Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Windows 8.1 | Download Protector 2.2.5 | Chrome Erweiterung | Lässt sich nicht löschen (https://www.trojaner-board.de/157832-windows-8-1-download-protector-2-2-5-chrome-erweiterung-laesst-loeschen.html)

Krawall 20.08.2014 15:22
Windows 8.1 | Download Protector 2.2.5 | Chrome Erweiterung | Lässt sich nicht löschen
 
Liste der Anhänge anzeigen (Anzahl: 2)
Hallo, Trojaner - Board

Wie der Titel schon beschrieben hat, handelt es sich um die "Software Download Protector" die einfach sich nicht löschen lassen möchte
Habe bereits schon versucht.

"http://www.trojaner-board.de/157709-...ntfernen.html"

Versuchte Aktionen

Malwarebytes
CCLeaner (Removing)

Beim ausführen von der GMER Software sind 2 Fehlermeldungen aufgetreten (Screenshots) sind unten als Anhang

schrauber 20.08.2014 16:44
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

Krawall 20.08.2014 19:48
1.

FRST LOG

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-08-2014 01
Ran by DoctorWho (administrator) on GAMINGNETWORK on 20-08-2014 15:55:34
Running from C:\Users\DoctorWho\Desktop
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hi-Rez Studios) D:\Smite\HiPatchService.exe
() C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Microsoft) D:\Software\Spotflux\services\SpotfluxConnectionManager.exe
(Microsoft) D:\Software\Spotflux\services\SpotfluxUpdateService.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(LastPass) C:\Program Files (x86)\LastPass\nplastpass.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(KoshyJohn.com) C:\Users\DoctorWho\AppData\Roaming\KoshyJohn.com\MemClean\MemClean.exe
(Alienware) C:\Program Files\Alienware\Command Center\ThermalController.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dell) C:\Users\DoctorWho\AppData\Local\Apps\2.0\B5ZH53CR.TOB\PXL3CW5W.GH6\dell..tion_0f612f649c4a10af_0005.0009_14e1a3fbfbaf942c\DellSystemDetect.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(SoftPerfect Research) C:\Program Files\SoftPerfect Bandwidth Manager\BMCore.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7200984 2013-10-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1353432 2013-09-27] (Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Command Center Controllers] => C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [13840 2013-12-06] (Alienware)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10394392 2014-04-07] (Logitech Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472992 2013-03-21] (Adobe Systems Incorporated)
HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (the data entry has 36 more characters).
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2014-03-29] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-03-29] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2014-04-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2629632 2012-09-25] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816784 2014-07-21] (LogMeIn Inc.)
HKLM-x32\...\Run: [DSL Soforthilfe] => C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe [20585888 2013-11-21] ()
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Agent] => "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse] => "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
HKU\.DEFAULT\...\Policies\Explorer: [NoDriveAutoRun] 0xFFFFFF03
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Memory Cleaner] => C:\Users\DoctorWho\AppData\Roaming\KoshyJohn.com\MemClean\MemClean.exe [791560 2013-02-03] (KoshyJohn.com)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [spotflux] => D:\Software\Spotflux\services\SpotfluxAgent.exe [258560 2014-03-07] (Microsoft)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [759496 2014-01-17] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21648480 2014-07-02] (Skype Technologies S.A.)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Spotify] => C:\Users\DoctorWho\AppData\Roaming\Spotify\Spotify.exe [6162488 2014-07-04] (Spotify Ltd)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Spotify Web Helper] => C:\Users\DoctorWho\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1178168 2014-07-04] (Spotify Ltd)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [east-tec SafeBit] => C:\Program Files (x86)\east-tec SafeBit\safebit.exe [1800296 2014-05-20] ()
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [WarThunderLauncher] => C:\Program Files (x86)\WarThunder\launcher.exe [5488528 2014-06-23] (Gaijin Entertainment)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Clownfish] => C:\Program Files (x86)\Clownfish\Clownfish.exe [1315072 2014-06-09] (Bogdan Sharkov)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-06-26] (SteelSeries ApS)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272840 2014-03-31] (Microsoft Corporation)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [mapdisk] => C:\Users\DoctorWho\Documents\ArmAWork\mapdisk.bat [52 2014-08-18] ()
