| |
| |||||||
Alles rund um Windows: PC sehr langsam nach neu aufsetzenWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
06.12.2014, 15:49
| #1 |
| |  Problem: PC sehr langsam nach neu aufsetzen Ich haben mein pc neu aufgesetzt und alle treiber neu installiert und jetzt ist er sehr langsam geworden er braucht 5 min um etwas aufzurufen er stützt auch machmal ohne grund ab Ich habe mit FRST einen scann gemacht Addition.log : Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-12-2014
Ran by Admin at 2014-12-06 15:39:44
Running from C:\Users\Admin\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Panda Free Antivirus (Enabled - Up to date) {3456760B-FDAA-FFFD-06C2-7BB528D2066C}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Panda Free Antivirus (Enabled - Up to date) {8F3797EF-DB90-F073-3C72-40C753554CD1}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: Panda Firewall (Disabled) {0C6DF72E-B7C5-FEA5-2D9D-D280D6014117}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Tools for .Net 3.5 - DEU Lang Pack (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
Tools for .Net 3.5 (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Photoshop Elements 7.0 (HKLM-x32\...\Adobe Photoshop Elements 7) (Version: 7.0.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
AirMech (HKLM-x32\...\Steam App 206500) (Version: - Carbon Games)
AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI AVIVO64 Codecs (Version: 10.11.0.41019 - ATI Technologies Inc.) Hidden
Auslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 5.0.0.0 - Auslogics Labs Pty Ltd)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
AzureTools.Notifications.VwdExpress (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
ccc-core-static (x32 Version: 2009.1019.2131.36819 - Ihr Firmenname) Hidden
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CPUID CPU-Z 1.71 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.88 - DivX, LLC)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
Dragons and Titans (HKLM-x32\...\Steam App 263500) (Version: - Wyrmbyte)
Ease Audio Converter 5.30 (HKLM-x32\...\Ease Audio Converter_is1) (Version: - )
Entity Framework Tools for Visual Studio 2013 (HKLM-x32\...\{08AEF86A-1956-4846-B906-B01350E96E30}) (Version: 12.0.20912.0 - Microsoft Corporation)
Erforderliche Komponenten für SSDT (HKLM-x32\...\{3FF082A7-A5DE-4BDA-B56A-1D2BEFD617A3}) (Version: 11.1.3000.0 - Microsoft Corporation)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.18.3 - Androxyde)
FRITZ!Box USB-Fernanschluss (HKU\S-1-5-21-3051053693-108095913-3418159089-1001\...\2db37667170956ee) (Version: 2.3.2.0 - AVM Berlin)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.28 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Homebrew Demo version 12.2 (HKLM-x32\...\{6A8DF660-7439-44DC-95DA-4F522D6D06CA}_is1) (Version: 12.2 - Copybugpaste)
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.00.3004 - Packard Bell)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kinetic Void (HKLM-x32\...\Kinetic Void_is1) (Version: - )
Kingo ROOT version 1.2.7.2149 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.2.7.2149 - Kingosoft Technology Ltd.)
K-Lite Mega Codec Pack 10.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.8.0 - )
Language Pack (DEU) für freigegebene Windows Azure-Komponenten für Microsoft Visual Studio 2013 - v1.0 (x32 Version: 1.0.10829.1601 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.266 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.266 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Exploit version 1.04.1.1012 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.04.1.1012 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0100-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Language Pack 2007 - German/Deutsch (HKLM-x32\...\OMUI.de-de) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM-x32\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{D4E30517-FE6F-491E-942F-AE10E1B18F38}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{B4EDAE03-DB34-4DD0-BA7E-2ED80DEA50B1}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{269A8DF6-BBDA-441F-932B-233F9B746D72}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{EC75BD20-F9CA-4E77-825F-ABD77E95BE91}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{0BF65908-D137-4A9E-B7C9-78F32F74F6FD}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{93945D16-4C3D-433E-B7E4-3D0D86B284C8}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{6F173435-3F19-4043-BA3D-A46AA8472859}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL-Sprachdienst (HKLM-x32\...\{1D812D86-D8EF-41AC-A518-BA12E1913747}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (12.0.30919.1) (HKLM-x32\...\{7CC03C58-3471-43D2-A251-EC9AE225E772}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (12.0.30919.1) (HKLM-x32\...\{BCB8A870-2B3D-4CC0-87D6-F931E065AC0C}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{D434E072-F482-4F52-AB97-7B19DD5DAEB5}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{485F4AC6-F79E-4482-A0D2-EDF0CCE1E124}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{9634d50a-0c4d-4f52-8a9f-894a2baae370}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{307a22b8-8353-4c5e-b67b-2404c5734558}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio Express 2013 für das Web - DEU (HKLM-x32\...\{81b600cc-d985-40b7-8ab1-5442fb4f4845}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{62F7DA7E-CCCB-439C-A760-00C3926E761F}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (HKLM-x32\...\{43341417-7882-4F34-8390-53DFD00F6C0F}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (HKLM\...\{24440413-490E-41CA-BD33-0B30FD3EBE3A}) (Version: 11.1.3366.16 - Microsoft Corporation)
Minecraft 1.7.5 (HKLM-x32\...\Minecraft 1.7.5) (Version: 1.7.5 - Mojang)
Minecraft 1.8 (HKLM-x32\...\Minecraft 1.8) (Version: 1.8 - Mojang)
Mozilla Firefox 33.1.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.1.1 (x86 de)) (Version: 33.1.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Oracle VM VirtualBox 4.3.18 (HKLM\...\{74B7E6F9-DCAC-4ADB-B2D0-EEFDD1B5AC25}) (Version: 4.3.18 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.03 - Panda Security)
Panda Devices Agent (x32 Version: 1.05.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 15.00.03.0000 - Panda Security)
Panda Free Antivirus (Version: 7.23.00.0000 - Panda Security) Hidden
PS3.ProxyServer (HKLM-x32\...\{FE4086E1-FA7F-4A7A-8FC5-061337B5787E}) (Version: 1.0.0 - CF3B5)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5942 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Sandboxie 4.14 (64-bit) (HKLM\...\Sandboxie) (Version: 4.14 - Sandboxie Holdings, LLC)
Sid Meiers Civilization Beyond Earth (HKLM-x32\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Sony Bootloader Unlock version 0.2.0.1819 (HKLM-x32\...\{033BC2B5-F80D-4F26-8AC6-72BF1FCEFECE}_is1) (Version: 0.2.0.1819 - Kingosoft Technology Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Strawberry Perl (64-bit) (HKLM\...\{FEE46514-6CF4-1014-AA5D-9DD2869262C5}) (Version: 5.20.1001 - strawberryperl.com project)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
TerraTech Demo (HKLM-x32\...\Steam App 313990) (Version: - Payload Studios)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD Projekt RED)
TI-Nspire™ Student Software (HKLM-x32\...\{F46F949B-755F-4BEF-A4B9-7B3B73D0104A}) (Version: 3.9.0.463 - Texas Instruments Inc.)
