Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Jeden Tag 4-5 mal Bluescreen

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 19.10.2014, 09:56   #31
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen



Zone alarm und Nivida finde ich einfach nicht zum deinstallieren?

Alt 19.10.2014, 15:22   #32
schrauber
/// the machine
/// TB-Ausbilder
 

Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen



Öffne bitte FRST, setz nen Haken bei Additon und scanne, poste bitte beide Logfiles.
__________________

__________________

Alt 19.10.2014, 15:39   #33
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen



FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-10-2014
Ran by Rick (administrator) on RICK-PC on 19-10-2014 15:36:46
Running from C:\Users\Rick\Desktop\software\PC
Loaded Profile: Rick (Available profiles: Rick)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(HQPureQual) C:\Program Files (x86)\HQPureQualV1.8\99dcd2cb-42fc-414d-832e-db99f522ca63.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(AppWork GmbH) C:\Users\Rick\AppData\Local\JDownloader v2.0\JDownloader2.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\odscanui.exe
(VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1621072 2014-10-15] (Bitdefender)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1601856 2014-06-23] (IObit)
HKU\S-1-5-21-836877220-131416204-1113294202-1000\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [780080 2014-10-15] (Bitdefender)
HKU\S-1-5-21-836877220-131416204-1113294202-1000\...\MountPoints2: {294fc286-3b2f-11e4-a33d-bb1a54a9f080} - L:\pushinst.exe
HKU\S-1-5-21-836877220-131416204-1113294202-1000\...\MountPoints2: {3b6e5cb3-40a4-11e4-b2f7-bc0543032e9a} - raf-cactw.exe
HKU\S-1-5-21-836877220-131416204-1113294202-1000\...\MountPoints2: {d70f8a71-40ba-11e4-9846-bc0543032e9a} - raf-cactw.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x466F40E648CFCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJ_l4M6Qi_XIb0P66FqniX_Zq-7embI57uvGa-lM_-Qk-_M_x9c2KVCrzaa_NgkFZCfY6p6dTFV8Td8jECCU3DNA4bUP_Z6sA61CnDUIZQ8CmXkrClFnmr46F8B1x9j8g8mEzikSkIMqBxsaeiofr54Q,,&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - (No Name) - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - No File
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_dsites_14_37_ff&cd=2XzuyEtN2Y1L1Qzu0B0CtDyDyEtAtDtAtB0Ezy0AyEtCyD0AtN0D0Tzu0SzyzzyBtN1L2XzutAtFtBtFyDtFtCtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyCzzyDyDyEyCtCtDtGyByE0AyDtGyB0F0F0FtGtC0AyByCtGtCtAtC0DtD0B0C0EyCtDtA0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAzyyByD0FtCtDtAtGyC0E0FyDtGyE0DzyyBtGzytAzz0BtGtAyE0DyB0F0F0AyB0BtC0F0A2Q&cr=110716430&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_dsites_14_37_ff&cd=2XzuyEtN2Y1L1Qzu0B0CtDyDyEtAtDtAtB0Ezy0AyEtCyD0AtN0D0Tzu0SzyzzyBtN1L2XzutAtFtBtFyDtFtCtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyCzzyDyDyEyCtCtDtGyByE0AyDtGyB0F0F0FtGtC0AyByCtGtCtAtC0DtD0B0C0EyCtDtA0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAzyyByD0FtCtDtAtGyC0E0FyDtGyE0DzyyBtGzytAzz0BtGtAyE0DyB0F0F0AyB0BtC0F0A2Q&cr=110716430&ir=
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = 
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJ_l4M6Qi_XIb0P66FqniX_Zq-7embI57uvGa-lM_-Qk-_M_x9c2KVCrzaa_NgkFZCfY6p6dTFV8Td8jECCU3DNA4bUP_Z6sA61CnDUIZQ8CmXkrClFnmr46F8B1x9j8g8mEzikSkIMqBxsaeiofr54Q,,&q={searchTerms}
BHO: HQPureQualV1.8 -> {11111111-1111-1111-1111-110611381131} -> C:\Program Files (x86)\HQPureQualV1.8\HQPureQualV1.8-bho64.dll (HQPureQual)
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} ->  No File
BHO-x32: HQPureQualV1.8 -> {11111111-1111-1111-1111-110611381131} -> C:\Program Files (x86)\HQPureQualV1.8\HQPureQualV1.8-bho.dll (HQPureQual)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll (Adblock)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default
FF SelectedSearchEngine: Search By ZoneAlarm
FF Homepage: google.de
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF user.js: detected! => C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\user.js
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Ads Removal - C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\Extensions\adremoveext@adremoveext.net [2014-10-15]
FF Extension: FT DeepDark - C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2014-09-22]
FF Extension: Adblock Plus - C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-13]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-10-10]
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-10-10]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF HKCU\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\extensions\cliqz@cliqz.com
FF Extension: No Name - C:\Program Files (x86)\IObit Apps Toolbar\FF [Not Found]