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [DellSystemDetect] => C:\Users\DoctorWho\AppData\Local\Apps\2.0\B5ZH53CR.TOB\PXL3CW5W.GH6\dell..tion_0f612f649c4a10af_0005.0009_14e1a3fbfbaf942c\DellSystemDetect.exe [263232 2014-08-19] (Dell)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoDriveAutoRun] 0xFFFFFF03
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoSMBalloonTip] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoToolbarsOnTaskbar] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoFileAssociate] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\MountPoints2: G - "G:\autorun.exe"
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\MountPoints2: {12c1103b-cc66-11e3-828c-7845c4fea853} - "J:\AutoRun.exe" {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\MountPoints2: {a5451d93-cde5-11e3-828f-7845c4fea853} - "H:\AutoRun.exe" {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083
AppInit_DLLs: prio.dll => prio.dll File Not Found
AppInit_DLLs-x32: prio32.dll => "prio32.dll" File Not Found
IFEO: [Debugger] logonui.exe
Startup: C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_09208823.lnk
ShellIconOverlayIdentifiers: 1TortoiseNormal -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 2TortoiseModified -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 3TortoiseConflict -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 4TortoiseLocked -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 5TortoiseReadOnly -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 6TortoiseDeleted -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 7TortoiseAdded -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 8TortoiseIgnored -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 9TortoiseUnversioned -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\System32\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\System32\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: 1TortoiseNormal -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 2TortoiseModified -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 3TortoiseConflict -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 4TortoiseLocked -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 5TortoiseReadOnly -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 6TortoiseDeleted -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 7TortoiseAdded -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 8TortoiseIgnored -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 9TortoiseUnversioned -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation)
AlternateShell:
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCJB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.alienwarearena.com/welcome-de
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCJB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.alienwarearena.com/welcome-de
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope {F106FF18-F259-40C6-8A63-039BE77D0174} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {F106FF18-F259-40C6-8A63-039BE77D0174} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - DefaultScope {F106FF18-F259-40C6-8A63-039BE77D0174} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {F106FF18-F259-40C6-8A63-039BE77D0174} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {F106FF18-F259-40C6-8A63-039BE77D0174} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {C32F5BF7-6918-4F78-A97A-53CDF7D07C8C} -> C:\Users\DoctorWho\AppData\LocalLow\Internet Explorer BHO\bho.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\DoctorWho\AppData\Roaming\Mozilla\Firefox\Profiles\s8bdoqx0.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF user.js: detected! => C:\Users\DoctorWho\AppData\Roaming\Mozilla\Firefox\Profiles\s8bdoqx0.default\user.js
FF Extension: Foxy Secure 7 - C:\Users\DoctorWho\AppData\Roaming\Mozilla\Firefox\Profiles\s8bdoqx0.default\Extensions\connect@foxy-sec.com [2014-08-20]
FF Extension: DSL Soforthilfe - C:\Users\DoctorWho\AppData\Roaming\Mozilla\Firefox\Profiles\s8bdoqx0.default\Extensions\{95E05177-EA09-4386-8B79-FEB1EAC063E6} [2014-07-22]
FF HKLM-x32\...\Firefox\Extensions: [{7A5C6A4D-7D7C-4A30-BDCC-FFD2150BBB7F}] - C:\Windows\Installer\{40DAFDFE-B28F-4E76-8BDF-66F6C8B45804}\{7A5C6A4D-7D7C-4A30-BDCC-FFD2150BBB7F}.xpi
FF Extension: Download Protect - C:\Windows\Installer\{40DAFDFE-B28F-4E76-8BDF-66F6C8B45804}\{7A5C6A4D-7D7C-4A30-BDCC-FFD2150BBB7F}.xpi [2014-08-20]
FF StartMenuInternet: FIREFOX.EXE - D:\Browser\firefox.exe

