Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Überall Ads in jedem Browser

Überall Ads in jedem Browser


Plagegeister aller Art und deren Bekämpfung: Überall Ads in jedem Browser

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 23.12.2014, 18:07   #1
Xenomus
 
Überall Ads in jedem Browser - Standard

Überall Ads in jedem Browser


Erstmal einen guten Abend an Alle...
Ich habe heute auf einen neuen Rechner Windows 8.1 installiert und habe mir erstmal google chrome heruntergeladen und dazu noch ein Antivirenprogramm (Norton 360).
Nach einiger Zeit öffneten sich von selbst Fenster im Internet Explorer mit überall ads und außerdem landete ich mit jedem Klick auf einer anderen Website.
Das war dann auch bei Google Chrome so.Überall Ads und jedes zweite Wort will mich zu einer anderen Seite leiten.
Das Antivirenprogramm hilft auch nicht weiter es findet zwar kleinere Sachen ,die jedoch mein Problem nicht lösen.

Alt 23.12.2014, 18:18   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Überall Ads in jedem Browser - Standard

Überall Ads in jedem Browser


Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 23.12.2014, 18:36   #3
Xenomus
 
Überall Ads in jedem Browser - Standard

Überall Ads in jedem Browser


Hier die FRST.txt:


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-12-2014
Ran by JP (administrator) on JPS_PC on 23-12-2014 17:46:42
Running from C:\Users\JP\Downloads
Loaded Profile: JP (Available profiles: JP)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ClickCaption_1.10.0.5\Service\ccsvc.exe
() C:\Users\JP\AppData\Local\ConvertAd\CASrv.exe
() C:\Users\JP\AppData\Roaming\VOPackage\VOsrv.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\n360.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\n360.exe
() C:\Users\JP\AppData\Local\gmsd_de_36\upgmsd_de_36.exe
() C:\Users\JP\AppData\Roaming\InetStat\inetstat.exe
(Spotify Ltd) C:\Users\JP\AppData\Roaming\Spotify\spotify.exe
(Spotify Ltd) C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
() C:\Program Files (x86)\gmsd_de_36\gmsd_de_36.exe
() C:\Program Files (x86)\gmsd_de_35\gmsd_de_35.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(TeamSpeak Systems GmbH) C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2014-12-08] (Raptr, Inc)
HKLM-x32\...\RunOnce: [upgmsd_de_36.exe] => C:\Users\JP\AppData\Local\gmsd_de_36\upgmsd_de_36.exe [3309736 2014-12-22] ()
HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware  (cleanup)] => C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe [54072 2014-11-21] (Malwarebytes Corporation)
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Run: [Spotify] => C:\Users\JP\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-23] (Spotify Ltd)
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Run: [Spotify Web Helper] => C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-23] (Spotify Ltd)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll => C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll File Not Found
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll => "C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll" File Not Found
AppInit_DLLs-x32:  C:/PROGRA~3/{E5E80~1/sira.dll => C:/PROGRA~3/{E5E80~1/sira.dll [634880 2014-12-23] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_cmi_14_52_ch&cd=2XzuyEtN2Y1L1QzuyByE0DyEtAyD0F0DyB0B0F0DtBtC0B0FtN0D0Tzu0StCtDzzyCtN1L2XzutAtFyCtFtCtDtFyBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDzzyBzztC0DzytBtGtAyEyDzztGtAtByDyEtGzzyCyD0CtGyEzy0CyB0EyC0FyB0F0FzzyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyD0AyB0FtCzz0EtGyC0AtAyDtGyEyCtA0EtG0AtD0D0BtGyE0EtCtDtC0CtCzzzztAyDyD2Q&cr=1726756385&ir=
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_cmi_14_52_ch&cd=2XzuyEtN2Y1L1QzuyByE0DyEtAyD0F0DyB0B0F0DtBtC0B0FtN0D0Tzu0StCtDzzyCtN1L2XzutAtFyCtFtCtDtFyBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDzzyBzztC0DzytBtGtAyEyDzztGtAtByDyEtGzzyCyD0CtGyEzy0CyB0EyC0FyB0F0FzzyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyD0AyB0FtCzz0EtGyC0AtAyDtGyEyCtA0EtG0AtD0D0BtGyE0EtCtDtC0CtCzzzztAyDyD2Q&cr=1726756385&ir=
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_cmi_14_52_ch&cd=2XzuyEtN2Y1L1QzuyByE0DyEtAyD0F0DyB0B0F0DtBtC0B0FtN0D0Tzu0StCtDzzyCtN1L2XzutAtFyCtFtCtDtFyBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDzzyBzztC0DzytBtGtAyEyDzztGtAtByDyEtGzzyCyD0CtGyEzy0CyB0EyC0FyB0F0FzzyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyD0AyB0FtCzz0EtGyC0AtAyDtGyEyCtA0EtG0AtD0D0BtGyE0EtCtDtC0CtCzzzztAyDyD2Q&cr=1726756385&ir=
SearchScopes: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001 -> {114DB5FA-0AFB-BB92-A75B-F44D3CE875CD} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3331617&octid=EB_ORIGINAL_CTID&ISID=MA1183600-D78B-4841-91A5-A6813E93D594&SearchSource=58&CUI=&UM=8&UP=SPADAD1B71-04F9-473D-B5B2-71D7E9A932D7&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=o0&geo=DE&ver=21&locale=de_DE&gct=kwd&qsrc=2869
SearchScopes: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: No Name -> {11111111-1111-1111-1111-110611171162} ->  No File
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: No Name -> {11111111-1111-1111-1111-110611171162} ->  No File
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2014-12-23]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn [2014-12-23]
FF HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Firefox\Extensions: [{8CCEB719-4CA9-0AE4-C5BB-BD8A47230050}] - C:\Program Files (x86)\ver7SpeedCheck\184.xpi