Chrome: 
=======
CHR Profile: C:\Users\Rick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Ads Removal) - C:\Users\Rick\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-10-18]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed]
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-10-15] (Bitdefender)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [342336 2014-05-15] (IObit)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-15] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1523752 2014-10-15] (Bitdefender)
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [528896 2014-09-13] (Fuyu LIMITED) [File not signed]
S2 NvNetworkService; "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe" [X]
S2 Update ClearThink; "C:\Program Files (x86)\ClearThink\updateClearThink.exe" [X]
S2 vsmon; "C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service [X]
S2 ZAPrivacyService; "C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1260120 2014-05-16] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-05-16] (BitDefender)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-22] (AVM Berlin)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2013-11-13] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R0 CryptBox; C:\Windows\SysWow64\drivers\CryptBox.sys [221312 2013-12-10] (Abelssoft GmbH)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (FSPro Labs)
R3 fwlanusb4; C:\Windows\System32\DRIVERS\fwlanusb4.sys [1293824 2010-10-22] (AVM GmbH)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [419616 2014-07-02] (BitDefender S.R.L.)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450968 2014-04-24] (Check Point Software Technologies Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-19 11:42 - 2014-10-19 11:42 - 00000000 ____D () C:\Users\Rick\Downloads\HCS-S-T-720
2014-10-18 12:40 - 2014-06-17 23:22 - 746540963 ____N () C:\Users\Rick\Downloads\Alpha.Dog-Toedliche.Freundschaften.2006.German.DL.720p.BluRay.x264-KOC.mkv
2014-10-18 10:09 - 2014-10-18 10:09 - 00335832 _____ () C:\Windows\Minidump\101814-20966-01.dmp
2014-10-18 09:48 - 2014-10-18 09:48 - 00295216 _____ () C:\Windows\Minidump\101814-21668-01.dmp
2014-10-17 13:23 - 2010-12-12 12:45 - 1465618432 _____ () C:\Users\Rick\Desktop\Der.Polarexpress.German.2004.HDRip.AC3.XviD-thelegion.avi
2014-10-16 20:23 - 2014-10-16 20:24 - 00000000 ____D () C:\Users\Rick\Downloads\Die.Schluempfe.2.2013.BDRip.AC3.German.XviD-POE
2014-10-16 20:09 - 2014-10-16 20:10 - 00295184 _____ () C:\Windows\Minidump\101614-34273-01.dmp
2014-10-16 20:02 - 2014-10-16 20:02 - 00295200 _____ () C:\Windows\Minidump\101614-33899-01.dmp
2014-10-16 12:20 - 2014-10-16 12:21 - 00295216 _____ () C:\Windows\Minidump\101614-20295-01.dmp
2014-10-16 11:33 - 2014-10-10 04:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-16 11:33 - 2014-10-10 04:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-16 11:33 - 2014-10-10 04:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 11:33 - 2014-10-07 04:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-16 11:33 - 2014-10-07 04:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-16 11:33 - 2014-09-29 02:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-16 11:33 - 2014-09-26 00:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-16 11:33 - 2014-09-26 00:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-16 11:33 - 2014-09-26 00:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-16 11:33 - 2014-09-26 00:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-16 11:33 - 2014-09-26 00:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-16 11:33 - 2014-09-26 00:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-16 11:33 - 2014-09-26 00:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-16 11:33 - 2014-09-19 03:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-16 11:33 - 2014-09-19 03:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-16 11:33 - 2014-09-19 03:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-16 11:33 - 2014-09-19 03:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-16 11:33 - 2014-09-19 03:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-16 11:33 - 2014-09-19 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-16 11:33 - 2014-09-19 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-16 11:33 - 2014-09-19 03:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-16 11:33 - 2014-09-19 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-16 11:33 - 2014-09-19 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-16 11:33 - 2014-09-19 03:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-16 11:33 - 2014-09-19 03:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-16 11:33 - 2014-09-19 03:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-16 11:33 - 2014-09-19 03:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-16 11:33 - 2014-09-19 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-16 11:33 - 2014-09-19 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-16 11:33 - 2014-09-19 03:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-16 11:33 - 2014-09-19 03:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-16 11:33 - 2014-09-19 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-16 11:33 - 2014-09-19 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-16 11:33 - 2014-09-19 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-16 11:33 - 2014-09-19 03:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-16 11:33 - 2014-09-19 02:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-16 11:33 - 2014-09-19 02:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-16 11:33 - 2014-09-19 02:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-16 11:33 - 2014-09-19 02:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-16 11:33 - 2014-09-19 02:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-16 11:33 - 2014-09-19 02:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-16 11:33 - 2014-09-19 02:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-16 11:33 - 2014-09-19 02:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-16 11:33 - 2014-09-19 02:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-16 11:33 - 2014-09-19 02:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-16 11:33 - 2014-09-19 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-16 11:33 - 2014-09-19 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-16 11:33 - 2014-09-19 02:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-16 11:33 - 2014-09-19 02:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-16 11:33 - 2014-09-19 02:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-16 11:33 - 2014-09-19 02:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-16 11:33 - 2014-09-19 01:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-16 11:33 - 2014-09-19 01:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-16 11:33 - 2014-09-19 01:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-16 11:33 - 2014-09-19 01:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-16 11:33 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-10-16 11:33 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-10-16 11:33 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-10-16 11:33 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-10-16 11:33 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-10-16 11:33 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-10-16 11:33 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-10-16 11:33 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-16 11:32 - 2014-09-19 04:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-16 11:32 - 2014-09-19 03:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-16 11:32 - 2014-09-19 03:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-16 11:32 - 2014-09-19 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-16 11:32 - 2014-09-19 02:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-16 11:32 - 2014-09-18 04:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-16 11:32 - 2014-09-18 03:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-16 11:32 - 2014-09-13 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-16 11:32 - 2014-09-13 03:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-16 11:32 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 11:32 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-16 11:32 - 2014-07-17 04:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-16 11:32 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-16 11:32 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-16 11:32 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-16 11:32 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-16 11:32 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-16 11:32 - 2014-07-17 03:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-16 11:32 - 2014-07-17 03:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-16 11:32 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-16 11:32 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-15 15:01 - 2014-10-15 15:01 - 00295208 _____ () C:\Windows\Minidump\101514-14726-01.dmp
2014-10-15 09:50 - 2014-10-15 09:50 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\dvdcss
2014-10-13 14:33 - 2014-10-13 14:33 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Yahoo!
2014-10-13 14:26 - 2014-10-13 14:26 - 00001173 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2014-10-13 14:26 - 2014-10-13 14:26 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\IObit
2014-10-10 16:27 - 2014-10-18 10:09 - 586459271 _____ () C:\Windows\MEMORY.DMP
2014-10-10 16:27 - 2014-10-10 16:27 - 00295184 _____ () C:\Windows\Minidump\101014-18064-01.dmp
2014-10-10 16:20 - 2014-10-10 16:20 - 00002076 _____ () C:\Users\Rick\Desktop\JDownloader 2.lnk
2014-10-10 16:20 - 2014-10-10 16:20 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-10-10 16:18 - 2014-10-10 16:18 - 00076440 _____ (AppWork GmbH) C:\Users\Rick\Downloads\WebInstaller_2002.exe
2014-10-10 16:13 - 2014-10-10 16:13 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2014-10-10 16:13 - 2014-10-10 16:13 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2014-10-10 15:45 - 2014-10-10 15:45 - 00495300 _____ () C:\ProgramData\1412948387.bdinstall.bin
2014-10-10 15:43 - 2014-10-10 15:43 - 00000684 ____H () C:\bdr-cf01
2014-10-10 15:43 - 2014-10-10 15:43 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-10-10 15:43 - 2014-10-10 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2014-10-10 15:42 - 2014-10-10 15:48 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Bitdefender
2014-10-10 15:42 - 2014-10-10 15:43 - 00253404 ____H () C:\bdr-ld01
2014-10-10 15:42 - 2014-10-10 15:43 - 00009216 ____H () C:\bdr-ld01.mbr
2014-10-10 15:42 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz
2014-10-10 15:42 - 2014-05-16 13:04 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-10-10 15:42 - 2014-05-16 13:01 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-10-10 15:42 - 2013-11-13 15:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys
2014-10-10 15:42 - 2013-11-04 15:47 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2014-10-10 15:42 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz01
2014-10-10 15:40 - 2014-10-10 15:43 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-10-10 15:40 - 2014-10-10 15:40 - 00000000 ____D () C:\Program Files\Bitdefender
2014-10-10 15:40 - 2014-07-02 17:47 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-10-10 15:40 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2014-10-10 15:39 - 2014-10-10 15:40 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-10-10 15:32 - 2014-10-10 15:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-10 15:11 - 2014-10-10 15:11 - 07040424 _____ () C:\Users\Rick\Downloads\bitdefender_isecurity_2015.exe
2014-10-10 14:54 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-10 14:54 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-10-10 14:54 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-10 14:54 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-10-10 10:21 - 2014-10-10 10:21 - 00000000 ____D () C:\Users\Rick\.appwork
2014-10-10 10:00 - 2014-10-10 10:00 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-10-07 12:10 - 2014-10-10 14:47 - 00000000 ____D () C:\Users\Rick\Downloads\Edge.of.Tomorrow.2014.German.DL.720p.BluRay.x264-MOViEADDiCTS
2014-10-07 11:15 - 2014-10-19 15:36 - 00000000 ____D () C:\FRST
2014-10-04 13:53 - 2014-10-13 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2014-10-04 13:53 - 2014-10-13 14:26 - 00000000 ____D () C:\ProgramData\IObit
2014-10-04 13:53 - 2014-10-04 13:53 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-09-30 08:34 - 2014-10-03 09:36 - 00000000 ____D () C:\Users\Rick\Downloads\Bibi
2014-09-29 12:28 - 2014-10-10 14:47 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-09-29 12:28 - 2014-09-29 12:28 - 00001105 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2014-09-29 12:28 - 2014-09-29 12:28 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Canneverbe Limited
2014-09-29 12:28 - 2014-09-29 12:28 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-09-28 15:04 - 2014-09-28 15:04 - 00000000 ____D () C:\Users\Rick\Downloads\Neuer Ordner
2014-09-27 00:12 - 2014-09-29 16:04 - 00000000 ____D () C:\Users\Rick\Downloads\Aggro Berlin - Ansage Nr. 3
2014-09-26 14:39 - 2014-09-26 14:42 - 1028653056 _____ () C:\Users\Rick\Downloads\ubuntu-14.04.1-desktop-amd64.iso
2014-09-23 16:37 - 2014-09-24 08:10 - 00000000 ____D () C:\Users\Rick\Downloads\Transformers.4.Aera.des.Untergangs.German.DL.AC3.Dubbed.1080p.BluRay.x264-PsO
2014-09-23 08:59 - 2014-10-10 14:47 - 00000000 ____D () C:\Windows\pss
2014-09-22 20:07 - 2014-09-22 20:07 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\FastStone
2014-09-22 19:45 - 2014-10-10 15:12 - 00000000 ___RD () C:\Users\Rick\Dropbox
