Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Alles rund um Windows (https://www.trojaner-board.de/alles-rund-um-windows/)
-   -   Boot dauert 2 minuten ! das behben. (https://www.trojaner-board.de/164565-boot-dauert-2-minuten-behben.html)

Yoloo 28.02.2015 18:18
Boot dauert 2 minuten ! das behben.
 
Hallo immer wenn ich mein Notebook starte dauert es anfangs 10 sek und dann kommt ein Schwarzerbildschirm!SIEHE HIER :kaffee: :headbang: und das nervt! Wie kann ich das beheben ?

schrauber 28.02.2015 18:53
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Yoloo 28.02.2015 19:07
Hier sind die Dateien
Addition
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-02-2015 01
Ran by admin at 2015-02-28 19:04:01
Running from C:\Users\admin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: BullGuard Antivirus (Enabled - Up to date) {EDBB5818-2352-E06B-028A-4E6873B92CC5}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: BullGuard Antispyware (Enabled - Up to date) {56DAB9FC-0568-EFE5-383A-751A083E6678}
FW: BullGuard Firewall (Enabled) {D580D93D-693D-E133-29D5-E75D8D6A6BBE}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.18.0 - Mirillis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo AppLauncher (Medion) v.1.0.0 (HKLM-x32\...\Ashampoo AppLauncher (Medion)_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
AVG (HKLM\...\AvgZen) (Version: 1.0.445 - AVG Technologies)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.393 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.393 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.393 - AVG Technologies) Hidden
AVG Zen (Version: 1.0.445 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BootRacer (HKLM-x32\...\{4E451C2C-9E30-43A3-BADD-C78698551CFB}) (Version: 4.7.1.372 - Greatis Software, LLC)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
BullGuard Internet Security (HKLM\...\BullGuard) (Version: 14.1 - BullGuard Ltd.)
Counter-Strike Nexon: Zombies (HKLM-x32\...\Steam App 273110) (Version:  - Nexon)
Craften Terminal 4.1.1 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 4.1.1 - Craften.de)
CyberLink PowerDirector (Version: 9.0.0.3815c - CyberLink Corp.) Hidden
DirectX Media Runtime 5.1 (HKLM-x32\...\DirectXMediaRuntime) (Version:  - )
Driver Booster 2.1 (HKLM-x32\...\Driver Booster_is1) (Version: 2.1 - IObit)
FMW 1 (Version: 1.0.308 - AVG Technologies) Hidden
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.10.923 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.1 - IObit)
iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Medion Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Medion Home Cinema 10 (x32 Version: 10.1924 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
MoonTools Version 1.7 (HKLM-x32\...\{61946000-8054-4452-B5F9-719D35D899D8}_is1) (Version: 1.7 - DotExE)
Movavi Video Suite 12 (HKLM-x32\...\Movavi Video Suite 12) (Version: 12.0.0 - Movavi)
Napster 5 Beta (HKLM-x32\...\com.Rhapsody.Napster5) (Version: 1.0.65 - Rhapsody International, Inc)
Napster 5 Beta (x32 Version: 1.0.65 - Rhapsody International, Inc) Hidden
Need For Speed™ World (HKLM-x32\...\{3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}) (Version: 1.0.0.0 - Electronic Arts)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.18 (HKLM\...\{74B7E6F9-DCAC-4ADB-B2D0-EEFDD1B5AC25}) (Version: 4.3.18 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paragon Backup and Recovery™ 2014 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PhoneClean 3.4.0 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 3.4.0 - iMobie Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.3.25.0 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
Renegade X Black Dawn (HKLM\...\UDK-581b33c8-d03f-439f-90ef-66e094fb972e) (Version:  - Epic Games, Inc.)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Star Wars(TM): Knights of the Old Republic (TM) (HKLM-x32\...\{2A9A40C7-6670-4D5F-8F41-D12E2E08B48B}) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3112673566-2443552264-417852688-1005_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3112673566-2443552264-417852688-1005_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

22-02-2015 15:38:21 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {13976834-D209-4E59-B6EC-B2CED07F0582} - System32\Tasks\Game_Booster_Startup => C:\Program Files (x86)\IObit\Game Booster 3\gbtray.exe
Task: {1957DF97-ECD4-421C-BFCD-9548907E669B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {4511A268-79D5-4EB3-BE3D-84F7A2426176} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3112673566-2443552264-417852688-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {54464B76-F7CC-45C1-A5E8-4C221DD45026} - System32\Tasks\Microsoft Office 15 Sync Maintenance for YANNIS-NB-admin Yannis-NB => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
Task: {5FFBCA20-B7C2-4755-AA47-40BB709071D2} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-12-17] (IObit)
Task: {6826CC76-E9EA-497D-BD8D-6F7A6F9CE9CF} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {68D8CA16-0B0C-4EB1-8E90-AEA87DD36531} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3112673566-2443552264-417852688-1001
Task: {6E031886-6297-4C94-9049-8D07C35F6340} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {707B942F-3192-4B73-93F1-76A79CCCB0BB} - System32\Tasks\Driver Booster SkipUAC (adminstrator) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-01-07] (IObit)
Task: {7F90F6BA-27E3-4231-B031-26E52BAF89FC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {854F6AD9-0D93-4DBA-B567-F4B9755D0B28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {862B48BC-6301-4B13-A18A-337DC4C3A28B} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-12-09] (IObit)
Task: {8B2B3EA0-FB8A-4DF6-8821-AD60B7AC7A25} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3112673566-2443552264-417852688-1005 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {A953A2E6-17DB-424D-9851-DC067A66DB44} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {B1074078-5A24-4995-845F-51C314687983} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-02-13] (Microsoft Corporation)
Task: {C9E2C144-B2F2-44DE-B547-21B800A23CA9} - System32\Tasks\Uninstaller_SkipUac_admin => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-30] (IObit)
Task: {D7452AEB-F5D2-4883-9D76-AAA580D18813} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-02-12] (AVG Technologies)
Task: {EB42FC3B-D93C-4726-A929-7E2AF6F0332D} - System32\Tasks\Driver Booster SkipUAC (admin) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-01-07] (IObit)
Task: {F03D8A20-F418-4B0E-8246-EE117A957CB4} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3112673566-2443552264-417852688-1005
Task: {F3BC0814-29D4-40C8-A5D9-1E6C33128F72} - System32\Tasks\Java Platform SE Auto Updater => c:\program files (x86)\common files\java\java update\jusched.exe [2014-12-17] (Oracle Corporation)
Task: {FABD4F54-5966-4130-9EC6-F5C60B687A71} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-30] (IObit)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_admin.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Loaded Modules (whitelisted) ==============

2015-02-23 17:53 - 2015-02-23 17:53 - 00613200 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00084304 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00653136 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00653136 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LibXml2.dll
2013-10-11 12:37 - 2013-10-11 12:37 - 00023376 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BullGuardBhvScannerRes.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00064848 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00084304 _____ () C:\Program Files\BullGuard Ltd\BullGuard\zlib1.dll
2015-01-31 01:10 - 2015-01-31 01:10 - 00186560 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-09-04 13:51 - 2012-09-07 08:00 - 00386344 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-02-12 17:39 - 2015-02-12 17:39 - 00712504 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-02-12 17:39 - 2015-02-12 17:39 - 00855864 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00613200 _____ () C:\Program Files\BullGuard Ltd\BullGuard\SQLite.dll
2015-01-23 15:21 - 2015-01-23 15:20 - 00287528 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BpBackupRes.dll
2014-10-12 10:15 - 2014-10-11 08:15 - 00035656 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BpMainRes.dll
2014-09-12 20:45 - 2014-09-12 20:45 - 31842816 _____ () C:\Program Files (x86)\AVG\Framework\Common\libcef.dll
2015-02-22 14:58 - 2012-11-20 16:13 - 00264192 _____ () C:\Program Files (x86)\Razer\Razer Cortex\D3DX8Wrapper.dll
2015-02-20 17:49 - 2015-02-17 23:44 - 01117512 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libglesv2.dll
2015-02-20 17:49 - 2015-02-17 23:44 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libegl.dll
2015-02-20 17:49 - 2015-02-17 23:44 - 09171272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\pdf.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\admin\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3112673566-2443552264-417852688-1005\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: AppLauncher =>
MSCONFIG\startupreg: iTunesHelper =>
MSCONFIG\startupreg: SunJavaUpdateSched =>
MSCONFIG\startupreg: YouCam Service =>
HKLM\...\StartupApproved\Run: => "Ashampoo Core Tuner 2"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "AppLauncher"
HKLM\...\StartupApproved\Run32: => "YouCam Service"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\StartupApproved\Run: => "DAEMON Tools Pro Agent"

==================== Accounts: =============================

admin (S-1-5-21-3112673566-2443552264-417852688-1005 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-3112673566-2443552264-417852688-500 - Administrator - Disabled)
Gast (S-1-5-21-3112673566-2443552264-417852688-501 - Administrator - Enabled) => C:\Users\TEMP

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/27/2015 06:29:25 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: YANNIS-NB)
Description: winstore_cw5n1h2txyewy32

Error: (02/27/2015 06:29:23 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: YANNIS-NB)
Description: microsoft.winjs.2.0_8wekyb3d8bbwe32

Error: (02/27/2015 06:22:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 5e8

Startzeit: 01d052b1299c6e73

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 1fcf836c-bea5-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 06:20:55 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: YANNIS-NB)
Description: Die Anwendung oder der Dienst "Microsoft Office Document Cache Sync Client Interface" konnte nicht heruntergefahren werden.