Chrome:
=======
CHR HomePage:
CHR StartupUrls: "hxxp://www.google.com"
CHR Extension: (Google Docs) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-06]
CHR Extension: (Google Drive) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-06]
CHR Extension: (YouTube) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-06]
CHR Extension: (Adblock Plus) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-02-06]
CHR Extension: (Google-Suche) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-06]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2014-02-08]
CHR Extension: (Download Protect) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekgcjailkgdmhefohphkgmjpndnlagjd [2014-08-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-02-06]
CHR Extension: (Premiumize.me) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\lojbjecfjcnaledoelddkcjlifhhfebm [2014-08-19]
CHR Extension: (Google Wallet) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-06]
CHR Extension: (YouTube Unblocker) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-05-09]
CHR Extension: (Click&Clean App) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2014-02-08]
CHR Extension: (Google Mail) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-06]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-05-18] () [File not signed]
R2 BMService; C:\Program Files\SoftPerfect Bandwidth Manager\BMCore.exe [6932176 2014-06-06] (SoftPerfect Research)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-02-24] (BitRaider, LLC)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
U2 HiPatchService; D:\Smite\HiPatchService.exe [9216 2014-02-28] (Hi-Rez Studios) [File not signed]
R2 HubService; C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe [536576 2014-07-30] () [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S3 ioloEnergyBooster; C:\Program Files\Alienware\Command Center\ioloEnergyBooster.exe [6145872 2012-11-01] (iolo technologies, LLC)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-16] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4466688 2007-11-08] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37176 2013-08-22] (The OpenVPN Project)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-07-07] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-13] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [288472 2013-09-14] (Realtek Semiconductor)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [187592 2014-01-17] (Sandboxie Holdings, LLC)
R2 SpotfluxConnectionManager; D:\Software\Spotflux\services\SpotfluxConnectionManager.exe [73216 2014-03-07] (Microsoft) [File not signed]
R2 SpotfluxUpdateService; D:\Software\Spotflux\services\SpotfluxUpdateService.exe [20480 2014-03-07] (Microsoft) [File not signed]
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2145080 2014-07-16] (TuneUp Software)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)
S2 TapiUnbttend; C:\Windows\system32\vccorljb110.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 ACLE7Live; C:\Windows\system32\Drivers\ACLE1864.sys [109160 2014-07-07] (Softwareentwicklung Remus - ArchiCrypt - )
R1 ACLiveFlt; C:\Windows\System32\DRIVERS\ACLiveFlt.sys [24680 2013-03-25] (ArchiCrypt - Softwareentwicklung Remus)
R1 ACLiveFlt; C:\Windows\SysWOW64\DRIVERS\ACLiveFlt.sys [24680 2013-03-25] (ArchiCrypt - Softwareentwicklung Remus)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [38424 2010-10-18] (Google Inc)
U3 axscsidrv; C:\Windows\System32\Drivers\axscsidrv.sys [293888 2014-02-18] (Alcohol Soft Development Team)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-02-26] (BitRaider)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 DFX11_1; C:\Windows\system32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Windows (R) Win 7 DDK provider)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-21] (LogMeIn Inc.)
S2 hidedir; C:\Windows\SysWOW64\drivers\hidedir.sys [8704 2007-02-12] () [File not signed]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-20] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [40464 2009-02-08] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R1 PStrip64; C:\Windows\System32\drivers\pstrip64.sys [13008 2006-09-30] ()
R3 SAlphamHid; C:\Windows\System32\drivers\SAlpham64.sys [39168 2014-05-27] (SteelSeries Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202600 2014-01-17] (Sandboxie Holdings, LLC)
R1 spfdrv; C:\Windows\system32\DRIVERS\spfdrv.sys [41432 2013-08-22] (SoftPerfect)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-02-18] (Duplex Secure Ltd.)
S3 tapSF0901; C:\Windows\system32\DRIVERS\tapSF0901.sys [39104 2014-03-07] (Spotflux, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2014-06-23] (TuneUp Software)