Unity Web Player (HKU\S-1-5-21-3051053693-108095913-3418159089-1001\...\UnityWebPlayer) (Version: 4.5.5f1 - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
28-11-2014 12:19:19 Windows Update
28-11-2014 12:31:54 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
29-11-2014 14:43:09 Gerätetreiber-Paketinstallation: AVM Berlin AVM USB-Fernanschluss
01-12-2014 19:43:29 Installed Microsoft .NET Framework 1.1
01-12-2014 19:47:56 Installed PS3.ProxyServer
02-12-2014 17:20:11 Windows Update
04-12-2014 15:06:53 Installed Spotflux
04-12-2014 15:10:02 Gerätetreiber-Paketinstallation: Spotflux, Inc. Netzwerkadapter
06-12-2014 09:29:43 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {11F9FD8D-A3CB-4506-8A5F-F6E95D3BDF8A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-14] (Google Inc.)
Task: {17B75E37-39E5-4F55-95A4-3A3FBA19EB2D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-03] (AVAST Software)
Task: {3BFB5414-E2C2-4EEA-B086-290A5DBDDF48} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-18] (Adobe Systems Incorporated)
Task: {52F83077-57F7-4301-A072-4C12C7091E0F} - System32\Tasks\Driver Robot => C:\Program Files (x86)\Driver Robot\Driver Robot.lnk
Task: {619B5B75-5FC9-4CE5-A7DD-B09A2E8297FC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-14] (Google Inc.)
Task: {C824B298-BD99-4070-92FC-015224D89C49} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2014-10-06] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Driver Robot.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-05-12 10:49 - 2014-05-12 10:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2014-12-03 21:00 - 2014-12-03 06:12 - 01450312 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.28\libglesv2.dll
2014-12-03 21:00 - 2014-12-03 06:12 - 00205128 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.28\libegl.dll
2014-12-03 21:00 - 2014-12-03 06:13 - 10865480 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.28\pdf.dll
2014-12-03 20:39 - 2014-12-03 20:39 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2014-12-03 20:39 - 2014-12-03 20:39 - 05851328 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2014-10-14 17:54 - 2014-05-13 11:36 - 01791488 _____ () C:\Users\Admin\Desktop\atakan\psn\psnstuff.exe
2014-12-06 13:23 - 2014-12-06 13:23 - 02905088 _____ () C:\Program Files\AVAST Software\Avast\defs\14120600\algo.dll
2014-12-03 20:40 - 2014-12-03 20:40 - 04495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2013-04-12 18:23 - 2013-04-12 18:23 - 00612664 _____ () C:\Program Files (x86)\Panda Security\Panda Security Protection\SQLite3.dll
2014-12-03 20:41 - 2014-12-03 20:42 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeActiveFileMonitor7.0 => 3
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Hamachi2Svc => 3
MSCONFIG\Services: IAANTMON => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: LMIGuardianSvc => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: MbaeSvc => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PandaAgent => 2
MSCONFIG\Services: SbieSvc => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\Services: UNS => 2
MSCONFIG\Services: USBS3S4Detection => 2
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: Hotkey Utility => C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
MSCONFIG\startupreg: IAAnotif => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Malwarebytes Anti-Exploit => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
MSCONFIG\startupreg: PSUAMain => "C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: SandboxieControl => "C:\Program Files\Sandboxie\SbieCtrl.exe"
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
========================= Accounts: ==========================
Admin (S-1-5-21-3051053693-108095913-3418159089-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3051053693-108095913-3418159089-500 - Administrator - Disabled)
ASPNET (S-1-5-21-3051053693-108095913-3418159089-1004 - Limited - Enabled)
Gast (S-1-5-21-3051053693-108095913-3418159089-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3051053693-108095913-3418159089-1002 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
Name: VirtualBox Host-Only Ethernet Adapter
Description: VirtualBox Host-Only Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetAdp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/06/2014 03:06:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm explorer.exe, Version 6.1.7601.17514 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1704
Startzeit: 01d0115d7cf3efd4
Endzeit: 16
Anwendungspfad: C:\Windows\explorer.exe
Berichts-ID: 2384827b-7d51-11e4-ae95-90fba685001d
Error: (12/06/2014 03:04:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm explorer.exe, Version 6.1.7601.17514 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 11f4
Startzeit: 01d0115c8c50ae90
Endzeit: 13
Anwendungspfad: C:\Windows\explorer.exe
Berichts-ID: b8e20af5-7d50-11e4-ae95-90fba685001d
Error: (12/06/2014 02:57:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Explorer.EXE, Version 6.1.7601.17514 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 7e0
Startzeit: 01d0112dc20609ea
Endzeit: 3101
Anwendungspfad: C:\Windows\Explorer.EXE
Berichts-ID:
Error: (12/06/2014 00:53:53 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=40.0.2214.28;lang=;guid=4310F408AF614980A2AAE0FACF22DACD;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\c3623714-6fb0-46aa-9471-c3a29866d102.dmp
Error: (12/06/2014 00:45:47 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=40.0.2214.28;lang=;guid=4310F408AF614980A2AAE0FACF22DACD;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\82794b02-882d-41dc-98c7-56134b677bd7.dmp
Error: (12/05/2014 10:55:14 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.34209 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 5432. Meldungs-ID: [0x2509].
Error: (12/05/2014 10:47:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 33.1.1.5430, Zeitstempel: 0x54656826
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea8e7
Ausnahmecode: 0xc000000d
Fehleroffset: 0x00098519
ID des fehlerhaften Prozesses: 0xef4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (12/05/2014 04:33:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.1.5.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000004e4e4
ID des fehlerhaften Prozesses: 0x1150
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3
Error: (12/05/2014 02:16:33 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.34209 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 4600. Meldungs-ID: [0x2509].
Error: (12/05/2014 01:13:34 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.34209 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 3004. Meldungs-ID: [0x2509].
System errors:
=============
Error: (12/06/2014 03:22:09 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.
Error: (12/06/2014 03:20:34 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst ShellHWDetection erreicht.
Error: (12/06/2014 03:15:14 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (12/06/2014 03:03:34 PM) (Source: Ntfs) (EventID: 137) (User: )
Description: Auf dem Volume "M:" konnte der Transaktionsressourcen-Manager aufgrund eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in den Daten enthalten.