Error: (02/27/2015 05:54:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1050

Startzeit: 01d052acf8a108ad

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 489f09f2-bea1-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 05:50:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm javaw.exe, Version 8.0.31.13 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1a0c

Startzeit: 01d052ad28029bf0

Endzeit: 4

Anwendungspfad: C:\Program Files\Java\jre1.8.0_31\bin\javaw.exe

Berichts-ID: c06f2077-bea0-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets:

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (02/27/2015 05:38:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 11b0

Startzeit: 01d052ab273a5a6d

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 1c21b240-be9f-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 05:38:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 11b0

Startzeit: 01d052ab273a5a6d

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 19dec005-be9f-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/23/2015 08:14:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNIS-NB)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (02/23/2015 08:14:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNIS-NB)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


System errors:
=============
Error: (02/28/2015 05:37:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3

Error: (02/27/2015 06:31:35 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:16:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:16:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:16:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:01:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:01:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 05:46:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 05:46:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 05:46:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


Microsoft Office Sessions:
=========================
Error: (02/27/2015 06:29:25 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: YANNIS-NB)
Description: winstore_cw5n1h2txyewy32

Error: (02/27/2015 06:29:23 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: YANNIS-NB)
Description: microsoft.winjs.2.0_8wekyb3d8bbwe32

Error: (02/27/2015 06:22:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.206895e801d052b1299c6e734294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe1fcf836c-bea5-11e4-bf79-685d43dd7a47microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 06:20:55 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: YANNIS-NB)
Description: 1C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXEMicrosoft Office Document Cache Sync Client Interface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

Error: (02/27/2015 05:54:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20689105001d052acf8a108ad4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe489f09f2-bea1-11e4-bf79-685d43dd7a47microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 05:50:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: javaw.exe8.0.31.131a0c01d052ad28029bf04C:\Program Files\Java\jre1.8.0_31\bin\javaw.exec06f2077-bea0-11e4-bf79-685d43dd7a47

Error: (02/27/2015 05:38:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2068911b001d052ab273a5a6d4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe1c21b240-be9f-11e4-bf79-685d43dd7a47microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 05:38:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2068911b001d052ab273a5a6d4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe19dec005-be9f-11e4-bf79-685d43dd7a47microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/23/2015 08:14:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNIS-NB)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141

