Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA"

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 11.07.2015, 00:45   #1
sikkness
 
AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA" - Standard

AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA"



Hey liebes Forum,

da ich Heute aus dem Urlaub gekommen bin und mein Bruder mir erzählt hat, dass er unschöne Dinge geladen hat, habe ich mal eben hineingeschaut was passiert ist.

Als ich meinen Browser geöffnet habe (Chrome), bekam ich auf jeglichen Seiten Ads angezeigt, mit dem Untertitel "Ads by SASA".

Da ich diese Art von "Viren" kenne, habe ich schon versucht eigene Schritte einzuleiten indem ich z.B. In Programme und Funktionen gegangen bin und versucht habe dieses Programm zu deinstallieren, jedoch ohne erfolg.
Im Browser selbst habe ich bei Tools und AddOns nachgeschaut, ob die Datei sich da befindet, doch hier ist leider auch nichts.

Dann habe ich mich entschlossen AdwCleaner zu laden und habe auch nach einem Scan Dateien gefunden, in der Registrierungsdatenbank, nachdem der PC neugestartet hat, hatte ich die Selben Probleme und habe mir Malwarebytes geladen, dieser hat 27 Dateien gefunden, alle gelöscht bis auf eine, die aber nurnoch in AdwCleaner angezeigt wird.

Es handelt sich hierbei um die Datei in der Registrierungsdatenbank:

HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings - Wert: ProxyOverride <local>

Und bevor ich MWB geladen habe, wurde ich zusätzlich noch auf manche Seiten umgeleitet, aber das Problem wurde beseitigt, die Ads bestehen leider immernoch, treten aber selten auf..

Ich würde mich auf Lösungsvorschläge freuen

MFG

Alt 11.07.2015, 06:35   #2
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA" - Standard

AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA"





Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
  • Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
  • Bitte kein Crossposting (posten in mehreren Foren).
  • Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
  • Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
  • Poste die Logfiles direkt in Deinen Thread in Code-Tags.
  • Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.



Los geht's:

Schritt 1


Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)




Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 11.07.2015, 12:14   #3
sikkness
 
AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA" - Standard

AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA"



Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:11-07-2015
Ran by Michel (administrator) on BOSS on 11-07-2015 13:08:35
Running from C:\Users\Michel\Desktop
Loaded Profiles: Michel (Available Profiles: Michel)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Realtek Semiconductor) C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() E:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
() C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(Micro-Star International) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Micro-Star International) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Users\Michel\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
() E:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
() E:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() E:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Valve Corporation) E:\Steam\Steam.exe
(Akamai Technologies, Inc.) C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Micro-Star International) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(Aeria Games & Entertainment) C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
(Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(Valve Corporation) E:\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-07-15] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1169880 2014-09-03] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-06-27] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [730416 2015-06-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [D3DOverrider] => "C:\Program Files (x86)\D3D Overrider\D3DOverriderWrapper.exe" /s
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [764472 2012-09-19] ()
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [3476432 2014-09-18] (Micro-Star International)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [797648 2015-05-27] (MSI)
HKLM-x32\...\Run: [Aeria Ignite] => C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-06-02] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3544290090-1581138617-1217465911-1000\...\Run: [Steam] => E:\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-3544290090-1581138617-1217465911-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7246904 2015-07-10] (GOG.com)
HKU\S-1-5-21-3544290090-1581138617-1217465911-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-06-07] (Microsoft Corporation)
HKU\S-1-5-18\...\Policies\system: [DisableLockWorkstation] 0

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3544290090-1581138617-1217465911-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll [2015-06-13] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll [2015-06-13] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre8\bin\ssv.dll [2015-06-13] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll [2015-06-13] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-3544290090-1581138617-1217465911-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{BA10DCF4-42B8-4DBF-A812-B825DF71A0D9}: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Michel\AppData\Roaming\Mozilla\Firefox\Profiles\KmxUJUGv.default
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll [2015-06-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll [2015-06-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2015-04-17] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll [2015-06-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll [2015-06-13] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-07-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-07-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-3544290090-1581138617-1217465911-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Michel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]