Error: (12/06/2014 02:57:30 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \...\DR8 gefunden.
Error: (12/06/2014 02:57:28 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk6\DR8 gefunden.
Error: (12/06/2014 02:57:12 PM) (Source: Ntfs) (EventID: 137) (User: )
Description: Auf dem Volume "L:" konnte der Transaktionsressourcen-Manager aufgrund eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in den Daten enthalten.
Error: (12/06/2014 02:49:17 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "L:" den Befehl "chkdsk" aus.
Error: (12/06/2014 02:49:17 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "L:" den Befehl "chkdsk" aus.
Error: (12/06/2014 02:49:17 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "L:" den Befehl "chkdsk" aus.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz
Percentage of memory in use: 74%
Total physical RAM: 3063.09 MB
Available physical RAM: 779.76 MB
Total Pagefile: 6124.37 MB
Available Pagefile: 3440.1 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: (Packard Bell) (Fixed) (Total:781.25 GB) (Free:538.39 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:150.26 GB) (Free:150.17 GB) NTFS
Drive j: (TOSHIBA 2T) (Fixed) (Total:1862.56 GB) (Free:1639.57 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B0314B35)
Partition 1: (Active) - (Size=781.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=150.3 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: DCD0DF2B)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0B)
==================== End Of Log ============================
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-12-2014
Ran by Admin (administrator) on ADMIN-PC on 06-12-2014 15:35:02
Running from C:\Users\Admin\Downloads
Loaded Profile: Admin (Available profiles: Admin)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVM Berlin) C:\Users\Admin\AppData\Local\Apps\2.0\7EJNDZEL.4DV\JQRPTO3J.8EZ\frit..tion_1acae14e4778b8d2_0002.0003_6dcb4a48ddb2ee39\fritzbox-usb-fernanschluss.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
() C:\Users\Admin\Desktop\atakan\psn\psnstuff.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2014-12-03] (AVAST Software)
HKLM\...\Winlogon: [Userinit] C:\Windows\SysWOW64\userinit.exe,
HKU\S-1-5-21-3051053693-108095913-3418159089-1001\...\Run: [AVMUSBFernanschluss] => C:\Users\Admin\AppData\Local\Apps\2.0\7EJNDZEL.4DV\JQRPTO3J.8EZ\frit..tion_1acae14e4778b8d2_0002.0003_6dcb4a48ddb2ee39\AVMAutoStart.exe [139264 2014-11-29] (AVM Berlin)
HKU\S-1-5-21-3051053693-108095913-3418159089-1001\...\Run: [GoogleChromeAutoLaunch_A5B343D047FD8BD2F268B0EA0F8DBD7C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [898376 2014-12-03] (Google Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-10-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-3051053693-108095913-3418159089-1001] => 216.189.0.235:7808
HKU\S-1-5-21-3051053693-108095913-3418159089-1001\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-3051053693-108095913-3418159089-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&m=imedia_s3800&r=173610142916p0465v165y45j1195q
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
SearchScopes: HKU\S-1-5-21-3051053693-108095913-3418159089-1001 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-3051053693-108095913-3418159089-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ct6u9mf9.default
FF NewTab: hxxp://bitable.com/
FF Homepage: hxxp://bitable.com/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3051053693-108095913-3418159089-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Admin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Extension: Web Developer - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ct6u9mf9.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2014-12-03]
FF Extension: Adblock Plus - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ct6u9mf9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-11-29]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-14]
Chrome:
=======
CHR StartupUrls: Default -> "https://www.google.de/"
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-14]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-14]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-14]
CHR Extension: (Google-Suche) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-14]
CHR Extension: (AdBlock) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-10-14]
CHR Extension: (Avast Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-12-04]
CHR Extension: (vGet Extension (Video Downloader, DLNA)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hniladkejehjfchadikcbjmgjaogciic [2014-10-27]
CHR Extension: (Adblock Super) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd [2014-12-02]
CHR Extension: (FVD Downloader) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp [2014-10-27]
CHR Extension: (Google Wallet) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-14]
CHR Extension: (YouTube Unblocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-12-02]
CHR Extension: (Google Mail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-14]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-03]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-03] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-03] (Avast Software)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [174112 2014-11-06] (EasyAntiCheat Ltd)
S4 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2014-10-14] (Macrovision Europe Ltd.) [File not signed]
S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2014-10-21] (LogMeIn, Inc.)
S4 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [File not signed]
S4 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [441144 2014-08-29] (Malwarebytes Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [141560 2014-07-24] (Panda Security, S.L.)
S4 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [61688 2014-07-23] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2014-07-24] (Panda Security, S.L.)
S4 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
S4 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [File not signed]
S4 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] ()
S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
S4 aspnet_state; %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [576000 2014-09-15] (Advanced Micro Devices, Inc.) [File not signed]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-03] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-03] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-03] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-03] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-03] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-03] ()
R3 avmaura; C:\Windows\System32\DRIVERS\avmaura.sys [116480 2014-11-29] (AVM Berlin)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-10-25] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [63000 2014-08-30] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-12-05] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [96800 2014-06-04] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [162336 2014-06-18] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [112160 2014-06-04] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [115232 2014-06-04] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\System32\DRIVERS\NNSNAHSL.sys [46336 2014-01-16] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [95776 2014-06-04] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [70176 2014-06-04] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [125984 2014-06-04] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [306720 2014-06-04] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [169504 2014-06-04] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [115744 2014-06-04] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [261152 2014-06-04] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [109088 2014-06-04] (Panda Security, S.L.)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [160800 2014-07-24] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [120352 2014-07-24] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [195616 2014-07-24] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [122400 2014-07-24] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [132128 2014-07-24] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [106016 2014-07-24] (Panda Security, S.L.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [60400 2014-03-25] (Panda Security, S.L.)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 tapSF0901; C:\Windows\System32\DRIVERS\tapSF0901.sys [39104 2014-10-31] (Spotflux, Inc.)