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3331617&octid=EB_ORIGINAL_CTID&ISID=MA1183600-D78B-4841-91A5-A6813E93D594&SearchSource=55&CUI=&UM=8&UP=SPADAD1B71-04F9-473D-B5B2-71D7E9A932D7&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3331617&octid=EB_ORIGINAL_CTID&ISID=MA1183600-D78B-4841-91A5-A6813E93D594&SearchSource=55&CUI=&UM=8&UP=SPADAD1B71-04F9-473D-B5B2-71D7E9A932D7&SSPV="
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-23]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-12-23]
CHR Extension: (YouTube) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-23]
CHR Extension: (Adblock Plus) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-12-23]
CHR Extension: (Google Search) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-23]
CHR Extension: (Google Wallet) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-23]
CHR Extension: (Gmail) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-23]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx [2014-12-23]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx [2014-12-23]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U4 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-23] (Avast Software)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [329104 2014-10-03] (Intel Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe [265040 2014-09-21] (Symantec Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-21] (Advanced Micro Devices)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20141209.001\BHDrvx64.sys [1587416 2014-12-09] (Symantec Corporation)
U0 bpkf; C:\Windows\System32\drivers\labrqht.sys [79064 2014-12-23] (Malwarebytes Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1506000.020\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-12-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-12-22] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20141222.001\IDSvia64.sys [637656 2014-12-22] (Symantec Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20141222.034\ENG64.SYS [129752 2014-12-22] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20141222.034\EX64.SYS [2137304 2014-12-22] (Symantec Corporation)
R1 SRTSP; C:\Windows\System32\Drivers\N360x64\1506000.020\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1506000.020\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1506000.020\SYMDS64.SYS [493656 2013-09-10] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1506000.020\SYMEFA64.SYS [1148120 2014-08-26] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1506000.020\SymELAM.sys [23568 2013-09-10] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-12-23] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1506000.020\SYMNETS.SYS [593112 2014-08-26] (Symantec Corporation)
U4 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-12-23] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-23 17:46 - 2014-12-23 17:47 - 00017834 _____ () C:\Users\JP\Downloads\FRST.txt
2014-12-23 17:46 - 2014-12-23 17:46 - 00000000 ____D () C:\FRST
2014-12-23 17:45 - 2014-12-23 17:45 - 02122240 _____ (Farbar) C:\Users\JP\Downloads\frst64.exe
2014-12-23 14:35 - 2014-12-23 14:35 - 00002271 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-23 14:35 - 2014-12-23 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-23 14:33 - 2014-12-23 17:38 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-23 14:33 - 2014-12-23 14:38 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-23 14:33 - 2014-12-23 14:33 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\labrqht.sys
2014-12-23 14:33 - 2014-12-23 14:33 - 00004088 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-23 14:33 - 2014-12-23 14:33 - 00003852 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-23 14:32 - 2014-12-23 14:33 - 00000000 ____D () C:\Users\JP\AppData\Local\Deployment
2014-12-23 14:32 - 2014-12-23 14:32 - 00000000 ____D () C:\Users\JP\AppData\Local\Apps\2.0
2014-12-23 14:21 - 2014-12-23 14:22 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-23 14:21 - 2014-12-23 14:21 - 00001118 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-12-23 14:21 - 2014-12-23 14:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-12-23 14:21 - 2014-12-23 14:21 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-23 14:21 - 2014-12-23 14:21 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-12-23 14:21 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-23 14:21 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-23 14:21 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-23 14:19 - 2014-12-23 14:20 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\JP\Downloads\mbam-setup-2.0.4.1028.exe
2014-12-23 14:10 - 2014-12-23 14:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BOSS
2014-12-23 14:10 - 2014-12-23 14:10 - 00000000 ____D () C:\BOSS
2014-12-23 14:09 - 2014-12-23 14:09 - 16369471 _____ (BOSS Development Team) C:\Users\JP\Downloads\BOSS.Installer (1).exe
2014-12-23 14:04 - 2014-12-23 14:04 - 16369471 _____ (BOSS Development Team) C:\Users\JP\Downloads\BOSS.Installer.exe
2014-12-23 13:59 - 2014-12-23 13:59 - 00000000 ____D () C:\Games
2014-12-23 13:55 - 2014-12-23 13:59 - 00000902 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-12-23 13:55 - 2014-12-23 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2014-12-23 13:55 - 2014-12-23 13:59 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2014-12-23 13:55 - 2014-12-23 13:55 - 00000000 ____D () C:\Users\JP\Documents\Nexus Mod Manager
2014-12-23 13:55 - 2014-12-23 13:55 - 00000000 ____D () C:\Users\JP\AppData\Local\Black_Tree_Gaming
2014-12-23 13:54 - 2014-12-23 13:55 - 04282672 _____ (Black Tree Gaming ) C:\Users\JP\Downloads\Nexus Mod Manager-0.52.3.exe
2014-12-23 13:48 - 2014-12-23 13:48 - 00026804 _____ () C:\Users\JP\Downloads\Killable Children - BOSS Compatible-774-2-2.zip
2014-12-23 13:40 - 2014-12-23 13:40 - 00313875 _____ () C:\Users\JP\Downloads\skse_1_07_01_installer.exe
2014-12-23 13:40 - 2014-12-23 13:40 - 00002325 _____ () C:\Users\JP\Desktop\Skyrim (SKSE).lnk
2014-12-23 13:27 - 2014-12-23 13:35 - 202853696 _____ () C:\Users\JP\Downloads\kav15.0.1.415de_6845.exe
2014-12-23 13:15 - 2014-12-23 13:15 - 00000000 ____D () C:\Users\JP\AppData\Local\PAYDAY 2
2014-12-23 13:12 - 2014-12-23 13:12 - 00000000 ____D () C:\Users\JP\Documents\Klei
2014-12-23 13:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-12-23 10:35 - 2014-12-23 10:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-12-23 10:31 - 2014-12-23 12:33 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Raptr
2014-12-23 10:26 - 2014-12-23 10:26 - 00003098 _____ () C:\Windows\System32\Tasks\{C08E226B-A3B4-41DE-A724-12729752F995}
2014-12-23 10:20 - 2014-12-23 10:20 - 00000000 ____D () C:\Users\JP\AppData\Roaming\LolClient
2014-12-23 09:33 - 2014-12-23 09:38 - 302277752 _____ (AMD Inc.) C:\Users\JP\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win8.1-64bit (1).exe
2014-12-23 09:28 - 2014-12-23 09:28 - 00000000 ____D () C:\ProgramData\ATI
2014-12-23 09:19 - 2014-12-23 09:19 - 00000221 _____ () C:\Users\JP\Desktop\The Elder Scrolls V Skyrim.url
2014-12-23 09:08 - 2014-12-23 09:08 - 00003188 _____ () C:\Windows\System32\Tasks\{ACE5A6CD-58CE-415D-9FD9-755402F11BAB}
2014-12-23 08:55 - 2014-12-23 09:01 - 302277752 _____ (AMD Inc.) C:\Users\JP\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win8.1-64bit.exe
2014-12-23 08:50 - 2014-12-23 10:35 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-12-23 08:50 - 2014-12-23 08:50 - 00000000 ____D () C:\Users\JP\AppData\Roaming\library_dir
2014-12-23 08:50 - 2014-12-23 08:50 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-12-23 08:49 - 2014-12-23 08:49 - 00053736 _____ () C:\Windows\SysWOW64\CCCInstall_201412230849544763.log
2014-12-23 08:49 - 2014-12-23 08:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-12-23 08:49 - 2014-12-23 08:49 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-12-23 08:48 - 2014-12-23 08:48 - 00032712 _____ () C:\Windows\SysWOW64\CCCInstall_201412230848243047.log
2014-12-23 08:39 - 2014-12-23 08:40 - 05451464 _____ (Advanced Micro Devices, Inc.) C:\Users\JP\Downloads\autodetectutility.exe
2014-12-23 08:32 - 2014-12-23 08:50 - 00000000 ____D () C:\ProgramData\AMD
2014-12-23 08:30 - 2014-12-23 08:49 - 00000000 ____D () C:\Windows\LastGood
2014-12-23 08:30 - 2013-05-02 17:12 - 00046705 _____ () C:\Windows\atiogl.xml
2014-12-23 08:28 - 2013-04-24 17:31 - 00094208 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW86.sys
2014-12-23 08:28 - 2012-09-23 03:17 - 00021160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmafd.sys
2014-12-23 08:21 - 2014-12-23 08:21 - 00007605 _____ () C:\Users\JP\AppData\Local\Resmon.ResmonCfg
2014-12-23 08:15 - 2014-12-23 08:15 - 00001625 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2014-12-23 08:15 - 2014-12-23 08:15 - 00000000 ____D () C:\Riot Games
2014-12-23 08:15 - 2014-12-23 08:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-12-23 08:15 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-12-23 08:15 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-12-23 08:15 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-12-23 08:15 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-12-23 08:15 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Program Files\MSBuild
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-12-23 08:12 - 2014-12-23 01:20 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Riot Games
2014-12-23 08:10 - 2014-12-23 08:10 - 00000222 _____ () C:\Users\JP\Desktop\PAYDAY 2.url
2014-12-23 08:07 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-12-23 08:07 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-23 08:07 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-12-23 08:07 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2014-12-23 08:07 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-12-23 08:07 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-12-23 08:06 - 2014-12-23 08:08 - 30668968 _____ (Riot Games) C:\Users\JP\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2014-12-23 08:06 - 2014-12-23 08:06 - 00000000 _____ () C:\Users\JP\Downloads\adobe_flash_setup.exe
2014-12-23 08:04 - 2014-12-23 14:10 - 00000000 ____D () C:\Users\JP\AppData\Local\Skyrim
2014-12-23 08:03 - 2014-12-23 13:14 - 00044693 _____ () C:\Windows\DirectX.log
2014-12-23 08:03 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-12-23 08:03 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-12-23 08:03 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-12-23 08:03 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-12-23 08:03 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-12-23 08:03 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-12-23 08:03 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-12-23 08:03 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-12-23 08:03 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-12-23 08:03 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-12-23 08:03 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-12-23 08:03 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-12-23 08:03 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-12-23 08:03 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-12-23 08:03 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-12-23 08:03 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-12-23 08:03 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-12-23 08:03 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-12-23 08:03 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-12-23 08:03 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-12-23 08:03 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-12-23 08:03 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-12-23 08:03 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-12-23 08:03 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-12-23 08:03 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-12-23 08:03 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-12-23 08:03 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-12-23 08:03 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-12-23 08:03 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-12-23 08:03 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-12-23 08:03 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-12-23 08:03 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-12-23 08:03 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-12-23 08:03 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-12-23 08:03 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-12-23 08:03 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-12-23 08:03 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-12-23 08:03 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-12-23 08:03 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-12-23 08:03 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-12-23 08:03 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-12-23 08:03 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-12-23 08:03 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-12-23 08:03 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-12-23 08:03 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-12-23 08:03 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-12-23 08:03 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-12-23 08:03 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-12-23 08:03 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-12-23 08:03 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-12-23 08:03 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-12-23 08:03 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-12-23 08:03 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-12-23 08:03 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-12-23 08:03 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-12-23 08:03 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-12-23 08:03 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-12-23 08:03 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-12-23 08:03 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-12-23 08:03 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-12-23 08:03 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-12-23 08:03 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-12-23 08:03 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-12-23 08:03 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-12-23 08:03 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-12-23 08:03 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-12-23 08:03 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-12-23 08:03 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-12-23 08:03 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-12-23 08:03 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-12-23 08:03 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-12-23 08:03 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-12-23 08:03 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-12-23 08:03 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-12-23 08:03 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-12-23 08:03 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-12-23 08:03 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-12-23 08:03 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-12-23 08:03 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-12-23 08:03 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-12-23 08:03 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-12-23 08:03 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-12-23 08:03 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-12-23 08:03 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-12-23 08:03 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-12-23 08:03 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-12-23 08:03 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-12-23 08:03 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-12-23 08:03 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-12-23 08:03 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-12-23 08:03 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-12-23 08:03 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-12-23 08:03 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-12-23 08:03 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-12-23 08:02 - 2014-12-23 14:22 - 00000000 ____D () C:\Users\JP\Documents\My Games