2014-09-22 19:44 - 2014-09-22 19:44 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-22 19:43 - 2014-10-10 14:49 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Dropbox
2014-09-20 14:58 - 2014-09-20 15:06 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\dll-files.com
2014-09-20 14:58 - 2014-09-20 14:58 - 01970176 _____ () C:\Windows\SysWOW64\D3DX9.dll
2014-09-20 14:58 - 2014-09-20 14:58 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-20 14:58 - 2014-09-15 17:48 - 00019392 _____ (Dll-Files.com) C:\Windows\system32\roboot64.exe
2014-09-20 11:02 - 2014-09-20 11:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-09-20 10:56 - 2014-09-20 10:56 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-09-20 10:55 - 2014-09-20 10:55 - 01101648 _____ () C:\Users\Rick\Downloads\Virtual CloneDrive - CHIP-Installer.exe
2014-09-20 10:37 - 2014-10-18 10:09 - 00000000 ____D () C:\Windows\Minidump
2014-09-19 09:26 - 2014-09-19 09:26 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-09-19 09:25 - 2014-09-19 09:25 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Opera Software
2014-09-19 09:25 - 2014-09-19 09:25 - 00000000 ____D () C:\Users\Rick\AppData\Local\Opera Software
2014-09-19 09:21 - 2014-09-19 09:21 - 00431135 _____ () C:\Windows\system32\Drivers\vsconfig.xml
2014-09-19 09:21 - 2014-09-19 09:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
2014-09-19 09:19 - 2014-10-18 10:23 - 00000000 ____D () C:\Program Files (x86)\CheckPoint
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\RHEng
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\OpenCandy
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\ProgramData\CheckPoint
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-09-19 09:18 - 2014-09-19 21:40 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\DVDVideoSoft
2014-09-19 09:10 - 2014-09-19 09:29 - 00000373 _____ () C:\Users\Rick\cryptboxdrives.xml
2014-09-19 09:09 - 2014-10-10 14:47 - 00000000 ____D () C:\Program Files (x86)\CryptBox
2014-09-19 09:09 - 2014-09-19 09:09 - 00000000 ____D () C:\Users\Rick\Documents\My Safes
2014-09-19 09:09 - 2014-09-19 09:09 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Abelssoft
2014-09-19 09:09 - 2014-09-19 09:09 - 00000000 ____D () C:\Users\Rick\AppData\Local\Abelssoft
2014-09-19 09:09 - 2014-09-19 09:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CryptBox
2014-09-19 09:09 - 2013-12-10 12:50 - 00221312 _____ (Abelssoft GmbH) C:\Windows\SysWOW64\Drivers\CryptBox.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-19 15:26 - 2014-09-16 14:30 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-19 14:50 - 2014-09-13 12:18 - 01663041 _____ () C:\Windows\WindowsUpdate.log
2014-10-19 12:04 - 2014-09-13 16:08 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\vlc
2014-10-19 11:48 - 2014-09-13 15:13 - 00000000 ____D () C:\Users\Rick\AppData\Local\JDownloader v2.0
2014-10-19 10:32 - 2014-09-01 10:18 - 00001171 _____ () C:\Users\Rick\AppData\Roaming\XC
2014-10-19 09:59 - 2014-09-13 13:58 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-19 09:54 - 2014-09-13 15:40 - 00002430 _____ () C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-5_user.job
2014-10-19 09:54 - 2014-09-13 15:40 - 00002430 _____ () C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-5.job
2014-10-19 09:54 - 2014-09-13 15:40 - 00001434 _____ () C:\Windows\Tasks\99dcd2cb-42fc-414d-832e-db99f522ca63.job
2014-10-19 09:54 - 2014-09-13 15:39 - 00002756 _____ () C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-1.job
2014-10-19 09:54 - 2014-09-13 15:39 - 00002094 _____ () C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-2.job
2014-10-19 09:54 - 2014-09-13 15:39 - 00000618 _____ () C:\Windows\Tasks\d9cccbe0-999e-4161-894c-a490dfb9e297.job
2014-10-18 10:21 - 2014-09-13 14:01 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-10-18 10:17 - 2009-07-14 06:45 - 00023168 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-18 10:17 - 2009-07-14 06:45 - 00023168 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-18 10:14 - 2009-07-14 19:58 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-10-18 10:14 - 2009-07-14 19:58 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-10-18 10:14 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-18 10:10 - 2014-09-13 14:02 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-18 10:10 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-18 10:10 - 2009-07-14 06:51 - 00028621 _____ () C:\Windows\setupact.log
2014-10-18 09:49 - 2014-09-13 14:09 - 00000000 ____D () C:\Users\Rick\AppData\Local\Google
2014-10-17 16:49 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-10-16 19:52 - 2009-07-14 06:45 - 00267816 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-16 19:50 - 2014-09-13 20:09 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-16 12:20 - 2014-09-13 15:00 - 00444630 _____ () C:\Windows\PFRO.log
2014-10-16 09:27 - 2014-09-13 14:09 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-16 09:26 - 2014-09-16 14:08 - 00001421 _____ () C:\Users\Rick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-15 18:06 - 2014-09-16 14:29 - 00000000 ____D () C:\Users\Rick\Downloads\Teach.Me.2.XXX.DVDRip.x264-SLiEZE
2014-10-15 18:03 - 2014-09-13 14:48 - 00000000 ____D () C:\Users\Rick\Desktop\software
2014-10-15 09:57 - 2014-09-13 15:38 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-10-14 11:25 - 2014-09-16 14:25 - 00000000 ____D () C:\Program Files (x86)\Yahoo!
2014-10-13 14:24 - 2014-09-13 14:45 - 00000000 ____D () C:\ProgramData\374311380
2014-10-10 16:27 - 2014-09-13 14:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-10 15:50 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\Offline Web Pages
2014-10-10 15:48 - 2014-09-13 15:52 - 00000000 ____D () C:\ProgramData\BDLogging
2014-10-10 14:49 - 2014-09-13 12:18 - 00000000 ____D () C:\Users\Rick
2014-10-10 14:47 - 2014-09-16 14:38 - 00000000 ____D () C:\Program Files\My Lockbox
2014-10-10 14:47 - 2014-09-13 15:38 - 00000000 ____D () C:\Program Files (x86)\HQPureQualV1.8
2014-10-10 14:47 - 2014-09-13 15:29 - 00000000 ____D () C:\Program Files\WinRAR
2014-10-10 14:47 - 2014-09-13 14:43 - 00000000 ____D () C:\Program Files (x86)\Lame For Audacity
2014-10-10 14:47 - 2014-09-13 14:08 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-10-10 14:47 - 2014-09-13 13:46 - 00000000 ____D () C:\Program Files (x86)\avmwlanstick
2014-10-10 14:47 - 2009-07-14 20:18 - 00000000 ____D () C:\Program Files\Windows Journal
2014-10-10 14:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-10-10 14:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-10-10 14:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-10 14:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\AdvancedInstallers
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Speech
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\com
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-09-24 12:37 - 2014-09-13 16:12 - 00000446 _____ () C:\Windows\system32\checkdnsid.xml