S3 USBTINSP; C:\Windows\System32\DRIVERS\tinspusb.sys [142848 2014-06-02] (Texas Instruments)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-12-03] (Avast Software)
S3 cpuz138; \??\C:\Users\Admin\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-06 15:35 - 2014-12-06 15:38 - 00017381 _____ () C:\Users\Admin\Downloads\FRST.txt
2014-12-06 15:31 - 2014-12-06 15:35 - 00000000 ____D () C:\FRST
2014-12-06 15:26 - 2014-12-06 15:26 - 02118144 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2014-12-06 15:18 - 2014-12-06 15:29 - 00000000 ____D () C:\Users\Admin\Desktop\sa
2014-12-06 15:17 - 2014-12-06 15:17 - 00000197 _____ () C:\Windows\system32\2014-12-06-14-17-19.094-AvastVBoxSVC.exe-4144.log
2014-12-06 14:54 - 2014-12-06 14:55 - 00000000 ____D () C:\Users\Admin\Desktop\backup
2014-12-06 14:17 - 2014-12-06 14:40 - 3037807792 _____ () C:\Users\Admin\Downloads\zpAdqdZCuLNBFQDIRRUfmEzyNhTxDgMYWJLVMZmeWApSooFouxgocWoIrsfyiOGiqfiDGzsfWYaQUGiTHqEvntMHXcDxbDTRBRuMj.pkg
2014-12-06 14:17 - 2014-12-06 14:17 - 00000000 ____D () C:\Users\Admin\Downloads\Sacred Seven
2014-12-06 11:31 - 2014-12-06 11:33 - 216371061 _____ () C:\Users\Admin\Downloads\_Pure-Anime.biz__Shigatsu_wa_Kimi_no_Uso_09_Ger_Sub.mp4
2014-12-06 09:32 - 2014-12-06 09:32 - 00000197 _____ () C:\Windows\system32\2014-12-06-08-32-12.023-AvastVBoxSVC.exe-5308.log
2014-12-05 22:41 - 2014-12-05 22:41 - 00000197 _____ () C:\Windows\system32\2014-12-05-21-41-27.090-AvastVBoxSVC.exe-4560.log
2014-12-05 12:52 - 2014-12-05 12:52 - 00000197 _____ () C:\Windows\system32\2014-12-05-11-52-46.067-AvastVBoxSVC.exe-5004.log
2014-12-04 16:51 - 2014-12-04 16:51 - 03828010 _____ () C:\Users\Admin\Desktop\com.dimonvideo.luckypatcher-4.1.9-paid-4588-www.apkhere.com.apk
2014-12-04 16:51 - 2014-12-04 16:49 - 13136777 _____ () C:\Users\Admin\Desktop\teamspeak3-full-AndroidMerkezimiz.blogspot.com.apk
2014-12-04 16:11 - 2014-10-31 22:36 - 00048896 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\netfilter2.sys
2014-12-04 16:09 - 2014-12-04 16:38 - 00000000 ____D () C:\ProgramData\spotflux
2014-12-04 16:06 - 2014-12-04 16:07 - 00000049 _____ () C:\Users\Admin\Desktop\Free VPN • 100% Free PPTP and OpenVPN Service.url
2014-12-04 16:00 - 2014-12-04 16:00 - 00000197 _____ () C:\Windows\system32\2014-12-04-15-00-05.043-AvastVBoxSVC.exe-1240.log
2014-12-04 14:55 - 2014-12-06 13:16 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\vlc
2014-12-04 14:54 - 2014-12-04 14:54 - 00000883 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-12-04 14:54 - 2014-12-04 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-12-04 14:53 - 2014-12-04 14:53 - 00000000 ____D () C:\Program Files\VideoLAN
2014-12-04 14:18 - 2014-12-04 14:18 - 00000247 _____ () C:\Windows\system32\2014-12-04-13-18-38.030-aswFe.exe-4060.log
2014-12-04 14:07 - 2014-12-04 14:18 - 00000247 _____ () C:\Windows\system32\2014-12-04-13-07-14.048-aswFe.exe-5244.log
2014-12-04 14:07 - 2014-12-04 14:07 - 00000197 _____ () C:\Windows\system32\2014-12-04-13-07-04.008-AvastVBoxSVC.exe-4436.log
2014-12-04 13:43 - 2014-12-04 13:56 - 00000000 ____D () C:\Windows\SysWOW64\vbox
2014-12-04 13:43 - 2014-12-04 13:56 - 00000000 ____D () C:\Windows\system32\vbox
2014-12-03 21:45 - 2014-12-03 21:45 - 00000177 _____ () C:\Users\Admin\Desktop\Integral Memory 64GB Speicherstick USB 3.0 silber-metal- Amazon.de- Computer & Zubehör.url
2014-12-03 20:42 - 2014-12-03 20:42 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-12-03 20:42 - 2014-12-03 20:42 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-12-03 20:42 - 2014-12-03 20:42 - 00001976 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-12-03 19:24 - 2014-12-03 19:24 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Carbon
2014-12-02 21:39 - 2014-12-02 21:39 - 00000067 _____ () C:\Users\Admin\Desktop\Folgen - Tokyo Ghoul東京グール.url
2014-12-01 20:57 - 2014-12-01 20:57 - 00275432 _____ () C:\Windows\Minidump\120114-30872-01.dmp
2014-12-01 20:53 - 2014-12-01 20:53 - 00000093 _____ () C:\Users\Admin\AppData\Local\fusioncache.dat
2014-12-01 20:48 - 2014-12-01 20:48 - 00000000 ____D () C:\Program Files (x86)\CF3B5
2014-12-01 20:45 - 2014-12-02 20:36 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DMCache
2014-12-01 20:45 - 2014-12-01 20:45 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-12-01 20:45 - 2014-12-01 20:45 - 00000000 ____D () C:\ProgramData\IDM
2014-12-01 14:30 - 2014-12-01 14:30 - 00000213 _____ () C:\Users\Admin\Desktop\Guess Herren-Armbanduhr XL Mens Trend Analog Quarz Leder W0181G3- Amazon.de- Uhren.url
2014-12-01 14:30 - 2014-12-01 14:30 - 00000205 _____ () C:\Users\Admin\Desktop\Culinario Wokpfanne mit umweltfreundlicher Ecolon Keramik-Beschichtung, Induktion, Ø 30 cm, grau- Amazon.de- Küche & Haushalt.url
2014-11-30 20:06 - 2014-11-30 20:11 - 00000000 ____D () C:\Program Files\Recuva
2014-11-30 20:06 - 2014-11-30 20:06 - 00001670 _____ () C:\Users\Public\Desktop\Recuva.lnk
2014-11-30 20:06 - 2014-11-30 20:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2014-11-30 20:03 - 2014-09-20 00:22 - 626918928 _____ () C:\Users\Admin\Desktop\Tokyo Ghoul 12 Ger Sub HD.avi
2014-11-30 11:39 - 2014-11-30 17:45 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\5E5C06D5.sys
2014-11-29 22:56 - 2014-11-29 22:56 - 00275432 _____ () C:\Windows\Minidump\112914-30513-01.dmp
2014-11-29 22:41 - 2014-11-29 22:41 - 00002094 _____ () C:\Users\Admin\Desktop\JDownloader 2.lnk
2014-11-29 22:41 - 2014-11-29 22:41 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-11-29 22:38 - 2014-12-06 14:40 - 00000000 ____D () C:\Users\Admin\AppData\Local\JDownloader v2.0
2014-11-29 15:42 - 2014-12-06 15:08 - 00258152 _____ () C:\Windows\avmacc.log
2014-11-29 15:42 - 2014-11-29 15:43 - 00003282 _____ () C:\Windows\avmacc1.log
2014-11-29 15:42 - 2014-11-29 15:42 - 00116480 _____ (AVM Berlin) C:\Windows\system32\Drivers\avmaura.sys
2014-11-29 15:42 - 2014-11-29 15:42 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRITZ!Box
2014-11-29 00:52 - 2014-11-29 00:53 - 00005917 _____ () C:\Users\Admin\Desktop\detekt.log
2014-11-29 00:49 - 2014-11-29 00:49 - 27806774 _____ () C:\Users\Admin\Desktop\detekt.exe
2014-11-27 18:54 - 2014-11-27 18:54 - 00000000 ____D () C:\Games
2014-11-26 21:47 - 2014-11-26 21:47 - 00021712 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2014-11-26 21:47 - 2014-11-26 21:47 - 00000000 ____D () C:\Users\Admin\AppData\Local\eSupport.com
2014-11-26 21:47 - 2014-11-26 21:47 - 00000000 ____D () C:\Program Files (x86)\eSupport.com
2014-11-25 22:10 - 2014-11-25 22:10 - 00000000 ____D () C:\Windows\pss
2014-11-24 20:28 - 2014-11-24 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT
2014-11-24 20:28 - 2014-11-24 20:28 - 00000000 ____D () C:\Program Files (x86)\Kingo ROOT
2014-11-24 20:24 - 2014-11-24 20:24 - 00001137 _____ () C:\Users\Public\Desktop\Sony Bootloader Unlock.lnk
2014-11-24 20:24 - 2014-11-24 20:24 - 00000000 ____D () C:\Users\Admin\AppData\Local\Kingo
2014-11-24 20:24 - 2014-11-24 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Bootloader Unlock
2014-11-24 20:24 - 2014-11-24 20:24 - 00000000 ____D () C:\Program Files (x86)\Sony Bootloader Unlock
2014-11-24 20:15 - 2014-11-24 20:15 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-11-24 20:15 - 2014-11-24 20:15 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2014-11-24 20:14 - 2014-11-24 20:28 - 00001043 _____ () C:\Users\Public\Desktop\Kingo ROOT.lnk
2014-11-24 20:14 - 2014-11-24 20:14 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Kingosoft
2014-11-24 20:14 - 2014-11-24 20:14 - 00000000 ____D () C:\Users\Admin\AppData\Local\Kingosoft