2014-12-23 08:02 - 2014-12-23 08:02 - 00000000 ____D () C:\Windows\System32\Tasks\Norton 360
2014-12-23 08:02 - 2014-12-23 08:02 - 00000000 ____D () C:\Windows\Sun
2014-12-23 08:02 - 2014-12-23 08:02 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-12-23 08:02 - 2014-12-23 08:02 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-12-23 08:00 - 2014-12-23 08:00 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-12-23 08:00 - 2014-12-23 08:00 - 00000000 ____D () C:\ProgramData\Sun
2014-12-23 08:00 - 2014-12-23 08:00 - 00000000 ____D () C:\ProgramData\Oracle
2014-12-23 08:00 - 2014-12-23 08:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-12-23 08:00 - 2014-12-23 08:00 - 00000000 ____D () C:\Program Files (x86)\Java
2014-12-23 07:59 - 2014-12-23 07:59 - 00000220 _____ () C:\Users\JP\Desktop\Sid Meier's Civilization V.url
2014-12-23 07:58 - 2014-12-23 07:58 - 00638888 _____ (Oracle Corporation) C:\Users\JP\Downloads\chromeinstall-8u25.exe
2014-12-23 07:57 - 2014-12-23 07:58 - 00000197 _____ () C:\Windows\system32\2014-12-23-06-57-09.025-AvastVBoxSVC.exe-2532.log
2014-12-23 07:57 - 2014-12-23 07:57 - 00000221 _____ () C:\Users\JP\Desktop\Mount & Blade Warband.url
2014-12-23 07:56 - 2014-12-23 07:56 - 00000118 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-12-23 07:55 - 2014-12-23 07:55 - 00000000 ____D () C:\HealthAlert
2014-12-23 07:53 - 2014-12-23 07:53 - 00000221 _____ () C:\Users\JP\Desktop\Mass Effect 2.url
2014-12-23 07:52 - 2014-12-23 07:52 - 00000222 _____ () C:\Users\JP\Desktop\How to Survive.url
2014-12-23 07:48 - 2014-12-23 07:48 - 00000222 _____ () C:\Users\JP\Desktop\Don't Starve.url
2014-12-23 07:47 - 2014-12-23 07:47 - 00000222 _____ () C:\Users\JP\Desktop\Don't Starve Together Beta.url
2014-12-23 07:46 - 2014-12-23 07:46 - 00000222 _____ () C:\Users\JP\Desktop\Borderlands The Pre-Sequel.url
2014-12-23 07:41 - 2014-12-23 07:56 - 00003206 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-12-23 07:41 - 2014-12-23 07:56 - 00002339 _____ () C:\Users\Public\Desktop\Norton 360.lnk
2014-12-23 07:41 - 2014-12-23 07:41 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2014-12-23 07:41 - 2014-12-23 07:41 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2014-12-23 07:41 - 2014-12-23 07:41 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-12-23 07:40 - 2014-12-23 07:56 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2014-12-23 07:40 - 2014-12-23 07:56 - 00000000 ____D () C:\Windows\system32\Drivers\N360x64
2014-12-23 07:40 - 2014-12-23 07:42 - 00000000 ____D () C:\ProgramData\Norton
2014-12-23 07:40 - 2014-12-23 07:40 - 00000000 __SHD () C:\Users\JP\AppData\Roaming\AnyProtectEx
2014-12-23 07:40 - 2014-12-23 07:40 - 00000000 ____D () C:\Program Files (x86)\Norton 360
2014-12-23 07:40 - 2014-12-23 02:58 - 00000000 ____D () C:\ProgramData\GkeUIrfaKbb
2014-12-23 07:36 - 2014-12-23 14:31 - 00000000 ____D () C:\Program Files (x86)\gmsd_de_35
2014-12-23 07:36 - 2014-12-23 14:31 - 00000000 ____D () C:\Program Files (x86)\ClickCaption_1.10.0.5
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta WW2
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta WW1
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta W2
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta W1
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta D1
2014-12-23 07:36 - 2014-12-23 07:36 - 00000000 ____D () C:\Users\JP\AppData\Roaming\sparta111
2014-12-23 07:36 - 2014-12-23 07:36 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparta
2014-12-23 07:36 - 2014-12-23 07:36 - 00000000 ____D () C:\Users\JP\AppData\Local\Sparta
2014-12-23 07:36 - 2014-12-23 07:36 - 00000000 ____D () C:\ProgramData\{E5E80D2B-B56A-DCAD-04EC-AC2FD46E7FA1}
2014-12-23 07:36 - 2014-12-23 01:53 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro 3.16
2014-12-23 07:34 - 2014-12-23 16:57 - 00000000 ____D () C:\Users\JP\AppData\Roaming\TS3Client
2014-12-23 07:34 - 2014-12-23 07:34 - 00001178 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-12-23 07:34 - 2014-12-23 07:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-12-23 07:34 - 2014-12-23 07:34 - 00000000 ____D () C:\Program Files (x86)\TeamSpeak 3 Client
2014-12-23 07:32 - 2014-12-23 07:33 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Users\JP\Downloads\TeamSpeak3-Client-win32-3.0.16.exe
2014-12-23 07:32 - 2014-12-23 07:32 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-23 07:31 - 2014-12-23 14:36 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-12-23 07:31 - 2014-12-23 07:31 - 00000979 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-12-23 07:31 - 2014-12-23 07:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-12-23 07:31 - 2014-12-23 07:31 - 00000000 ____D () C:\Program Files\Intel
2014-12-23 07:31 - 2014-12-23 01:22 - 00000000 ____D () C:\Intel
2014-12-23 07:30 - 2014-12-23 07:58 - 00003232 _____ () C:\Windows\System32\Tasks\Super Optimizer Schedule
2014-12-23 07:30 - 2014-12-23 07:30 - 01142392 _____ () C:\Users\JP\Downloads\SteamSetup.exe
2014-12-23 07:28 - 2014-12-23 14:31 - 00000000 ____D () C:\Users\JP\AppData\Local\ConvertAd
2014-12-23 07:28 - 2014-12-23 08:49 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-12-23 07:28 - 2014-12-23 08:48 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-12-23 07:28 - 2014-12-23 07:28 - 00060817 _____ () C:\Windows\SysWOW64\CCCInstall_201412230728567491.log
2014-12-23 07:28 - 2014-12-23 07:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-23 07:27 - 2014-12-23 10:16 - 00000000 ____D () C:\Program Files\AMD
2014-12-23 07:27 - 2014-12-23 09:02 - 00000000 ____D () C:\AMD
2014-12-23 07:27 - 2014-12-23 07:27 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-12-23 07:27 - 2014-12-23 07:27 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-12-23 07:26 - 2014-12-23 14:53 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2315855678-3498703936-2140777652-1001
2014-12-23 07:26 - 2014-12-23 14:35 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-23 07:26 - 2014-12-23 07:26 - 00004004 _____ () C:\Windows\System32\Tasks\LaunchSignup
2014-12-23 07:26 - 2014-12-23 07:26 - 00000000 ____D () C:\Users\JP\AppData\Local\Google
2014-12-23 07:25 - 2014-12-23 14:31 - 00000000 ____D () C:\Users\JP\AppData\Roaming\VOPackage
2014-12-23 07:25 - 2014-12-23 08:30 - 00000000 ____D () C:\Program Files (x86)\Super Optimizer
2014-12-23 07:24 - 2014-12-23 16:30 - 00001686 _____ () C:\Windows\Tasks\INRNTOV.job
2014-12-23 07:24 - 2014-12-23 14:32 - 00000000 ____D () C:\Users\JP\AppData\Local\gmsd_de_36
2014-12-23 07:24 - 2014-12-23 14:31 - 00000000 ____D () C:\Program Files (x86)\gmsd_de_36
2014-12-23 07:24 - 2014-12-23 14:31 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-12-23 07:24 - 2014-12-23 07:24 - 00004680 _____ () C:\Windows\System32\Tasks\INRNTOV
2014-12-23 07:24 - 2014-12-23 07:24 - 00000000 ____D () C:\Users\JP\AppData\Local\globalUpdate
2014-12-23 07:23 - 2014-12-23 13:31 - 00000000 ____D () C:\Users\JP\AppData\Roaming\InetStat
2014-12-23 07:23 - 2014-12-23 07:23 - 00002150 _____ () C:\Windows\patsearch.bin
2014-12-23 07:23 - 2014-12-23 07:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstrNewH_01009.Wdf
2014-12-23 07:22 - 2014-12-23 07:22 - 00000000 __SHD () C:\Users\JP\AppData\Local\EmieUserList
2014-12-23 07:22 - 2014-12-23 07:22 - 00000000 __SHD () C:\Users\JP\AppData\Local\EmieSiteList
2014-12-23 07:22 - 2014-12-23 07:22 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Macromedia
2014-12-23 07:00 - 2014-12-23 13:00 - 00003910 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{12938C3A-E1DB-4302-A437-300BFE19AA1E}
2014-12-23 06:59 - 2014-12-23 14:42 - 00372679 _____ () C:\Windows\WindowsUpdate.log
2014-12-23 06:59 - 2014-12-23 07:24 - 00001680 _____ () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-23 06:59 - 2014-12-23 07:00 - 00000000 ____D () C:\Users\JP\AppData\Local\Packages
2014-12-23 06:59 - 2014-12-23 06:59 - 00000020 ___SH () C:\Users\JP\ntuser.ini
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Vorlagen
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Startmenü
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Netzwerkumgebung
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Lokale Einstellungen
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Eigene Dateien
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Druckumgebung
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Documents\Eigene Musik
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Documents\Eigene Bilder
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\AppData\Local\Verlauf
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\AppData\Local\Anwendungsdaten
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Anwendungsdaten
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Adobe
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 ____D () C:\Users\JP\AppData\Local\VirtualStore
2014-12-23 06:59 - 2014-12-23 01:22 - 00000000 ____D () C:\Users\JP
2014-12-23 06:59 - 2014-03-18 11:31 - 00000000 ___RD () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-23 06:59 - 2014-03-18 11:31 - 00000000 ___RD () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-12-23 06:59 - 2014-03-18 11:11 - 00000369 _____ () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-12-23 06:59 - 2014-03-18 11:11 - 00000369 _____ () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-12-23 06:59 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-23 06:59 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Programme
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-12-23 06:55 - 2014-12-23 06:59 - 00000000 ____D () C:\Windows\Panther
2014-12-23 03:37 - 2014-12-23 03:37 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-12-23 03:32 - 2014-12-23 03:37 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Dropbox
2014-12-23 03:32 - 2014-12-23 03:36 - 00003268 _____ () C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-2315855678-3498703936-2140777652-1001
2014-12-23 03:24 - 2014-12-23 03:24 - 00000247 _____ () C:\Windows\system32\2014-12-23-02-24-32.009-aswFe.exe-6180.log
2014-12-23 03:22 - 2014-12-23 03:22 - 00000000 ____D () C:\Users\JP\AppData\Roaming\AVAST Software
2014-12-23 03:21 - 2014-12-23 03:24 - 00000247 _____ () C:\Windows\system32\2014-12-23-02-21-04.099-aswFe.exe-3100.log
2014-12-23 03:21 - 2014-12-23 03:21 - 00000197 _____ () C:\Windows\system32\2014-12-23-02-21-04.001-AvastVBoxSVC.exe-3952.log
2014-12-23 03:19 - 2014-12-23 03:19 - 00000000 ____D () C:\Windows\SysWOW64\vbox
2014-12-23 03:19 - 2014-12-23 03:19 - 00000000 ____D () C:\Windows\system32\vbox
2014-12-23 03:17 - 2014-12-23 03:17 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-12-23 03:11 - 2014-12-23 03:11 - 00000000 ____D () C:\Program Files\AVAST Software
2014-12-23 03:10 - 2014-12-23 03:11 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-12-23 03:10 - 2014-12-23 03:10 - 04978536 _____ (AVAST Software) C:\Users\JP\Downloads\avast_internet_security_setup_online.exe
2014-12-23 03:10 - 2014-12-23 03:10 - 00000056 _____ () C:\Windows\Reimage.ini
2014-12-23 03:10 - 2014-12-23 03:10 - 00000051 _____ () C:\Windows\efix.ini
2014-12-23 01:43 - 2014-12-23 01:43 - 00000000 ____D () C:\ProgramData\Riot Games
2014-12-23 01:42 - 2014-12-23 08:31 - 00000000 ____D () C:\Users\JP\AppData\Local\CrashDumps
2014-12-23 01:40 - 2014-12-23 01:40 - 00000000 ____D () C:\Program Files\ATI
2014-12-23 01:37 - 2014-12-23 01:37 - 00000047 _____ () C:\Users\JP\AppData\Roaming\WB.CFG
2014-12-23 01:34 - 2014-12-23 01:34 - 00001798 _____ () C:\Users\JP\Desktop\Spotify.lnk
2014-12-23 01:34 - 2014-12-23 01:34 - 00001784 _____ () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-12-23 01:34 - 2014-12-23 01:34 - 00000000 ____D () C:\Users\JP\AppData\Local\Spotify
2014-12-23 01:31 - 2014-12-23 14:47 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Spotify
2014-12-23 01:30 - 2014-12-23 01:31 - 00137888 _____ (Spotify Ltd) C:\Users\JP\Downloads\SpotifySetup.exe
2014-12-23 01:23 - 2014-12-23 01:23 - 00000000 ____D () C:\Users\JP\AppData\Roaming\ATI
2014-12-23 01:23 - 2014-12-23 01:23 - 00000000 ____D () C:\Users\JP\AppData\Local\ATI
2014-12-23 01:22 - 2014-12-23 01:22 - 00000425 _____ () C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-23 17:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-12-23 14:33 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\Offline Web Pages
2014-12-23 12:31 - 2013-08-22 15:46 - 00016189 _____ () C:\Windows\setupact.log
2014-12-23 08:14 - 2014-03-18 10:25 - 00764340 _____ () C:\Windows\system32\perfh007.dat
2014-12-23 08:14 - 2014-03-18 10:25 - 00159160 _____ () C:\Windows\system32\perfc007.dat
2014-12-23 08:14 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-12-23 08:13 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-12-23 08:13 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\MUI
2014-12-23 08:02 - 2014-03-18 11:03 - 01686150 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-23 07:56 - 2014-03-18 02:50 - 00010962 _____ () C:\Windows\PFRO.log
2014-12-23 07:56 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-12-23 07:56 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-23 07:55 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-12-23 07:32 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-12-23 07:28 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\restore
2014-12-23 07:25 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-12-23 07:24 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-12-23 06:58 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2014-12-23 06:58 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-12-23 06:58 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default
2014-12-23 06:57 - 2013-08-22 16:37 - 00002664 _____ () C:\Windows\DtcInstall.log
2014-12-23 06:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\Recovery
2014-12-23 06:55 - 2013-08-22 16:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2014-12-23 01:23 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-12-23 01:52