Error: (02/23/2015 08:14:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNIS-NB)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 41%
Total physical RAM: 3960.38 MB
Available physical RAM: 2333.44 MB
Total Pagefile: 7928.38 MB
Available Pagefile: 5853.84 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.56 GB) (Free:742.56 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================
Und die FRST Datei
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-02-2015 01
Ran by admin (administrator) on YANNIS-NB on 28-02-2015 19:00:04
Running from C:\Users\admin\Downloads
Loaded Profiles: admin (Available profiles: admin & Gast)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\main.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\LittleHook.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-30] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2015-01-30] (Realtek Semiconductor)
HKLM\...\Run: [BullGuard] => C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [1360208 2015-02-23] (BullGuard Ltd.)
HKLM\...\Run: [BullGuardUpdate2] => c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2935120 2015-02-23] (BullGuard Ltd.)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1140688 2015-01-16] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [YouCam Service] => c:\program files (x86)\cyberlink\youcam\youcamservice.exe [258576 2012-07-30] (CyberLink Corp.)
HKLM-x32\...\Run: [AppLauncher] => c:\program files (x86)\medion mediapack 3\ashampoo applauncher (medion)\applauncher.exe [969656 2012-08-10] (Ashampoo)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [98256 2015-01-26] (Razer Inc.)
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\Bootrace.exe [3843344 2014-04-23] ( (Greatis Software))
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\MountPoints2: E - "E:\zdata\cobi.exe"
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\MountPoints2: {813773ef-312d-11e4-be66-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-18\...\Run: [Advanced SystemCare 7] => "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
IFEO\bootrace.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\driverbooster.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\effectextractor.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\itunes.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mediaespresso.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\origin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\pdvdlaunchpolicy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerdvdcopy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ps.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\psi.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skipuacexec.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstaler_skipuac.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstalldisplay.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\youcam.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  No File
ShellIconOverlayIdentifiers: [BackupOverlayErr] -> {8749448C-D907-45BF-A842-4D3898894AC8} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlayInProgress] -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlaySynced] -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->  No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} ->  No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default
FF NetworkProxy: "ftp", "185.49.15.25"
FF NetworkProxy: "ftp_port", 7808
FF NetworkProxy: "http", "        202.77.124.91 "
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "no_proxies_on", "localhost"
FF NetworkProxy: "socks", "185.49.15.25"
FF NetworkProxy: "socks_port", 7808
FF NetworkProxy: "ssl", "185.49.15.25"
FF NetworkProxy: "ssl_port", 7808
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\user.js
FF Extension: Ghostery - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\firefox@ghostery.com.xpi [2014-10-19]
FF Extension: Webutation - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2014-10-05]
FF Extension: Adblock Plus - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-19]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome:
=======
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-22]
CHR Extension: (Google Docs) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-22]
CHR Extension: (Google Drive) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-22]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-22]
CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-22]
CHR Extension: (Adblock Plus) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-23]
CHR Extension: (Google Search) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-22]
CHR Extension: (Google Wallet) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-22]
CHR Extension: (YouTube Unblocker) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-10-27]
CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-22]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [865744 2015-01-16] (AVG Technologies CZ, s.r.o.)
S4 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
R2 BsBackup; C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll [850768 2015-02-23] (BullGuard Ltd.)
R2 BsBhvScan; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [601424 2015-02-27] (BullGuard Ltd.)
R2 BsCache; C:\Program Files\BullGuard Ltd\BullGuard\BsCache.dll [156496 2015-02-27] (BullGuard Ltd.)
R2 BsFileScan; c:\program files\bullguard ltd\bullguard\BsFileScan.dll [428368 2015-02-23] (BullGuard Ltd.)
R2 BsFire; c:\program files\bullguard ltd\bullguard\BsFire.dll [764752 2015-02-23] (BullGuard Ltd.)
R2 BsMailProxy; c:\program files\bullguard ltd\bullguard\BsMailProxy\BsMailProxy.dll [759632 2015-02-23] (BullGuard Ltd.)
R2 BsMain; C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll [553808 2015-02-23] (BullGuard Ltd.)
R2 BsScanner; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [280912 2015-02-27] (BullGuard Ltd.)
R2 BsUpdate; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [385360 2015-02-23] (BullGuard Ltd.)
R3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-19] (Microsoft Corporation)
S4 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-13] (CyberLink)
S4 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2635552 2015-01-30] (IObit)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-13] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186560 2015-01-31] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2012-09-07] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-01-26] (Razer Inc.)
S4 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S4 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604856 2015-02-12] (AVG Technologies)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44856 2015-02-12] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36664 2015-02-12] (AVG Technologies)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 ClickToRunSvc; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AFW; C:\Windows\system32\DRIVERS\afw.sys [41680 2014-09-07] (Agnitum Ltd.)
R3 afwcore; C:\Windows\system32\DRIVERS\afwcore.sys [469712 2014-09-07] (Agnitum Ltd.)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-18] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R1 BdAgent; C:\Windows\System32\DRIVERS\BdAgent.sys [117184 2014-05-15] (BullGuard Ltd.)
R3 BdNet; C:\Windows\system32\DRIVERS\BdNet.sys [34384 2014-03-19] (BullGuard Ltd.)
R1 BdSpy; C:\Windows\System32\drivers\BdSpy.sys [67680 2014-02-26] (BullGuard Ltd.)
S3 BioNTDrv; C:\Program Files\Paragon Software\Backup and Recovery 2014 Free\program\BioNTDrv.SYS [18696 2014-05-19] (Paragon Software Group)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131328 2014-11-19] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [32768 2014-11-19] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2015-01-30] (Motorola Solutions, Inc.)
S3 cpuz137; No ImagePath
U3 dtscsidrv; C:\Windows\System32\Drivers\dtscsidrv.sys [309248 2014-11-15] (Disc Soft Ltd)
S3 GPUZ; No ImagePath
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-30] (REALiX(tm))
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-01-30] (Intel Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew01.sys [3354384 2015-01-30] (Intel Corporation)
R1 NovaShieldFilterDriver; C:\Windows\System32\DRIVERS\NSKernel.sys [260824 2015-02-27] (BullGuard Ltd.)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-01-31] (Razer, Inc.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-19] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-11-29] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-11-14] (Duplex Secure Ltd.)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [350160 2014-02-26] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-08-28] (TuneUp Software)
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
R1 UimBus; C:\Windows\System32\drivers\UimBus.sys [102664 2014-05-19] ()
R1 Uim_DEVIM; C:\Windows\System32\drivers\uim_devim.sys [25992 2014-05-19] ()
R1 Uim_IM; C:\Windows\System32\drivers\uim_im.sys [700296 2014-05-19] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-28 19:00 - 2015-02-28 19:01 - 00019005 _____ () C:\Users\admin\Downloads\FRST.txt
2015-02-28 18:59 - 2015-02-28 19:00 - 00000000 ____D () C:\FRST
2015-02-28 18:58 - 2015-02-28 18:58 - 02087936 _____ (Farbar) C:\Users\admin\Downloads\FRST64.exe
2015-02-28 17:39 - 2015-02-28 17:39 - 00000512 _____ () C:\WINDOWS\system32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
2015-02-27 18:19 - 2015-02-28 17:37 - 00000298 _____ () C:\WINDOWS\Tasks\Uninstaller_SkipUac_admin.job
2015-02-27 18:19 - 2015-02-27 18:36 - 00002400 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_admin
2015-02-27 18:11 - 2015-02-27 18:12 - 00364443 _____ () C:\Users\admin\Downloads\MicrosoftFixit20101.mini.diagcab
2015-02-25 16:05 - 2015-02-27 17:39 - 00260824 _____ (BullGuard Ltd.) C:\WINDOWS\system32\Drivers\NSKernel.sys
2015-02-23 17:53 - 2015-02-23 17:53 - 00153712 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BgGamingMonitor.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00140280 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BgGamingMonitor.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00076624 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BGLsp.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00064336 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BGLsp.dll
2015-02-22 18:28 - 2015-02-22 18:29 - 00316416 _____ () C:\Users\admin\Downloads\updater.exe
2015-02-22 18:18 - 2015-02-22 18:18 - 03319548 _____ () C:\Users\admin\Downloads\forge-1.8-11.14.0.1295-1.8-installer-win.exe
2015-02-22 17:03 - 2015-02-22 17:03 - 00239191 _____ () C:\Users\admin\Downloads\RRe36's Shaders v7.zip
2015-02-22 16:38 - 2015-02-22 16:38 - 00001131 _____ () C:\Users\Public\Desktop\Craften Terminal.lnk
2015-02-22 16:37 - 2015-02-22 16:38 - 24581548 _____ (Craften.de ) C:\Users\admin\Downloads\craftenterminal.exe
2015-02-22 16:20 - 2015-02-28 17:37 - 00000770 _____ () C:\WINDOWS\setupact.log
2015-02-22 16:20 - 2015-02-28 17:36 - 00028524 _____ () C:\WINDOWS\PFRO.log
2015-02-22 16:20 - 2015-02-22 16:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-02-22 15:44 - 2015-02-22 15:45 - 10113386 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2771431-x64.msu
2015-02-22 15:39 - 2015-02-22 15:40 - 138370416 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x64 (1).msu.crdownload
2015-02-22 15:36 - 2015-02-22 15:38 - 170699203 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x64.msu
2015-02-22 15:35 - 2015-02-22 15:35 - 102182172 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x86 (1).msu
2015-02-22 15:31 - 2015-02-22 15:32 - 102182172 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x86.msu
2015-02-22 14:58 - 2015-02-22 14:58 - 00001274 _____ () C:\Users\Public\Desktop\Razer Cortex.lnk
2015-02-22 14:58 - 2015-01-31 01:08 - 00037184 _____ (Razer, Inc.) C:\WINDOWS\system32\Drivers\rzpmgrk.sys
2015-02-22 13:49 - 2015-02-22 18:28 - 00000000 ____D () C:\Users\admin\Downloads\SIDATA
2015-02-22 13:49 - 2015-02-22 13:49 - 00011704 _____ () C:\Users\admin\Downloads\WorldReset.jar
2015-02-22 13:49 - 2015-02-22 13:49 - 00000509 _____ () C:\Users\admin\Downloads\server.properties
2015-02-22 12:58 - 2015-02-22 16:26 - 00000000 ____D () C:\WINDOWS\pss
2015-02-21 11:18 - 2015-02-21 11:18 - 00001765 _____ () C:\Users\Public\Desktop\iTunes.lnk
2015-02-21 11:18 - 2015-02-21 11:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-02-21 11:17 - 2015-02-21 11:18 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-02-21 11:17 - 2015-02-21 11:18 - 00000000 ____D () C:\Program Files\iTunes
2015-02-21 11:17 - 2015-02-21 11:17 - 00000000 ____D () C:\Program Files\iPod
2015-02-21 11:17 - 2015-02-21 11:17 - 00000000 ____D () C:\Program Files (x86)\iTunes
2015-02-20 18:23 - 2015-02-20 18:23 - 00001031 _____ () C:\Users\Public\Desktop\MoonTools.lnk
2015-02-20 18:23 - 2015-02-20 18:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MoonTools
2015-02-20 18:23 - 2015-02-20 18:23 - 00000000 ____D () C:\Program Files (x86)\MoonTools
2015-02-20 18:22 - 2015-02-20 18:22 - 00569372 _____ (DotExE ) C:\Users\admin\Downloads\MoonTools.exe
2015-02-20 18:11 - 2015-02-20 18:11 - 00170454 _____ () C:\Users\admin\Downloads\xape.rar
2015-02-20 18:11 - 2015-02-20 18:11 - 00170454 _____ () C:\Users\admin\Desktop\xape.rar
2015-02-20 18:11 - 2015-02-20 18:11 - 00000000 ____D () C:\Users\admin\Desktop\xape
2015-02-17 18:46 - 2015-02-17 18:46 - 00897109 _____ () C:\Users\admin\Downloads\OptiFine_1.8.0_HD_U_D1.jar
2015-02-16 17:03 - 2015-02-27 18:02 - 00005138 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for YANNIS-NB-admin Yannis-NB
2015-02-16 15:07 - 2015-02-16 15:08 - 01959424 _____ (Mc-Interface) C:\Users\admin\Downloads\Server Interface 2015.exe
2015-02-15 13:52 - 2015-02-15 13:52 - 00144204 _____ () C:\Users\admin\Downloads\Bedwars.jar
2015-02-15 13:32 - 2015-02-15 13:32 - 00165409 _____ () C:\Users\admin\Downloads\ServerEssentials_.jar
2015-02-15 13:23 - 2015-02-15 13:30 - 00027445 _____ () C:\Users\admin\Downloads\AdminEssentials.jar
2015-02-15 11:07 - 2015-02-15 11:07 - 00340556 _____ () C:\Users\admin\Downloads\commandbook-2.4.zip
2015-02-15 11:03 - 2015-02-15 11:03 - 00013216 _____ () C:\Users\admin\Downloads\SHT2.jar
2015-02-15 11:02 - 2015-02-15 11:02 - 00227185 _____ () C:\Users\admin\Downloads\SurvivalGames.jar
2015-02-15 11:00 - 2015-02-15 11:01 - 00642910 _____ () C:\Users\admin\Downloads\ChestShop.jar
2015-02-15 11:00 - 2015-02-15 11:00 - 00131877 _____ () C:\Users\admin\Downloads\HeroChat.jar
2015-02-15 10:57 - 2015-02-15 10:58 - 00121405 _____ () C:\Users\admin\Downloads\bPermissions-2.10.9m.jar
2015-02-14 14:37 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-02-14 14:37 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-14 12:07 - 2015-02-14 12:07 - 00000850 _____ () C:\Users\admin\Downloads\permissions.yml
2015-02-14 11:40 - 2015-02-14 11:41 - 00723264 _____ () C:\Users\admin\Downloads\PermissionsEx-1.22.7.jar
2015-02-14 11:20 - 2015-02-14 11:20 - 01751040 _____ (Mc-Interface) C:\Users\admin\Downloads\Server Manager.exe
2015-02-14 11:15 - 2015-02-14 11:15 - 07903505 _____ () C:\Users\admin\Downloads\minecraft_server.1.8.1.jar
2015-02-14 11:11 - 2015-02-14 11:11 - 02742070 _____ () C:\Users\admin\Downloads\MinecraftServerLauncher (1).rar
2015-02-14 11:05 - 2015-02-14 11:05 - 01078825 _____ () C:\Users\admin\Downloads\SpigotPatcher4.jar
2015-02-14 11:04 - 2015-02-14 11:04 - 19711027 _____ () C:\Users\admin\Downloads\spigot_server.jar
2015-02-14 10:50 - 2015-02-14 10:50 - 00058087 _____ () C:\Users\admin\Downloads\MC ServerVille (1.2.0).jar
2015-02-14 10:46 - 2015-02-14 10:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-02-14 10:44 - 2015-02-14 10:44 - 00911178 _____ () C:\Users\admin\Downloads\MinecraftServerLauncher.rar
2015-02-14 10:42 - 2015-02-28 17:36 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-02-14 10:42 - 2015-02-14 10:42 - 01066176 _____ (Microsoft Corporation) C:\Users\admin\Downloads\Setup.X86.de-DE_O365HomePremRetail_151f5233-64d7-4946-a9d6-bd1f63973836_TX_DB_.exe
2015-02-13 19:42 - 2015-02-12 17:39 - 00044856 _____ (AVG Technologies) C:\WINDOWS\system32\uxtuneup.dll
2015-02-13 19:42 - 2015-02-12 17:39 - 00036664 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\uxtuneup.dll
2015-02-13 19:42 - 2015-02-12 17:39 - 00030520 _____ (AVG Technologies) C:\WINDOWS\system32\authuitu.dll
2015-02-13 19:42 - 2015-02-12 17:39 - 00025912 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\authuitu.dll
2015-02-11 15:47 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 15:47 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 15:47 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 15:47 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 15:47 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-02-11 15:47 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-11 15:47 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-02-11 15:47 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-02-11 15:47 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-02-11 15:47 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-02-11 15:47 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-02-11 15:47 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-02-11 15:47 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-02-11 15:47 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-02-11 15:47 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-02-11 15:47 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-02-11 15:47 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-02-11 15:47 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-02-11 15:47 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-02-11 15:47 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-02-11 15:47 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-02-11 15:47 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-02-11 15:47 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-02-11 15:47 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-02-11 15:47 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-11 15:47 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-02-11 15:47 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-02-11 15:47 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-02-11 15:47 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-02-11 15:47 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-02-11 15:47 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-02-11 15:47 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-02-11 15:47 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-02-11 15:47 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-11 15:47 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-02-11 15:47 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-02-11 15:47 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-02-11 15:47 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-02-11 15:47 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-02-11 15:47 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-02-11 15:47 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-02-11 15:47 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-02-11 15:47 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-11 15:47 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-02-11 15:47 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-02-11 15:47 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 15:47 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 15:47 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 15:47 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 15:47 - 2014-12-09 00:12 - 00391526 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-02-11 15:46 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 15:46 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-02-10 18:40 - 2015-02-10 18:40 - 00000059 _____ () C:\Users\admin\Desktop\rechtschreibpruefung24.de • Kostenlos Rechtschreibung und Grammatik prüfen.url
2015-02-09 18:07 - 2015-02-03 20:31 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-02-09 18:07 - 2015-02-03 20:31 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-07 10:39 - 2015-02-28 18:44 - 00001138 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-07 10:39 - 2015-02-28 17:39 - 00001134 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-01 20:10 - 2015-02-01 20:10 - 04603248 _____ () C:\Users\admin\Desktop\TechnicLauncher.exe
2015-02-01 18:20 - 2015-02-01 18:20 - 00000706 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2015-01-30 10:17 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-01-30 10:17 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-01-30 09:46 - 2015-01-30 09:46 - 00000000 ____D () C:\f84ec8345ba3ea218d
2015-01-30 09:46 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-30 09:46 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-30 09:45 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-30 09:45 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-30 09:43 - 2015-01-30 09:43 - 00272600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2015-01-30 09:35 - 2015-01-30 09:35 - 08108584 _____ () C:\WINDOWS\system32\Drivers\Netwfw01.dat
2015-01-30 09:35 - 2015-01-30 09:35 - 03354384 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwew01.sys
2015-01-30 09:33 - 2015-01-30 09:33 - 71040000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-01-30 09:33 - 2015-01-30 09:33 - 05804772 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-01-30 09:33 - 2015-01-30 09:33 - 04263128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-01-30 09:33 - 2015-01-30 09:33 - 03186544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 02860760 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 02827120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 01443340 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-01-30 09:33 - 2015-01-30 09:33 - 01287384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00959704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00629464 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-01-30 09:31 - 2015-01-30 09:31 - 00129312 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2015-01-30 09:30 - 2015-01-30 09:30 - 00874712 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2015-01-30 09:30 - 2015-01-30 09:30 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-30 09:30 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-30 09:30 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-30 09:30 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-30 09:30 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-30 09:24 - 2015-01-30 09:24 - 01721216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2015-01-30 09:24 - 2015-01-30 09:24 - 01424184 _____ (Motorola Solutions, Inc.) C:\WINDOWS\system32\Drivers\btmhsf.sys
2015-01-30 09:20 - 2015-01-30 09:53 - 00003216 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan
2015-01-30 09:20 - 2015-01-30 09:53 - 00003160 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update
2015-01-30 09:20 - 2015-01-30 09:53 - 00002856 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (admin)
2015-01-30 09:20 - 2015-01-30 09:20 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-01-30 09:20 - 2015-01-30 09:20 - 00001278 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-28 19:01 - 2014-09-07 10:35 - 00000000 ____D () C:\ProgramData\BullGuard
2015-02-28 19:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-02-28 18:21 - 2014-10-11 09:25 - 00003934 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ABD14460-EF79-4800-AB81-FF8583620032}
2015-02-28 18:18 - 2014-09-20 17:01 - 00000000 ____D () C:\Users\admin\AppData\Roaming\.minecraft
2015-02-28 18:03 - 2014-09-02 19:42 - 01265071 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-28 17:39 - 2014-11-01 11:17 - 00019677 ____H () C:\Users\Public\Documents\bootracer.log
2015-02-28 17:39 - 2014-10-24 13:26 - 00000683 ____H () C:\Users\Public\Documents\bootracer.ini
2015-02-28 17:39 - 2014-09-21 09:35 - 00000000 ___RD () C:\Users\admin\OneDrive
2015-02-28 17:37 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-27 19:26 - 2014-09-07 13:09 - 00403196 _____ () C:\WINDOWS\system32\config\afw_db.conf
2015-02-27 19:26 - 2014-09-07 13:09 - 00000532 _____ () C:\WINDOWS\system32\config\afw_hm.conf
2015-02-27 19:26 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-02-27 19:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-27 18:31 - 2014-09-20 15:32 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3112673566-2443552264-417852688-1005
2015-02-27 17:47 - 2014-10-02 10:36 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Craften Terminal
2015-02-22 19:43 - 2014-09-20 15:26 - 00000000 ____D () C:\Users\admin
2015-02-22 16:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-02-22 16:38 - 2014-09-01 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Craften Terminal
2015-02-22 16:38 - 2014-09-01 15:44 - 00000000 ____D () C:\Program Files (x86)\Craften Terminal
2015-02-22 16:14 - 2014-10-25 15:18 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Skype
2015-02-22 15:42 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-02-22 13:50 - 2015-01-23 15:30 - 00000000 ____D () C:\Users\admin\Desktop\Minecraft server
2015-02-21 11:17 - 2014-08-31 18:55 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-02-20 19:43 - 2014-09-12 15:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-20 19:38 - 2014-09-20 15:46 - 00000000 ___RD () C:\Users\admin\Desktop\tuning
2015-02-20 17:49 - 2014-10-22 16:07 - 00002197 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-17 18:48 - 2014-12-27 20:45 - 00000000 ____D () C:\Users\admin\AppData\Roaming\TS3Client
2015-02-17 14:18 - 2014-12-27 15:45 - 00000000 ____D () C:\WINDOWS\SysWOW64\DCS
2015-02-16 17:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-02-16 14:59 - 2014-11-20 16:57 - 00492472 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-14 11:20 - 2015-01-23 15:23 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Mc-Interface
2015-02-13 18:29 - 2014-09-03 08:35 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-13 18:21 - 2014-09-03 08:35 - 116773704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-12 17:39 - 2014-09-12 20:55 - 00041784 _____ (AVG Technologies) C:\WINDOWS\system32\TURegOpt.exe
2015-02-07 10:39 - 2014-10-22 16:06 - 00004110 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-07 10:39 - 2014-10-22 16:06 - 00003874 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-06 18:07 - 2014-10-12 12:03 - 00043520 _____ () C:\WINDOWS\SysWOW64\CmdLineExt03.dll
2015-02-01 20:09 - 2014-12-29 11:54 - 00000000 ____D () C:\Users\admin\AppData\Roaming\.technic
2015-01-30 09:47 - 2014-03-18 11:03 - 01823422 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-30 09:47 - 2014-03-18 10:25 - 00788474 _____ () C:\WINDOWS\system32\perfh007.dat
2015-01-30 09:47 - 2014-03-18 10:25 - 00166086 _____ () C:\WINDOWS\system32\perfc007.dat
2015-01-30 09:35 - 2014-09-02 19:21 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2015-01-30 09:20 - 2014-11-29 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-01-30 09:20 - 2014-09-20 15:29 - 00000000 ____D () C:\Users\admin\AppData\Roaming\IObit
2015-01-30 09:19 - 2014-08-31 18:08 - 00000000 ____D () C:\ProgramData\ProductData
2015-01-30 09:08 - 2014-09-12 15:31 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