Chrome: 
=======
CHR Profile: C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-11]
CHR Extension: (Google Docs) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-11]
CHR Extension: (Google Drive) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-11]
CHR Extension: (YouTube) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-11]
CHR Extension: (Google Search) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-11]
CHR Extension: (Bot of Legends Helper) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\edomagbmjponmdpfhcdbpemjpfghfpal [2015-07-11]
CHR Extension: (Google Sheets) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-11]
CHR Extension: (Avira Browser Safety) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-07-11]
CHR Extension: (AdBlock) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-11]
CHR Extension: (AirMech) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdahlabpinmfcemhcbcfoijcpoalfgdn [2015-07-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-11]
CHR Extension: (Google Wallet) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-11]
CHR Extension: (Gmail) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-11]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [827184 2015-06-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [450808 2015-06-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [450808 2015-06-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1188360 2015-06-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [217280 2015-06-02] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1141248 2015-06-13] ()
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1718840 2015-07-10] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6677048 2015-07-10] (GOG.com)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [20512 2014-03-13] (Micro-Star Int'l Co., Ltd.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2014-03-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2099712 2014-12-31] (MSI) [File not signed]
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4028928 2015-05-27] (MSI) [File not signed]
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2117632 2014-12-31] () [File not signed]
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4157952 2015-04-20] () [File not signed]
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [1992704 2015-01-29] () [File not signed]
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2249168 2015-03-10] ()
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2063360 2014-12-31] () [File not signed]
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [575488 2015-03-27] () [File not signed]
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1723856 2014-09-18] (Micro-Star International)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation)
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2014-08-13] (Micro-Star International)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [18384 2014-08-07] (Intel(R) Corporation)
S4 Futuremark SystemInfo Service; "E:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcpiCtlDrv; C:\Windows\System32\DRIVERS\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [153256 2015-06-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132656 2015-06-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-04-16] (Avira Operations GmbH & Co. KG)
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [28912 2014-06-17] (Intel Corporation)
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-07-11] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [126976 2014-09-03] (Intel Corporation)
R3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
S3 NTIOLib_MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
S3 NTIOLib_MSIFrequency_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIRatio_CC; C:\Program Files (x86)\MSI\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-06-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation)
R3 RTCore64; E:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13480 2014-06-10] ()
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 cpuz137; \??\E:\Program Files (x86)\CPUID\PC Wizard 2015\pcwiz_x64.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-11 13:08 - 2015-07-11 13:08 - 00021965 _____ C:\Users\Michel\Desktop\FRST.txt
2015-07-11 13:07 - 2015-07-11 13:07 - 00000000 ____D C:\Users\Michel\Desktop\FRST-OlderVersion
2015-07-11 01:45 - 2015-07-11 01:45 - 00005323 _____ C:\Users\Michel\Downloads\mwb.txt
2015-07-11 01:45 - 2015-07-11 01:45 - 00001274 _____ C:\Users\Michel\Downloads\Ereignisse.txt
2015-07-11 01:37 - 2015-07-11 01:37 - 00005323 _____ C:\Users\Michel\Desktop\mwb.txt
2015-07-11 01:37 - 2015-07-11 01:37 - 00005323 _____ C:\mwb.txt
2015-07-11 01:34 - 2015-07-11 01:41 - 00001274 _____ C:\Users\Michel\Desktop\Ereignisse.txt
2015-07-11 01:02 - 2015-07-11 01:02 - 00037211 _____ C:\Users\Michel\Downloads\Addition.txt
2015-07-11 01:01 - 2015-07-11 13:08 - 00000000 ____D C:\FRST
2015-07-11 01:01 - 2015-07-11 13:07 - 02130944 _____ (Farbar) C:\Users\Michel\Desktop\FRST64.exe
2015-07-11 01:01 - 2015-07-11 01:02 - 00068906 _____ C:\Users\Michel\Downloads\FRST.txt
2015-07-11 00:33 - 2015-07-11 13:03 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-11 00:33 - 2015-07-11 00:33 - 00001106 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-07-11 00:33 - 2015-07-11 00:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-07-11 00:33 - 2015-07-11 00:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-07-11 00:33 - 2015-07-11 00:33 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-07-11 00:33 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-07-11 00:33 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-07-11 00:33 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-07-11 00:32 - 2015-07-11 00:32 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Michel\Downloads\mbam-setup-2.1.8.1057.exe
2015-07-11 00:15 - 2015-07-11 00:15 - 00002251 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-11 00:15 - 2015-07-11 00:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-11 00:05 - 2015-07-11 13:03 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-11 00:05 - 2015-07-11 04:10 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-11 00:05 - 2015-07-11 00:05 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-11 00:05 - 2015-07-11 00:05 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-10 23:21 - 2015-07-10 23:21 - 00000000 ____D C:\Users\Michel\Desktop\Sascha bewerbung
2015-07-10 23:13 - 2015-07-10 23:17 - 00000399 _____ C:\Users\Michel\Desktop\Progamme und Treiber.txt
2015-07-10 22:58 - 2015-07-10 22:58 - 00012602 _____ C:\Users\Michel\Downloads\hijackthis.log
2015-07-10 22:57 - 2015-07-10 22:57 - 00388608 _____ (Trend Micro Inc.) C:\Users\Michel\Downloads\HiJackThis204.exe
2015-07-10 22:44 - 2015-07-10 22:37 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-07-10 22:37 - 2015-07-10 22:55 - 00000000 ____D C:\zoek_backup
2015-07-10 22:37 - 2015-07-10 22:45 - 00011095 _____ C:\zoek-results.log
2015-07-10 22:36 - 2015-07-10 22:36 - 01308672 _____ C:\Users\Michel\Downloads\zoek.exe
2015-07-10 22:30 - 2015-07-10 22:30 - 00931408 _____ (Google Inc.) C:\Users\Michel\Downloads\ChromeSetup.exe
2015-07-10 22:22 - 2015-07-11 01:26 - 00000000 ____D C:\AdwCleaner
2015-07-10 22:21 - 2015-07-10 22:21 - 02248704 _____ C:\Users\Michel\Downloads\adwcleaner_4.208.exe
2015-07-08 23:15 - 2015-07-08 23:15 - 00000000 ____D C:\Users\Michel\AppData\Local\FullTiltPokerEu
2015-07-08 23:14 - 2015-07-10 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Full Tilt Poker.Eu
2015-07-08 23:14 - 2015-07-10 22:55 - 00000000 ____D C:\Program Files (x86)\Full Tilt Poker.Eu
2015-07-08 23:14 - 2015-07-09 00:35 - 00000000 ____D C:\Users\Michel\AppData\Local\FullTiltPoker.eu
2015-07-08 23:14 - 2015-07-08 23:14 - 02024524 _____ C:\nsisinstall.log
2015-07-08 23:14 - 2015-07-08 23:14 - 00001082 _____ C:\Users\Public\Desktop\Full Tilt Poker.Eu.lnk
2015-07-08 23:09 - 2015-07-08 23:13 - 68656232 _____ C:\Users\Michel\Downloads\FullTiltPokerEuSetup.exe
2015-06-28 23:29 - 2015-06-28 23:29 - 00000000 ____D C:\Users\Michel\AppData\Local\SCE
2015-06-28 18:02 - 2015-06-28 18:02 - 00000202 _____ C:\Users\Michel\Desktop\Unturned.url
2015-06-28 08:35 - 2015-06-28 08:35 - 00000202 _____ C:\Users\Michel\Desktop\H1Z1.url
2015-06-27 04:08 - 2015-06-17 08:03 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-06-27 04:07 - 2015-06-17 11:10 - 42729104 _____ C:\Windows\system32\nvcompiler.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 22947144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 17724600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 16145200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 15866992 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 15224784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 13263056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 11831856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 11011216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-06-27 04:07 - 2015-06-17 11:10 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 02599752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435330.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435330.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 01060168 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00975176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-06-27 04:07 - 2015-06-17 11:10 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00155280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-06-27 04:07 - 2015-06-17 11:10 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-06-26 02:36 - 2015-06-28 17:16 - 00000000 ____D C:\Users\Michel\Desktop\Bewerbung michel
2015-06-24 22:25 - 2015-07-10 22:55 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2015-06-24 22:05 - 2015-07-10 22:55 - 00000000 ____D C:\Users\Michel\Documents\Heroes of the Storm
2015-06-24 21:49 - 2015-07-10 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2015-06-24 21:33 - 2015-07-10 22:55 - 00000000 ____D C:\Users\Michel\Desktop\Neuer Ordner
2015-06-24 21:10 - 2015-07-10 22:55 - 00000000 ____D C:\Users\Michel\AppData\Roaming\OpenOffice
2015-06-24 20:22 - 2015-07-10 22:55 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-06-24 20:22 - 2015-07-10 22:54 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2015-06-24 20:22 - 2015-06-24 20:22 - 00001116 _____ C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk
2015-06-24 19:03 - 2015-06-24 19:09 - 164858324 _____ C:\Users\Michel\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_de.exe
2015-06-19 03:51 - 2015-07-10 22:55 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Battle.net
2015-06-19 03:51 - 2015-07-10 22:54 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-06-19 03:51 - 2015-06-28 02:36 - 00000000 ____D C:\Users\Michel\AppData\Local\Battle.net
2015-06-19 03:51 - 2015-06-19 03:51 - 00000803 _____ C:\Users\Public\Desktop\Battle.net.lnk
2015-06-19 03:51 - 2015-06-19 03:51 - 00000000 ____D C:\Users\Michel\AppData\Local\Blizzard Entertainment
2015-06-19 03:51 - 2015-06-19 03:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-06-19 03:47 - 2015-06-19 03:47 - 02864184 _____ (Blizzard Entertainment) C:\Users\Michel\Downloads\Battle.net-Setup-deDE.exe
2015-06-19 03:47 - 2015-06-19 03:47 - 00000000 ____D C:\ProgramData\Battle.net
2015-06-16 06:56 - 2015-06-16 06:56 - 00000000 ____D C:\Users\Michel\AppData\Local\Aeria Games
2015-06-16 06:56 - 2015-06-16 06:56 - 00000000 ____D C:\ProgramData\Aeria Games
2015-06-16 06:50 - 2015-06-16 06:50 - 00000740 _____ C:\Users\Michel\Desktop\Echo of Soul.lnk
2015-06-16 06:47 - 2015-06-16 06:47 - 00002028 _____ C:\Users\Public\Desktop\Aeria Ignite.lnk
2015-06-16 06:47 - 2015-06-16 06:47 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Aeria Games & Entertainment
2015-06-16 06:47 - 2015-06-16 06:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AeriaGames
2015-06-16 06:47 - 2015-06-16 06:47 - 00000000 ____D C:\Program Files (x86)\Aeria Games
2015-06-16 04:35 - 2015-07-10 22:55 - 00000000 ____D C:\Users\Michel\AppData\Local\Akamai
2015-06-16 04:35 - 2015-06-16 04:35 - 00000000 ____D C:\AeriaGames
2015-06-16 04:33 - 2015-06-16 04:33 - 00512536 _____ (Aeria Games & Entertainment) C:\Users\Michel\Downloads\echoofsoul_de_downloader.exe
2015-06-16 02:26 - 2015-06-07 20:02 - 00000631 _____ C:\Users\Michel\Desktop\TeamSpeak 3 Client.lnk
2015-06-14 21:46 - 2015-06-14 21:46 - 00001197 _____ C:\Users\Michel\Desktop\lol.launcher.exe - Verknüpfung.lnk
2015-06-14 21:07 - 2015-06-14 21:07 - 00000000 ____D C:\Program Files\Riot Games
2015-06-14 21:04 - 2015-06-14 21:40 - 00007609 _____ C:\Users\Michel\AppData\Local\Resmon.ResmonCfg
2015-06-14 20:11 - 2015-06-14 20:11 - 00001173 _____ C:\Users\Public\Desktop\MSI Command Center.lnk
2015-06-14 19:57 - 2015-06-14 19:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
2015-06-14 19:57 - 2015-06-14 19:57 - 00000000 ____D C:\uninstall
2015-06-14 19:57 - 2015-06-14 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Intel Extreme Tuning Utility