==================== End Of Log ============================
--- --- ---


Und hier die Addition.txt:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-12-2014
Ran by JP at 2014-12-23 17:47:37
Running from C:\Users\JP\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton 360 (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AV: Norton 360 (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Norton 360 (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton 360 (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Borderlands: The Pre-Sequel (HKLM-x32\...\Steam App 261640) (Version:  - 2K Australia)
BOSS (HKLM-x32\...\BOSS) (Version: 2.1.1 - BOSS Development Team)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dropbox (HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Dropbox) (Version: 3.0.4 - Dropbox, Inc.)
Fallout 3 - Game of the Year Edition (HKLM-x32\...\Steam App 22370) (Version:  - Bethesda Game Studios)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Obsidian Entertainment)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
How to Survive (HKLM-x32\...\Steam App 250400) (Version:  - )
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.52.3 - Black Tree Gaming)
Norton 360 (HKLM-x32\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sparta (HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Sparta) (Version:  - Sparta) <==== ATTENTION!
Spotify (HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{906B34E5-573C-445A-A5D3-40B6BF0A2EC4}) (Version: 6.0.21.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

==================== Restore Points  =========================

23-12-2014 01:41:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
23-12-2014 07:28:22 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0F7E4632-C199-4C95-848E-B5C136C1FAAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-23] (Google Inc.)
Task: {1866B482-5BA4-4C56-A2B3-B603F09658A4} - System32\Tasks\avastBCLRestartS-1-5-21-2315855678-3498703936-2140777652-1001 => Chrome.exe 
Task: {38A0CD7C-D108-4DB5-9E65-06DB4CD8E708} - System32\Tasks\INRNTOV => C:\Users\JP\AppData\Roaming\INRNTOV.exe <==== ATTENTION
Task: {46C912D3-1824-49BB-9D93-E07F54E903B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-23] (Google Inc.)
Task: {4F70EE3D-1B4A-4C4A-BA95-E52AC0F3A573} - System32\Tasks\{C08E226B-A3B4-41DE-A724-12729752F995} => pcalua.exe -a C:\AMD\WU-CCC2\ccc2_install\WULaunchApp.exe -c -uninstall
Task: {5D132EB6-BEFF-45F3-8CCF-B7617AB54612} - System32\Tasks\Super Optimizer Schedule => C:\Program Files (x86)\Super Optimizer\SupOptLauncher.exe
Task: {7911E5D3-D431-4333-8B5C-677001CEDDE1} - \Optimizer Pro Schedule No Task File <==== ATTENTION
Task: {7EE16B0F-543C-47B1-887A-712555AB36F9} - System32\Tasks\Sparta WW1 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: {93561D59-2BAC-4D41-956B-7E9A910D8335} - System32\Tasks\Sparta W2 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: {A18A3718-D340-47B1-9EE0-2EA24CFEFB0E} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION
Task: {B88B5602-8C87-4DCE-A1DD-35D809276864} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {BD87280C-17DD-4561-80B7-E304F8D3C145} - System32\Tasks\Sparta WW2 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: {C03967C6-A696-4ADD-8603-73B3938FF619} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {C0DDCBFA-4C15-45EC-8528-66E623E87F7B} - System32\Tasks\{ACE5A6CD-58CE-415D-9FD9-755402F11BAB} => pcalua.exe -a C:\Users\JP\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win8.1-64bit.exe -d C:\Users\JP\Downloads
Task: {C60E8CE9-8C4F-4651-BC26-04609CD01A7E} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {F376F405-4F7F-4CCF-A150-A4C57212C028} - System32\Tasks\Sparta W1 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: {F61A706B-6144-402F-8769-69FBFCB9D374} - System32\Tasks\Sparta D1 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\INRNTOV.job => C:\Users\JP\AppData\Roaming\INRNTOV.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-12-12 00:53 - 2014-12-12 00:53 - 00277584 _____ () C:\Program Files (x86)\ClickCaption_1.10.0.5\Service\ccsvc.exe
2014-12-23 07:28 - 2014-12-23 07:37 - 00143360 _____ () C:\Users\JP\AppData\Local\ConvertAd\CASrv.exe
2014-12-23 07:25 - 2014-12-23 07:25 - 00134144 _____ () C:\Users\JP\AppData\Roaming\VOPackage\VOsrv.exe
2014-12-23 07:24 - 2014-12-22 11:12 - 03309736 _____ () C:\Users\JP\AppData\Local\gmsd_de_36\upgmsd_de_36.exe
2014-12-23 07:23 - 2014-12-23 07:23 - 00705038 _____ () C:\Users\JP\AppData\Roaming\InetStat\inetstat.exe
2014-12-23 07:24 - 2014-12-22 11:12 - 03976872 _____ () C:\Program Files (x86)\gmsd_de_36\gmsd_de_36.exe
2014-12-23 07:36 - 2014-12-22 11:05 - 03978920 _____ () C:\Program Files (x86)\gmsd_de_35\gmsd_de_35.exe
2014-12-23 01:34 - 2014-12-23 01:34 - 00374840 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2014-12-23 03:18 - 2014-12-23 03:18 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14122201\algo.dll
2014-12-23 03:17 - 2014-12-23 03:17 - 04495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2014-12-23 01:34 - 2014-12-23 01:34 - 36966968 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\libcef.dll
2014-12-23 01:34 - 2014-12-23 01:34 - 00867896 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2014-02-28 14:33 - 2014-02-28 14:33 - 00148480 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\quazip.dll
2014-02-27 14:46 - 2014-02-27 14:46 - 00864768 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 14:45 - 2014-02-27 14:45 - 00677376 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-08-04 14:43 - 2014-08-04 14:43 - 00092104 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2014-08-04 14:43 - 2014-08-04 14:43 - 00105416 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-02-27 14:46 - 2014-02-27 14:46 - 00025600 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 14:46 - 2014-02-27 14:46 - 00242688 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-08-04 14:45 - 2014-08-04 14:45 - 00477128 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-08-04 14:45 - 2014-08-04 14:45 - 00484808 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-02-27 14:46 - 2014-02-27 14:46 - 00123904 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2014-12-23 01:34 - 2014-12-23 01:34 - 00886840 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\libglesv2.dll
2014-12-23 01:34 - 2014-12-23 01:34 - 00108600 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\libegl.dll
2014-12-23 07:36 - 2014-12-23 07:36 - 00634880 _____ () C:\ProgramData\{E5E80D2B-B56A-DCAD-04EC-AC2FD46E7FA1}\sira.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 14913352 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-2315855678-3498703936-2140777652-500 - Administrator - Disabled)
Gast (S-1-5-21-2315855678-3498703936-2140777652-501 - Limited - Disabled)
JP (S-1-5-21-2315855678-3498703936-2140777652-1001 - Administrator - Enabled) => C:\Users\JP

==================== Faulty Device Manager Devices =============

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: PCI-Kommunikationscontroller (einfach)
Description: PCI-Kommunikationscontroller (einfach)
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/23/2014 02:37:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 39.0.2171.95, Zeitstempel: 0x548243f3
Name des fehlerhaften Moduls: chrome.dll, Version: 39.0.2171.95, Zeitstempel: 0x54823ff4
Ausnahmecode: 0x80000003
Fehleroffset: 0x004fd39c
ID des fehlerhaften Prozesses: 0x1305c
Startzeit der fehlerhaften Anwendung: 0xchrome.exe0
Pfad der fehlerhaften Anwendung: chrome.exe1
Pfad des fehlerhaften Moduls: chrome.exe2
Berichtskennung: chrome.exe3
Vollständiger Name des fehlerhaften Pakets: chrome.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5

Error: (12/23/2014 02:33:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17037, Zeitstempel: 0x5312c26d
Name des fehlerhaften Moduls: combase.dll, Version: 6.3.9600.17031, Zeitstempel: 0x53087867
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000175964
ID des fehlerhaften Prozesses: 0x11304
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (12/23/2014 02:24:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17037, Zeitstempel: 0x5312c26d
Name des fehlerhaften Moduls: combase.dll, Version: 6.3.9600.17031, Zeitstempel: 0x53087867
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000175964
ID des fehlerhaften Prozesses: 0xf928
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (12/23/2014 02:07:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 39.0.2171.95, Zeitstempel: 0x548243f3
Name des fehlerhaften Moduls: chrome.dll, Version: 39.0.2171.95, Zeitstempel: 0x54823ff4
Ausnahmecode: 0x80000003
Fehleroffset: 0x004fd39c
ID des fehlerhaften Prozesses: 0x8e8c
Startzeit der fehlerhaften Anwendung: 0xchrome.exe0
Pfad der fehlerhaften Anwendung: chrome.exe1
Pfad des fehlerhaften Moduls: chrome.exe2
Berichtskennung: chrome.exe3
Vollständiger Name des fehlerhaften Pakets: chrome.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5

Error: (12/23/2014 10:25:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm InstallManagerApp.exe, Version 8.0.916.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 36c0

Startzeit: 01d01e921c9bb5ce

Endzeit: 4294967295

Anwendungspfad: C:\AMD\AMD-Catalyst-Omega-14.12-With-DOTNet45-Win8.1-64bit\Bin64\InstallManagerApp.exe

Berichts-ID: 9d3bc6e4-8a85-11e4-8251-74d435fd7bfd

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/23/2014 10:20:21 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm InstallManagerApp.exe, Version 8.0.916.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1100

Startzeit: 01d01e91153c4812

Endzeit: 4294967295

Anwendungspfad: C:\AMD\AMD-Catalyst-Omega-14.12-With-DOTNet45-Win8.1-64bit\Bin64\InstallManagerApp.exe

Berichts-ID: e280791f-8a84-11e4-8251-74d435fd7bfd

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/23/2014 10:14:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm InstallManagerApp.exe, Version 8.0.916.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 381c

Startzeit: 01d01e8d36779b8b

Endzeit: 4294967295

Anwendungspfad: C:\AMD\AMD-Catalyst-Omega-14.12-With-DOTNet45-Win8.1-64bit\Bin64\InstallManagerApp.exe

Berichts-ID: 10225a06-8a84-11e4-8251-74d435fd7bfd

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/23/2014 09:50:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.17037 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 3a28

Startzeit: 01d01e8a99a4ba85

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID: 1c9de397-8a7e-11e4-8251-74d435fd7bfd

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/23/2014 09:47:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm InstallManagerApp.exe, Version 8.0.916.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 2e7c

Startzeit: 01d01e84b9cf8e59

Endzeit: 4294967295

Anwendungspfad: C:\AMD\AMD-Catalyst-Omega-14.12-Without-DOTNet45-Win8.1-64bit\Bin64\InstallManagerApp.exe

Berichts-ID: 05137215-8a80-11e4-8251-74d435fd7bfd

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/23/2014 08:48:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17037, Zeitstempel: 0x5312c26d
Name des fehlerhaften Moduls: combase.dll, Version: 6.3.9600.17031, Zeitstempel: 0x53087867
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000175964
ID des fehlerhaften Prozesses: 0x1dcc
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5


System errors:
=============
Error: (12/23/2014 02:35:04 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40.

Error: (12/23/2014 00:32:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (12/23/2014 00:32:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Presentation Foundation-Schriftartcache 3.0.0.0 erreicht.

Error: (12/23/2014 00:31:26 PM) (Source: DCOM) (EventID: 10010) (User: JPs_PC)
Description: {49BD2028-1523-11D1-AD79-00C04FD8FDFF}

Error: (12/23/2014 00:15:08 PM) (Source: DCOM) (EventID: 10010) (User: JPs_PC)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (12/23/2014 08:16:28 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 20.

Error: (12/23/2014 07:56:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Computer Backup (MyPC Backup)" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (12/23/2014 02:59:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "umArOhGZbTY" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (12/23/2014 02:58:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "umArOhGZbTY" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (12/23/2014 01:53:06 AM) (Source: DCOM) (EventID: 10010) (User: JPs_PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}


Microsoft Office Sessions:
=========================
Error: (12/23/2014 02:37:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe39.0.2171.95548243f3chrome.dll39.0.2171.9554823ff480000003004fd39c1305c01d01eb54e618e81C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\chrome.dllda23dc9b-8aa8-11e4-8251-74d435fd7bfd

Error: (12/23/2014 02:33:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.170375312c26dcombase.dll6.3.9600.1703153087867c000000500000000001759641130401d01eb4d794b66dC:\Program Files\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\combase.dll4fc4c4c1-8aa8-11e4-8251-74d435fd7bfd

Error: (12/23/2014 02:24:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.170375312c26dcombase.dll6.3.9600.1703153087867c00000050000000000175964f92801d01eb38171e377C:\Program Files\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\combase.dllf5e08b9d-8aa6-11e4-8251-74d435fd7bfd

Error: (12/23/2014 02:07:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe39.0.2171.95548243f3chrome.dll39.0.2171.9554823ff480000003004fd39c8e8c01d01eaa00a50166C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\chrome.dlla3f0c022-8aa4-11e4-8251-74d435fd7bfd

Error: (12/23/2014 10:25:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: InstallManagerApp.exe8.0.916.036c001d01e921c9bb5ce4294967295C:\AMD\AMD-Catalyst-Omega-14.12-With-DOTNet45-Win8.1-64bit\Bin64\InstallManagerApp.exe9d3bc6e4-8a85-11e4-8251-74d435fd7bfd