Some content of TEMP:
====================
C:\Users\Rick\AppData\Local\Temp\13057424320621140387.exe
C:\Users\Rick\AppData\Local\Temp\JDSetup130574243148608109.exe
C:\Users\Rick\AppData\Local\Temp\proxy_vole3306986279821783380.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-26 18:08

==================== End Of Log ============================
         
--- --- ---

--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-10-2014
Ran by Rick at 2014-10-19 15:37:21
Running from C:\Users\Rick\Desktop\software\PC
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.2.202.235 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version:  - AVM Berlin)
Bitdefender Internet Security 2015 (HKLM\...\Bitdefender) (Version: 18.15.0.1127 - Bitdefender)
Content Transfer (HKLM-x32\...\{CFADE4AF-C0CF-4A04-A776-741318F1658F}) (Version: 1.3.0.23190 - Sony Corporation)
CryptBox (HKLM-x32\...\CryptBox_is1) (Version: 2014 - Abelssoft GmbH)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
Free YouTube to MP3 Converter version 3.12.44.908 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.44.908 - DVDVideoSoft Ltd.)
IObit Malware Fighter (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 2.4 - IObit)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0.1 - Mozilla)
My Lockbox 3.2.1 (HKLM\...\My Lockbox_is1) (Version: 3.2.1 - )
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA Network Service (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service) (Version: 1.0 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
NVIDIA Update 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WindowsMangerProtect20.0.0.722 (HKLM-x32\...\WindowsMangerProtect) (Version: 20.0.0.722 - WindowsProtect LIMITED) <==== ATTENTION
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version:  - )
ZoneAlarm Firewall (x32 Version: 13.1.211.000 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Security (x32 Version: 13.1.211.000 - Check Point Software Technologies Ltd.) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-836877220-131416204-1113294202-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Rick\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