2015-06-14 19:57 - 2015-06-14 19:57 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2015-06-14 19:57 - 2015-06-14 19:57 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2015-06-14 19:57 - 2015-06-14 19:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2015-06-14 19:57 - 2015-06-14 19:57 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-06-14 19:56 - 2015-06-14 19:56 - 00000000 ____D C:\MSILU
2015-06-14 19:56 - 2013-02-08 11:04 - 00000000 _____ C:\RAMDiskImage.img
2015-06-14 19:49 - 2015-06-14 19:49 - 00041472 _____ C:\Users\Michel\Downloads\launcher64.dll
2015-06-14 19:48 - 2015-06-14 19:48 - 00674944 _____ (Copyright © 2010 eSupport.com. All Rights Reserved.) C:\Users\Michel\Downloads\biosagentplus_1218.exe
2015-06-14 19:48 - 2015-06-14 19:48 - 00021712 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2015-06-14 18:57 - 2015-06-14 18:57 - 01586848 _____ ( ) C:\Users\Michel\Downloads\cpu-z_1.72.1-en.exe
2015-06-14 18:57 - 2015-06-14 18:57 - 00000747 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-06-14 18:57 - 2015-06-14 18:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-06-14 18:28 - 2015-07-11 04:43 - 00003016 _____ C:\Windows\System32\Tasks\MSIAfterburner
2015-06-13 17:10 - 2015-06-13 17:10 - 00000771 _____ C:\Users\Michel\Desktop\MSI Afterburner.lnk
2015-06-13 17:10 - 2015-06-13 17:10 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2015-06-13 17:10 - 2015-06-13 17:10 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2015-06-13 17:08 - 2015-06-13 17:09 - 29239096 _____ C:\Users\Michel\Downloads\MSIAfterburnerSetup301.zip
2015-06-13 17:06 - 2015-06-13 17:06 - 04940128 _____ (CPUID ) C:\Users\Michel\Downloads\pc-wizard_2014.2.14-setup.exe
2015-06-13 16:28 - 2015-07-10 22:55 - 00000000 ____D C:\Users\Michel\Documents\DayZ
2015-06-13 16:28 - 2015-06-13 20:31 - 00000000 ____D C:\Users\Michel\AppData\Local\DayZ
2015-06-13 16:28 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-06-13 16:26 - 2015-06-13 16:26 - 00000000 ____D C:\Users\Michel\Downloads\0xc000007b ERROR
2015-06-13 16:26 - 2014-06-15 15:18 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr80.dll
2015-06-13 16:26 - 2014-06-15 15:18 - 00450560 _____ (RAD Game Tools, Inc.) C:\Windows\SysWOW64\mss32.dll
2015-06-13 16:26 - 2014-06-15 15:17 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEShims.dll
2015-06-13 16:26 - 2014-06-15 15:16 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-06-13 16:26 - 2014-06-15 15:14 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-06-13 16:26 - 2014-06-15 15:12 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-06-13 16:26 - 2014-06-15 15:11 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-06-13 16:26 - 2014-06-15 15:10 - 00176128 _____ (RAD Game Tools, Inc.) C:\Windows\SysWOW64\binkw32.dll
2015-06-13 16:25 - 2015-06-13 16:25 - 03414022 _____ C:\Users\Michel\Downloads\0xc000007b ERROR ComboTech.rar
2015-06-13 16:08 - 2015-06-13 16:19 - 00000000 ____D C:\Users\Michel\Downloads\Neuer Ordner
2015-06-13 16:08 - 2011-03-30 04:40 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\dxupdate.dll
2015-06-13 16:08 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-06-13 16:08 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-06-13 16:08 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-06-13 16:08 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-06-13 16:08 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_43.dll
2015-06-13 16:08 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-06-13 16:08 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-06-13 16:08 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-06-13 16:08 - 2010-02-04 11:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-06-13 16:08 - 2010-02-04 11:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-06-13 16:08 - 2010-02-04 11:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-06-13 16:08 - 2010-02-04 11:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-06-13 16:08 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-06-13 16:08 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-06-13 16:08 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-06-13 16:08 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-06-13 16:08 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-06-13 16:08 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_42.dll
2015-06-13 16:08 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-06-13 16:08 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-06-13 16:08 - 2009-03-16 15:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-06-13 16:08 - 2009-03-16 15:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-06-13 16:08 - 2009-03-16 15:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-06-13 16:08 - 2009-03-09 16:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_41.dll
2015-06-13 16:08 - 2009-03-09 16:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-06-13 16:08 - 2009-03-09 16:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-06-13 16:08 - 2008-10-27 11:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-06-13 16:08 - 2008-10-27 11:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-06-13 16:08 - 2008-10-27 11:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-06-13 16:08 - 2008-10-27 11:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-06-13 16:08 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_40.dll
2015-06-13 16:08 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-06-13 16:08 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-06-13 16:08 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-06-13 16:08 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-06-13 16:08 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-06-13 16:08 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_39.dll
2015-06-13 16:08 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-06-13 16:08 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-06-13 16:08 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-06-13 16:08 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-06-13 16:08 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-06-13 16:08 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-06-13 16:08 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_38.dll
2015-06-13 16:08 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-06-13 16:08 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-06-13 16:08 - 2008-03-05 17:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-06-13 16:08 - 2008-03-05 17:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-06-13 16:08 - 2008-03-05 17:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-06-13 16:08 - 2008-03-05 16:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_37.dll
2015-06-13 16:08 - 2008-03-05 16:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-06-13 16:08 - 2008-02-06 00:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-06-13 16:08 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-06-13 16:08 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-06-13 16:08 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_36.dll
2015-06-13 16:08 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-06-13 16:08 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-06-13 16:08 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-06-13 16:08 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_35.dll
2015-06-13 16:08 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-06-13 16:08 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-06-13 16:08 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-06-13 16:08 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_34.dll
2015-06-13 16:08 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-06-13 16:08 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-06-13 16:08 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-06-13 16:08 - 2007-03-15 17:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-06-13 16:08 - 2007-03-12 17:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-06-13 16:08 - 2007-03-12 17:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_33.dll
2015-06-13 16:08 - 2007-03-05 13:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-06-13 16:08 - 2007-01-24 16:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-06-13 16:08 - 2006-12-08 13:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-06-13 16:08 - 2006-11-29 14:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-06-13 16:08 - 2006-11-29 14:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-06-13 16:08 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-06-13 16:08 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-06-13 16:08 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-06-13 16:08 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-06-13 16:08 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-06-13 16:08 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-06-13 16:08 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-06-13 16:08 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-06-13 16:08 - 2006-02-03 09:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-06-13 16:08 - 2006-02-03 09:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-06-13 16:08 - 2006-02-03 09:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-06-13 16:08 - 2005-12-05 19:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-06-13 16:08 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-06-13 16:08 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-06-13 16:08 - 2005-03-18 18:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-06-13 16:08 - 2005-02-05 20:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-06-13 16:02 - 2015-06-13 16:02 - 01198049 _____ C:\Windows\unins000.exe
2015-06-13 16:02 - 2015-06-13 16:02 - 00010812 _____ C:\Windows\unins000.dat
2015-06-13 16:02 - 2015-06-13 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-06-13 16:02 - 2014-06-05 08:07 - 01177088 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2015-06-13 16:02 - 2014-06-05 08:07 - 00271360 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2015-06-13 16:02 - 2014-06-05 08:07 - 00271360 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\libssl32.dll
2015-06-13 16:02 - 2014-06-01 19:53 - 00460104 _____ (AutoIt Team) C:\Windows\SysWOW64\autoitx3.dll
2015-06-13 16:02 - 2014-01-25 14:30 - 00131072 _____ (Sereby Corporation) C:\Windows\SysWOW64\AiORuntimes.dll
2015-06-13 16:02 - 2013-12-23 15:44 - 00163480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 01070232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomctl.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00660120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomct2.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00617896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00444328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshflxgd.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00416408 _____ (Microsoft Corporation ) C:\Windows\SysWOW64\comct332.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00279192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatgrd.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00259736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msflxgrd.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00253080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatlst.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00222360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00219288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00218776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dblist32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00212112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mci32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00179352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmask32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00170920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00131728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00130712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
2015-06-13 16:02 - 2013-12-20 01:48 - 00127640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswinsck.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00119960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomm32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00108696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll
2015-06-13 16:02 - 2013-12-20 01:48 - 00104088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\picclp32.ocx
2015-06-13 16:02 - 2013-12-20 01:48 - 00084624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysinfo.ocx
2015-06-13 16:02 - 2013-08-31 21:40 - 03115385 _____ (Red Hat) C:\Windows\SysWOW64\cygwin1.dll
2015-06-13 16:02 - 2012-06-14 15:36 - 00107520 _____ C:\Windows\SysWOW64\zlib1.dll
2015-06-13 16:02 - 2012-04-03 17:11 - 00138752 _____ C:\Windows\SysWOW64\libpng15.dll
2015-06-13 16:02 - 2011-10-12 04:09 - 04033440 _____ (Intel Corporation) C:\Windows\SysWOW64\libmmd.dll
2015-06-13 16:02 - 2011-10-01 09:16 - 00445016 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2015-06-13 16:02 - 2011-10-01 09:16 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\openal32.dll