==================== Files in the root of some directories =======

2014-10-19 18:34 - 2014-10-19 18:34 - 0000017 _____ () C:\Users\admin\AppData\Local\resmon.resmoncfg
2014-09-02 19:21 - 2014-09-02 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1158944541474046759.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1221275453917134109.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1937122953553512062.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-2741950927697001228.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3635781356779355688.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3636249024984032712.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3679400468332001726.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4378473335793077020.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4384506923180519002.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4991806641530326345.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5319087848509179804.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5667584316821192027.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5839675717742508645.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5863565428377481144.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5955251507403825809.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-6816446968278476918.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-6992683639557725448.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-711204296612003551.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-7587475947637124764.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-9157336193915010703.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-27 18:31

==================== End Of Log ============================
--- --- ---

schrauber 01.03.2015 09:13
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

Yoloo 01.03.2015 11:18
Also jetzt kommt ADWCleane
Code:
# AdwCleaner v4.111 - Bericht erstellt 01/03/2015 um 10:34:16
# Aktualisiert 18/02/2015 von Xplode
# Datenbank : 2015-02-18.3 [Server]
# Betriebssystem : Windows 8.1  (x64)
# Benutzername : admin - YANNIS-NB
# Gestarted von : C:\Users\admin\Downloads\adwcleaner_4.111.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MoonTools
Ordner Gelöscht : C:\Program Files (x86)\MoonTools
Ordner Gelöscht : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl
Datei Gelöscht : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\user.js

***** [ Geplante Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{61946000-8054-4452-B5F9-719D35D899D8}_is1
Daten Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>

***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v


-\\ Google Chrome v40.0.2214.115


*************************

AdwCleaner[R0].txt - [1467 Bytes] - [01/03/2015 10:34:04]
AdwCleaner[S0].txt - [1343 Bytes] - [01/03/2015 10:34:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1402  Bytes] ##########
Und dann mbam
Code:
alwarebytes Anti-Malware
www.malwarebytes.org


Protection, 01.03.2015 10:39:36, SYSTEM, YANNIS-NB, Protection, Malware Protection, Starting,
Protection, 01.03.2015 10:39:36, SYSTEM, YANNIS-NB, Protection, Malware Protection, Started,
Protection, 01.03.2015 10:39:36, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Starting,
Protection, 01.03.2015 10:39:37, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Started,
Update, 01.03.2015 10:39:41, SYSTEM, YANNIS-NB, Manual, Remediation Database, 2013.10.16.1, 2014.12.6.1,
Update, 01.03.2015 10:39:41, SYSTEM, YANNIS-NB, Manual, Rootkit Database, 2014.11.18.1, 2015.2.25.1,
Update, 01.03.2015 10:39:43, SYSTEM, YANNIS-NB, Manual, Malware Database, 2014.11.20.6, 2015.3.1.1,
Protection, 01.03.2015 10:39:43, SYSTEM, YANNIS-NB, Protection, Refresh, Starting,
Protection, 01.03.2015 10:39:43, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Stopping,
Protection, 01.03.2015 10:39:43, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Stopped,
Protection, 01.03.2015 10:39:48, SYSTEM, YANNIS-NB, Protection, Refresh, Success,
Protection, 01.03.2015 10:39:48, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Starting,
Protection, 01.03.2015 10:39:49, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Started,
Scan, 01.03.2015 11:03:01, SYSTEM, YANNIS-NB, Manual, Start: % 1 "% 2", Dauer: % 1 min 22 Sekunden, Bedrohungs-Suchlauf, Abgeschlossen, 4 Malwareerkennung, 0-Malwareerkennung,
Protection, 01.03.2015 11:04:28, SYSTEM, YANNIS-NB, Protection, Malware Protection, Starting,
Protection, 01.03.2015 11:04:29, SYSTEM, YANNIS-NB, Protection, Malware Protection, Started,
Protection, 01.03.2015 11:04:29, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Starting,
Protection, 01.03.2015 11:05:04, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Started,

(end)
Und dann JRT
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.2 (02.02.2015:1)
OS: Windows 8.1 x64
Ran by admin on 01.03.2015 at 11:07:22,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01.03.2015 at 11:10:45,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Hoffentlich kannst du damit was anfangen . mfg Yoloo

schrauber 01.03.2015 16:17
Das frische FRST log fehlt noch. Wie lange dauert der Boot?

