD Audio Converter
2014-09-13 15:43 - 2014-09-22 19:48 - 00000000 ____D () C:\Users\skull00\AppData\Local\EZ CD Audio Converter
2014-09-13 15:43 - 2014-09-13 15:44 - 00000000 ____D () C:\Program Files\EZ CD Audio Converter
2014-09-13 15:43 - 2014-09-13 15:43 - 00000891 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZ CD Audio Converter.lnk
2014-09-13 15:42 - 2014-09-26 17:47 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-13 15:42 - 2014-09-13 15:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-09-13 15:42 - 2014-09-13 15:42 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-13 15:42 - 2014-09-13 15:42 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-09-13 15:42 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-13 15:42 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-13 15:42 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-12 20:44 - 2014-09-12 20:55 - 00001289 _____ () C:\Users\skull00\Desktop\vacuumemails.txt
2014-09-11 17:41 - 2014-09-26 08:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2014-09-11 03:00 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-11 03:00 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-11 00:08 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-11 00:08 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-11 00:08 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-11 00:08 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-11 00:08 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-11 00:08 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-11 00:08 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-11 00:08 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-11 00:08 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-11 00:07 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-11 00:07 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 14:07 - 2014-09-15 17:40 - 00000000 ____D () C:\Users\skull00\Documents\VirtualDJ
2014-09-10 14:07 - 2014-09-15 17:30 - 00000000 ____D () C:\Program Files (x86)\VirtualDJ
2014-09-10 14:07 - 2014-09-10 14:07 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-09-10 12:10 - 2014-09-10 12:10 - 00000000 ____D () C:\Users\skull00\AppData\Local\Macromedia
2014-09-10 12:09 - 2014-09-26 17:39 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-10 12:09 - 2014-09-11 18:05 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-10 12:09 - 2014-09-11 18:05 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-10 12:09 - 2014-09-11 18:05 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-09 19:00 - 2014-09-11 14:44 - 00001246 _____ () C:\Users\skull00\Desktop\MEGAsync - Verknüpfung.lnk
2014-09-09 18:56 - 2014-09-26 15:56 - 00000000 ___RD () C:\Users\skull00\Documents\MEGAsync
2014-09-09 18:56 - 2014-09-09 18:56 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2014-09-09 18:56 - 2014-09-09 18:56 - 00000000 ____D () C:\Users\skull00\AppData\Local\Mega Limited
2014-09-09 18:55 - 2014-09-19 23:32 - 00000000 ____D () C:\Users\skull00\AppData\Local\MEGAsync
2014-09-08 14:38 - 2014-09-08 14:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 Manager
2014-09-08 14:36 - 2014-09-08 14:36 - 00000000 ____D () C:\Program Files\Yamicsoft
2014-09-08 12:45 - 2014-09-08 12:45 - 00000000 ____D () C:\Users\skull00\AppData\Local\SoulseekQt
2014-09-07 18:06 - 2014-09-07 23:08 - 00000000 ____D () C:\Users\skull00\AppData\Local\GHISLER
2014-09-07 18:00 - 2014-09-07 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander Ultima Prime
2014-09-07 17:57 - 2014-09-07 17:57 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\HEXelon
2014-09-07 17:55 - 2014-09-25 22:49 - 00000000 ____D () C:\Program Files (x86)\TC UP
2014-09-07 15:11 - 2014-09-26 17:49 - 00003758 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-09-06 22:38 - 2013-08-05 20:56 - 107981528 _____ () C:\Users\skull00\Desktop\vihár.wav