2015-06-13 16:02 - 2011-01-12 14:36 - 01054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71DEU.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ITA.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71FRA.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ESP.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ENU.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71KOR.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71JPN.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71CHT.dll
2015-06-13 16:02 - 2011-01-12 14:25 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71CHS.dll
2015-06-13 16:02 - 2011-01-12 14:19 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2015-06-13 16:02 - 2011-01-12 13:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl71.dll
2015-06-13 16:02 - 2010-06-27 18:44 - 00053248 _____ (Adobe Systems, Incorporated) C:\Windows\system\plugin.dll
2015-06-13 16:02 - 2010-03-18 21:21 - 00799568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdia100.dll
2015-06-13 16:02 - 2008-08-26 07:40 - 00162304 _____ C:\Windows\SysWOW64\libpng13.dll
2015-06-13 16:02 - 2008-03-14 18:21 - 01008128 _____ (GnuWin32 <hxxp://gnuwin32.sourceforge.net>) C:\Windows\SysWOW64\libiconv2.dll
2015-06-13 16:02 - 2007-02-01 23:13 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2015-06-13 16:02 - 2007-02-01 20:11 - 00344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2015-06-13 16:02 - 2007-01-30 23:04 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2015-06-13 16:02 - 2006-08-26 01:28 - 01017344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ITA.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70FRA.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ESP.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70DEU.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ENU.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70KOR.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70JPN.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70CHT.dll
2015-06-13 16:02 - 2006-08-26 01:15 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70CHS.dll
2015-06-13 16:02 - 2006-08-26 01:07 - 01024000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2015-06-13 16:02 - 2006-08-26 00:17 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl70.dll
2015-06-13 16:02 - 2005-05-06 14:52 - 00103424 _____ (GNU <www.gnu.org>) C:\Windows\SysWOW64\libintl3.dll
2015-06-13 16:02 - 2005-01-20 20:25 - 00054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll
2015-06-13 16:02 - 2002-01-05 06:40 - 00487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll
2015-06-13 16:02 - 1996-01-12 04:00 - 00935632 _____ (Microsoft Corporation) C:\Windows\system\vb40016.dll
2015-06-13 16:02 - 1996-01-12 04:00 - 00722192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb40032.dll
2015-06-13 16:02 - 1994-11-17 14:00 - 00210944 _____ C:\Windows\system\msvcrt10.dll
2015-06-13 16:02 - 1993-05-11 20:00 - 00398416 _____ (Microsoft Corporation) C:\Windows\system\vbrun300.dll
2015-06-13 16:02 - 1992-10-21 01:00 - 00356992 _____ (Microsoft Corporation) C:\Windows\system\vbrun200.dll
2015-06-13 16:02 - 1991-05-10 02:00 - 00271264 _____ C:\Windows\system\vbrun100.dll
2015-06-13 16:01 - 2015-07-11 03:54 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-13 16:01 - 2015-07-10 21:54 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-13 16:01 - 2015-06-13 16:01 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2015-06-13 16:01 - 2015-06-13 16:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-06-13 16:01 - 2015-06-13 16:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-06-13 16:00 - 2015-06-13 16:00 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-06-13 16:00 - 2015-06-13 16:00 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-06-13 16:00 - 2015-06-13 16:00 - 00000000 ____D C:\ProgramData\Sun
2015-06-13 16:00 - 2015-06-13 16:00 - 00000000 ____D C:\ProgramData\Oracle
2015-06-13 16:00 - 2015-06-13 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-06-13 16:00 - 2015-06-13 16:00 - 00000000 ____D C:\Program Files\Java
2015-06-13 16:00 - 2015-06-13 16:00 - 00000000 ____D C:\Program Files (x86)\Java
2015-06-13 15:55 - 2005-12-05 19:07 - 00081616 _____ (Microsoft Corporation) C:\Windows\system32\xinput9_1_0.dll
2015-06-13 15:52 - 2015-06-13 15:52 - 00000000 ____D C:\Users\Michel\AppData\Roaming\WinRAR
2015-06-13 15:45 - 2015-06-13 15:59 - 408823464 _____ (Sereby Corporation) C:\Users\Michel\Downloads\aio-runtimes_v2.2.2.1.exe
2015-06-13 15:29 - 2015-05-19 05:29 - 00046768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-06-13 15:29 - 2015-05-19 05:14 - 00057520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-06-13 15:22 - 2015-06-13 15:22 - 01141248 _____ C:\Users\Michel\Downloads\BEService_x64.exe
2015-06-13 15:03 - 2015-06-13 15:03 - 01762824 _____ (Microsoft Corporation) C:\Users\Michel\Downloads\vcredist_x86.exe
2015-06-13 00:58 - 2015-06-13 00:58 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Unity
2015-06-13 00:56 - 2015-06-13 00:56 - 00000000 ____D C:\Users\Michel\AppData\Local\Macromedia
2015-06-13 00:55 - 2015-06-13 00:55 - 00000000 ____D C:\Users\Michel\AppData\Local\Mozilla
2015-06-13 00:55 - 2015-06-13 00:55 - 00000000 ____D C:\ProgramData\Mozilla
2015-06-13 00:53 - 2015-06-13 00:53 - 00243592 _____ C:\Users\Michel\Downloads\Firefox Setup Stub 38.0.5.exe
2015-06-13 00:52 - 2015-06-13 00:52 - 00000000 ____D C:\Users\Michel\AppData\Local\Unity
2015-06-13 00:51 - 2015-06-13 00:51 - 01088664 _____ (Unity Technologies ApS) C:\Users\Michel\Downloads\UnityWebPlayer.exe
2015-06-13 00:46 - 2015-06-13 00:46 - 00000199 _____ C:\Users\Michel\Desktop\Counter-Strike Global Offensive.url
2015-06-12 23:30 - 2015-06-12 23:30 - 00000202 _____ C:\Users\Michel\Desktop\DayZ.url
2015-06-12 22:28 - 2015-06-12 22:39 - 00000000 ____D C:\Users\Michel\Heaven
2015-06-12 22:28 - 2015-06-12 22:28 - 01065984 _____ C:\Users\Michel\AppData\Local\file__0.localstorage
2015-06-12 22:28 - 2015-06-12 22:28 - 00000674 _____ C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk
2015-06-12 22:14 - 2015-06-12 22:27 - 258726655 _____ (Unigine Corp. ) C:\Users\Michel\Downloads\Unigine_Heaven-4.0.exe
2015-06-11 21:45 - 2015-06-11 21:51 - 290481224 _____ (NVIDIA Corporation) C:\Users\Michel\Downloads\352.86-desktop-win8-win7-winvista-64bit-international-whql.exe
2015-06-11 21:34 - 2015-06-28 23:34 - 00000517 _____ C:\Users\Michel\Desktop\Neues Textdokument.txt
2015-06-11 00:09 - 2015-06-11 00:09 - 01005568 _____ (Microsoft Corporation) C:\Users\Michel\Downloads\dotNetFx45_Full_setup.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-11 13:07 - 2015-06-06 11:11 - 01327541 _____ C:\Windows\WindowsUpdate.log
2015-07-11 13:06 - 2015-06-06 11:25 - 00064508 _____ C:\Windows\SysWOW64\Gms.log
2015-07-11 13:03 - 2015-06-06 12:07 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-11 13:03 - 2015-06-06 11:32 - 00000278 _____ C:\Windows\Tasks\RtlNetworkGenieVistaStart.job
2015-07-11 13:03 - 2015-06-06 11:24 - 00210650 _____ C:\Windows\PFRO.log
2015-07-11 13:03 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-11 13:03 - 2009-07-14 06:51 - 00041884 _____ C:\Windows\setupact.log
2015-07-11 04:43 - 2015-06-07 20:03 - 00000000 ____D C:\Users\Michel\AppData\Roaming\TS3Client
2015-07-11 04:43 - 2009-07-14 06:45 - 00010096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-11 04:43 - 2009-07-14 06:45 - 00010096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-11 01:05 - 2009-07-14 19:58 - 00699462 _____ C:\Windows\system32\perfh007.dat
2015-07-11 01:05 - 2009-07-14 19:58 - 00149602 _____ C:\Windows\system32\perfc007.dat
2015-07-11 01:05 - 2009-07-14 07:13 - 01620812 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-11 00:15 - 2015-06-06 11:23 - 00000000 ____D C:\Users\Michel\AppData\Local\Google
2015-07-11 00:15 - 2015-06-06 11:23 - 00000000 ____D C:\Program Files (x86)\Google
2015-07-10 22:58 - 2015-06-06 11:11 - 00000000 ____D C:\Users\Michel\AppData\Local\VirtualStore
2015-07-10 22:56 - 2015-06-06 11:30 - 00064024 _____ C:\Users\Michel\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-10 22:55 - 2015-06-10 04:01 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-10 22:55 - 2015-06-08 18:51 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2015-07-10 22:55 - 2015-06-07 20:03 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Skype
2015-07-10 22:55 - 2015-06-06 21:34 - 00000000 ____D C:\ProgramData\Riot Games
2015-07-10 22:55 - 2015-06-06 18:33 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2015-07-10 22:55 - 2015-06-06 18:33 - 00000000 ____D C:\Windows\system32\Macromed
2015-07-10 22:55 - 2015-06-06 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-07-10 22:55 - 2015-06-06 11:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-07-10 22:55 - 2015-06-06 11:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-07-10 22:55 - 2015-06-06 11:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-07-10 22:55 - 2015-06-06 11:21 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-10 22:55 - 2015-06-06 11:11 - 00000000 ____D C:\Users\Michel
2015-07-10 22:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\security
2015-07-10 22:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2015-07-10 22:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2015-07-10 22:54 - 2015-06-06 18:17 - 00000000 ____D C:\Program Files (x86)\Avira
2015-07-10 22:54 - 2015-06-06 11:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-10 22:54 - 2015-06-06 11:32 - 00000000 ____D C:\MSI
2015-07-10 21:54 - 2015-06-06 18:33 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-10 21:54 - 2015-06-06 18:33 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-08 23:15 - 2015-06-08 19:03 - 00000000 ____D C:\Users\Michel\AppData\Roaming\NVIDIA
2015-07-08 23:06 - 2015-06-06 18:17 - 00001120 _____ C:\Users\Public\Desktop\Avira.lnk
2015-06-27 04:07 - 2015-06-06 12:02 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-06-27 03:45 - 2015-06-08 19:03 - 00000000 ____D C:\Users\Michel\Documents\The Witcher 3
2015-06-25 17:50 - 2009-07-14 06:45 - 00294640 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-24 13:36 - 2015-06-06 11:51 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-06-24 13:36 - 2015-06-06 11:51 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-06-24 13:36 - 2015-06-06 11:51 - 01320120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-06-24 13:36 - 2015-06-06 11:51 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-06-19 03:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-06-17 11:10 - 2015-06-06 12:07 - 12855416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-06-17 11:10 - 2015-06-06 12:07 - 03395648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-06-17 11:10 - 2015-06-06 12:07 - 02997544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-06-17 11:10 - 2015-06-06 12:07 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-06-17 11:10 - 2015-06-06 12:07 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-06-17 11:10 - 2015-06-06 12:07 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-06-17 11:10 - 2015-06-06 12:07 - 00030966 _____ C:\Windows\system32\nvinfo.pb
2015-06-17 08:48 - 2015-06-06 12:07 - 06873232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-06-17 08:48 - 2015-06-06 12:07 - 03492168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-06-17 08:48 - 2015-06-06 12:07 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-06-17 08:48 - 2015-06-06 12:07 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-06-17 08:48 - 2015-06-06 12:07 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-06-17 08:48 - 2015-06-06 12:07 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-06-14 20:11 - 2015-06-06 11:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2015-06-14 20:11 - 2015-06-06 11:20 - 00000000 ____D C:\Program Files (x86)\MSI
2015-06-14 20:05 - 2015-06-07 20:32 - 00000000 ___RD C:\Users\Michel\Desktop\MSI Intel
2015-06-14 19:57 - 2015-06-06 11:25 - 00000000 ____D C:\ProgramData\Intel
2015-06-14 19:57 - 2015-06-06 11:25 - 00000000 ____D C:\Program Files (x86)\Intel
2015-06-13 19:21 - 2015-06-06 21:39 - 00046326 _____ C:\Windows\DirectX.log
2015-06-13 17:10 - 2015-06-06 21:46 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-06-13 16:37 - 2015-06-10 17:02 - 00000000 ____D C:\Users\Michel\Documents\DuckGame
2015-06-13 16:27 - 2015-06-08 21:14 - 00000000 ____D C:\Temp
2015-06-13 16:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system
2015-06-13 14:56 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-06-13 05:14 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-06-13 00:55 - 2015-06-06 18:23 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Mozilla
2015-06-12 03:01 - 2015-06-06 11:17 - 01594156 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-06-11 15:11 - 2015-06-07 19:39 - 00008488 _____ C:\Windows\DPINST.LOG
2015-06-11 15:11 - 2015-06-06 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-06-11 15:11 - 2015-06-06 11:21 - 00000000 ____D C:\Program Files\Intel
2015-06-11 14:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat

==================== Files in the root of some directories =======

2015-06-12 22:28 - 2015-06-12 22:28 - 1065984 _____ () C:\Users\Michel\AppData\Local\file__0.localstorage
2015-06-14 21:04 - 2015-06-14 21:40 - 0007609 _____ () C:\Users\Michel\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
C:\Users\Michel\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-23 00:07

==================== End of log ============================
         
[CODE]Additional
FRST Logfile:
Code:
ATTFilter
scan result of Farbar Recovery Scan Tool (x64) Version:11-07-2015
Ran by Michel at 2015-07-11 13:08:51
Running from C:\Users\Michel\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3544290090-1581138617-1217465911-500 - Administrator - Disabled)
Gast (S-1-5-21-3544290090-1581138617-1217465911-501 - Limited - Disabled)
Michel (S-1-5-21-3544290090-1581138617-1217465911-1000 - Administrator - Enabled) => C:\Users\Michel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden
ACPI Driver Installer (HKLM-x32\...\553E35CD-0415-41bc-B39A-410375E88534) (Version: 2.1 - Intel Corporation)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.191 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\{0E3C52E0-B4F1-4D1E-B172-E390813BD9FE}) (Version: 12.1.8.158 - Adobe Systems, Inc)
Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Akamai NetSession Interface (HKU\S-1-5-21-3544290090-1581138617-1217465911-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.8 - Sereby Corporation)
Avira (x32 Version: 1.1.40.29239 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.11.579 - Avira Operations GmbH & Co. KG)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Duck Game (HKLM-x32\...\Steam App 312530) (Version:  - Landon Podbielski)
Echo of Soul (HKLM-x32\...\Echo of Soul) (Version:  - )
Full Tilt Poker.Eu (HKLM-x32\...\{127BEFB3-24B2-4B44-8E99-AD22C2A5A8ED}) (Version: 5.36.0.WIN.FullTilt.EU - )
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Daybreak Games)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation)
Intel(R) Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.2.51.8439 - Intel(R) Corporation)
Intel(R) Update Manager (x32 Version: 1.0.0.36888 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.34 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\3FD0C489-0F02-481a-A3E1-9754CD396761) (Version:  - Intel Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 DEU Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MSI Afterburner 3.0.1 (HKLM-x32\...\Afterburner) (Version: 3.0.1 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.0.97 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.5 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 3.0.0.18 - MSI)
MSI Intel Extreme Tuning Utility (HKLM-x32\...\{56351c83-306c-4135-a570-2784d3025548}) (Version: 5.1.0.101 - Intel Corporation)
MSI Intel Extreme Tuning Utility (x32 Version: 5.1.0.101 - Intel Corporation) Hidden
MSI Live Update (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.010 - MSI)
MSI Smart Utilities (HKLM-x32\...\{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1) (Version: 2.0.0.10 - MSI)
NetworkGenie (HKLM-x32\...\{B416A23D-C2BD-4956-8BAE-5C3BAFF1AC1E}) (Version: 1.0.0.8 - MSI)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA WDM Drivers (HKLM-x32\...\{B023185F-F1EF-4F97-B0BD-AE6D802226D1}) (Version:  - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7293 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.1.2 (HKLM-x32\...\RTSS) (Version: 6.1.2 - Unwinder)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)
Unity Web Player (HKU\S-1-5-21-3544290090-1581138617-1217465911-1000\...\UnityWebPlayer) (Version: 5.0.3f2 - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.8 - MSI)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