Yoloo 01.03.2015 18:25
Der Boot dauert etwa 2 Minuten

Wenn das Video net geht dann drücke hier hxxp://youtu.be/otp67O55I-4

Hier ist FRST
FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-02-2015
Ran by admin (administrator) on YANNIS-NB on 01-03-2015 18:18:21
Running from C:\Users\admin\Desktop
Loaded Profiles: admin (Available profiles: admin & Gast)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\main.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\LittleHook.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Apple Inc.) C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-30] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2015-01-30] (Realtek Semiconductor)
HKLM\...\Run: [BullGuard] => C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [1360208 2015-02-23] (BullGuard Ltd.)
HKLM\...\Run: [BullGuardUpdate2] => c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2935120 2015-02-23] (BullGuard Ltd.)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1140688 2015-01-16] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [YouCam Service] => c:\program files (x86)\cyberlink\youcam\youcamservice.exe [258576 2012-07-30] (CyberLink Corp.)
HKLM-x32\...\Run: [AppLauncher] => c:\program files (x86)\medion mediapack 3\ashampoo applauncher (medion)\applauncher.exe [969656 2012-08-10] (Ashampoo)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [98256 2015-01-26] (Razer Inc.)
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\Bootrace.exe [3843344 2014-04-23] ( (Greatis Software))
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\MountPoints2: E - "E:\zdata\cobi.exe"
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\MountPoints2: {813773ef-312d-11e4-be66-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-18\...\Run: [Advanced SystemCare 7] => "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
IFEO\bootrace.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\effectextractor.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mediaespresso.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\origin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\pdvdlaunchpolicy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerdvdcopy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ps.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\psi.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\youcam.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  No File
ShellIconOverlayIdentifiers: [BackupOverlayErr] -> {8749448C-D907-45BF-A842-4D3898894AC8} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlayInProgress] -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlaySynced] -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->  No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} ->  No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default
FF NetworkProxy: "ftp", "185.49.15.25"
FF NetworkProxy: "ftp_port", 7808
FF NetworkProxy: "http", "        202.77.124.91 "
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "no_proxies_on", "localhost"
FF NetworkProxy: "socks", "185.49.15.25"
FF NetworkProxy: "socks_port", 7808
FF NetworkProxy: "ssl", "185.49.15.25"
FF NetworkProxy: "ssl_port", 7808
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Extension: Ghostery - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\firefox@ghostery.com.xpi [2014-10-19]
FF Extension: Webutation - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2014-10-05]
FF Extension: Adblock Plus - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-19]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome:
=======
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-22]
CHR Extension: (Google Docs) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-22]
CHR Extension: (Google Drive) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-22]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-22]
CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-22]
CHR Extension: (Adblock Plus) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-23]
CHR Extension: (Google Search) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-22]
CHR Extension: (Google Wallet) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-22]
CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-22]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [865744 2015-01-16] (AVG Technologies CZ, s.r.o.)
S4 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
R2 BsBackup; C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll [850768 2015-02-23] (BullGuard Ltd.)
R2 BsBhvScan; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [601424 2015-02-27] (BullGuard Ltd.)
R2 BsCache; C:\Program Files\BullGuard Ltd\BullGuard\BsCache.dll [156496 2015-02-27] (BullGuard Ltd.)
R2 BsFileScan; c:\program files\bullguard ltd\bullguard\BsFileScan.dll [428368 2015-02-23] (BullGuard Ltd.)
R2 BsFire; c:\program files\bullguard ltd\bullguard\BsFire.dll [764752 2015-02-23] (BullGuard Ltd.)
R2 BsMailProxy; c:\program files\bullguard ltd\bullguard\BsMailProxy\BsMailProxy.dll [759632 2015-02-23] (BullGuard Ltd.)
R2 BsMain; C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll [553808 2015-02-23] (BullGuard Ltd.)
R2 BsScanner; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [280912 2015-02-27] (BullGuard Ltd.)
R2 BsUpdate; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [385360 2015-02-23] (BullGuard Ltd.)
R3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-19] (Microsoft Corporation)
S4 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-13] (CyberLink)
S4 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2635552 2015-01-30] (IObit)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-13] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186560 2015-01-31] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2012-09-07] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-01-26] (Razer Inc.)
S4 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S4 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604856 2015-02-25] (AVG Technologies)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44856 2015-02-25] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36664 2015-02-25] (AVG Technologies)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 ClickToRunSvc; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AFW; C:\Windows\system32\DRIVERS\afw.sys [41680 2014-09-07] (Agnitum Ltd.)
R3 afwcore; C:\Windows\system32\DRIVERS\afwcore.sys [469712 2014-09-07] (Agnitum Ltd.)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-18] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R1 BdAgent; C:\Windows\System32\DRIVERS\BdAgent.sys [117184 2014-05-15] (BullGuard Ltd.)
R3 BdNet; C:\Windows\system32\DRIVERS\BdNet.sys [34384 2014-03-19] (BullGuard Ltd.)
R1 BdSpy; C:\Windows\System32\drivers\BdSpy.sys [67680 2014-02-26] (BullGuard Ltd.)
S3 BioNTDrv; C:\Program Files\Paragon Software\Backup and Recovery 2014 Free\program\BioNTDrv.SYS [18696 2014-05-19] (Paragon Software Group)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131328 2014-11-19] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [32768 2014-11-19] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2015-01-30] (Motorola Solutions, Inc.)
S3 cpuz137; No ImagePath
U3 dtscsidrv; C:\Windows\System32\Drivers\dtscsidrv.sys [309248 2014-11-15] (Disc Soft Ltd)
S3 GPUZ; No ImagePath
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-30] (REALiX(tm))
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-01-30] (Intel Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew01.sys [3354384 2015-01-30] (Intel Corporation)
R1 NovaShieldFilterDriver; C:\Windows\System32\DRIVERS\NSKernel.sys [260824 2015-02-27] (BullGuard Ltd.)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-01-31] (Razer, Inc.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-19] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-11-29] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-11-14] (Duplex Secure Ltd.)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [350160 2014-02-26] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-08-28] (TuneUp Software)
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
R1 UimBus; C:\Windows\System32\drivers\UimBus.sys [102664 2014-05-19] ()
R1 Uim_DEVIM; C:\Windows\System32\drivers\uim_devim.sys [25992 2014-05-19] ()
R1 Uim_IM; C:\Windows\System32\drivers\uim_im.sys [700296 2014-05-19] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-01 18:18 - 2015-03-01 18:18 - 02092544 _____ (Farbar) C:\Users\admin\Desktop\FRST64.exe
2015-03-01 18:18 - 2015-03-01 18:18 - 00018756 _____ () C:\Users\admin\Desktop\FRST.txt
2015-03-01 18:18 - 2015-03-01 18:18 - 00000000 ____D () C:\Users\admin\Desktop\FRST-OlderVersion
2015-03-01 18:16 - 2015-03-01 18:16 - 00000512 _____ () C:\WINDOWS\system32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
2015-03-01 11:27 - 2015-02-25 09:24 - 00044856 _____ (AVG Technologies) C:\WINDOWS\system32\uxtuneup.dll
2015-03-01 11:27 - 2015-02-25 09:24 - 00036664 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\uxtuneup.dll
2015-03-01 11:27 - 2015-02-25 09:24 - 00030520 _____ (AVG Technologies) C:\WINDOWS\system32\authuitu.dll
2015-03-01 11:27 - 2015-02-25 09:24 - 00025912 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\authuitu.dll
2015-03-01 11:20 - 2015-03-01 11:22 - 00000298 _____ () C:\WINDOWS\Tasks\Uninstaller_SkipUac_admin.job
2015-03-01 11:20 - 2015-03-01 11:20 - 00002398 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_admin
2015-03-01 11:10 - 2015-03-01 11:10 - 00000614 _____ () C:\Users\admin\Desktop\JRT.txt
2015-03-01 11:06 - 2015-03-01 11:06 - 00001945 _____ () C:\Users\admin\Desktop\mbam.txt
2015-03-01 10:39 - 2015-03-01 10:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-03-01 10:39 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-03-01 10:39 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-03-01 10:39 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-03-01 10:34 - 2015-03-01 10:34 - 00001482 _____ () C:\Users\admin\Desktop\AdwCleaner[S0].txt
2015-03-01 10:34 - 2015-03-01 10:34 - 00001467 _____ () C:\Users\admin\Desktop\AdwCleaner[R0].txt
2015-03-01 10:32 - 2015-03-01 10:42 - 00000000 ____D () C:\AdwCleaner
2015-03-01 10:30 - 2015-03-01 10:30 - 02126848 _____ () C:\Users\admin\Downloads\adwcleaner_4.111.exe
2015-02-28 19:23 - 2015-02-28 19:23 - 00000000 ____D () C:\Users\admin\AppData\Local\Steam
2015-02-28 19:04 - 2015-02-28 19:04 - 00033640 _____ () C:\Users\admin\Downloads\Addition.txt
2015-02-28 19:00 - 2015-02-28 19:04 - 00046055 _____ () C:\Users\admin\Downloads\FRST.txt
2015-02-28 18:59 - 2015-03-01 18:18 - 00000000 ____D () C:\FRST
2015-02-27 18:11 - 2015-02-27 18:12 - 00364443 _____ () C:\Users\admin\Downloads\MicrosoftFixit20101.mini.diagcab
2015-02-25 16:05 - 2015-02-27 17:39 - 00260824 _____ (BullGuard Ltd.) C:\WINDOWS\system32\Drivers\NSKernel.sys
2015-02-23 17:53 - 2015-02-23 17:53 - 00153712 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BgGamingMonitor.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00140280 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BgGamingMonitor.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00076624 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BGLsp.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00064336 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BGLsp.dll
2015-02-22 18:18 - 2015-02-22 18:18 - 03319548 _____ () C:\Users\admin\Downloads\forge-1.8-11.14.0.1295-1.8-installer-win.exe
2015-02-22 17:03 - 2015-02-22 17:03 - 00239191 _____ () C:\Users\admin\Downloads\RRe36's Shaders v7.zip
2015-02-22 16:38 - 2015-02-22 16:38 - 00001131 _____ () C:\Users\Public\Desktop\Craften Terminal.lnk
2015-02-22 16:37 - 2015-02-22 16:38 - 24581548 _____ (Craften.de ) C:\Users\admin\Downloads\craftenterminal.exe
2015-02-22 16:20 - 2015-03-01 18:13 - 00001155 _____ () C:\WINDOWS\setupact.log
2015-02-22 16:20 - 2015-03-01 11:12 - 00029238 _____ () C:\WINDOWS\PFRO.log
2015-02-22 16:20 - 2015-02-22 16:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-02-22 15:44 - 2015-02-22 15:45 - 10113386 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2771431-x64.msu
2015-02-22 15:39 - 2015-02-22 15:40 - 138370416 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x64 (1).msu.crdownload
2015-02-22 15:36 - 2015-02-22 15:38 - 170699203 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x64.msu
2015-02-22 15:35 - 2015-02-22 15:35 - 102182172 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x86 (1).msu
2015-02-22 15:31 - 2015-02-22 15:32 - 102182172 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x86.msu
2015-02-22 14:58 - 2015-02-22 14:58 - 00001274 _____ () C:\Users\Public\Desktop\Razer Cortex.lnk
2015-02-22 14:58 - 2015-01-31 01:08 - 00037184 _____ (Razer, Inc.) C:\WINDOWS\system32\Drivers\rzpmgrk.sys
2015-02-22 13:49 - 2015-02-22 18:28 - 00000000 ____D () C:\Users\admin\Downloads\SIDATA
2015-02-22 13:49 - 2015-02-22 13:49 - 00011704 _____ () C:\Users\admin\Downloads\WorldReset.jar
2015-02-22 13:49 - 2015-02-22 13:49 - 00000509 _____ () C:\Users\admin\Downloads\server.properties
2015-02-22 12:58 - 2015-02-22 16:26 - 00000000 ____D () C:\WINDOWS\pss
2015-02-21 11:18 - 2015-02-21 11:18 - 00001765 _____ () C:\Users\Public\Desktop\iTunes.lnk
2015-02-21 11:18 - 2015-02-21 11:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-02-21 11:17 - 2015-02-21 11:18 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-02-21 11:17 - 2015-02-21 11:18 - 00000000 ____D () C:\Program Files\iTunes
2015-02-21 11:17 - 2015-02-21 11:17 - 00000000 ____D () C:\Program Files\iPod
2015-02-21 11:17 - 2015-02-21 11:17 - 00000000 ____D () C:\Program Files (x86)\iTunes
2015-02-20 18:23 - 2015-02-20 18:23 - 00001031 _____ () C:\Users\Public\Desktop\MoonTools.lnk
2015-02-20 18:22 - 2015-02-20 18:22 - 00569372 _____ (DotExE ) C:\Users\admin\Downloads\MoonTools.exe
2015-02-20 18:11 - 2015-02-20 18:11 - 00170454 _____ () C:\Users\admin\Downloads\xape.rar
2015-02-20 18:11 - 2015-02-20 18:11 - 00170454 _____ () C:\Users\admin\Desktop\xape.rar
2015-02-20 18:11 - 2015-02-20 18:11 - 00000000 ____D () C:\Users\admin\Desktop\xape