R3 vdisk; C:\Windows\System32\drivers\vdisk.sys [81056 2010-05-19] ()
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
S3 zghsdiag; C:\Windows\system32\DRIVERS\zghsdiag.sys [122624 2011-01-13] (ZTE Incorporated)
S3 zghsmdm; C:\Windows\system32\DRIVERS\zghsmdm.sys [122624 2011-01-13] (ZTE Incorporated)
S3 zghsnmea; C:\Windows\system32\DRIVERS\zghsnmea.sys [122624 2011-01-13] (ZTE Incorporated)
U4 AppMgmt;
U3 clr_optimization_v2.0.50727_32;
U3 clr_optimization_v2.0.50727_64;
U4 CscService;
S3 dcdbas; \SystemRoot\System32\drivers\dcdbas64.sys [X]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
U4 IPBusEnum;
U4 PeerDistSvc;
U3 ProtectedStorage;
U3 sppuinotify;
U4 TBS;
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-20 15:54 - 2014-08-20 15:55 - 00036705 _____ () C:\Users\DoctorWho\Desktop\FRST.txt
2014-08-20 15:52 - 2014-08-20 15:52 - 00284470 _____ () C:\Windows\PFRO.log
2014-08-20 15:51 - 2014-08-20 15:51 - 00050477 _____ () C:\Users\DoctorWho\Desktop\Defogger.exe
2014-08-20 15:51 - 2014-08-20 15:51 - 00000590 _____ () C:\Users\DoctorWho\Desktop\defogger_disable.log
2014-08-20 15:51 - 2014-08-20 15:51 - 00000020 _____ () C:\Users\DoctorWho\defogger_reenable
2014-08-20 15:23 - 2014-08-20 15:55 - 00000000 ____D () C:\FRST
2014-08-20 15:22 - 2014-08-20 15:42 - 01220927 _____ () C:\Users\DoctorWho\Downloads\FRST64 (1).exe.opdownload
2014-08-20 15:22 - 2014-08-20 15:22 - 02101760 _____ (Farbar) C:\Users\DoctorWho\Desktop\FRST64.exe
2014-08-20 13:25 - 2014-08-20 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-20 13:20 - 2014-08-20 13:20 - 13087456 _____ (Microsoft Corporation) C:\Users\DoctorWho\Downloads\Silverlight_x64.exe
2014-08-20 13:14 - 2014-08-20 13:14 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Adobe
2014-08-20 12:25 - 2014-08-20 12:25 - 01016261 _____ (Thisisu) C:\Users\DoctorWho\Downloads\JRT.exe
2014-08-20 12:06 - 2014-08-20 12:06 - 00000000 ____D () C:\Program Files\{E2ED24B7-A82D-484D-ABA0-20EF2EFF7D3F}
2014-08-20 12:06 - 2014-08-20 12:06 - 00000000 ____D () C:\Program Files (x86)\{17C19D35-B5C1-4760-A1A0-0690E4278386}
2014-08-20 12:00 - 2014-08-20 12:00 - 00002219 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-08-20 12:00 - 2014-07-16 10:24 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-08-20 12:00 - 2014-07-16 10:24 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-08-20 12:00 - 2014-07-16 10:24 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-08-20 11:48 - 2014-08-20 11:50 - 48123704 _____ (TuneUp Software) C:\Users\DoctorWho\Downloads\TuneUpUtilities2014.exe
2014-08-20 11:39 - 2014-08-20 12:19 - 00000000 ____D () C:\Windows\update_e8_mrb
2014-08-19 15:43 - 2014-08-19 15:44 - 00018587 _____ () C:\Windows\DirectX.log
2014-08-19 15:22 - 2014-08-19 15:22 - 01141680 _____ () C:\Users\DoctorWho\Downloads\SteamSetup.exe
2014-08-19 15:11 - 2014-08-19 15:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DevExtras
2014-08-19 15:11 - 2014-08-19 15:11 - 00000000 ____D () C:\Program Files (x86)\DevExtras
2014-08-19 14:51 - 2014-08-19 14:51 - 00000297 _____ () C:\Windows\setupact.log
2014-08-19 14:51 - 2014-08-19 14:51 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-19 14:27 - 2014-08-20 13:35 - 00152473 _____ () C:\Windows\WindowsUpdate.log
2014-08-19 14:24 - 2014-08-20 13:13 - 05097928 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-19 14:20 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-08-18 21:02 - 2014-08-18 21:02 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Blender Foundation
2014-08-18 21:01 - 2014-08-18 21:01 - 00000000 ____D () C:\Users\DoctorWho\.thumbnails
2014-08-18 21:00 - 2014-08-18 21:00 - 00000000 ____D () C:\Program Files\Blender Foundation
2014-08-18 14:53 - 2014-08-18 14:53 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Quadriga Games
2014-08-18 14:52 - 2014-08-18 14:52 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Die Polizei 2013
2014-08-18 14:52 - 2014-08-18 14:52 - 00000000 ____D () C:\Program Files (x86)\Quadriga Games
2014-08-18 14:51 - 2014-08-18 14:51 - 00000000 ____D () C:\Users\DoctorWho\Desktop\62c548c46b0b35aa3c75cfda92c74a0a
2014-08-17 20:26 - 2014-08-17 20:26 - 01726340 _____ () C:\Users\DoctorWho\Documents\ts3_clientui-win32-1407159763-2014-08-17 20_26_48.508481.dmp