10-07-2015 22:37:29 zoek.exe restore point
10-07-2015 22:47:11 Wiederherstellungsvorgang

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02F9C3F3-2676-4EBE-B27D-7BCC187E3E9D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-11] (Google Inc.)
Task: {049367D6-F87A-4D17-B1DE-558835EA4FDE} - System32\Tasks\MSIAfterburner => E:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2014-06-10] ()
Task: {16777DFC-3AED-43B2-A975-55120ED4E5AF} - System32\Tasks\{10F4F9E3-C9C0-4B37-9EA5-B003861E3260} => pcalua.exe -a D:\Sound\Realtek\HD\WIN7\Setup.exe -d D:\Sound\Realtek\HD\WIN7 -c /s /f2c:\RHDSetup.log /z[-rpC:\RHDSetup.log] /runfromtemp
Task: {43F5D360-9B2A-4CF6-B5E6-FB03290CA8B8} - System32\Tasks\{367C78BC-7B77-44E3-A42E-57CE19E18536} => pcalua.exe -a "D:\OtherDriver\Intel SBA\setup.exe" -d "D:\OtherDriver\Intel SBA" -c -s
Task: {84C5EDAD-146B-41F6-A700-F5D196A3A0BD} - System32\Tasks\{921D9550-2639-4392-93BD-4AB1855086F8} => pcalua.exe -a D:\Utility\Google\Chrome.exe -d D:\Utility\Google -c /r:MSIM /b /q
Task: {8B114F4F-D009-41C8-A8AC-C494B527FA93} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-11] (Google Inc.)
Task: {B18988F1-53C9-4C76-BDD5-C2F233883C23} - System32\Tasks\{3256E4CA-0D03-40C7-8002-F54EA91DDC3B} => pcalua.exe -a "D:\OtherDriver\Intel SCT\Setup.exe" -d "D:\OtherDriver\Intel SCT" -c -s
Task: {C56F7E38-2CD7-4FF3-A5D9-68FBD37D5567} - System32\Tasks\RtlNetworkGenieVistaStart => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe [2014-04-23] (Realtek Semiconductor)
Task: {D3FC7087-5138-4FA1-AFB4-B07BD7D38417} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-10] (Adobe Systems Incorporated)
Task: {E788817D-59E4-4B2C-B3F4-99B4C8BCBBA0} - System32\Tasks\Intel(R) Small Business Advantage\Notifier => C:\Program Files\Intel\Intel(R) Small Business Advantage\UI\SBA_Notifier.exe [2014-03-27] (Intel Corporation)
Task: {EA3FB6AB-D713-44AB-9A1D-19B06A815B02} - System32\Tasks\{074BCF39-453F-47FF-86F7-85CB69949B0C} => pcalua.exe -a "D:\OtherDriver\Intel AMT Driver\SetupME.exe" -d "D:\OtherDriver\Intel AMT Driver" -c -s -nocall
Task: {ED5D20EF-7AE0-45B0-AC3C-29DCB3EDD47E} - System32\Tasks\{71D60C4A-A1EA-4EF5-891D-7342218A3588} => pcalua.exe -a D:\Network\Realtek\PCIE\WIN7\setup.exe -d D:\Network\Realtek\PCIE\WIN7 -c /extract_all:"C:\Users\Michel\AppData\Local\Temp\MSI\Realtek PCIE Network Drivers" /s /f2c:\mylog.log /z[-rpC:\RHDSetup.log]
Task: {FF475DB9-2A33-4C06-A0F1-949B7C2341EF} - System32\Tasks\{063D5050-4A22-406A-8316-FAF58267709A} => pcalua.exe -a D:\ChipSet\Intel\Patsburg\SetupChipset.exe -d D:\ChipSet\Intel\Patsburg -c -s
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RtlNetworkGenieVistaStart.job => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-06 12:07 - 2015-06-17 08:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-05 11:41 - 2014-06-05 11:41 - 00399360 _____ () E:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll
2014-06-10 08:04 - 2014-06-10 08:04 - 00465064 _____ () E:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2015-06-14 20:11 - 2015-01-29 13:41 - 01992704 _____ () C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
2014-06-05 11:41 - 2014-06-05 11:41 - 00188928 _____ () E:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
2014-06-05 11:40 - 2014-06-05 11:40 - 00026112 _____ () E:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
2014-06-05 11:41 - 2014-06-05 11:41 - 00088576 _____ () E:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2015-06-06 11:32 - 2014-04-21 09:09 - 00150528 ____R () C:\Program Files (x86)\MSI\NetworkGenie\gep.dll
2014-06-05 11:40 - 2014-06-05 11:40 - 00354816 _____ () E:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll
2014-06-05 07:36 - 2014-06-05 07:36 - 00071680 _____ () E:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2014-06-05 07:36 - 2014-06-05 07:36 - 00056832 _____ () E:\Program Files (x86)\MSI Afterburner\RTFC.dll
2014-06-05 07:37 - 2014-06-05 07:37 - 00216064 _____ () E:\Program Files (x86)\MSI Afterburner\RTCore.dll
2014-06-05 07:36 - 2014-06-05 07:36 - 00127488 _____ () E:\Program Files (x86)\MSI Afterburner\RTUI.dll
2014-06-05 07:37 - 2014-06-05 07:37 - 00638976 _____ () E:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2015-06-14 19:56 - 2005-07-18 13:43 - 00160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2015-06-14 19:56 - 2014-08-13 20:10 - 01723856 _____ () C:\MSI\Smart Utilities\SuperRAIDExt.DLL
2015-06-06 12:02 - 2015-06-24 13:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-06-05 11:40 - 2014-06-05 11:40 - 00056320 _____ () E:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2014-06-05 11:40 - 2014-06-05 11:40 - 00127488 _____ () E:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2014-06-05 11:40 - 2014-06-05 11:40 - 00071680 _____ () E:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2015-06-06 17:59 - 2015-04-16 19:40 - 00776192 _____ () E:\Steam\SDL2.dll
2015-06-06 17:59 - 2015-04-23 04:16 - 04962816 _____ () E:\Steam\v8.dll
2015-06-06 17:59 - 2015-04-23 04:16 - 01556992 _____ () E:\Steam\icui18n.dll
2015-06-06 17:59 - 2015-04-23 04:16 - 01187840 _____ () E:\Steam\icuuc.dll
2015-06-06 17:59 - 2015-06-04 20:56 - 02407104 _____ () E:\Steam\video.dll
2015-06-06 17:59 - 2014-12-01 23:31 - 02396672 _____ () E:\Steam\libavcodec-56.dll
2015-06-06 17:59 - 2014-12-01 23:31 - 00442880 _____ () E:\Steam\libavutil-54.dll
2015-06-06 17:59 - 2014-12-01 23:31 - 00479744 _____ () E:\Steam\libavformat-56.dll
2015-06-06 17:59 - 2014-12-01 23:31 - 00332800 _____ () E:\Steam\libavresample-2.dll
2015-06-06 17:59 - 2014-12-01 23:31 - 00485888 _____ () E:\Steam\libswscale-3.dll
2015-06-06 17:59 - 2015-06-04 20:56 - 00703168 _____ () E:\Steam\bin\chromehtml.DLL
2015-06-06 17:59 - 2015-05-11 21:01 - 36302728 _____ () E:\Steam\bin\libcef.dll
2015-06-08 18:51 - 2015-06-08 18:52 - 00566272 _____ () C:\Program Files (x86)\GalaxyClient\PocoUtil.dll
2015-06-08 18:51 - 2015-06-08 18:52 - 00415744 _____ () C:\Program Files (x86)\GalaxyClient\PocoJSON.dll
2015-06-08 18:51 - 2015-06-08 18:52 - 01784320 _____ () C:\Program Files (x86)\GalaxyClient\PocoFoundation.dll
2015-06-08 18:51 - 2015-04-09 15:52 - 00412672 _____ () C:\Program Files (x86)\GalaxyClient\pcre.dll
2015-06-08 18:51 - 2015-04-09 15:52 - 00094208 _____ () C:\Program Files (x86)\GalaxyClient\zlib.dll
2015-06-08 18:51 - 2015-06-08 18:53 - 00515584 _____ () C:\Program Files (x86)\GalaxyClient\PocoXML.dll
2015-06-08 18:51 - 2015-04-09 15:52 - 00139776 _____ () C:\Program Files (x86)\GalaxyClient\expat.dll
2015-06-08 18:51 - 2015-06-08 18:52 - 01202176 _____ () C:\Program Files (x86)\GalaxyClient\PocoNet.dll
2015-06-08 18:51 - 2015-06-08 18:52 - 02577408 _____ () C:\Program Files (x86)\GalaxyClient\PocoData.dll
2015-06-08 18:51 - 2015-06-08 18:52 - 00477184 _____ () C:\Program Files (x86)\GalaxyClient\PocoDataSQLite.dll
2015-06-08 18:51 - 2015-06-08 18:53 - 00649728 _____ () C:\Program Files (x86)\GalaxyClient\sqlite.dll
2015-06-08 18:51 - 2015-06-08 18:53 - 00340480 _____ () C:\Program Files (x86)\GalaxyClient\PocoZip.dll
2015-06-08 18:51 - 2015-06-08 18:52 - 00332288 _____ () C:\Program Files (x86)\GalaxyClient\PocoNetSSL.dll
2015-06-08 18:51 - 2015-06-08 18:52 - 00172032 _____ () C:\Program Files (x86)\GalaxyClient\PocoCrypto.dll
2015-06-08 18:51 - 2015-04-09 15:52 - 41299456 _____ () C:\Program Files (x86)\GalaxyClient\libcef.dll
2015-06-08 18:51 - 2015-04-09 15:52 - 00107520 _____ () C:\Program Files (x86)\GalaxyClient\ZLIB1.dll
2015-06-08 18:51 - 2015-04-09 15:52 - 00888832 _____ () C:\Program Files (x86)\GalaxyClient\ffmpegsumo.dll
2015-07-11 00:15 - 2015-07-07 05:49 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.132\libglesv2.dll
2015-07-11 00:15 - 2015-07-07 05:49 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.132\libegl.dll
2014-09-03 11:03 - 2014-09-03 11:03 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3544290090-1581138617-1217465911-1000\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-3544290090-1581138617-1217465911-1000\...\aeriagames.com -> hxxp://aeriagames.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3544290090-1581138617-1217465911-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.2.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: Futuremark SystemInfo Service => 3
MSCONFIG\Services: ISCTAgent => 2