2015-02-17 18:46 - 2015-02-17 18:46 - 00897109 _____ () C:\Users\admin\Downloads\OptiFine_1.8.0_HD_U_D1.jar
2015-02-16 17:03 - 2015-02-27 18:02 - 00005138 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for YANNIS-NB-admin Yannis-NB
2015-02-16 15:07 - 2015-02-16 15:08 - 01959424 _____ (Mc-Interface) C:\Users\admin\Downloads\Server Interface 2015.exe
2015-02-15 13:52 - 2015-02-15 13:52 - 00144204 _____ () C:\Users\admin\Downloads\Bedwars.jar
2015-02-15 13:32 - 2015-02-15 13:32 - 00165409 _____ () C:\Users\admin\Downloads\ServerEssentials_.jar
2015-02-15 13:23 - 2015-02-15 13:30 - 00027445 _____ () C:\Users\admin\Downloads\AdminEssentials.jar
2015-02-15 11:07 - 2015-02-15 11:07 - 00340556 _____ () C:\Users\admin\Downloads\commandbook-2.4.zip
2015-02-15 11:03 - 2015-02-15 11:03 - 00013216 _____ () C:\Users\admin\Downloads\SHT2.jar
2015-02-15 11:02 - 2015-02-15 11:02 - 00227185 _____ () C:\Users\admin\Downloads\SurvivalGames.jar
2015-02-15 11:00 - 2015-02-15 11:01 - 00642910 _____ () C:\Users\admin\Downloads\ChestShop.jar
2015-02-15 11:00 - 2015-02-15 11:00 - 00131877 _____ () C:\Users\admin\Downloads\HeroChat.jar
2015-02-15 10:57 - 2015-02-15 10:58 - 00121405 _____ () C:\Users\admin\Downloads\bPermissions-2.10.9m.jar
2015-02-14 14:37 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-02-14 14:37 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-14 12:07 - 2015-02-14 12:07 - 00000850 _____ () C:\Users\admin\Downloads\permissions.yml
2015-02-14 11:40 - 2015-02-14 11:41 - 00723264 _____ () C:\Users\admin\Downloads\PermissionsEx-1.22.7.jar
2015-02-14 11:20 - 2015-02-14 11:20 - 01751040 _____ (Mc-Interface) C:\Users\admin\Downloads\Server Manager.exe
2015-02-14 11:15 - 2015-02-14 11:15 - 07903505 _____ () C:\Users\admin\Downloads\minecraft_server.1.8.1.jar
2015-02-14 11:11 - 2015-02-14 11:11 - 02742070 _____ () C:\Users\admin\Downloads\MinecraftServerLauncher (1).rar
2015-02-14 11:05 - 2015-02-14 11:05 - 01078825 _____ () C:\Users\admin\Downloads\SpigotPatcher4.jar
2015-02-14 11:04 - 2015-02-14 11:04 - 19711027 _____ () C:\Users\admin\Downloads\spigot_server.jar
2015-02-14 10:50 - 2015-02-14 10:50 - 00058087 _____ () C:\Users\admin\Downloads\MC ServerVille (1.2.0).jar
2015-02-14 10:46 - 2015-02-14 10:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-02-14 10:44 - 2015-02-14 10:44 - 00911178 _____ () C:\Users\admin\Downloads\MinecraftServerLauncher.rar
2015-02-14 10:42 - 2015-02-28 17:36 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-02-14 10:42 - 2015-02-14 10:42 - 01066176 _____ (Microsoft Corporation) C:\Users\admin\Downloads\Setup.X86.de-DE_O365HomePremRetail_151f5233-64d7-4946-a9d6-bd1f63973836_TX_DB_.exe
2015-02-11 15:47 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 15:47 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 15:47 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 15:47 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 15:47 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-02-11 15:47 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-11 15:47 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-02-11 15:47 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-02-11 15:47 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-02-11 15:47 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-02-11 15:47 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-02-11 15:47 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-02-11 15:47 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-02-11 15:47 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-02-11 15:47 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-02-11 15:47 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-02-11 15:47 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-02-11 15:47 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-02-11 15:47 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-02-11 15:47 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-02-11 15:47 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-02-11 15:47 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-02-11 15:47 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-02-11 15:47 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-02-11 15:47 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-11 15:47 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-02-11 15:47 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-02-11 15:47 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-02-11 15:47 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-02-11 15:47 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-02-11 15:47 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-02-11 15:47 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-02-11 15:47 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-02-11 15:47 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-11 15:47 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-02-11 15:47 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-02-11 15:47 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-02-11 15:47 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-02-11 15:47 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-02-11 15:47 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-02-11 15:47 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-02-11 15:47 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-02-11 15:47 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-11 15:47 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-02-11 15:47 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-02-11 15:47 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 15:47 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 15:47 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 15:47 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 15:47 - 2014-12-09 00:12 - 00391526 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-02-11 15:46 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 15:46 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-02-10 18:40 - 2015-02-10 18:40 - 00000059 _____ () C:\Users\admin\Desktop\rechtschreibpruefung24.de • Kostenlos Rechtschreibung und Grammatik prüfen.url
2015-02-09 18:07 - 2015-02-03 20:31 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-02-09 18:07 - 2015-02-03 20:31 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-07 10:39 - 2015-03-01 18:16 - 00001134 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-07 10:39 - 2015-03-01 10:44 - 00001138 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-01 20:10 - 2015-02-01 20:10 - 04603248 _____ () C:\Users\admin\Desktop\TechnicLauncher.exe
2015-02-01 18:20 - 2015-02-01 18:20 - 00000706 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2015-01-30 10:17 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-01-30 10:17 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-01-30 09:46 - 2015-01-30 09:46 - 00000000 ____D () C:\f84ec8345ba3ea218d
2015-01-30 09:46 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-30 09:46 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-30 09:45 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-30 09:45 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-30 09:43 - 2015-01-30 09:43 - 00272600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2015-01-30 09:35 - 2015-01-30 09:35 - 08108584 _____ () C:\WINDOWS\system32\Drivers\Netwfw01.dat
2015-01-30 09:35 - 2015-01-30 09:35 - 03354384 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwew01.sys
2015-01-30 09:33 - 2015-01-30 09:33 - 71040000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-01-30 09:33 - 2015-01-30 09:33 - 05804772 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-01-30 09:33 - 2015-01-30 09:33 - 04263128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-01-30 09:33 - 2015-01-30 09:33 - 03186544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 02860760 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 02827120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 01443340 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-01-30 09:33 - 2015-01-30 09:33 - 01287384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00959704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00629464 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-01-30 09:31 - 2015-01-30 09:31 - 00129312 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2015-01-30 09:30 - 2015-01-30 09:30 - 00874712 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2015-01-30 09:30 - 2015-01-30 09:30 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-30 09:30 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-30 09:30 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-30 09:30 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-30 09:30 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-30 09:24 - 2015-01-30 09:24 - 01721216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2015-01-30 09:24 - 2015-01-30 09:24 - 01424184 _____ (Motorola Solutions, Inc.) C:\WINDOWS\system32\Drivers\btmhsf.sys
2015-01-30 09:20 - 2015-03-01 11:21 - 00002854 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (admin)
2015-01-30 09:20 - 2015-03-01 11:20 - 00003214 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan
2015-01-30 09:20 - 2015-03-01 11:20 - 00003158 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update
2015-01-30 09:20 - 2015-01-30 09:20 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-01-30 09:20 - 2015-01-30 09:20 - 00001278 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-01 18:15 - 2014-11-01 11:17 - 00020377 ____H () C:\Users\Public\Documents\bootracer.log
2015-03-01 18:15 - 2014-10-24 13:26 - 00000683 ____H () C:\Users\Public\Documents\bootracer.ini
2015-03-01 18:15 - 2014-09-21 09:35 - 00000000 ___RD () C:\Users\admin\OneDrive
2015-03-01 18:14 - 2014-09-07 10:35 - 00000000 ____D () C:\ProgramData\BullGuard
2015-03-01 18:13 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-01 11:31 - 2014-11-29 09:47 - 00000000 ____D () C:\ProgramData\DAEMON Tools Pro
2015-03-01 11:31 - 2014-11-29 09:42 - 00000000 ____D () C:\Users\admin\AppData\Roaming\DAEMON Tools Pro
2015-03-01 11:31 - 2014-09-07 13:09 - 00401896 _____ () C:\WINDOWS\system32\config\afw_db.conf
2015-03-01 11:31 - 2014-09-07 13:09 - 00000532 _____ () C:\WINDOWS\system32\config\afw_hm.conf
2015-03-01 11:29 - 2014-09-02 19:42 - 01292605 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-01 11:25 - 2014-12-27 20:45 - 00000000 ____D () C:\Users\admin\AppData\Roaming\TS3Client
2015-03-01 11:25 - 2014-09-20 15:32 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3112673566-2443552264-417852688-1005
2015-03-01 11:21 - 2014-08-31 18:08 - 00000000 ____D () C:\ProgramData\ProductData
2015-03-01 11:19 - 2014-09-20 15:46 - 00000000 ___RD () C:\Users\admin\Desktop\tuning
2015-03-01 11:19 - 2014-09-12 15:31 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-01 11:11 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-03-01 11:03 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\L2Schemas
2015-03-01 11:02 - 2015-01-24 17:30 - 00000000 ____D () C:\Users\TEMP
2015-03-01 11:00 - 2015-01-23 15:30 - 00000000 ____D () C:\Users\admin\Desktop\Minecraft server
2015-03-01 11:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-03-01 10:39 - 2014-09-12 15:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-03-01 10:33 - 2014-10-11 09:25 - 00003934 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ABD14460-EF79-4800-AB81-FF8583620032}
2015-02-28 19:27 - 2014-08-31 18:14 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-28 18:18 - 2014-09-20 17:01 - 00000000 ____D () C:\Users\admin\AppData\Roaming\.minecraft
2015-02-27 19:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-27 17:47 - 2014-10-02 10:36 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Craften Terminal
2015-02-25 09:25 - 2014-09-12 20:55 - 00041784 _____ (AVG Technologies) C:\WINDOWS\system32\TURegOpt.exe
2015-02-22 19:43 - 2014-09-20 15:26 - 00000000 ____D () C:\Users\admin
2015-02-22 16:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-02-22 16:38 - 2014-09-01 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Craften Terminal
2015-02-22 16:38 - 2014-09-01 15:44 - 00000000 ____D () C:\Program Files (x86)\Craften Terminal
2015-02-22 16:14 - 2014-10-25 15:18 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Skype
2015-02-22 15:42 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-02-21 11:17 - 2014-08-31 18:55 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-02-20 17:49 - 2014-10-22 16:07 - 00002197 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-17 14:18 - 2014-12-27 15:45 - 00000000 ____D () C:\WINDOWS\SysWOW64\DCS
2015-02-16 17:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-02-16 14:59 - 2014-11-20 16:57 - 00492472 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-14 11:20 - 2015-01-23 15:23 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Mc-Interface
2015-02-13 18:29 - 2014-09-03 08:35 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-13 18:21 - 2014-09-03 08:35 - 116773704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-07 10:39 - 2014-10-22 16:06 - 00004110 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-07 10:39 - 2014-10-22 16:06 - 00003874 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-06 18:07 - 2014-10-12 12:03 - 00043520 _____ () C:\WINDOWS\SysWOW64\CmdLineExt03.dll
2015-02-01 20:09 - 2014-12-29 11:54 - 00000000 ____D () C:\Users\admin\AppData\Roaming\.technic
2015-01-30 09:47 - 2014-03-18 11:03 - 01823422 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-30 09:47 - 2014-03-18 10:25 - 00788474 _____ () C:\WINDOWS\system32\perfh007.dat
2015-01-30 09:47 - 2014-03-18 10:25 - 00166086 _____ () C:\WINDOWS\system32\perfc007.dat
2015-01-30 09:35 - 2014-09-02 19:21 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2015-01-30 09:20 - 2014-11-29 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-01-30 09:20 - 2014-09-20 15:29 - 00000000 ____D () C:\Users\admin\AppData\Roaming\IObit