==================== Restore Points  =========================

10-10-2014 13:15:51 Revo Uninstaller's restore point - Mozilla Firefox 32.0.2 (x86 de)
10-10-2014 13:22:49 Windows Update
16-10-2014 07:25:06 Revo Uninstaller's restore point - Google Chrome
16-10-2014 13:19:42 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {033D0A21-F3E5-4F16-B0B7-9CF498783166} - System32\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-2 => C:\Program Files (x86)\HQPureQualV1.8\222c4171-bae8-4a36-817c-972819bf0a0e-2.exe [2014-09-13] (HQPureQual) <==== ATTENTION
Task: {2ED84BE9-CFD3-40C5-A127-8A987D42B06B} - \222c4171-bae8-4a36-817c-972819bf0a0e-11 No Task File <==== ATTENTION
Task: {38811BC8-DAC0-45BC-85C2-CB935ABD13E6} - System32\Tasks\d9cccbe0-999e-4161-894c-a490dfb9e297 => C:\Program Files (x86)\HQPureQualV1.8\d9cccbe0-999e-4161-894c-a490dfb9e297.exe [2014-09-13] () <==== ATTENTION
Task: {3E20F3D6-30DB-403F-86AF-17ED733503D2} - System32\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-5 => C:\Program Files (x86)\HQPureQualV1.8\222c4171-bae8-4a36-817c-972819bf0a0e-5.exe [2014-09-13] (HQPureQual) <==== ATTENTION
Task: {4C72EFFE-6EF6-416A-A361-C84466A6E435} - System32\Tasks\99dcd2cb-42fc-414d-832e-db99f522ca63 => C:\Program Files (x86)\HQPureQualV1.8\99dcd2cb-42fc-414d-832e-db99f522ca63.exe [2014-09-13] (HQPureQual) <==== ATTENTION
Task: {5A50993A-E9C7-4463-9FDE-DA73E5E2BE83} - \XC No Task File <==== ATTENTION
Task: {5B17B928-1DFA-49D8-82E0-50A29B5E085D} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION
Task: {5E1449D8-0724-44D1-80D3-76A7E10B8D61} - \222c4171-bae8-4a36-817c-972819bf0a0e-4 No Task File <==== ATTENTION
Task: {7A7A5352-CDA1-43B6-B211-9F01F2EBC942} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-16] (Adobe Systems Incorporated)
Task: {7A7B913D-FD62-4E47-996B-EF2DEE52CA8B} - \222c4171-bae8-4a36-817c-972819bf0a0e-3 No Task File <==== ATTENTION
Task: {8625253C-0339-48C5-AF6A-E09B2119185D} - System32\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-5_user => C:\Program Files (x86)\HQPureQualV1.8\222c4171-bae8-4a36-817c-972819bf0a0e-5.exe [2014-09-13] (HQPureQual) <==== ATTENTION
Task: {959C8A34-CACF-49F9-8013-6B046BBBFAB5} - System32\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-1 => C:\Program Files (x86)\HQPureQualV1.8\HQPureQualV1.8-codedownloader.exe [2014-09-13] (HQPureQual) <==== ATTENTION
Task: {F15FDEBF-23CB-4C6A-8A3E-8F5C70846272} - \KAJIMSTS No Task File <==== ATTENTION
Task: C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-1.job => C:\Program Files (x86)\HQPureQualV1.8\HQPureQualV1.8-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-2.job => C:\Program Files (x86)\HQPureQualV1.8\222c4171-bae8-4a36-817c-972819bf0a0e-2.exe <==== ATTENTION
Task: C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-5.job => C:\Program Files (x86)\HQPureQualV1.8\222c4171-bae8-4a36-817c-972819bf0a0e-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-5_user.job => C:\Program Files (x86)\HQPureQualV1.8\222c4171-bae8-4a36-817c-972819bf0a0e-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\99dcd2cb-42fc-414d-832e-db99f522ca63.job => C:\Program Files (x86)\HQPureQualV1.8\99dcd2cb-42fc-414d-832e-db99f522ca63.exe <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\d9cccbe0-999e-4161-894c-a490dfb9e297.job => C:\Program Files (x86)\HQPureQualV1.8\d9cccbe0-999e-4161-894c-a490dfb9e297.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-10-10 15:42 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2014-10-10 15:42 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2014-10-10 15:42 - 2014-10-02 10:53 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2014-10-10 15:42 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2014-10-10 15:42 - 2014-07-24 09:44 - 00780592 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpbr.mdl
2014-10-10 15:42 - 2014-07-24 09:44 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpdsp.mdl
2014-10-10 15:42 - 2014-07-24 09:44 - 02602680 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpph.mdl
2014-10-10 15:42 - 2014-07-24 09:44 - 01323408 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttprbl.mdl
2014-09-13 14:02 - 2014-07-02 20:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-10-18 12:18 - 2014-10-18 12:18 - 00040448 ____N () C:\Users\Rick\AppData\Local\Temp\proxy_vole3306986279821783380.dll
2014-10-18 12:18 - 2014-10-18 12:18 - 00566439 _____ () C:\Users\Rick\AppData\Local\JDownloader v2.0\tmp\7zip\SevenZipJBinding-FKPz9\libgcc_s_sjlj-1.dll
2014-10-18 12:18 - 2014-10-18 12:18 - 04078962 _____ () C:\Users\Rick\AppData\Local\JDownloader v2.0\tmp\7zip\SevenZipJBinding-FKPz9\lib7-Zip-JBinding.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00121363 _____ () C:\Program Files\VideoLAN\VLC\libvlc.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 02524691 _____ () C:\Program Files\VideoLAN\VLC\libvlccore.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00713235 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00031251 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00034323 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00070163 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 02376211 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00106515 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00263699 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00080915 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_vdr_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00051219 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00063507 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00608275 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 01022995 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00125459 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00043539 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libstream_filter_rar_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00017427 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00140307 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 02218003 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00318995 _____ () C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 01470995 _____ () C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00058387 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00043027 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libglobalhotkeys_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00028179 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00330771 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00192019 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00833555 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00025619 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00035859 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00024083 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 12501523 _____ () C:\Program Files\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00071699 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00042003 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00021523 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00023059 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00029715 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00028691 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00021523 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00085523 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00022035 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00824339 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libupnp_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00126483 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libpodcast_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00021523 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmediadirs_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00018451 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libwindrive_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00190995 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00091667 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00071187 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00081939 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00341011 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00021523 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 01505811 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00023059 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00417811 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00230931 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00029715 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 01745427 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00039955 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00123923 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_http_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00017427 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00023059 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00139795 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00186387 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00081939 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 01506835 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00025619 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00016915 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00017939 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00017939 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00017427 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00029715 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2014-07-30 11:38 - 2014-07-30 11:38 - 00075283 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_mms_plugin.dll
2014-10-04 13:53 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madExcept_.bpl
2014-10-04 13:53 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madBasic_.bpl
2014-10-04 13:53 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madDisAsm_.bpl
2014-10-13 14:26 - 2013-12-12 18:46 - 08001344 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\WebUI.dll
2014-10-13 14:26 - 2013-05-16 19:26 - 00182080 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2014-10-13 14:26 - 2013-10-16 22:17 - 00185168 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\libcurl-4.dll
2014-10-13 14:26 - 2013-05-16 19:26 - 00145216 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2014-10-10 15:32 - 2014-10-10 15:32 - 03715184 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-10-10 15:42 - 2014-08-27 16:30 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff\components\txmlutil.dll
2014-10-10 15:42 - 2014-10-15 14:42 - 00070392 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff\components\bdwtxff.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Rick\Downloads\Virtual CloneDrive - CHIP-Installer.exe:BDU
AlternateDataStreams: C:\Users\Rick\Downloads\WebInstaller_2002.exe:BDU

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^Rick^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: ContentTransferWMDetector.exe => C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe
MSCONFIG\startupreg: CryptBox => "C:\Program Files (x86)\CryptBox\Abelssoft.CryptBox.exe" /state:auto
MSCONFIG\startupreg: Messenger (Yahoo!) => "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
MSCONFIG\startupreg: mylbx => C:\Program Files\My Lockbox\mylbx.exe /a
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s