2014-11-24 19:14 - 2014-11-24 19:14 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf
2014-11-24 19:14 - 2014-11-24 19:14 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf
2014-11-24 19:13 - 2014-11-24 19:13 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool
2014-11-24 19:04 - 2014-11-24 19:09 - 00068470 _____ () C:\Windows\DPINST.LOG
2014-11-24 18:52 - 2014-11-24 20:16 - 00000000 ____D () C:\Users\Admin\.android
2014-11-24 18:51 - 2014-11-24 18:51 - 00000000 ____D () C:\Users\Admin\.swt
2014-11-24 18:47 - 1970-01-01 00:59 - 508873824 ____N () C:\Users\Admin\Desktop\XperiaS_LT26i_6.2.B.1.96_1257-6919.ftf
2014-11-24 15:23 - 2014-11-24 19:12 - 00000000 ____D () C:\Flashtool
2014-11-24 12:46 - 2014-11-24 12:46 - 00275488 _____ () C:\Windows\Minidump\112414-19094-01.dmp
2014-11-23 19:48 - 2014-11-23 19:54 - 00000000 ____D () C:\Program Files (x86)\Kinetic Void
2014-11-23 19:48 - 2014-11-23 19:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kinetic Void
2014-11-22 13:17 - 2014-11-22 13:17 - 00000078 _____ () C:\Users\Admin\Desktop\Einzahlungen per Überweisung - PayPal.url
2014-11-21 20:51 - 2014-11-21 20:51 - 00000000 ____D () C:\Users\Admin\AppData\Local\DDMSettings
2014-11-21 20:45 - 2014-11-25 20:39 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DivX
2014-11-21 20:45 - 2014-11-21 20:45 - 00000000 ____D () C:\Program Files\DivX
2014-11-21 17:30 - 2014-11-21 17:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\LolClient
2014-11-21 12:51 - 2014-11-21 12:51 - 00000000 ____D () C:\Program Files (x86)\Java
2014-11-21 12:42 - 2014-11-21 12:42 - 00000000 ____D () C:\ProgramData\Sun
2014-11-21 12:40 - 2014-11-21 12:52 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-21 12:30 - 2014-11-21 13:06 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\.minecraft
2014-11-20 19:00 - 2014-11-20 19:00 - 00000219 _____ () C:\Users\Admin\Desktop\Team Fortress 2.url
2014-11-20 18:31 - 2014-11-20 18:31 - 00000000 ____D () C:\ProgramData\Riot Games
2014-11-20 18:29 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-11-20 18:29 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-11-20 18:29 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-11-20 18:29 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-11-20 18:29 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-11-20 18:28 - 2014-11-20 18:28 - 00001613 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2014-11-20 18:28 - 2014-11-20 18:28 - 00000000 ____D () C:\Riot Games
2014-11-20 17:58 - 2014-11-20 18:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Riot Games
2014-11-19 18:27 - 2014-11-19 18:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Homebrew Demo
2014-11-19 18:26 - 2014-11-19 18:26 - 00000000 ____D () C:\Program Files (x86)\copybugpaste
2014-11-19 16:59 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 16:59 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 16:59 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 16:59 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 15:48 - 2014-11-18 15:48 - 00000000 ____D () C:\ProgramData\APN
2014-11-18 15:46 - 2014-11-18 15:52 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\uTorrent
2014-11-18 13:11 - 2014-11-18 13:11 - 00000000 __SHD () C:\Users\Admin\AppData\Local\EmieUserList
2014-11-18 13:11 - 2014-11-18 13:11 - 00000000 __SHD () C:\Users\Admin\AppData\Local\EmieSiteList
2014-11-18 13:11 - 2014-11-18 13:11 - 00000000 __SHD () C:\Users\Admin\AppData\Local\EmieBrowserModeList
2014-11-14 12:48 - 2014-11-26 22:13 - 00000000 ____D () C:\Users\Admin\Desktop\Tor Browser
2014-11-13 10:42 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-13 10:42 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-13 10:42 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-13 10:42 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 10:42 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-13 10:42 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-13 10:42 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-13 10:42 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-13 10:42 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-13 10:42 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-13 10:42 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 10:42 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-13 10:42 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-13 10:42 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-13 10:42 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 10:42 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-13 10:42 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-13 10:42 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-13 10:42 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-13 10:42 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-13 10:42 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-13 10:42 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-13 10:42 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-13 10:42 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-13 10:42 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-13 10:42 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-13 10:42 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-13 10:42 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-13 10:42 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-13 10:42 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-13 10:42 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-13 10:42 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-13 10:42 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-13 10:42 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-13 10:42 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-13 10:42 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-13 10:42 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-13 10:42 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-13 10:42 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-13 10:42 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-13 10:42 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-13 10:42 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-13 10:42 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-13 10:42 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-13 10:42 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-13 10:42 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-13 10:42 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-13 10:41 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-13 10:41 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-13 10:41 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-13 10:41 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-13 10:41 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-13 10:41 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-13 10:41 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-13 10:41 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-13 10:41 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-13 10:41 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-13 10:41 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-13 10:41 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-13 10:41 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-13 10:41 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-13 10:41 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-13 10:41 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-13 