Error: (12/23/2014 10:20:21 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: InstallManagerApp.exe8.0.916.0110001d01e91153c48124294967295C:\AMD\AMD-Catalyst-Omega-14.12-With-DOTNet45-Win8.1-64bit\Bin64\InstallManagerApp.exee280791f-8a84-11e4-8251-74d435fd7bfd

Error: (12/23/2014 10:14:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: InstallManagerApp.exe8.0.916.0381c01d01e8d36779b8b4294967295C:\AMD\AMD-Catalyst-Omega-14.12-With-DOTNet45-Win8.1-64bit\Bin64\InstallManagerApp.exe10225a06-8a84-11e4-8251-74d435fd7bfd

Error: (12/23/2014 09:50:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.170373a2801d01e8a99a4ba854294967295C:\Program Files\Internet Explorer\iexplore.exe1c9de397-8a7e-11e4-8251-74d435fd7bfd

Error: (12/23/2014 09:47:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: InstallManagerApp.exe8.0.916.02e7c01d01e84b9cf8e594294967295C:\AMD\AMD-Catalyst-Omega-14.12-Without-DOTNet45-Win8.1-64bit\Bin64\InstallManagerApp.exe05137215-8a80-11e4-8251-74d435fd7bfd

Error: (12/23/2014 08:48:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.170375312c26dcombase.dll6.3.9600.1703153087867c000000500000000001759641dcc01d01e834ee090a0C:\Program Files\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\combase.dll1a95fc7f-8a78-11e4-8251-74d435fd7bfd


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 29%
Total physical RAM: 8057.02 MB
Available physical RAM: 5707.25 MB
Total Pagefile: 13358.2 MB
Available Pagefile: 10011.92 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.17 GB) (Free:750.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 353938EE)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Ich hab vorher auf eigene Faust mir mal Malewarebytes heruntergeladen und nen Scan gemacht hatte auch einige Funde aber anscheinen auch nicht mein Problem gefunden.ich würde jetzt zwar gerne die Logs hier reinkopieren jedoch wenn ich auf History gehe wird mir die gefundene Malware angezeigt und unter Logs nur ein Protection Log, jedoch kein Scan Log?
__________________
Alt 23.12.2014, 18:41   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Überall Ads in jedem Browser - Standard

Überall Ads in jedem Browser


Adware/Junkware/Toolbars entfernen

(alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!)

1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 23.12.2014, 19:05   #5
Xenomus
 
Überall Ads in jedem Browser - Standard

Überall Ads in jedem Browser


Also die Ads sind weg , deswegen vielen Dank für deine Hilfe!
Hier noch die logs,weiß nicht ob du die noch brauchst.

AdwCleaner[Sx].txt:
Code:
ATTFilter
# AdwCleaner v4.106 - Bericht erstellt am 23/12/2014 um 18:51:37
# Aktualisiert 21/12/2014 von Xplode
# Database : 2014-12-21.4 [Live]
# Betriebssystem : Windows 8.1  (64 bits)
# Benutzername : JP - JPS_PC
# Gestartet von : C:\Users\JP\Desktop\AdwCleaner_4.106.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : BackupStack
Dienst Gelöscht : servervo
Dienst Gelöscht : webinstrNewH

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\HealthAlert
Ordner Gelöscht : C:\Program Files (x86)\globalUpdate
Ordner Gelöscht : C:\Program Files (x86)\Super Optimizer
Ordner Gelöscht : C:\Program Files (x86)\gmsd_de_36
Ordner Gelöscht : C:\Users\JP\AppData\Local\ConvertAd
Ordner Gelöscht : C:\Users\JP\AppData\Local\globalUpdate
Ordner Gelöscht : C:\Users\JP\AppData\Local\gmsd_de_36
Ordner Gelöscht : C:\Users\JP\AppData\Roaming\AnyProtectEx
Ordner Gelöscht : C:\Users\JP\AppData\Roaming\InetStat
Ordner Gelöscht : C:\Users\JP\AppData\Roaming\VOPackage
Datei Gelöscht : C:\Windows\Reimage.ini
Datei Gelöscht : C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Datei Gelöscht : C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Datei Gelöscht : C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.re-markable00.re-markable.net_0.localstorage
Datei Gelöscht : C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.re-markable00.re-markable.net_0.localstorage-journal

***** [ Tasks ] *****

Task Gelöscht : LaunchSignup

***** [ Verknüpfungen ] *****

Verknüpfung Desinfiziert : C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Schlüssel Gelöscht : HKCU\Software\Classes\Applications\inetstat.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Schlüssel Gelöscht : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{114DB5FA-0AFB-BB92-A75B-F44D3CE875CD}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gelöscht : HKCU\Software\GlobalUpdate
Schlüssel Gelöscht : HKCU\Software\InetStat
Schlüssel Gelöscht : HKCU\Software\InstalledBrowserExtensions
Schlüssel Gelöscht : HKCU\Software\Tutorials
Schlüssel Gelöscht : HKCU\Software\Wnkey
Schlüssel Gelöscht : HKLM\SOFTWARE\GlobalUpdate
Schlüssel Gelöscht : HKLM\SOFTWARE\InstallCore
Schlüssel Gelöscht : HKLM\SOFTWARE\InstalledBrowserExtensions
Schlüssel Gelöscht : HKLM\SOFTWARE\Tutorials
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Daten Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17037


-\\ Google Chrome v39.0.2171.95

[C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1419315846&from=tugs&uid=ST1000DM003-1ER162_S4Y1RYDJXXXXS4Y1RYDJ&q={searchTerms}
[C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1419315846&from=tugs&uid=ST1000DM003-1ER162_S4Y1RYDJXXXXS4Y1RYDJ&q={searchTerms}
[C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_cmi_14_52_ch&cd=2XzuyEtN2Y1L1QzuyByE0DyEtAyD0F0DyB0B0F0DtBtC0B0FtN0D0Tzu0StCtDzzyCtN1L2XzutAtFyCtFtCtDtFyBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDzzyBzztC0DzytBtGtAyEyDzztGtAtByDyEtGzzyCyD0CtGyEzy0CyB0EyC0FyB0F0FzzyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyD0AyB0FtCzz0EtGyC0AtAyDtGyEyCtA0EtG0AtD0D0BtGyE0EtCtDtC0CtCzzzztAyDyD2Q&cr=1726756385&ir=
[C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_cmi_14_52_ch&cd=2XzuyEtN2Y1L1QzuyByE0DyEtAyD0F0DyB0B0F0DtBtC0B0FtN0D0Tzu0StCtDzzyCtN1L2XzutAtFyCtFtCtDtFyBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDzzyBzztC0DzytBtGtAyEyDzztGtAtByDyEtGzzyCyD0CtGyEzy0CyB0EyC0FyB0F0FzzyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyD0AyB0FtCzz0EtGyC0AtAyDtGyEyCtA0EtG0AtD0D0BtGyE0EtCtDtC0CtCzzzztAyDyD2Q&cr=1726756385&ir=
[C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3331617&octid=EB_ORIGINAL_CTID&ISID=MA1183600-D78B-4841-91A5-A6813E93D594&SearchSource=58&CUI=&UM=8&UP=SPADAD1B71-04F9-473D-B5B2-71D7E9A932D7&q={searchTerms}&SSPV=
[C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3331617&octid=EB_ORIGINAL_CTID&ISID=MA1183600-D78B-4841-91A5-A6813E93D594&SearchSource=58&CUI=&UM=8&UP=SPADAD1B71-04F9-473D-B5B2-71D7E9A932D7&q={searchTerms}&SSPV=

*************************

AdwCleaner[R0].txt - [11473 octets] - [23/12/2014 18:50:32]
AdwCleaner[S0].txt - [10736 octets] - [23/12/2014 18:51:37]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10797 octets] ##########
JRT.txt:

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Windows 8.1 x64
Ran by JP on 23.12.2014 at 18:56:56,49
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611171162}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611171162}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171162}



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.12.2014 at 18:58:37,15
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST.txt:


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-12-2014
Ran by JP (administrator) on JPS_PC on 23-12-2014 18:58:58
Running from C:\Users\JP\Desktop
Loaded Profile: JP (Available profiles: JP)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\n360.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\n360.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Spotify Ltd) C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Spotify Ltd) C:\Users\JP\AppData\Roaming\Spotify\spotify.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Thisisu) C:\Users\JP\Desktop\JRT.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2014-12-08] (Raptr, Inc)
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Run: [Spotify] => C:\Users\JP\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-23] (Spotify Ltd)
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Run: [Spotify Web Helper] => C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-23] (Spotify Ltd)
AppInit_DLLs-x32: C:/PROGRA~3/{E5E80~1/sira.dll => C:/PROGRA~3/{E5E80~1/sira.dll [634880 2014-12-23] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: No Name -> {11111111-1111-1111-1111-110611171162} ->  No File
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2014-12-23]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn [2014-12-23]
FF HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Firefox\Extensions: [{8CCEB719-4CA9-0AE4-C5BB-BD8A47230050}] - C:\Program Files (x86)\ver7SpeedCheck\184.xpi