2014-09-06 15:10 - 2014-09-06 15:10 - 00003510 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-skull00-PC-skull00
2014-09-06 15:08 - 2014-09-19 17:54 - 00000000 ____D () C:\Program Files\Adobe
2014-09-06 15:08 - 2014-09-06 15:08 - 00001014 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC.lnk
2014-09-06 15:07 - 2014-09-19 17:52 - 00001490 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2014-09-06 15:07 - 2014-09-06 15:07 - 00000000 ____D () C:\Program Files (x86)\My Company Name
2014-09-06 15:03 - 2013-06-23 18:35 - 00000000 ____D () C:\Users\skull00\Downloads\Adobe.Audition.CC.v6.0.732.Multilingual.Incl.Patch-PainteR
2014-09-06 14:30 - 2014-06-23 13:12 - 00000000 ____D () C:\Users\skull00\Downloads\ADOBE_AUDITION_CC_V2014_MULTI-XFORCE
2014-09-06 14:26 - 2014-09-06 14:26 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-09-06 14:20 - 2014-09-06 14:20 - 00000000 ____D () C:\ProgramData\Samsung
2014-09-05 21:46 - 2014-09-26 17:47 - 00000000 ____D () C:\Program Files (x86)\Trillian
2014-09-05 21:46 - 2014-09-16 21:06 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Trillian
2014-09-05 21:46 - 2014-09-05 21:46 - 00001069 _____ () C:\Users\skull00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trillian.lnk
2014-09-04 17:57 - 2014-09-16 21:04 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-09-04 17:57 - 2014-09-04 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-09-04 17:57 - 2014-09-04 17:57 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-09-04 17:57 - 2014-09-04 17:57 - 00000000 ____D () C:\Program Files\iTunes
2014-09-04 17:57 - 2014-09-04 17:57 - 00000000 ____D () C:\Program Files\iPod
2014-09-04 09:44 - 2014-09-26 02:00 - 00000000 ____D () C:\Users\skull00\AppData\Local\Adobe
2014-08-29 20:14 - 2014-08-29 20:14 - 00000000 ____D () C:\Users\skull00\AppData\Local\Cinema_Squid
2014-08-29 18:47 - 2014-08-29 18:47 - 02843432 _____ (O&O Software GmbH) C:\Windows\system32\ooscrsav.scr
2014-08-29 18:47 - 2014-08-29 18:47 - 00543528 _____ (O&O Software GmbH) C:\Windows\system32\oodssrs.dll
2014-08-29 18:47 - 2014-08-29 18:47 - 00240424 _____ (O&O Software GmbH) C:\Windows\system32\oodbs.exe
2014-08-29 18:47 - 2014-08-29 18:47 - 00011048 _____ (O&O Software GmbH) C:\Windows\system32\oodbsrs.dll
2014-08-29 15:07 - 2014-09-13 16:27 - 00000000 ____D () C:\Program Files (x86)\Adguard
2014-08-29 15:07 - 2014-09-13 16:19 - 00000000 ____D () C:\ProgramData\Adguard
2014-08-29 15:07 - 2014-08-29 15:07 - 00000231 _____ () C:\Windows\SysWOW64\Drivers\vwifikerneldrv.sys
2014-08-29 15:07 - 2014-08-29 15:07 - 00000231 _____ () C:\Windows\SysWOW64\d3dx9_11.dll.tmp
2014-08-29 15:07 - 2014-08-29 15:07 - 00000231 _____ () C:\ProgramData\fontcacheev1.dat
2014-08-28 11:33 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 11:33 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-28 11:33 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-28 11:27 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-28 11:27 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-28 11:27 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-28 11:27 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-28 11:27 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-28 11:27 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-28 11:27 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-28 11:27 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-28 11:27 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-28 11:27 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-28 11:27 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-28 11:27 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-28 11:27 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-28 11:27 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-08-27 22:46 - 2014-09-06 14:25 - 00000000 ____D () C:\Program Files\KMSpico