==================== Files in the root of some directories =======

2014-10-19 18:34 - 2014-10-19 18:34 - 0000017 _____ () C:\Users\admin\AppData\Local\resmon.resmoncfg
2014-09-02 19:21 - 2014-09-02 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1158944541474046759.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1221275453917134109.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1937122953553512062.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-2741950927697001228.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3635781356779355688.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3636249024984032712.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3679400468332001726.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4378473335793077020.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4384506923180519002.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4991806641530326345.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5319087848509179804.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5667584316821192027.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5839675717742508645.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5863565428377481144.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5955251507403825809.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-6816446968278476918.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-6992683639557725448.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-711204296612003551.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-7587475947637124764.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-9157336193915010703.dll
C:\Users\admin\AppData\Local\Temp\Quarantine.exe
C:\Users\admin\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-28 19:19

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

--- --- ---

Und hier Addition
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-02-2015
Ran by admin at 2015-03-01 18:20:02
Running from C:\Users\admin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: BullGuard Antivirus (Enabled - Up to date) {EDBB5818-2352-E06B-028A-4E6873B92CC5}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: BullGuard Antispyware (Enabled - Up to date) {56DAB9FC-0568-EFE5-383A-751A083E6678}
FW: BullGuard Firewall (Enabled) {D580D93D-693D-E133-29D5-E75D8D6A6BBE}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.18.0 - Mirillis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo AppLauncher (Medion) v.1.0.0 (HKLM-x32\...\Ashampoo AppLauncher (Medion)_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
AVG (HKLM\...\AvgZen) (Version: 1.0.445 - AVG Technologies)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.403 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden
AVG Zen (Version: 1.0.445 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BootRacer (HKLM-x32\...\{4E451C2C-9E30-43A3-BADD-C78698551CFB}) (Version: 4.7.1.372 - Greatis Software, LLC)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
BullGuard Internet Security (HKLM\...\BullGuard) (Version: 14.1 - BullGuard Ltd.)
Counter-Strike Nexon: Zombies (HKLM-x32\...\Steam App 273110) (Version:  - Nexon)
Craften Terminal 4.1.1 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 4.1.1 - Craften.de)
CyberLink PowerDirector (Version: 9.0.0.3815c - CyberLink Corp.) Hidden
DirectX Media Runtime 5.1 (HKLM-x32\...\DirectXMediaRuntime) (Version:  - )
Driver Booster 2.1 (HKLM-x32\...\Driver Booster_is1) (Version: 2.1 - IObit)
FMW 1 (Version: 1.0.308 - AVG Technologies) Hidden
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.10.923 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.1 - IObit)
iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Medion Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Medion Home Cinema 10 (x32 Version: 10.1924 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movavi Video Suite 12 (HKLM-x32\...\Movavi Video Suite 12) (Version: 12.0.0 - Movavi)
Napster 5 Beta (HKLM-x32\...\com.Rhapsody.Napster5) (Version: 1.0.65 - Rhapsody International, Inc)
Napster 5 Beta (x32 Version: 1.0.65 - Rhapsody International, Inc) Hidden
Need For Speed™ World (HKLM-x32\...\{3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}) (Version: 1.0.0.0 - Electronic Arts)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.18 (HKLM\...\{74B7E6F9-DCAC-4ADB-B2D0-EEFDD1B5AC25}) (Version: 4.3.18 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paragon Backup and Recovery™ 2014 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PhoneClean 3.4.0 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 3.4.0 - iMobie Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.3.25.0 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
Renegade X Black Dawn (HKLM\...\UDK-581b33c8-d03f-439f-90ef-66e094fb972e) (Version:  - Epic Games, Inc.)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Star Wars(TM): Knights of the Old Republic (TM) (HKLM-x32\...\{2A9A40C7-6670-4D5F-8F41-D12E2E08B48B}) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3112673566-2443552264-417852688-1005_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points  =========================