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3331617&octid=EB_ORIGINAL_CTID&ISID=MA1183600-D78B-4841-91A5-A6813E93D594&SearchSource=55&CUI=&UM=8&UP=SPADAD1B71-04F9-473D-B5B2-71D7E9A932D7&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3331617&octid=EB_ORIGINAL_CTID&ISID=MA1183600-D78B-4841-91A5-A6813E93D594&SearchSource=55&CUI=&UM=8&UP=SPADAD1B71-04F9-473D-B5B2-71D7E9A932D7&SSPV="
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-23]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-12-23]
CHR Extension: (YouTube) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-23]
CHR Extension: (Adblock Plus) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-12-23]
CHR Extension: (Google Search) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-23]
CHR Extension: (Google Wallet) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-23]
CHR Extension: (Gmail) - C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-23]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx [2014-12-23]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx [2014-12-23]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [329104 2014-10-03] (Intel Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe [265040 2014-09-21] (Symantec Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-21] (Advanced Micro Devices)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20141209.001\BHDrvx64.sys [1587416 2014-12-09] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1506000.020\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-12-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-12-22] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20141222.001\IDSvia64.sys [637656 2014-12-22] (Symantec Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20141222.034\ENG64.SYS [129752 2014-12-22] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20141222.034\EX64.SYS [2137304 2014-12-22] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1506000.020\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1506000.020\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1506000.020\SYMDS64.SYS [493656 2013-09-10] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1506000.020\SYMEFA64.SYS [1148120 2014-08-26] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1506000.020\SymELAM.sys [23568 2013-09-10] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-12-23] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1506000.020\SYMNETS.SYS [593112 2014-08-26] (Symantec Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-23 18:58 - 2014-12-23 18:59 - 00014919 _____ () C:\Users\JP\Desktop\FRST.txt
2014-12-23 18:58 - 2014-12-23 18:58 - 00001214 _____ () C:\Users\JP\Desktop\JRT.txt
2014-12-23 18:56 - 2014-12-23 18:56 - 00000000 ____D () C:\Windows\ERUNT
2014-12-23 18:50 - 2014-12-23 18:51 - 00000000 ____D () C:\AdwCleaner
2014-12-23 18:48 - 2014-12-23 18:48 - 01707646 _____ (Thisisu) C:\Users\JP\Desktop\JRT.exe
2014-12-23 18:47 - 2014-12-23 18:47 - 02173952 _____ () C:\Users\JP\Desktop\AdwCleaner_4.106.exe
2014-12-23 18:26 - 2014-12-23 18:26 - 00000366 _____ () C:\Users\JP\Desktop\Maleware.txt
2014-12-23 17:47 - 2014-12-23 18:38 - 00027174 _____ () C:\Users\JP\Downloads\Addition.txt
2014-12-23 17:46 - 2014-12-23 18:58 - 00000000 ____D () C:\FRST
2014-12-23 17:46 - 2014-12-23 18:38 - 00066158 _____ () C:\Users\JP\Downloads\FRST.txt
2014-12-23 17:45 - 2014-12-23 17:45 - 02122240 _____ (Farbar) C:\Users\JP\Desktop\frst64.exe
2014-12-23 14:35 - 2014-12-23 14:35 - 00002271 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-23 14:35 - 2014-12-23 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-23 14:33 - 2014-12-23 18:54 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-23 14:33 - 2014-12-23 18:38 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-23 14:33 - 2014-12-23 14:33 - 00004088 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-23 14:33 - 2014-12-23 14:33 - 00003852 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-23 14:32 - 2014-12-23 14:33 - 00000000 ____D () C:\Users\JP\AppData\Local\Deployment
2014-12-23 14:32 - 2014-12-23 14:32 - 00000000 ____D () C:\Users\JP\AppData\Local\Apps\2.0
2014-12-23 14:21 - 2014-12-23 18:21 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-23 14:21 - 2014-12-23 14:21 - 00001118 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-12-23 14:21 - 2014-12-23 14:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-12-23 14:21 - 2014-12-23 14:21 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-23 14:21 - 2014-12-23 14:21 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-12-23 14:21 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-23 14:21 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-23 14:21 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-23 14:19 - 2014-12-23 14:20 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\JP\Downloads\mbam-setup-2.0.4.1028.exe
2014-12-23 14:10 - 2014-12-23 14:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BOSS
2014-12-23 14:10 - 2014-12-23 14:10 - 00000000 ____D () C:\BOSS
2014-12-23 14:09 - 2014-12-23 14:09 - 16369471 _____ (BOSS Development Team) C:\Users\JP\Downloads\BOSS.Installer (1).exe
2014-12-23 14:04 - 2014-12-23 14:04 - 16369471 _____ (BOSS Development Team) C:\Users\JP\Downloads\BOSS.Installer.exe
2014-12-23 13:59 - 2014-12-23 13:59 - 00000000 ____D () C:\Games
2014-12-23 13:55 - 2014-12-23 13:59 - 00000902 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-12-23 13:55 - 2014-12-23 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2014-12-23 13:55 - 2014-12-23 13:59 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2014-12-23 13:55 - 2014-12-23 13:55 - 00000000 ____D () C:\Users\JP\Documents\Nexus Mod Manager
2014-12-23 13:55 - 2014-12-23 13:55 - 00000000 ____D () C:\Users\JP\AppData\Local\Black_Tree_Gaming
2014-12-23 13:54 - 2014-12-23 13:55 - 04282672 _____ (Black Tree Gaming ) C:\Users\JP\Downloads\Nexus Mod Manager-0.52.3.exe
2014-12-23 13:48 - 2014-12-23 13:48 - 00026804 _____ () C:\Users\JP\Downloads\Killable Children - BOSS Compatible-774-2-2.zip
2014-12-23 13:40 - 2014-12-23 13:40 - 00313875 _____ () C:\Users\JP\Downloads\skse_1_07_01_installer.exe
2014-12-23 13:40 - 2014-12-23 13:40 - 00002325 _____ () C:\Users\JP\Desktop\Skyrim (SKSE).lnk
2014-12-23 13:27 - 2014-12-23 13:35 - 202853696 _____ () C:\Users\JP\Downloads\kav15.0.1.415de_6845.exe
2014-12-23 13:15 - 2014-12-23 13:15 - 00000000 ____D () C:\Users\JP\AppData\Local\PAYDAY 2
2014-12-23 13:12 - 2014-12-23 13:12 - 00000000 ____D () C:\Users\JP\Documents\Klei
2014-12-23 13:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-12-23 13:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-12-23 13:12 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-12-23 10:35 - 2014-12-23 10:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-12-23 10:31 - 2014-12-23 18:54 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Raptr
2014-12-23 10:26 - 2014-12-23 10:26 - 00003098 _____ () C:\Windows\System32\Tasks\{C08E226B-A3B4-41DE-A724-12729752F995}
2014-12-23 10:20 - 2014-12-23 10:20 - 00000000 ____D () C:\Users\JP\AppData\Roaming\LolClient
2014-12-23 09:33 - 2014-12-23 09:38 - 302277752 _____ (AMD Inc.) C:\Users\JP\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win8.1-64bit (1).exe
2014-12-23 09:28 - 2014-12-23 09:28 - 00000000 ____D () C:\ProgramData\ATI
2014-12-23 09:19 - 2014-12-23 09:19 - 00000221 _____ () C:\Users\JP\Desktop\The Elder Scrolls V Skyrim.url
2014-12-23 09:08 - 2014-12-23 09:08 - 00003188 _____ () C:\Windows\System32\Tasks\{ACE5A6CD-58CE-415D-9FD9-755402F11BAB}
2014-12-23 08:55 - 2014-12-23 09:01 - 302277752 _____ (AMD Inc.) C:\Users\JP\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win8.1-64bit.exe
2014-12-23 08:50 - 2014-12-23 10:35 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-12-23 08:50 - 2014-12-23 08:50 - 00000000 ____D () C:\Users\JP\AppData\Roaming\library_dir
2014-12-23 08:50 - 2014-12-23 08:50 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-12-23 08:49 - 2014-12-23 08:49 - 00053736 _____ () C:\Windows\SysWOW64\CCCInstall_201412230849544763.log
2014-12-23 08:49 - 2014-12-23 08:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-12-23 08:49 - 2014-12-23 08:49 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-12-23 08:48 - 2014-12-23 08:48 - 00032712 _____ () C:\Windows\SysWOW64\CCCInstall_201412230848243047.log
2014-12-23 08:39 - 2014-12-23 08:40 - 05451464 _____ (Advanced Micro Devices, Inc.) C:\Users\JP\Downloads\autodetectutility.exe
2014-12-23 08:32 - 2014-12-23 08:50 - 00000000 ____D () C:\ProgramData\AMD
2014-12-23 08:30 - 2014-12-23 08:49 - 00000000 ____D () C:\Windows\LastGood.Tmp
2014-12-23 08:30 - 2013-05-02 17:12 - 00046705 _____ () C:\Windows\atiogl.xml
2014-12-23 08:28 - 2013-04-24 17:31 - 00094208 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW86.sys
2014-12-23 08:28 - 2012-09-23 03:17 - 00021160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmafd.sys
2014-12-23 08:21 - 2014-12-23 08:21 - 00007605 _____ () C:\Users\JP\AppData\Local\Resmon.ResmonCfg
2014-12-23 08:15 - 2014-12-23 08:15 - 00001625 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2014-12-23 08:15 - 2014-12-23 08:15 - 00000000 ____D () C:\Riot Games
2014-12-23 08:15 - 2014-12-23 08:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-12-23 08:15 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-12-23 08:15 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-12-23 08:15 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-12-23 08:15 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-12-23 08:15 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Program Files\MSBuild
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-12-23 08:13 - 2014-12-23 08:13 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-12-23 08:12 - 2014-12-23 01:20 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Riot Games
2014-12-23 08:10 - 2014-12-23 08:10 - 00000222 _____ () C:\Users\JP\Desktop\PAYDAY 2.url
2014-12-23 08:07 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-12-23 08:07 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-23 08:07 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-12-23 08:07 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2014-12-23 08:07 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-12-23 08:07 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-12-23 08:06 - 2014-12-23 08:08 - 30668968 _____ (Riot Games) C:\Users\JP\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2014-12-23 08:06 - 2014-12-23 08:06 - 00000000 _____ () C:\Users\JP\Downloads\adobe_flash_setup.exe
2014-12-23 08:04 - 2014-12-23 14:10 - 00000000 ____D () C:\Users\JP\AppData\Local\Skyrim
2014-12-23 08:03 - 2014-12-23 13:14 - 00044693 _____ () C:\Windows\DirectX.log
2014-12-23 08:03 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-12-23 08:03 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-12-23 08:03 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-12-23 08:03 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-12-23 08:03 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-12-23 08:03 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-12-23 08:03 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-12-23 08:03 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-12-23 08:03 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-12-23 08:03 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-12-23 08:03 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-12-23 08:03 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-12-23 08:03 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-12-23 08:03 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-12-23 08:03 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-12-23 08:03 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-12-23 08:03 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-12-23 08:03 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-12-23 08:03 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-12-23 08:03 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-12-23 08:03 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-12-23 08:03 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-12-23 08:03 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-12-23 08:03 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-12-23 08:03 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-12-23 08:03 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-12-23 08:03 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-12-23 08:03 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-12-23 08:03 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-12-23 08:03 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-12-23 08:03 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-12-23 08:03 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-12-23 08:03 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-12-23 08:03 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-12-23 08:03 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-12-23 08:03 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-12-23 08:03 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-12-23 08:03 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-12-23 08:03 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-12-23 08:03 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-12-23 08:03 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-12-23 08:03 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-12-23 08:03 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-12-23 08:03 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-12-23 08:03 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-12-23 08:03 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-12-23 08:03 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-12-23 08:03 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-12-23 08:03 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-12-23 08:03 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-12-23 08:03 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-12-23 08:03 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-12-23 08:03 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-12-23 08:03 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-12-23 08:03 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-12-23 08:03 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-12-23 08:03 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-12-23 08:03 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-12-23 08:03 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-12-23 08:03 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-12-23 08:03 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-12-23 08:03 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-12-23 08:03 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-12-23 08:03 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-12-23 08:03 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-12-23 08:03 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-12-23 08:03 