10:41 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-13 10:41 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-13 10:41 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-13 10:41 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-13 10:41 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-13 10:41 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-13 10:41 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-13 10:41 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-13 10:41 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-13 10:41 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-13 10:41 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-13 10:41 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-13 10:41 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-13 10:41 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-13 10:41 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-13 10:41 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-13 10:40 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-13 10:40 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-13 10:40 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-13 10:40 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-13 10:40 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-13 10:40 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-13 10:40 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-13 10:40 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-13 10:40 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-13 10:40 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-13 10:40 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-13 10:40 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-13 10:40 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-13 10:40 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-13 10:40 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-13 10:40 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-13 10:40 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-11 22:04 - 2014-11-11 22:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Unity
2014-11-11 21:50 - 2014-11-11 21:50 - 00000000 ____D () C:\Users\Admin\AppData\Local\Unity
2014-11-11 14:50 - 2014-11-11 14:50 - 00000881 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2014-11-11 14:50 - 2014-11-11 14:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-11-11 14:50 - 2014-11-11 14:50 - 00000000 ____D () C:\Program Files\CPUID
2014-11-11 14:47 - 2014-11-11 20:57 - 00000000 ____D () C:\Users\Admin\.VirtualBox
2014-11-11 14:47 - 2014-11-11 14:47 - 00000000 ____D () C:\Users\Admin\VirtualBox VMs
2014-11-11 14:46 - 2014-11-11 14:46 - 00001088 _____ () C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2014-11-11 14:46 - 2014-11-11 14:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2014-11-11 14:46 - 2014-11-11 14:46 - 00000000 ____D () C:\Program Files\Oracle
2014-11-11 14:46 - 2014-10-11 13:29 - 00917112 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2014-11-11 14:46 - 2014-10-11 13:27 - 00129168 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2014-11-11 14:32 - 2010-11-20 14:24 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\Utilman1.exe
2014-11-07 22:39 - 2009-03-18 17:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2014-11-07 22:38 - 2014-11-07 22:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-11-07 22:38 - 2014-11-07 22:38 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-11-07 20:21 - 2014-11-07 20:22 - 00000000 ____D () C:\Users\Admin\Documents\TI-Nspire
2014-11-07 20:21 - 2014-11-07 20:21 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\TI-Nspire
2014-11-07 20:15 - 2014-11-07 20:15 - 00002232 _____ () C:\Windows\SysWOW64\INSTALL.LOG
2014-11-07 20:15 - 2014-11-07 20:15 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Texas Instruments
2014-11-07 20:15 - 2014-11-07 20:15 - 00000000 ____D () C:\ProgramData\SafeNet Sentinel
2014-11-07 20:15 - 2012-11-26 11:35 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-11-07 20:14 - 2014-11-07 20:14 - 00000000 ____D () C:\ProgramData\TI-Nspire
2014-11-07 20:14 - 2014-11-07 20:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TI Tools
2014-11-07 20:14 - 2014-11-07 20:14 - 00000000 ____D () C:\Program Files (x86)\TI Education
2014-11-07 14:40 - 2014-11-07 14:42 - 00000000 ____D () C:\Users\Admin\Desktop\Neuer Ordner
2014-11-07 14:15 - 2014-11-07 14:15 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\NuGet
2014-11-07 14:08 - 2014-11-07 14:16 - 00000000 ____D () C:\Users\Admin\Documents\Visual Studio 2013
2014-11-07 14:07 - 2014-11-07 14:08 - 00000000 ____D () C:\Program Files (x86)\Windows Kits
2014-11-07 14:07 - 2014-11-07 14:07 - 00000000 ____D () C:\Windows\SysWOW64\1033
2014-11-07 14:07 - 2014-11-07 14:07 - 00000000 ____D () C:\Windows\SysWOW64\1031
2014-11-07 14:07 - 2014-11-07 14:07 - 00000000 ____D () C:\Windows\system32\1033
2014-11-07 14:07 - 2014-11-07 14:07 - 00000000 ____D () C:\Windows\system32\1031
2014-11-07 14:05 - 2014-11-07 14:07 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-11-07 14:05 - 2014-11-07 14:07 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-11-07 14:05 - 2014-11-07 14:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-11-07 14:02 - 2014-11-07 14:04 - 00000000 ____D () C:\Program Files (x86)\Microsoft ASP.NET
2014-11-07 14:02 - 2014-11-07 14:02 - 00000000 ____D () C:\ProgramData\NuGet
2014-11-07 14:02 - 2014-11-07 14:02 - 00000000 ____D () C:\Program Files (x86)\NuGet
2014-11-07 14:01 - 2014-11-07 14:02 - 00000000 ____D () C:\Program Files\IIS Express
2014-11-07 14:01 - 2014-11-07 14:02 - 00000000 ____D () C:\Program Files (x86)\IIS Express
2014-11-07 14:01 - 2014-11-07 14:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Web Tools
2014-11-07 14:00 - 2014-11-07 14:00 - 00000000 ____D () C:\Program Files\IIS
2014-11-07 14:00 - 2014-11-07 14:00 - 00000000 ____D () C:\Program Files (x86)\IIS
2014-11-07 13:58 - 2014-11-07 13:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Help Viewer
2014-11-07 13:52 - 2014-11-07 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2013
2014-11-07 13:52 - 2014-11-07 13:52 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-11-07 13:52 - 2014-11-07 13:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-11-07 13:51 - 2014-11-07 14:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 12.0
2014-11-06 22:15 - 2014-11-07 14:35 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Apple Computer
2014-11-06 22:15 - 2014-11-06 22:15 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-11-06 22:15 - 2014-11-06 22:15 - 00000000 ____D () C:\Users\Admin\AppData\Local\Apple Computer
2014-11-06 22:15 - 2014-11-06 22:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-11-06 22:14 - 2012-10-03 16:14 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-11-06 22:13 - 2014-11-06 22:14 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-11-06 22:13 - 2014-11-06 22:14 - 00000000 ____D () C:\Program Files\iTunes
2014-11-06 22:13 - 2014-11-06 22:14 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-11-06 22:13 - 2014-11-06 22:13 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-11-06 22:13 - 2014-11-06 22:13 - 00000000 ____D () C:\Program Files\iPod
2014-11-06 22:11 - 2014-11-06 22:11 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-11-06 22:11 - 2014-11-06 22:11 - 00000000 ____D () C:\Users\Admin\AppData\Local\Apple