22-02-2015 15:38:21 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {13976834-D209-4E59-B6EC-B2CED07F0582} - System32\Tasks\Game_Booster_Startup => C:\Program Files (x86)\IObit\Game Booster 3\gbtray.exe
Task: {1957DF97-ECD4-421C-BFCD-9548907E669B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {4511A268-79D5-4EB3-BE3D-84F7A2426176} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3112673566-2443552264-417852688-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {54464B76-F7CC-45C1-A5E8-4C221DD45026} - System32\Tasks\Microsoft Office 15 Sync Maintenance for YANNIS-NB-admin Yannis-NB => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
Task: {5FFBCA20-B7C2-4755-AA47-40BB709071D2} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-12-17] (IObit)
Task: {6826CC76-E9EA-497D-BD8D-6F7A6F9CE9CF} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {68D8CA16-0B0C-4EB1-8E90-AEA87DD36531} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3112673566-2443552264-417852688-1001
Task: {6E031886-6297-4C94-9049-8D07C35F6340} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {707B942F-3192-4B73-93F1-76A79CCCB0BB} - System32\Tasks\Driver Booster SkipUAC (adminstrator) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-01-07] (IObit)
Task: {7F90F6BA-27E3-4231-B031-26E52BAF89FC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {854F6AD9-0D93-4DBA-B567-F4B9755D0B28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {862B48BC-6301-4B13-A18A-337DC4C3A28B} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-12-09] (IObit)
Task: {9605B813-C4BB-4D87-A200-D4C2D8600FEC} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-02-13] (Microsoft Corporation)
Task: {9FB92ED5-F65F-4079-A76D-0947C8FACED0} - System32\Tasks\Uninstaller_SkipUac_admin => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-30] (IObit)
Task: {A953A2E6-17DB-424D-9851-DC067A66DB44} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {D7452AEB-F5D2-4883-9D76-AAA580D18813} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-02-25] (AVG Technologies)
Task: {EB42FC3B-D93C-4726-A929-7E2AF6F0332D} - System32\Tasks\Driver Booster SkipUAC (admin) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-01-07] (IObit)
Task: {F03D8A20-F418-4B0E-8246-EE117A957CB4} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3112673566-2443552264-417852688-1005
Task: {F3BC0814-29D4-40C8-A5D9-1E6C33128F72} - System32\Tasks\Java Platform SE Auto Updater => c:\program files (x86)\common files\java\java update\jusched.exe [2014-12-17] (Oracle Corporation)
Task: {FABD4F54-5966-4130-9EC6-F5C60B687A71} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-30] (IObit)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_admin.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Loaded Modules (whitelisted) ==============

2015-02-23 17:53 - 2015-02-23 17:53 - 00613200 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00084304 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00653136 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00653136 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LibXml2.dll
2013-10-11 12:37 - 2013-10-11 12:37 - 00023376 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BullGuardBhvScannerRes.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00064848 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00084304 _____ () C:\Program Files\BullGuard Ltd\BullGuard\zlib1.dll
2015-01-31 01:10 - 2015-01-31 01:10 - 00186560 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-09-04 13:51 - 2012-09-07 08:00 - 00386344 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-02-25 09:25 - 2015-02-25 09:25 - 00712504 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2014-06-26 08:50 - 2014-06-26 08:50 - 00030536 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BackupShellNamespaceRes.dll
2015-02-25 09:25 - 2015-02-25 09:25 - 00855864 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00613200 _____ () C:\Program Files\BullGuard Ltd\BullGuard\SQLite.dll
2015-01-23 15:21 - 2015-01-23 15:20 - 00287528 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BpBackupRes.dll
2014-10-12 10:15 - 2014-10-11 08:15 - 00035656 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BpMainRes.dll
2014-08-31 18:08 - 2015-01-30 09:20 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2014-09-12 20:45 - 2014-09-12 20:45 - 31842816 _____ () C:\Program Files (x86)\AVG\Framework\Common\libcef.dll
2015-02-22 14:58 - 2012-11-20 16:13 - 00264192 _____ () C:\Program Files (x86)\Razer\Razer Cortex\D3DX8Wrapper.dll
2015-01-30 09:20 - 2014-10-08 15:51 - 00348992 _____ () C:\Program Files (x86)\IObit\Driver Booster\madExcept_.bpl
2015-01-30 09:20 - 2014-10-08 15:50 - 00183616 _____ () C:\Program Files (x86)\IObit\Driver Booster\madBasic_.bpl
2015-01-30 09:20 - 2014-10-08 15:50 - 00051008 _____ () C:\Program Files (x86)\IObit\Driver Booster\madDisAsm_.bpl
2015-01-30 09:20 - 2014-08-22 15:19 - 00893248 _____ () C:\Program Files (x86)\IObit\Driver Booster\webres.dll
2015-01-30 09:20 - 2012-02-16 10:16 - 00516440 _____ () C:\Program Files (x86)\IObit\Driver Booster\sqlite3.dll
2015-02-25 09:19 - 2015-02-25 09:19 - 00173368 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUBasic.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00726328 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUKernel.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00096056 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUTransl.bpl
2015-02-25 09:20 - 2015-02-25 09:20 - 10215736 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUComponents.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00559416 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\GR32_D6.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00260408 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\XMLComponents.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00101688 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUShell.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00054072 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxCoreD12.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00089400 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxGDIPlusD12.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00170296 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\PerlRegEx.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00069944 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxThemeD12.bpl
2015-02-25 09:20 - 2015-02-25 09:20 - 01076536 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\cxLibraryD12.bpl
2015-02-25 09:20 - 2015-02-25 09:20 - 01374520 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxBarD12.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00063288 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TURar.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00021304 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxComnD12.bpl
2015-02-25 09:25 - 2015-02-25 09:25 - 00728888 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulngx.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\admin\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3112673566-2443552264-417852688-1005\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: AppLauncher =>
MSCONFIG\startupreg: iTunesHelper =>
MSCONFIG\startupreg: SunJavaUpdateSched =>
MSCONFIG\startupreg: YouCam Service =>
HKLM\...\StartupApproved\Run: => "Ashampoo Core Tuner 2"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "AppLauncher"
HKLM\...\StartupApproved\Run32: => "YouCam Service"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\StartupApproved\Run: => "DAEMON Tools Pro Agent"

==================== Accounts: =============================

admin (S-1-5-21-3112673566-2443552264-417852688-1005 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-3112673566-2443552264-417852688-500 - Administrator - Disabled)
Gast (S-1-5-21-3112673566-2443552264-417852688-501 - Administrator - Enabled) => C:\Users\TEMP

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/01/2015 06:18:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.3.9600.17415, Zeitstempel: 0x54503a3a
Name des fehlerhaften Moduls: DEVRTL.dll, Version: 6.3.9600.17415, Zeitstempel: 0x5450429b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000001475
ID des fehlerhaften Prozesses: 0xdb0
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Vollständiger Name des fehlerhaften Pakets: Explorer.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Explorer.EXE5

Error: (03/01/2015 11:19:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AppVLp.exe, Version: 5.151.53.0, Zeitstempel: 0x5432f4e0
Name des fehlerhaften Moduls: AppVIsvSubsystems32.dll, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0x910
Startzeit der fehlerhaften Anwendung: 0xAppVLp.exe0
Pfad der fehlerhaften Anwendung: AppVLp.exe1
Pfad des fehlerhaften Moduls: AppVLp.exe2
Berichtskennung: AppVLp.exe3
Vollständiger Name des fehlerhaften Pakets: AppVLp.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AppVLp.exe5


System errors:
=============
Error: (03/01/2015 06:13:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3

Error: (03/01/2015 11:31:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%1062

Error: (03/01/2015 11:27:19 AM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/01/2015 11:27:19 AM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/01/2015 11:27:19 AM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/01/2015 11:27:19 AM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/01/2015 11:20:33 AM) (Source: DCOM) (EventID: 10010) (User: YANNIS-NB)
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/01/2015 11:12:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3

Error: (03/01/2015 11:11:45 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%1062


Microsoft Office Sessions:
=========================
Error: (03/01/2015 06:18:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.3.9600.1741554503a3aDEVRTL.dll6.3.9600.174155450429bc00000050000000000001475db001d054434227ff9dC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\DEVRTL.dll05f1f30c-c037-11e4-bf7f-685d43dd7a47

Error: (03/01/2015 11:19:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: AppVLp.exe5.151.53.05432f4e0AppVIsvSubsystems32.dll6.3.9600.1763054b0d74fc00001350009e0b291001d05409436c3683C:\Program Files\Microsoft Office 15\Root\Client\AppVLp.exeAppVIsvSubsystems32.dll818574d1-bffc-11e4-bf7e-685d43dd7a47


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 38%
Total physical RAM: 3960.38 MB
Available physical RAM: 2434.63 MB
Total Pagefile: 7928.38 MB
Available Pagefile: 5956.16 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.56 GB) (Free:742.17 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================

schrauber 02.03.2015 08:27
Alles von IOBIT runter, ebenso diesen TuneUp-Scheiss runter, vorher alle Änderungen rückgängig machen lassen.


Alle Zeitangaben in WEZ +1. Es ist jetzt 17:44 Uhr.

Copyright ©2000-2024, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129