========================= Accounts: ==========================

Administrator (S-1-5-21-836877220-131416204-1113294202-500 - Administrator - Disabled)
Gast (S-1-5-21-836877220-131416204-1113294202-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-836877220-131416204-1113294202-1002 - Limited - Enabled)
Rick (S-1-5-21-836877220-131416204-1113294202-1000 - Administrator - Enabled) => C:\Users\Rick

==================== Faulty Device Manager Devices =============

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/19/2014 00:04:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.1.5.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000018e5d
ID des fehlerhaften Prozesses: 0x1284
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3

Error: (10/19/2014 11:26:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.1.5.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000018e5d
ID des fehlerhaften Prozesses: 0x1818
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3

Error: (10/18/2014 02:56:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.1.5.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000018e5d
ID des fehlerhaften Prozesses: 0x1090
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3

Error: (10/18/2014 10:21:11 AM) (Source: NVNetworkService) (EventID: 0) (User: )
Description: NVNetworkServiceService failed to run w/err Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen. (1063)

Error: (10/18/2014 10:21:10 AM) (Source: NVNetworkService) (EventID: 0) (User: )
Description: NVNetworkServiceService failed to run w/err Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen. (1063)

Error: (10/18/2014 10:21:09 AM) (Source: NVNetworkService) (EventID: 0) (User: )
Description: NVNetworkServiceService failed to run w/err Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen. (1063)

Error: (10/17/2014 04:17:26 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Management.Automation, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020

Error: (10/17/2014 01:08:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_15_0_0_152.exe, Version: 15.0.0.152, Zeitstempel: 0x53fe814b
Name des fehlerhaften Moduls: FlashPlayerPlugin_15_0_0_152.exe, Version: 15.0.0.152, Zeitstempel: 0x53fe814b
Ausnahmecode: 0x40000015
Fehleroffset: 0x00017870
ID des fehlerhaften Prozesses: 0x1474
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_15_0_0_152.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_15_0_0_152.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_15_0_0_152.exe2
Berichtskennung: FlashPlayerPlugin_15_0_0_152.exe3

Error: (10/16/2014 08:23:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.1.5.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: vlc.exe, Version: 2.1.5.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc000041d
Fehleroffset: 0x000000000000186e
ID des fehlerhaften Prozesses: 0x128c
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3

Error: (10/16/2014 08:17:44 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Workflow.ComponentModel, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil . Error code = 0x80070020


System errors:
=============
Error: (10/19/2014 10:48:23 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst ShellHWDetection erreicht.

Error: (10/18/2014 10:10:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ZoneAlarm Privacy Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (10/18/2014 10:10:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Update ClearThink" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (10/18/2014 10:10:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "TrueVector Internet Monitor" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (10/18/2014 10:10:13 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎18.‎10.‎2014 um 10:07:59 unerwartet heruntergefahren.

Error: (10/18/2014 09:48:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ZoneAlarm Privacy Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (10/18/2014 09:48:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Update ClearThink" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (10/18/2014 09:48:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "TrueVector Internet Monitor" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (10/18/2014 09:48:48 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎18.‎10.‎2014 um 09:45:33 unerwartet heruntergefahren.

Error: (10/17/2014 09:20:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ZoneAlarm Privacy Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2


Microsoft Office Sessions:
=========================
Error: (10/19/2014 00:04:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vlc.exe2.1.5.000000000ntdll.dll6.1.7601.18247521eaf24c00000050000000000018e5d128401cfeb839e65ca3bC:\Program Files\VideoLAN\VLC\vlc.exeC:\Windows\SYSTEM32\ntdll.dll53fd93fc-5777-11e4-b5a6-bc0543032e9a

Error: (10/19/2014 11:26:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: vlc.exe2.1.5.000000000ntdll.dll6.1.7601.18247521eaf24c00000050000000000018e5d181801cfeb7e96660bffC:\Program Files\VideoLAN\VLC\vlc.exeC:\Windows\SYSTEM32\ntdll.dllff976475-5771-11e4-b5a6-bc0543032e9a

Error: (10/18/2014 02:56:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vlc.exe2.1.5.000000000ntdll.dll6.1.7601.18247521eaf24c00000050000000000018e5d109001cfeac017e1e412C:\Program Files\VideoLAN\VLC\vlc.exeC:\Windows\SYSTEM32\ntdll.dll2988f256-56c6-11e4-b5a6-bc0543032e9a

Error: (10/18/2014 10:21:11 AM) (Source: NVNetworkService) (EventID: 0) (User: )
Description: NVNetworkServiceService failed to run w/err Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen. (1063)

Error: (10/18/2014 10:21:10 AM) (Source: NVNetworkService) (EventID: 0) (User: )
Description: NVNetworkServiceService failed to run w/err Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen. (1063)

Error: (10/18/2014 10:21:09 AM) (Source: NVNetworkService) (EventID: 0) (User: )
Description: NVNetworkServiceService failed to run w/err Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen. (1063)

Error: (10/17/2014 04:17:26 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Management.Automation, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020 
System.Management.Automation, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35

Error: (10/17/2014 01:08:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: FlashPlayerPlugin_15_0_0_152.exe15.0.0.15253fe814bFlashPlayerPlugin_15_0_0_152.exe15.0.0.15253fe814b4000001500017870147401cfe9f97a2608e2C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exede123db8-55ed-11e4-b334-bc0543032e9a