2014-11-06 22:11 - 2014-11-06 22:11 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-11-06 22:10 - 2014-11-06 22:13 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-11-06 22:10 - 2014-11-06 22:10 - 00000000 ____D () C:\Program Files\Bonjour
2014-11-06 22:10 - 2014-11-06 22:10 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-11-06 22:09 - 2014-11-06 22:11 - 00000000 ____D () C:\ProgramData\Apple
2014-11-06 14:57 - 2014-11-06 14:56 - 00174112 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-06 15:34 - 2014-10-14 17:22 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-06 15:28 - 2014-10-14 16:32 - 01094086 _____ () C:\Windows\WindowsUpdate.log
2014-12-06 15:08 - 2014-10-14 17:22 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-06 15:08 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-06 15:08 - 2009-07-14 05:51 - 00168228 _____ () C:\Windows\setupact.log
2014-12-06 14:54 - 2014-10-15 02:23 - 00709156 _____ () C:\Windows\system32\perfh007.dat
2014-12-06 14:54 - 2014-10-15 02:23 - 00153592 _____ () C:\Windows\system32\perfc007.dat
2014-12-06 14:54 - 2009-07-14 06:13 - 01647128 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-06 14:08 - 2014-10-14 19:27 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-06 09:49 - 2009-07-14 05:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-06 09:49 - 2009-07-14 05:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-05 22:36 - 2014-10-14 17:58 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-12-05 22:34 - 2009-11-17 20:17 - 00234812 _____ () C:\Windows\PFRO.log
2014-12-05 17:58 - 2014-10-14 18:03 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-05 14:52 - 2014-10-14 18:02 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-12-05 14:52 - 2014-10-14 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-12-05 14:52 - 2014-10-14 18:02 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-12-04 17:11 - 2014-10-15 21:31 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Skype
2014-12-03 21:00 - 2014-10-14 17:23 - 00002187 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-03 20:57 - 2014-10-14 17:58 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-12-03 20:42 - 2014-10-14 17:58 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-12-03 20:42 - 2014-10-14 17:58 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-12-03 20:42 - 2014-10-14 17:58 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-12-03 20:42 - 2014-10-14 17:58 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-12-03 20:42 - 2014-10-14 17:58 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-12-03 20:42 - 2014-10-14 17:58 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-12-03 20:42 - 2014-10-14 17:58 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-12-03 20:19 - 2014-10-14 18:14 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-12-03 19:26 - 2014-10-14 18:34 - 00000000 ____D () C:\Users\Admin\Desktop\games
2014-12-03 14:55 - 2014-10-14 17:46 - 00000000 ____D () C:\Users\Admin\Desktop\atakan
2014-12-01 20:57 - 2014-10-14 17:35 - 00000000 ____D () C:\Windows\Minidump
2014-12-01 20:57 - 2014-10-14 17:34 - 359399082 _____ () C:\Windows\MEMORY.DMP
2014-12-01 20:46 - 2014-10-14 17:30 - 01672858 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-12-01 20:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Registration
2014-11-30 20:00 - 2014-10-14 17:21 - 00000000 ____D () C:\Users\Admin\AppData\Local\Deployment
2014-11-30 19:43 - 2014-10-14 19:22 - 00000000 ____D () C:\Program Files\WinRAR
2014-11-30 11:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-29 00:22 - 2014-10-15 21:55 - 00000000 ____D () C:\Users\Admin\AppData\Local\LogMeIn Hamachi
2014-11-28 13:32 - 2014-10-14 17:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-27 18:54 - 2014-10-14 18:00 - 00000000 ____D () C:\Users\Admin\Desktop\Artagan
2014-11-24 18:52 - 2014-10-14 16:43 - 00000000 ____D () C:\Users\Admin
2014-11-24 14:04 - 2014-10-16 12:07 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-22 18:26 - 2009-07-14 06:08 - 00032530 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-21 20:46 - 2014-10-16 19:22 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-21 20:46 - 2014-10-15 15:02 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-11-21 20:46 - 2014-10-15 15:01 - 00000000 ____D () C:\ProgramData\DivX
2014-11-21 20:45 - 2014-10-15 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-11-21 13:02 - 2014-10-14 19:29 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-11-21 12:40 - 2014-10-14 19:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-21 12:40 - 2014-10-14 19:28 - 00000000 ____D () C:\Program Files\Java
2014-11-21 06:14 - 2014-10-14 18:02 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-21 06:14 - 2014-10-14 18:02 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-21 06:14 - 2014-10-14 18:02 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-20 15:27 - 2014-10-16 19:22 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-18 10:30 - 2014-10-14 19:27 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-18 10:30 - 2014-10-14 19:27 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-18 10:30 - 2014-10-14 19:27 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-18 10:20 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-11-17 18:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-15 21:29 - 2014-10-14 17:22 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-15 21:29 - 2014-10-14 17:22 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-13 14:55 - 2009-07-14 05:45 - 00454208 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-13 10:49 - 2009-11-17 20:03 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-13 10:48 - 2014-10-14 17:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-13 10:44 - 2014-10-14 17:45 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-09 11:38 - 2014-10-25 14:24 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit
2014-11-08 10:01 - 2014-10-14 16:44 - 00090848 _____ () C:\Users\Admin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-07 22:38 - 2014-10-15 21:54 - 00000938 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-11-07 14:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-11-07 13:55 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-11-06 22:14 - 2014-10-25 20:58 - 00000000 ____D () C:\Program Files (x86)\Sid Meiers Civilization Beyond Earth
2014-11-06 21:07 - 2014-10-29 17:17 - 00001632 _____ () C:\Windows\Sandboxie.ini
Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\130617705577813309.exe
C:\Users\Admin\AppData\Local\Temp\13061770590444189190.exe
C:\Users\Admin\AppData\Local\Temp\ochelper.exe
C:\Users\Admin\AppData\Local\Temp\proxy_vole1367218456751671230.dll
C:\Users\Admin\AppData\Local\Temp\proxy_vole4351925504427052935.dll
C:\Users\Admin\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Admin\AppData\Local\Temp\utt7BB1.tmp.exe
C:\Users\Admin\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Admin\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Admin\AppData\Local\Temp\{68422D55-3C7A-4608-9CBA-084CDEEAFCC2}.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-05 03:22
==================== End Of Log ============================
Geändert von hollyman (06.12.2014 um 16:03 Uhr) |
|
08.12.2014, 13:25
| #2 |
 | PC sehr langsam nach neu aufsetzen Anleitung / Hilfe Hi,
__________________1. checke mal die Festplatte: Zustand der Festplatte herausfinden - so gehts - Anleitungen 2. Dateisystem prüfen: Fehler im Dateisystem beheben - so geht's - Anleitungen 3. Systemdateien prüfen: http://www.trojaner-board.de/72874-s...eparieren.html Berichte ob Fehler gefunde wurden.