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-26 18:03 - 2013-11-18 17:33 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\uTorrent
2014-09-26 18:00 - 2014-03-25 20:25 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-09-26 17:54 - 2009-07-14 06:45 - 00026576 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-26 17:54 - 2009-07-14 06:45 - 00026576 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-26 17:52 - 2009-07-14 04:34 - 00000502 _____ () C:\Windows\win.ini
2014-09-26 17:49 - 2014-07-18 14:02 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\ViberPC
2014-09-26 17:48 - 2014-07-18 14:01 - 00000000 ____D () C:\Users\skull00\AppData\Local\Viber
2014-09-26 17:48 - 2014-01-19 19:37 - 00000000 ___RD () C:\Users\skull00\Google Drive
2014-09-26 17:47 - 2014-06-19 04:11 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8b63d94addee.job
2014-09-26 17:47 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-26 17:43 - 2014-05-08 19:28 - 01224586 _____ () C:\Windows\WindowsUpdate.log
2014-09-26 17:42 - 2013-08-30 12:38 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Skype
2014-09-26 17:41 - 2014-03-25 20:52 - 00016852 _____ () C:\Windows\system32\kl_uninstall.txt
2014-09-26 17:41 - 2014-03-25 20:52 - 00011692 _____ () C:\Windows\SysWOW64\kl_uninstall.txt
2014-09-26 17:19 - 2014-05-05 19:08 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\foobar2000
2014-09-26 17:16 - 2014-06-19 04:11 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf8b63d97f3c34.job
2014-09-26 15:56 - 2014-06-16 16:02 - 00000000 ____D () C:\Users\skull00\Desktop\Magyar
2014-09-26 15:51 - 2013-12-23 18:14 - 00000000 ____D () C:\Users\skull00\AppData\Local\CrashDumps
2014-09-26 14:34 - 2013-08-30 14:53 - 00000000 ____D () C:\ProgramData\Soulseek
2014-09-26 14:31 - 2014-07-22 16:26 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-09-26 08:45 - 2014-01-24 13:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software
2014-09-26 08:45 - 2014-01-24 13:57 - 00000000 ____D () C:\Program Files\OO Software
2014-09-26 01:03 - 2013-08-31 22:11 - 00000000 ____D () C:\incomingIII
2014-09-26 00:22 - 2013-08-30 18:45 - 00000000 ____D () C:\Program Files (x86)\TotalAudioConverter
2014-09-25 23:14 - 2013-11-08 00:37 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-09-25 23:11 - 2013-09-14 10:36 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Mp3tag
2014-09-25 22:02 - 2011-04-12 09:43 - 00696426 _____ () C:\Windows\system32\perfh007.dat
2014-09-25 22:02 - 2011-04-12 09:43 - 00150448 _____ () C:\Windows\system32\perfc007.dat
2014-09-25 22:02 - 2009-07-14 07:13 - 01650890 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-25 21:22 - 2013-08-30 12:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-25 21:20 - 2013-08-30 18:51 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-25 19:04 - 2013-12-09 13:42 - 00000000 ____D () C:\Program Files (x86)\MKVToolNix
2014-09-25 18:59 - 2013-08-31 12:56 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{B37EE804-8E85-42BB-9BEF-DC8E6A86BE92}
2014-09-25 17:31 - 2014-06-09 18:31 - 00001046 _____ () C:\Users\skull00\Desktop\drumnbass - Verknüpfung.lnk
2014-09-25 17:31 - 2014-06-09 18:30 - 00001017 _____ () C:\Users\skull00\Desktop\groove - Verknüpfung.lnk
2014-09-25 00:13 - 2014-01-27 07:30 - 00000000 ____D () C:\Users\skull00\Desktop\Captive Beam-Vapor Calibrations
2014-09-24 22:05 - 2013-09-14 08:56 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-09-24 21:17 - 2014-05-05 18:50 - 00000000 ____D () C:\Users\skull00\AppData\Local\Last.fm
2014-09-24 19:04 - 2013-08-30 12:45 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\DAEMON Tools Lite
2014-09-24 16:18 - 2012-11-01 14:26 - 00000000 ____D () C:\Merged Volume'Volume'
2014-09-24 14:48 - 2014-03-30 15:03 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Spotify
2014-09-24 14:30 - 2014-03-30 15:04 - 00000000 ____D () C:\Users\skull00\AppData\Local\Spotify
2014-09-23 23:46 - 2014-05-09 12:40 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-09-23 20:41 - 2013-11-16 19:51 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\ICQ-Profile
2014-09-23 20:12 - 2013-08-30 12:38 - 00000795 _____ () C:\Users\skull00\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-09-22 20:00 - 2014-04-21 19:35 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-09-22 20:00 - 2013-08-30 12:38 - 00000000 ____D () C:\ProgramData\Skype
2014-09-19 17:55 - 2014-08-09 15:54 - 00766659 _____ () C:\Windows\system32\Drivers\etc\hosts.txt