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-12-23 08:03 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-12-23 08:03 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-12-23 08:03 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-12-23 08:03 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-12-23 08:03 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-12-23 08:03 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-12-23 08:03 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-12-23 08:03 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-12-23 08:03 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-12-23 08:03 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-12-23 08:03 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-12-23 08:03 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-12-23 08:03 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-12-23 08:03 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-12-23 08:03 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-12-23 08:03 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-12-23 08:03 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-12-23 08:03 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-12-23 08:03 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-12-23 08:03 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-12-23 08:03 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-12-23 08:03 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-12-23 08:03 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-12-23 08:03 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-12-23 08:03 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-12-23 08:03 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-12-23 08:03 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-12-23 08:03 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-12-23 08:03 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-12-23 08:03 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-12-23 08:03 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-12-23 08:03 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-12-23 08:03 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-12-23 08:03 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-12-23 08:03 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-12-23 08:03 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-12-23 08:03 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-12-23 08:02 - 2014-12-23 18:22 - 00000000 ____D () C:\Users\JP\Documents\My Games
2014-12-23 08:02 - 2014-12-23 08:02 - 00000000 ____D () C:\Windows\System32\Tasks\Norton 360
2014-12-23 08:02 - 2014-12-23 08:02 - 00000000 ____D () C:\Windows\Sun
2014-12-23 08:02 - 2014-12-23 08:02 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-12-23 08:02 - 2014-12-23 08:02 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-12-23 08:00 - 2014-12-23 08:00 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-12-23 08:00 - 2014-12-23 08:00 - 00000000 ____D () C:\ProgramData\Sun
2014-12-23 08:00 - 2014-12-23 08:00 - 00000000 ____D () C:\ProgramData\Oracle
2014-12-23 08:00 - 2014-12-23 08:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-12-23 08:00 - 2014-12-23 08:00 - 00000000 ____D () C:\Program Files (x86)\Java
2014-12-23 07:59 - 2014-12-23 07:59 - 00000220 _____ () C:\Users\JP\Desktop\Sid Meier's Civilization V.url
2014-12-23 07:58 - 2014-12-23 07:58 - 00638888 _____ (Oracle Corporation) C:\Users\JP\Downloads\chromeinstall-8u25.exe
2014-12-23 07:57 - 2014-12-23 07:58 - 00000197 _____ () C:\Windows\system32\2014-12-23-06-57-09.025-AvastVBoxSVC.exe-2532.log
2014-12-23 07:57 - 2014-12-23 07:57 - 00000221 _____ () C:\Users\JP\Desktop\Mount & Blade Warband.url
2014-12-23 07:56 - 2014-12-23 07:56 - 00000118 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-12-23 07:53 - 2014-12-23 07:53 - 00000221 _____ () C:\Users\JP\Desktop\Mass Effect 2.url
2014-12-23 07:52 - 2014-12-23 07:52 - 00000222 _____ () C:\Users\JP\Desktop\How to Survive.url
2014-12-23 07:48 - 2014-12-23 07:48 - 00000222 _____ () C:\Users\JP\Desktop\Don't Starve.url
2014-12-23 07:47 - 2014-12-23 07:47 - 00000222 _____ () C:\Users\JP\Desktop\Don't Starve Together Beta.url
2014-12-23 07:46 - 2014-12-23 07:46 - 00000222 _____ () C:\Users\JP\Desktop\Borderlands The Pre-Sequel.url
2014-12-23 07:41 - 2014-12-23 07:56 - 00003206 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-12-23 07:41 - 2014-12-23 07:56 - 00002339 _____ () C:\Users\Public\Desktop\Norton 360.lnk
2014-12-23 07:41 - 2014-12-23 07:41 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2014-12-23 07:41 - 2014-12-23 07:41 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2014-12-23 07:41 - 2014-12-23 07:41 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-12-23 07:40 - 2014-12-23 07:56 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2014-12-23 07:40 - 2014-12-23 07:56 - 00000000 ____D () C:\Windows\system32\Drivers\N360x64
2014-12-23 07:40 - 2014-12-23 07:42 - 00000000 ____D () C:\ProgramData\Norton
2014-12-23 07:40 - 2014-12-23 07:40 - 00000000 ____D () C:\Program Files (x86)\Norton 360
2014-12-23 07:40 - 2014-12-23 02:58 - 00000000 ____D () C:\ProgramData\GkeUIrfaKbb
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta WW2
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta WW1
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta W2
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta W1
2014-12-23 07:36 - 2014-12-23 07:36 - 00003646 _____ () C:\Windows\System32\Tasks\Sparta D1
2014-12-23 07:36 - 2014-12-23 07:36 - 00000000 ____D () C:\Users\JP\AppData\Roaming\sparta111
2014-12-23 07:36 - 2014-12-23 07:36 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparta
2014-12-23 07:36 - 2014-12-23 07:36 - 00000000 ____D () C:\Users\JP\AppData\Local\Sparta
2014-12-23 07:36 - 2014-12-23 07:36 - 00000000 ____D () C:\ProgramData\{E5E80D2B-B56A-DCAD-04EC-AC2FD46E7FA1}
2014-12-23 07:36 - 2014-12-23 01:53 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro 3.16
2014-12-23 07:34 - 2014-12-23 18:49 - 00000000 ____D () C:\Users\JP\AppData\Roaming\TS3Client
2014-12-23 07:34 - 2014-12-23 07:34 - 00001178 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-12-23 07:34 - 2014-12-23 07:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-12-23 07:34 - 2014-12-23 07:34 - 00000000 ____D () C:\Program Files (x86)\TeamSpeak 3 Client
2014-12-23 07:32 - 2014-12-23 07:33 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Users\JP\Downloads\TeamSpeak3-Client-win32-3.0.16.exe
2014-12-23 07:32 - 2014-12-23 07:32 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-23 07:31 - 2014-12-23 18:58 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-12-23 07:31 - 2014-12-23 07:31 - 00000979 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-12-23 07:31 - 2014-12-23 07:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-12-23 07:31 - 2014-12-23 07:31 - 00000000 ____D () C:\Program Files\Intel
2014-12-23 07:31 - 2014-12-23 01:22 - 00000000 ____D () C:\Intel
2014-12-23 07:30 - 2014-12-23 07:58 - 00003232 _____ () C:\Windows\System32\Tasks\Super Optimizer Schedule
2014-12-23 07:30 - 2014-12-23 07:30 - 01142392 _____ () C:\Users\JP\Downloads\SteamSetup.exe
2014-12-23 07:28 - 2014-12-23 08:49 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-12-23 07:28 - 2014-12-23 08:48 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-12-23 07:28 - 2014-12-23 07:28 - 00060817 _____ () C:\Windows\SysWOW64\CCCInstall_201412230728567491.log
2014-12-23 07:28 - 2014-12-23 07:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-23 07:27 - 2014-12-23 10:16 - 00000000 ____D () C:\Program Files\AMD
2014-12-23 07:27 - 2014-12-23 09:02 - 00000000 ____D () C:\AMD
2014-12-23 07:27 - 2014-12-23 07:27 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-12-23 07:27 - 2014-12-23 07:27 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-12-23 07:26 - 2014-12-23 14:53 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2315855678-3498703936-2140777652-1001
2014-12-23 07:26 - 2014-12-23 14:35 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-23 07:26 - 2014-12-23 07:26 - 00000000 ____D () C:\Users\JP\AppData\Local\Google
2014-12-23 07:24 - 2014-12-23 18:53 - 00001686 _____ () C:\Windows\Tasks\INRNTOV.job
2014-12-23 07:24 - 2014-12-23 07:24 - 00004680 _____ () C:\Windows\System32\Tasks\INRNTOV
2014-12-23 07:23 - 2014-12-23 07:23 - 00002150 _____ () C:\Windows\patsearch.bin
2014-12-23 07:23 - 2014-12-23 07:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstrNewH_01009.Wdf
2014-12-23 07:22 - 2014-12-23 07:22 - 00000000 __SHD () C:\Users\JP\AppData\Local\EmieUserList
2014-12-23 07:22 - 2014-12-23 07:22 - 00000000 __SHD () C:\Users\JP\AppData\Local\EmieSiteList
2014-12-23 07:22 - 2014-12-23 07:22 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Macromedia
2014-12-23 07:00 - 2014-12-23 13:00 - 00003910 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{12938C3A-E1DB-4302-A437-300BFE19AA1E}
2014-12-23 06:59 - 2014-12-23 18:54 - 00385973 _____ () C:\Windows\WindowsUpdate.log
2014-12-23 06:59 - 2014-12-23 18:51 - 00001001 _____ () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-23 06:59 - 2014-12-23 07:00 - 00000000 ____D () C:\Users\JP\AppData\Local\Packages
2014-12-23 06:59 - 2014-12-23 06:59 - 00000020 ___SH () C:\Users\JP\ntuser.ini
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Vorlagen
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Startmenü
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Netzwerkumgebung
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Lokale Einstellungen
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Eigene Dateien
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Druckumgebung
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Documents\Eigene Musik
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Documents\Eigene Bilder
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\AppData\Local\Verlauf
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\AppData\Local\Anwendungsdaten
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 _SHDL () C:\Users\JP\Anwendungsdaten
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Adobe
2014-12-23 06:59 - 2014-12-23 06:59 - 00000000 ____D () C:\Users\JP\AppData\Local\VirtualStore
2014-12-23 06:59 - 2014-12-23 01:22 - 00000000 ____D () C:\Users\JP
2014-12-23 06:59 - 2014-03-18 11:31 - 00000000 ___RD () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-23 06:59 - 2014-03-18 11:31 - 00000000 ___RD () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-12-23 06:59 - 2014-03-18 11:11 - 00000369 _____ () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-12-23 06:59 - 2014-03-18 11:11 - 00000369 _____ () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-12-23 06:59 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-23 06:59 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Programme
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-12-23 06:58 - 2014-12-23 06:58 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-12-23 06:55 - 2014-12-23 06:59 - 00000000 ____D () C:\Windows\Panther
2014-12-23 03:37 - 2014-12-23 03:37 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-12-23 03:32 - 2014-12-23 03:37 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Dropbox
2014-12-23 03:32 - 2014-12-23 03:36 - 00003268 _____ () C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-2315855678-3498703936-2140777652-1001
2014-12-23 03:24 - 2014-12-23 03:24 - 00000247 _____ () C:\Windows\system32\2014-12-23-02-24-32.009-aswFe.exe-6180.log
2014-12-23 03:21 - 2014-12-23 03:24 - 00000247 _____ () C:\Windows\system32\2014-12-23-02-21-04.099-aswFe.exe-3100.log
2014-12-23 03:21 - 2014-12-23 03:21 - 00000197 _____ () C:\Windows\system32\2014-12-23-02-21-04.001-AvastVBoxSVC.exe-3952.log
2014-12-23 03:19 - 2014-12-23 03:19 - 00000000 ____D () C:\Windows\SysWOW64\vbox
2014-12-23 03:19 - 2014-12-23 03:19 - 00000000 ____D () C:\Windows\system32\vbox
2014-12-23 03:10 - 2014-12-23 18:52 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-12-23 03:10 - 2014-12-23 03:10 - 04978536 _____ (AVAST Software) C:\Users\JP\Downloads\avast_internet_security_setup_online.exe
2014-12-23 03:10 - 2014-12-23 03:10 - 00000051 _____ () C:\Windows\efix.ini
2014-12-23 01:43 - 2014-12-23 01:43 - 00000000 ____D () C:\ProgramData\Riot Games
2014-12-23 01:42 - 2014-12-23 08:31 - 00000000 ____D () C:\Users\JP\AppData\Local\CrashDumps
2014-12-23 01:40 - 2014-12-23 01:40 - 00000000 ____D () C:\Program Files\ATI
2014-12-23 01:37 - 2014-12-23 01:37 - 00000047 _____ () C:\Users\JP\AppData\Roaming\WB.CFG
2014-12-23 01:34 - 2014-12-23 01:34 - 00001798 _____ () C:\Users\JP\Desktop\Spotify.lnk
2014-12-23 01:34 - 2014-12-23 01:34 - 00001784 _____ () C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-12-23 01:34 - 2014-12-23 01:34 - 00000000 ____D () C:\Users\JP\AppData\Local\Spotify
2014-12-23 01:31 - 2014-12-23 18:55 - 00000000 ____D () C:\Users\JP\AppData\Roaming\Spotify
2014-12-23 01:30 - 2014-12-23 01:31 - 00137888 _____ (Spotify Ltd) C:\Users\JP\Downloads\SpotifySetup.exe
2014-12-23 01:23 - 2014-12-23 01:23 - 00000000 ____D () C:\Users\JP\AppData\Roaming\ATI
2014-12-23 01:23 - 2014-12-23 01:23 - 00000000 ____D () C:\Users\JP\AppData\Local\ATI
2014-12-23 01:22 - 2014-12-23 01:22 - 00000425 _____ () C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-23 18:53 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-23 18:52 - 2014-03-18 02:50 - 00846870 _____ () C:\Windows\PFRO.log
2014-12-23 18:52 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\Offline Web Pages
2014-12-23 18:52 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-12-23 18:52 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-12-23 18:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-12-23 12:31 - 2013-08-22 15:46 - 00016189 _____ () C:\Windows\setupact.log
2014-12-23 08:14 - 2014-03-18 10:25 - 00764340 _____ () C:\Windows\system32\perfh007.dat
2014-12-23 08:14 - 2014-03-18 10:25 - 00159160 _____ () C:\Windows\system32\perfc007.dat
2014-12-23 08:14 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-12-23 08:13 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-12-23 08:13 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\MUI
2014-12-23 08:02 - 2014-03-18 11:03 - 01686150 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-23 07:32 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-12-23 07:28 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\restore
2014-12-23 07:25 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-12-23 07:24 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-12-23 06:58 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2014-12-23 06:58 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-12-23 06:58 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default
2014-12-23 06:57 - 2013-08-22 16:37 - 00002664 _____ () C:\Windows\DtcInstall.log
2014-12-23 06:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\Recovery
2014-12-23 06:55 - 2013-08-22 16:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2014-12-23 01:23 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM