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5F05C659-E842-482D-8197-EEEA0C46F4CE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8956A7D9-1047-478C-9D22-A9370CFD8F46}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{EDA37F1F-E14F-447D-B9F8-8037F4F5CF1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{1AD0BB53-1669-48FF-9694-E233A1C82BA9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{25297FA2-2120-426B-9DEB-0590CCE9379D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{756C3595-2B91-49E0-8F62-6E2BC2C811B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{11188A01-A289-4AC9-809C-86755AB93C84}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{5ACFFBC1-1703-47C5-A0A5-A2166F39829A}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{7A23EB2F-3C34-41CE-B4ED-826AEA93F4E7}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{C620D2E1-94F8-459F-BDBA-2DF54B532EA6}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{D9BFAA8B-ECAB-471B-AAF7-F676C546CA5E}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{8D30F708-C580-4247-8043-8ED3139FC9C9}] => (Allow) E:\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [{83754AD5-E0DD-48B3-9FED-BE95BD927898}] => (Allow) E:\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [{529198AA-C2BC-4667-91A9-AD504A63C878}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{A4B85419-8884-4D68-BA01-BB5E80377548}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{2502437C-9105-4814-AF61-E68DA0430238}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{1E4B860F-70DB-4D23-8A2D-FC19FD9E7224}] => (Allow) E:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{9D46B05E-65B3-4985-9B68-70B0097E2010}] => (Allow) E:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{FF1C51D1-676A-4DDA-85F2-FDFBD4DBB2C0}E:\steam\steamapps\common\dayz\dayz.exe] => (Allow) E:\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{AEAF97B8-EB5E-4FF8-845B-87A85C5C675D}E:\steam\steamapps\common\dayz\dayz.exe] => (Allow) E:\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{DB7BD3E4-8A09-4E37-A013-ACCB6EF2F97B}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{6A194C40-4CE3-4A7D-9279-421DF4757F57}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{0CE8E000-AAF0-433E-BDF8-F2D66E671780}C:\users\michel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{2FAF73AE-2826-4823-AA43-DF0F76982C79}C:\users\michel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{9D81415D-2C3A-4720-B45E-A98B3F0061F3}] => (Allow) E:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{FFA9313F-34EB-48B7-84AC-2197BF29742C}] => (Allow) E:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{AD81A4C3-D33F-4C44-911E-0A00D94A5263}E:\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{29FBE69C-75AF-4245-9172-56224C244D11}E:\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{112E390B-BC82-427B-88B2-349B43E46457}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A06C8685-9670-4416-992F-8D71C543D38B}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [{E251BB09-6D46-4099-B738-E3DF1229803A}] => (Allow) E:\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{5A5613B8-B775-4AAC-ABD2-EA124DB2C4A6}] => (Allow) E:\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{E816D54D-8345-4DA1-9082-B9975E7036C6}] => (Allow) E:\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{51EAF270-0A54-422E-9721-710BFDB91347}] => (Allow) E:\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{95DB8D21-4F45-4B47-A050-1D71399A4CC3}E:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{88ADBB8F-2DB3-4635-8524-C454E261C051}E:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{8BA381C7-8F44-43DB-AC0D-B94C5360DDFA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/10/2015 10:52:29 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!

Error: (07/10/2015 10:49:55 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!

Error: (07/10/2015 10:48:27 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!

Error: (07/10/2015 09:40:32 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Fehler bei der Installation des Kaufnachweises. 0xC004F061
Teil-Pkey=M9RFK
ACID=2e7d060d-4714-40f2-9896-1e4f15b612ad
Genauer Fehler[?]

Error: (06/27/2015 04:13:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm GFExperience.exe, Version 2.4.5.57 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1918

Startzeit: 01d0b07cd3c54300

Endzeit: 41

Anwendungspfad: C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe

Berichts-ID:

Error: (06/24/2015 10:07:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm HeroesOfTheStorm_x64.exe, Version 0.11.1.35702 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 3c0

Startzeit: 01d0aeb95014da97

Endzeit: 61

Anwendungspfad: E:\Heroes of the Storm\Versions\Base35702\HeroesOfTheStorm_x64.exe

Berichts-ID:

Error: (06/24/2015 10:06:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm HeroesOfTheStorm_x64.exe, Version 0.11.1.35702 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 8ec

Startzeit: 01d0aeb90d5feb3b

Endzeit: 98

Anwendungspfad: E:\Heroes of the Storm\Versions\Base35702\HeroesOfTheStorm_x64.exe

Berichts-ID:

Error: (06/21/2015 01:10:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: nvcplui.exe, Version: 8.1.800.0, Zeitstempel: 0x556691d8
Name des fehlerhaften Moduls: nvgames.dll, Version: 6.14.13.5306, Zeitstempel: 0x556694d6
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000711d3
ID des fehlerhaften Prozesses: 0x17cc
Startzeit der fehlerhaften Anwendung: 0xnvcplui.exe0
Pfad der fehlerhaften Anwendung: nvcplui.exe1
Pfad des fehlerhaften Moduls: nvcplui.exe2
Berichtskennung: nvcplui.exe3

Error: (06/20/2015 11:19:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm EOS.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 7d4

Startzeit: 01d0ab9ebc4618a9

Endzeit: 12

Anwendungspfad: E:\AeriaGames\EOS\GameClient\System\EOS.exe

Berichts-ID: 0f6f8001-1792-11e5-94f7-d8cb8a30e87f

Error: (06/18/2015 08:35:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm EvilWithin.exe, Version 1.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 24c

Startzeit: 01d0a9f591ceb4a8

Endzeit: 48

Anwendungspfad: E:\The Evil Within\EvilWithin.exe

Berichts-ID: d880dbf3-15e8-11e5-85fd-d8cb8a30e87f


System errors:
=============
Error: (07/11/2015 12:57:26 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.