2014-09-19 17:53 - 2013-10-29 11:54 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-18 15:17 - 2013-11-12 20:41 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-09-17 23:34 - 2014-01-20 01:19 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\HandBrake
2014-09-17 19:35 - 2013-09-02 15:34 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Audacity
2014-09-16 21:36 - 2013-08-31 12:07 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-09-16 21:03 - 2014-05-05 18:50 - 00000000 ____D () C:\Program Files (x86)\Last.fm
2014-09-16 20:52 - 2013-08-30 16:54 - 00000000 ____D () C:\ProgramData\AMD
2014-09-16 20:51 - 2013-08-30 16:50 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-09-16 18:59 - 2014-08-15 20:20 - 00000000 ____D () C:\Windows\System32\Tasks\Auslogics
2014-09-16 18:59 - 2014-08-01 16:02 - 00000000 ____D () C:\ProgramData\Auslogics
2014-09-16 18:59 - 2014-08-01 16:02 - 00000000 ____D () C:\Program Files (x86)\Auslogics
2014-09-15 09:58 - 2013-08-30 12:20 - 00000000 ____D () C:\Users\skull00
2014-09-15 09:06 - 2010-11-21 05:27 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-09-14 17:24 - 2013-08-30 12:27 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-14 16:01 - 2009-07-14 04:34 - 82313216 _____ () C:\Windows\system32\config\software.rcbak
2014-09-14 16:01 - 2009-07-14 04:34 - 24117248 _____ () C:\Windows\system32\config\system.rcbak
2014-09-14 16:01 - 2009-07-14 04:34 - 04980736 _____ () C:\Windows\system32\config\default.rcbak
2014-09-14 16:01 - 2009-07-14 04:34 - 00065536 _____ () C:\Windows\system32\config\sam.rcbak
2014-09-14 16:01 - 2009-07-14 04:34 - 00028672 _____ () C:\Windows\system32\config\security.rcbak
2014-09-13 15:37 - 2013-11-13 21:24 - 00000000 ____D () C:\Program Files (x86)\uTorrent
2014-09-12 17:34 - 2013-11-13 19:03 - 00000000 ____D () C:\Program Files (x86)\Music NFO Builder
2014-09-11 22:31 - 2013-08-30 12:40 - 00000000 ____D () C:\Users\skull00\AppData\Local\Thunderbird
2014-09-11 03:08 - 2013-11-02 23:48 - 01598062 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-11 03:08 - 2013-08-30 19:26 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-11 03:06 - 2013-08-30 14:22 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-11 03:00 - 2014-04-25 20:43 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-11 03:00 - 2013-08-30 14:22 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-07 13:03 - 2013-08-30 13:26 - 00000000 ____D () C:\Users\skull00\AppData\Local\ashampoo
2014-09-06 21:12 - 2013-08-31 14:34 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-09-06 15:15 - 2014-08-09 15:46 - 00000000 ____D () C:\ProgramData\Adobe
2014-09-06 15:14 - 2014-08-09 15:46 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Adobe
2014-09-06 15:10 - 2013-08-31 12:27 - 00000000 ____D () C:\Users\skull00\Documents\Adobe
2014-09-06 14:53 - 2013-08-30 12:32 - 00086152 _____ () C:\Users\skull00\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-06 14:50 - 2014-08-25 18:34 - 00000000 ____D () C:\Program Files (x86)\ADrive
2014-09-06 14:50 - 2009-07-14 06:45 - 00342584 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-06 14:46 - 2013-11-30 18:47 - 00000000 ____D () C:\ProgramData\RFA_Backups
2014-09-06 14:27 - 2014-06-20 00:42 - 00000000 ____D () C:\Program Files (x86)\Pointstone
2014-09-06 14:22 - 2014-06-18 21:27 - 00000000 ____D () C:\ProgramData\Apple
2014-09-06 14:22 - 2013-08-30 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-09-06 14:22 - 2013-08-30 13:25 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2014-09-06 14:21 - 2014-04-26 18:30 - 00000000 ____D () C:\totalcmd
2014-09-06 14:19 - 2013-08-30 20:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arturia
2014-09-06 14:19 - 2013-08-30 20:41 - 00000000 ____D () C:\Program Files\VstPlugins
2014-09-06 14:19 - 2013-08-30 20:41 - 00000000 ____D () C:\Program Files (x86)\Arturia
2014-09-06 14:18 - 2014-01-15 13:40 - 00000000 ____D () C:\Program Files (x86)\LG Electronics
2014-09-06 14:13 - 2014-08-22 13:36 - 00000000 ____D () C:\ProgramData\VSO
2014-09-04 05:07 - 2013-08-30 12:33 - 00000000 ____D () C:\Program Files\WinRAR
2014-09-03 09:54 - 2013-08-30 12:33 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-09-03 09:54 - 2013-08-30 12:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-09-02 10:21 - 2014-07-10 14:08 - 00000000 ____D () C:\Users\skull00\Desktop\20 September 2014 Kaspersky Key
2014-08-29 14:01 - 2014-08-12 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-08-29 14:01 - 2014-08-12 16:28 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-08-29 14:00 - 2014-08-12 16:27 - 00000000 ____D () C:\Users\skull00\AppData\Roaming\DVDVideoSoft