__________________ |
|
08.12.2014, 19:36
| #3 |
| | PC sehr langsam nach neu aufsetzen Details datei war zu groß hab das so gemacht
__________________www.mediafire.com/download/73hgx6mtdivwdes/CbsPersist_20141120144125.log |
|
08.12.2014, 23:08
| #4 |
| | Lösung: PC sehr langsam nach neu aufsetzen Also gab es Fehler? Rechner neustarten und SFC nochmal laufen lassen.
__________________ - Seven Das TB unterstützen |
|
09.12.2014, 13:19
| #5 |
| | Wie PC sehr langsam nach neu aufsetzen beim scann war keine fehlermeldung trotzdem ist mein pc noch langsam |
|
09.12.2014, 13:34
| #6 |
| | Wo PC sehr langsam nach neu aufsetzen Lösung! Du hast Avast und Panda gelichzeitig installiert und wunderst dich? Deinstalliere beides und schaue nach, wie das System läuft.
__________________ --> PC sehr langsam nach neu aufsetzen |
|
09.12.2014, 14:17
| #7 |
| | PC sehr langsam nach neu aufsetzen es wurde etwas besser aber langsam ist er noch trotzdem |
|
09.12.2014, 14:32
| #8 |
| | PC sehr langsam nach neu aufsetzen Bitte poste mal den Zustand deiner Laufwerke: Zustand der Festplatte herausfinden - so gehts - Anleitungen (screenshots reichen) Danach Dateisystem-Check: Fehler im Dateisystem beheben - so geht's - Anleitungen
__________________ - Seven Das TB unterstützen |
|
09.12.2014, 20:59
| #9 |
| | PC sehr langsam nach neu aufsetzenCode:
ATTFilter Protokollname: Application
Quelle: Windows Error Reporting
Datum: 09.12.2014 15:48:58
Ereignis-ID: 1001
Aufgabenkategorie:Keine
Ebene: Informationen
Schlüsselwörter:Klassisch
Benutzer: Nicht zutreffend
Computer: Admin-PC
Beschreibung:
Fehlerbucket , Typ 0
Ereignisname: AppHangXProcB1
Antwort: Nicht verfügbar
CAB-Datei-ID: 0
Problemsignatur:
P1: mmc.exe
P2: 6.1.7600.16385
P3: 4a5bc808
P4: 61d8
P5: 388
P6: svchost.exe:eventlog
P7: 0.0.0.0
P8:
P9:
P10:
Angefügte Dateien:
C:\Users\Admin\AppData\Local\Temp\WER6690.tmp.appcompat.txt
C:\Users\Admin\AppData\Local\Temp\WER6B52.tmp.WERInternalMetadata.xml
Diese Dateien befinden sich möglicherweise hier:
C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppHang_mmc.exe_257763548573a1e4c62ff6f805d324de9f170_10156cb8
Analysesymbol:
Es wird erneut nach einer Lösung gesucht: 0
Berichts-ID: 75f25329-7fb2-11e4-b902-90fba685001d
Berichtstatus: 1
Ereignis-XML:
<Event xmlns="hxxp://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Windows Error Reporting" />
<EventID Qualifiers="0">1001</EventID>
<Level>4</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2014-12-09T14:48:58.000000000Z" />
<EventRecordID>10090</EventRecordID>
<Channel>Application</Channel>
<Computer>Admin-PC</Computer>
<Security />
</System>
<EventData>
<Data>
</Data>
<Data>0</Data>
<Data>AppHangXProcB1</Data>
<Data>Nicht verfügbar</Data>
<Data>0</Data>
<Data>mmc.exe</Data>
<Data>6.1.7600.16385</Data>
<Data>4a5bc808</Data>
<Data>61d8</Data>
<Data>388</Data>
<Data>svchost.exe:eventlog</Data>
<Data>0.0.0.0</Data>
<Data>
</Data>
<Data>
</Data>
<Data>
</Data>
<Data>
C:\Users\Admin\AppData\Local\Temp\WER6690.tmp.appcompat.txt
C:\Users\Admin\AppData\Local\Temp\WER6B52.tmp.WERInternalMetadata.xml</Data>
<Data>C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppHang_mmc.exe_257763548573a1e4c62ff6f805d324de9f170_10156cb8</Data>
<Data>
</Data>
<Data>0</Data>
<Data>75f25329-7fb2-11e4-b902-90fba685001d</Data>
<Data>1</Data>
</EventData>
</Event>
|
|
09.12.2014, 21:24
| #10 |
| | PC sehr langsam nach neu aufsetzen [gelöst] Hast du noch Screenshots von den Laufwerken mit CrystalDiskInfo?
__________________ - Seven Das TB unterstützen |
|
10.12.2014, 18:12
| #11 |
| | PC sehr langsam nach neu aufsetzen [gelöst]1.PNG - directupload.net directupload.net/file/d/3832/sbkw62m2_png.htm |
|
| Themen zu PC sehr langsam nach neu aufsetzen |
| .com, 100%, adware, antivirus, computer, converter, cpu-z, desktop, error, failed, fehler, firefox, flash player, helper, installation, langsam, newtab, packard bell, programm, psuamain.exe, robot, rundll, scan, security, server, services.exe, software, super, svchost.exe, teamspeak, teredo, utilman, vcredist, virtualbox, windows |
Linear-Darstellung