Error: (07/11/2015 12:55:56 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/11/2015 12:55:56 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Integrated Clock Controller Service - Intel(R) ICCS" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (07/11/2015 12:55:56 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Extreme Tuning Utility Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (07/11/2015 12:55:56 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (07/11/2015 12:55:56 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/11/2015 12:55:56 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/11/2015 12:55:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Software Protection" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/11/2015 12:55:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/11/2015 12:55:55 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "SuperRAIDSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office:
=========================
Error: (07/10/2015 10:52:29 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0

Error: (07/10/2015 10:49:55 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0

Error: (07/10/2015 10:48:27 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0

Error: (07/10/2015 09:40:32 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: 0xC004F061M9RFK2e7d060d-4714-40f2-9896-1e4f15b612ad?

Error: (06/27/2015 04:13:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: GFExperience.exe2.4.5.57191801d0b07cd3c5430041C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe

Error: (06/24/2015 10:07:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: HeroesOfTheStorm_x64.exe0.11.1.357023c001d0aeb95014da9761E:\Heroes of the Storm\Versions\Base35702\HeroesOfTheStorm_x64.exe

Error: (06/24/2015 10:06:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: HeroesOfTheStorm_x64.exe0.11.1.357028ec01d0aeb90d5feb3b98E:\Heroes of the Storm\Versions\Base35702\HeroesOfTheStorm_x64.exe

Error: (06/21/2015 01:10:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: nvcplui.exe8.1.800.0556691d8nvgames.dll6.14.13.5306556694d6c000000500000000000711d317cc01d0abae557423a6C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exeC:\Program Files\NVIDIA Corporation\Display\nvgames.dll9939a75a-17a1-11e5-bd88-d8cb8a30e87f

Error: (06/20/2015 11:19:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: EOS.exe0.0.0.07d401d0ab9ebc4618a912E:\AeriaGames\EOS\GameClient\System\EOS.exe0f6f8001-1792-11e5-94f7-d8cb8a30e87f

Error: (06/18/2015 08:35:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: EvilWithin.exe1.0.0.024c01d0a9f591ceb4a848E:\The Evil Within\EvilWithin.exed880dbf3-15e8-11e5-85fd-d8cb8a30e87f


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4770K CPU @ 3.50GHz
Percentage of memory in use: 26%
Total physical RAM: 16311.99 MB
Available physical RAM: 12059.73 MB
Total Virtual: 48934.18 MB
Available Virtual: 44437.96 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:32.65 GB) NTFS
Drive e: (Volume) (Fixed) (Total:931.51 GB) (Free:805.98 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: D8D949C9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 58FECDE9)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of log ============================
         
--- --- ---
__________________

Alt 11.07.2015, 15:26   #4
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA" - Standard

AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA"



Bitte mal die Scans nach Anleitung wiederholen:

Schritt 1
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Schritt 2

  • Download und Anleitung
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Sollte die Benutzeroberfläche noch in Englisch sein, klicke auf Settings und wähle bei Language Deutsch aus.
  • Unter Einstellungen/ Erkennung und Schutz setze bitte einen Haken bei "Suche nach Rootkits".
  • Gehe zurück zum Armaturenbrett und klicke auf "Jetzt scannen".
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben und poste mir das Log.
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Antwort

Themen zu AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA"
ads, ads by sasa, adware, adwcleaner, browser, bruder, datei, dateien, dinge, eingefangen, forum, gelöscht, internet, malwarebytes, microsoft, probleme, programme, scan, seite, seiten, software, tools, umgeleitet, umleitung auf unerwünschte seiten, urlaub, version, viren, windows



Ähnliche Themen: AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA"


  1. Avir erkennt 6 Viren: "C:\$Recycle.Bin\S-1-5-18\$3dc975db7863de61f56af8e776265b57\U\00000004.@ (Trojan.0Ac" sollen ja nicht gelöscht werden?
    Log-Analyse und Auswertung - 02.12.2017 (22)
  2. Probleme mit Adware "Positive Find Ads"
    Plagegeister aller Art und deren Bekämpfung - 12.02.2015 (15)
  3. win7 -malwerebytesscan erkennt probleme: "yahoo safe finder"
    Log-Analyse und Auswertung - 15.09.2014 (15)
  4. Vermutlich Adware probleme - "synzmetr.exe ; frag-den-doc.de ; evtl. noch mehr"
    Plagegeister aller Art und deren Bekämpfung - 25.07.2014 (15)
  5. Programme werden bei "Programme und Funktionen" nicht angezeigt (Windwos 7)
    Log-Analyse und Auswertung - 13.05.2014 (2)
  6. "Server ist ausgelastet" - "Dieser Vorgang kann nicht ausgeführt werden,da die andere Anwendung aktiv ist.
    Log-Analyse und Auswertung - 29.11.2013 (23)
  7. Windows 7 Home Premium: Advanced System Protector und andere "Plagegeister" eingefangen
    Log-Analyse und Auswertung - 06.11.2013 (11)
  8. Sicherheitscenter deaktiviert und Virus "ADWARE/InstallCo.HA" "ADWARE/bProtect.D" "TR/Mevade.A.95" gefunden
    Log-Analyse und Auswertung - 10.09.2013 (10)
  9. Virus nach installation von "hdplugin_firefox.exe" - Office und andere Programme gelöscht?
    Plagegeister aller Art und deren Bekämpfung - 23.08.2013 (29)
  10. "Server ist ausgelastet" - "Dieser Vorgang kann nicht ausgeführt werden,da die andere Anwendung aktiv ist.
    Diskussionsforum - 30.07.2013 (7)
  11. Online Banking – Sicherheitsabfrage und andere Probleme - laut Kripo "guter Virus"
    Plagegeister aller Art und deren Bekämpfung - 11.07.2013 (17)
  12. "Deutsche Post(eMail-Anhang)" Alle "EXE(Programme)" werden blockiert "WIN 7 Defender"
    Plagegeister aller Art und deren Bekämpfung - 27.12.2012 (3)
  13. DownlaodNSave und andere kleine"Programme"
    Plagegeister aller Art und deren Bekämpfung - 05.12.2012 (2)
  14. Programme aus "Programme"-Ordner öffnen nicht mehr
    Plagegeister aller Art und deren Bekämpfung - 20.03.2011 (1)
  15. "SuperantiSpyware" erkennt "Adware.tracking cookie" kann aber das nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 20.12.2010 (21)
  16. "Adware.Virtumonde"/"Downloader.MisleadApp"/"TR/VB.agt.4"/"NewDotNet.A.1350"/"Fakerec
    Plagegeister aller Art und deren Bekämpfung - 22.08.2008 (6)
  17. Ad-Aware SE erkennt "Adware.agent"
    Plagegeister aller Art und deren Bekämpfung - 19.07.2007 (1)

Zum Thema AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA" - Hey liebes Forum, da ich Heute aus dem Urlaub gekommen bin und mein Bruder mir erzählt hat, dass er unschöne Dinge geladen hat, habe ich mal eben hineingeschaut was passiert - AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA"...
Archiv
Du betrachtest: AdwCleaner erkennt Probleme, andere Programme hingegen nicht | Adware eingefangen "Ads by SASA" auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.