Files to move or delete:
====================
C:\ProgramData\fontcacheev1.dat


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-26 02:21

==================== End Of Log ============================
         


Alt 26.09.2014, 20:53   #6
schrauber
/// the machine
/// TB-Ausbilder
 

bin mir sehr unsicher auf eventuelle Probleme - Standard

bin mir sehr unsicher auf eventuelle Probleme



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
--> bin mir sehr unsicher auf eventuelle Probleme

Alt 26.09.2014, 21:18   #7
skull00
 
bin mir sehr unsicher auf eventuelle Probleme - Standard

bin mir sehr unsicher auf eventuelle Probleme



ja, die 3 tools habe ich schon durchlaufen lassen schrauber, ich bin ja nicht ganz hirntod!
vg

Alt 27.09.2014, 20:13   #8
schrauber
/// the machine
/// TB-Ausbilder
 

bin mir sehr unsicher auf eventuelle Probleme - Standard

bin mir sehr unsicher auf eventuelle Probleme



hab ich das behauptet? wann hast du die laufen lassen? wo sind die logfiles davon?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu bin mir sehr unsicher auf eventuelle Probleme
0x8007042, 4d36e972-e325-11ce-bfc1-08002be10318, adware, autokms, branding, converter, desktop, dvdvideosoft ltd., ebay, einstellungen, error, excel, failed, fehler, firefox, flash player, help, helper, internet, kaspersky, mp3, msiexec.exe, problem, prozess, rundll, safer networking, scan, security, software, spotify web helper, teredo, trojan, usb, windows



Ähnliche Themen: bin mir sehr unsicher auf eventuelle Probleme


  1. Komische Hänger und Eventuelle Fehler
    Plagegeister aller Art und deren Bekämpfung - 04.01.2015 (5)
  2. Win 8: Probleme mit Installationen und sehr langsam
    Plagegeister aller Art und deren Bekämpfung - 03.12.2014 (11)
  3. Avast meldet eventuelle Bedrohung
    Plagegeister aller Art und deren Bekämpfung - 09.10.2014 (9)
  4. eventuelle übernahme von hackern mit ammy admin
    Plagegeister aller Art und deren Bekämpfung - 23.02.2014 (13)
  5. Sehr starke probleme mit Qvo6 - Virus!
    Plagegeister aller Art und deren Bekämpfung - 25.04.2013 (11)
  6. Eventuelle Keyloggerinfektion
    Plagegeister aller Art und deren Bekämpfung - 01.07.2012 (9)
  7. Virus oder nicht ? Bin unsicher (Probleme Dropbox + Truecrypt)
    Plagegeister aller Art und deren Bekämpfung - 14.06.2012 (1)
  8. Eventuelle Unterstützung
    Lob, Kritik und Wünsche - 11.06.2012 (12)
  9. Notebook verhält sich sehr, sehr eigenartig. Verdacht auf eventuelle Schadprogramme / Trojaner.
    Plagegeister aller Art und deren Bekämpfung - 01.05.2012 (14)
  10. Bundeskriminalamt Virus erfolgreich gelöscht, aber eventuelle Folgen?
    Plagegeister aller Art und deren Bekämpfung - 15.08.2011 (3)
  11. Keine Probleme, aber unsicher bezüglich Hijack File
    Log-Analyse und Auswertung - 14.12.2010 (4)
  12. unspezifische probleme wie sehr langsames arbeitstempo etc.
    Log-Analyse und Auswertung - 24.04.2010 (14)
  13. External Error und eventuelle Plagegeister
    Plagegeister aller Art und deren Bekämpfung - 25.11.2009 (1)
  14. Sehr lahmer + hängender PC/Eventuelle Rest-Viren?
    Log-Analyse und Auswertung - 18.07.2009 (23)
  15. wcs.exe/wcm.exe/=sehr große Probleme!
    Plagegeister aller Art und deren Bekämpfung - 28.09.2008 (3)
  16. Log + Problembescheibung (PC sehr langsam und weitere Probleme)
    Log-Analyse und Auswertung - 22.10.2007 (1)
  17. e-scan zeigt sehr viele Probleme an...
    Log-Analyse und Auswertung - 17.01.2006 (1)

Zum Thema bin mir sehr unsicher auf eventuelle Probleme - hallo, hier mein log, wäre toll wenn ein spezi von euch sich das mal anschauen könnte, was ich unbedingt machen muss oder verbessern sollte, vielen dank schonmal! Additional scan result - bin mir sehr unsicher auf eventuelle Probleme...
Archiv
Du betrachtest: bin mir sehr unsicher auf eventuelle Probleme auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.