Error: (10/16/2014 08:23:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vlc.exe2.1.5.000000000vlc.exe2.1.5.000000000c000041d000000000000186e128c01cfe96e280115c4C:\Program Files\VideoLAN\VLC\vlc.exeC:\Program Files\VideoLAN\VLC\vlc.exe7f22f00b-5561-11e4-b30d-bc0543032e9a

Error: (10/16/2014 08:17:44 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Workflow.ComponentModel, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil . Error code = 0x80070020 
System.Workflow.ComponentModel, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-2300 CPU @ 2.80GHz
Percentage of memory in use: 45%
Total physical RAM: 6126.59 MB
Available physical RAM: 3310.74 MB
Total Pagefile: 12251.37 MB
Available Pagefile: 9343.83 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:475.55 GB) (Free:361.93 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:48.22 GB) (Free:31.26 GB) NTFS
Drive e: (Western Digital) (Fixed) (Total:407.74 GB) (Free:124.91 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 3452876E)
Partition 1: (Active) - (Size=475.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=407.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=48.2 GB) - (Type=OF Extended)

==================== End Of Log ============================
         
__________________

Alt 20.10.2014, 08:41   #34
schrauber
/// the machine
/// TB-Ausbilder
 

Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen



Da ist ja wieder schön was los.


Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:

    WindowsMangerProtect20.0.0.722 (HKLM-x32\...\WindowsMangerProtect) (Version: 20.0.0.722 - WindowsProtect LIMITED) <==== ATTENTION


  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 





Ebenso alles von IOBIT deinstallieren!!!!!



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.10.2014, 13:22   #35
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen



So ich habe jetzt mit revo, Microsoft und iobit deinstalliert, dann sollte ich einen Neustart machen. Seit dem hat sich der PC aufgehangen, der fährt zwar hoch aber ich kann nix mehr machen. Kann nix drücken oder so, der lädt einfach nur noch. Hab ihn noch 2mal runtergefahen hilft aber auch nicht?

also ich habe jetzt 2 mal systemwiederherstellung gemacht.Das Maleware Programm zeigt mir HQPUREQual an und sobald ich das Lösche und den PC neustarten muss,Hängt er sich auf und es geht nix mehr


Alt 21.10.2014, 09:09   #36
schrauber
/// the machine
/// TB-Ausbilder
 

Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen



Lass MBAM weg.
__________________
--> Jeden Tag 4-5 mal Bluescreen

Alt 21.10.2014, 10:21   #37
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen



So hatte jetzt gestern die schnauze voll:-) hab Windows neu Installiert.Hoffe jetzt ist alles wieder sauber.

Alt 22.10.2014, 08:14   #38
schrauber
/// the machine
/// TB-Ausbilder
 

Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen



ok.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Jeden Tag 4-5 mal Bluescreen
bluescree, bluescreen, fehlercode 0x40000015, fehlercode 0xc0000005, fehlercode 0xc0000096, fehlercode 0xc000041d, fehlercode 28, fehlercode 490@01010004, fehlercode windows, guten, morgen, richtig, woche, wochen, zusammen



Ähnliche Themen: Jeden Tag 4-5 mal Bluescreen


  1. Bluescreen Problem-Anleitung für Bluescreen nicht anwenbar bei Bildschirm Freeze
    Alles rund um Windows - 04.04.2015 (18)
  2. Auf jeden Browser öffnen sich Popups.
    Log-Analyse und Auswertung - 16.01.2015 (7)
  3. Win32:Dropper taucht jeden Tag auf
    Plagegeister aller Art und deren Bekämpfung - 16.12.2014 (16)
  4. Habe Problem mit jeden Browser
    Plagegeister aller Art und deren Bekämpfung - 02.11.2014 (5)
  5. Windows 7: Jeden Tag mehrere Virus-Meldungen
    Log-Analyse und Auswertung - 04.08.2014 (19)
  6. rundll32.exe jeden alle jeden 2ten systemstart die ganze zeit am laufen. was könnte das sein?
    Plagegeister aller Art und deren Bekämpfung - 18.11.2013 (17)
  7. Jeden Tag Bluescreens
    Plagegeister aller Art und deren Bekämpfung - 21.09.2010 (24)
  8. Fast jeden Tag BlueScreen's + Langsamer PC
    Alles rund um Windows - 20.03.2009 (41)
  9. Finde jeden Tag 120 Trojaner. Was tun?
    Plagegeister aller Art und deren Bekämpfung - 10.01.2009 (8)
  10. jeden zweiten tag neue malware?!?
    Log-Analyse und Auswertung - 23.02.2008 (3)
  11. Bluescreen durch smit fraud, einen tag später wieder bluescreen
    Log-Analyse und Auswertung - 05.02.2008 (3)
  12. Jeden Tag / fast jede Std. ein Hackangriff
    Log-Analyse und Auswertung - 22.10.2007 (6)
  13. Bin für jeden Rat dankbar
    Plagegeister aller Art und deren Bekämpfung - 20.05.2006 (4)
  14. Jeden Mittwoch startet ein Casino Spiel!
    Plagegeister aller Art und deren Bekämpfung - 18.07.2005 (5)
  15. CWS.Jksearch jeden Tag
    Log-Analyse und Auswertung - 20.07.2004 (17)
  16. trojaner jeden tag neu trotz programmen
    Plagegeister aller Art und deren Bekämpfung - 25.04.2004 (8)

Zum Thema Jeden Tag 4-5 mal Bluescreen - Zone alarm und Nivida finde ich einfach nicht zum deinstallieren? - Jeden Tag 4-5 mal Bluescreen...
Archiv
Du betrachtest: Jeden Tag 4-5 mal Bluescreen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.