Some content of TEMP:
====================
C:\Users\JP\AppData\Local\Temp\Quarantine.exe
C:\Users\JP\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-12-23 01:52

==================== End Of Log ============================
--- --- ---


und die Addition.txt:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-12-2014
Ran by JP at 2014-12-23 18:59:47
Running from C:\Users\JP\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton 360 (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton 360 (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Borderlands: The Pre-Sequel (HKLM-x32\...\Steam App 261640) (Version:  - 2K Australia)
BOSS (HKLM-x32\...\BOSS) (Version: 2.1.1 - BOSS Development Team)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dropbox (HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Dropbox) (Version: 3.0.4 - Dropbox, Inc.)
Fallout 3 - Game of the Year Edition (HKLM-x32\...\Steam App 22370) (Version:  - Bethesda Game Studios)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Obsidian Entertainment)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
How to Survive (HKLM-x32\...\Steam App 250400) (Version:  - )
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.52.3 - Black Tree Gaming)
Norton 360 (HKLM-x32\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sparta (HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Sparta) (Version:  - Sparta) <==== ATTENTION!
Spotify (HKU\S-1-5-21-2315855678-3498703936-2140777652-1001\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{906B34E5-573C-445A-A5D3-40B6BF0A2EC4}) (Version: 6.0.21.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2315855678-3498703936-2140777652-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\JP\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

==================== Restore Points  =========================

23-12-2014 01:41:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
23-12-2014 07:28:22 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0F7E4632-C199-4C95-848E-B5C136C1FAAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-23] (Google Inc.)
Task: {1866B482-5BA4-4C56-A2B3-B603F09658A4} - System32\Tasks\avastBCLRestartS-1-5-21-2315855678-3498703936-2140777652-1001 => Chrome.exe 
Task: {38A0CD7C-D108-4DB5-9E65-06DB4CD8E708} - System32\Tasks\INRNTOV => C:\Users\JP\AppData\Roaming\INRNTOV.exe <==== ATTENTION
Task: {46C912D3-1824-49BB-9D93-E07F54E903B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-23] (Google Inc.)
Task: {4F70EE3D-1B4A-4C4A-BA95-E52AC0F3A573} - System32\Tasks\{C08E226B-A3B4-41DE-A724-12729752F995} => pcalua.exe -a C:\AMD\WU-CCC2\ccc2_install\WULaunchApp.exe -c -uninstall
Task: {5D132EB6-BEFF-45F3-8CCF-B7617AB54612} - System32\Tasks\Super Optimizer Schedule => C:\Program Files (x86)\Super Optimizer\SupOptLauncher.exe
Task: {7911E5D3-D431-4333-8B5C-677001CEDDE1} - \Optimizer Pro Schedule No Task File <==== ATTENTION
Task: {7EE16B0F-543C-47B1-887A-712555AB36F9} - System32\Tasks\Sparta WW1 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: {93561D59-2BAC-4D41-956B-7E9A910D8335} - System32\Tasks\Sparta W2 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: {B88B5602-8C87-4DCE-A1DD-35D809276864} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {BD87280C-17DD-4561-80B7-E304F8D3C145} - System32\Tasks\Sparta WW2 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: {C03967C6-A696-4ADD-8603-73B3938FF619} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {C0DDCBFA-4C15-45EC-8528-66E623E87F7B} - System32\Tasks\{ACE5A6CD-58CE-415D-9FD9-755402F11BAB} => pcalua.exe -a C:\Users\JP\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win8.1-64bit.exe -d C:\Users\JP\Downloads
Task: {C60E8CE9-8C4F-4651-BC26-04609CD01A7E} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {F376F405-4F7F-4CCF-A150-A4C57212C028} - System32\Tasks\Sparta W1 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: {F61A706B-6144-402F-8769-69FBFCB9D374} - System32\Tasks\Sparta D1 => Chrome.exe --app=hxxp://plarium.com/play/en/sparta/top/?adCampaign=42720&amp;ClickID=yByE0DyEtAyD0F0DyB0B0F0DtBtC0B0F&amp;publisherID=0 --app-window-size=1920,1080
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\INRNTOV.job => C:\Users\JP\AppData\Roaming\INRNTOV.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-12-23 01:34 - 2014-12-23 01:34 - 00374840 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2010-11-22 23:56 - 2010-11-22 23:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00016384 _____ () C:\Program Files (x86)\Raptr\win32trace.pyd
2014-08-14 01:37 - 2014-08-14 01:37 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll
2014-08-14 01:37 - 2014-08-14 01:37 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd
2013-11-21 01:05 - 2013-11-21 01:05 - 00256000 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2014-06-18 01:56 - 2014-06-18 01:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 00:06 - 2010-11-23 00:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2014-12-23 01:34 - 2014-12-23 01:34 - 36966968 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\libcef.dll
2014-12-23 01:34 - 2014-12-23 01:34 - 00867896 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2014-12-23 01:34 - 2014-12-23 01:34 - 00886840 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\libglesv2.dll
2014-12-23 01:34 - 2014-12-23 01:34 - 00108600 _____ () C:\Users\JP\AppData\Roaming\Spotify\Data\libegl.dll
2014-12-23 07:33 - 2014-11-11 19:48 - 01171456 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-12-23 07:33 - 2014-11-11 19:48 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-12-23 07:33 - 2014-11-11 19:48 - 00442368 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-12-23 07:33 - 2014-11-11 19:47 - 00774656 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-12-23 07:33 - 2014-11-18 21:23 - 02227904 _____ () C:\Program Files (x86)\Steam\video.dll
2014-12-23 07:33 - 2014-11-11 19:48 - 00403968 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-12-23 07:33 - 2014-11-11 19:48 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2014-12-23 07:33 - 2014-11-18 21:23 - 00690880 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-12-23 07:33 - 2014-11-11 19:48 - 34589888 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-12-23 07:33 - 2014-11-11 19:48 - 00837824 _____ () C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-23 14:35 - 2014-12-06 02:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-2315855678-3498703936-2140777652-500 - Administrator - Disabled)
Gast (S-1-5-21-2315855678-3498703936-2140777652-501 - Limited - Disabled)
JP (S-1-5-21-2315855678-3498703936-2140777652-1001 - Administrator - Enabled) => C:\Users\JP

==================== Faulty Device Manager Devices =============

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: PCI-Kommunikationscontroller (einfach)
Description: PCI-Kommunikationscontroller (einfach)
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 25%
Total physical RAM: 8057.02 MB
Available physical RAM: 6029.96 MB
Total Pagefile: 9977.02 MB
Available Pagefile: 7663.71 MB
Total Virtual: 131072 MB
Available Virtual: 131071.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.17 GB) (Free:752.32 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 353938EE)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)

==================== End Of Log ============================


Alt 23.12.2014, 19:16   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Überall Ads in jedem Browser - Standard

Überall Ads in jedem Browser


Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
Task: {38A0CD7C-D108-4DB5-9E65-06DB4CD8E708} - System32\Tasks\INRNTOV => C:\Users\JP\AppData\Roaming\INRNTOV.exe <==== ATTENTION
Task: {7911E5D3-D431-4333-8B5C-677001CEDDE1} - \Optimizer Pro Schedule No Task File <==== ATTENTION
Task: C:\Windows\Tasks\INRNTOV.job => C:\Users\JP\AppData\Roaming\INRNTOV.exe <==== ATTENTION
C:\Users\JP\AppData\Roaming\INRNTOV.exe
EmptyTemp:
Hosts:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.

__________________
--> Überall Ads in jedem Browser

Antwort

Themen zu Überall Ads in jedem Browser
ads, anderen, antivirenprogramm, browser, explorer, fenster, google, guten, heute, installiert, interne, internet, internet explorer, klick, neue, neuen, neuer rechner, norton, norton 360, problem, programm, rechner, sache, sachen, seite, virus?, werbung, windows


« Extreme Laggs (+1000ms), was ist schuld? | in firefox öffnen sich immer wieder kleine fenster »


Ähnliche Themen: Überall Ads in jedem Browser


  1. Popup Invasion im Jedem Browser und bei Steam
    Log-Analyse und Auswertung - 08.06.2015 (8)
  2. Überall Werbung im Browser und selbstständiges Öffnen von Tabs und Fenster
    Plagegeister aller Art und deren Bekämpfung - 20.02.2015 (28)
  3. Fenster öffnen sich selbstständig bei jedem meiner Browser (Chrom / IE / Firefox )
    Plagegeister aller Art und deren Bekämpfung - 22.01.2015 (25)
  4. Win7: Webseiten laden sehr langsam in jedem Browser
    Log-Analyse und Auswertung - 05.01.2015 (17)
  5. Windows 7 plus-hd-v1.9c ads in jedem browser
    Plagegeister aller Art und deren Bekämpfung - 12.10.2014 (13)
  6. Unerwünschte Links und Werbung in jedem Browser
    Log-Analyse und Auswertung - 23.04.2014 (24)
  7. WIN 7: Trojaner-Link erscheint in jedem Browser: http://search.fbdownloader.com/?channel=de
    Log-Analyse und Auswertung - 24.03.2014 (10)
  8. Google Chrome ist abgestherzt...Meldung erscheint bei jedem Browser Start
    Log-Analyse und Auswertung - 29.01.2014 (19)
  9. Windows 7: Penetrante Werbung und Werbelinks (überall!) im Browser!
    Log-Analyse und Auswertung - 19.11.2013 (16)
  10. Überall werbung im Browser
    Plagegeister aller Art und deren Bekämpfung - 20.09.2013 (13)
  11. Im Browser ist überall Werbung
    Plagegeister aller Art und deren Bekämpfung - 13.08.2013 (17)
  12. Nach Installation des VLC-Players nun in jedem Browser SM.de als Startseite
    Plagegeister aller Art und deren Bekämpfung - 17.06.2013 (13)
  13. Fehlende Fenster/chats/Shoutbox bei jedem Browser und verschiedenen Internetadressen
    Alles rund um Windows - 06.12.2012 (10)
  14. Ungewollte Umleitungen + Werbepopup unten rechts in JEDEM Browser
    Log-Analyse und Auswertung - 08.08.2012 (21)
  15. rechner scrollt automatisch runter im browser bei spielen im media player überall...
    Plagegeister aller Art und deren Bekämpfung - 04.01.2012 (19)
  16. Bei jedem WindowsXP start startet auch Mozilla Browser
    Log-Analyse und Auswertung - 01.08.2006 (2)
  17. coolwwwsearch.com Prozess bei jedem Browser Start
    Log-Analyse und Auswertung - 26.07.2004 (4)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Überall Ads in jedem Browser - Erstmal einen guten Abend an Alle... Ich habe heute auf einen neuen Rechner Windows 8.1 installiert und habe mir erstmal google chrome heruntergeladen und dazu noch ein Antivirenprogramm (Norton 360). - Überall Ads in jedem Browser...
Archiv
Du betrachtest: Überall Ads in jedem Browser auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129