2014-08-15 18:47 - 2014-08-15 18:47 - 00000103 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2014-08-14 17:05 - 2014-08-14 17:05 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-08-14 17:05 - 2014-07-02 19:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-08-14 17:04 - 2014-07-02 22:48 - 31512520 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 24196896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 22994208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 16122344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 15294296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 13922752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 13835208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 12866008 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-08-14 17:04 - 2014-07-02 22:48 - 11283344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 11222048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 04247000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 03989960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 01890080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434052.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 01539928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434052.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00944928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00907096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00903624 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00869152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00846832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00502232 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00418760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00391640 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00348120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-08-14 15:56 - 2014-08-14 15:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Take-Two_Interactive_Soft
2014-08-12 23:33 - 2014-08-12 23:33 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Grand_Theft_Auto_IV_Clan
2014-08-12 22:37 - 2014-08-12 22:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LCPD First Response
2014-08-12 11:07 - 2014-08-12 11:07 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Encryptomatic,_LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Encryptomatic, LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Encryptomatic, LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Caphyon
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\Program Files\Encryptomatic, LLC
2014-08-12 10:58 - 2014-08-12 10:58 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Encryptomatic, LLC
2014-08-12 01:35 - 2014-08-20 12:17 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-08-10 19:16 - 2014-08-10 19:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ITSecTeam
2014-08-10 19:16 - 2009-09-09 23:36 - 00260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RICHTX32.ocx
2014-08-10 19:16 - 2004-03-09 12:00 - 00124688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mswinsck.ocx
2014-08-10 19:16 - 2000-12-06 11:30 - 00209608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2014-08-09 14:13 - 2014-08-09 14:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2014-08-09 14:13 - 2014-08-09 14:13 - 00000000 ____D () C:\Program Files (x86)\ffdshow
2014-08-09 14:13 - 2014-06-28 16:39 - 00112640 _____ () C:\Windows\SysWOW64\ff_vfw.dll
2014-08-09 14:12 - 2014-08-09 14:12 - 00000933 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2014-08-09 14:12 - 2014-08-09 14:12 - 00000000 ____D () C:\Program Files\MediaInfo
2014-08-09 12:27 - 2014-08-09 12:28 - 00000000 ____D () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080p.BluRay.x264-CONTRiBUTiON
2014-08-09 12:25 - 2014-08-09 12:27 - 68880193 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part089.rar
2014-08-09 12:24 - 2014-08-09 12:27 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part088.rar
2014-08-09 12:23 - 2014-08-09 12:26 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part087.rar
2014-08-09 12:22 - 2014-08-09 12:25 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part086.rar
2014-08-09 12:20 - 2014-08-09 12:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part085.rar
2014-08-09 12:19 - 2014-08-09 12:23 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part084.rar
2014-08-09 12:18 - 2014-08-09 12:22 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part083.rar
2014-08-09 12:16 - 2014-08-09 12:20 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part082.rar
2014-08-09 12:16 - 2014-08-09 12:19 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part081.rar
2014-08-09 12:15 - 2014-08-09 12:18 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part080.rar
2014-08-09 12:13 - 2014-08-09 12:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part079.rar
2014-08-09 12:12 - 2014-08-09 12:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part078.rar
2014-08-09 12:12 - 2014-08-09 12:15 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part077.rar
2014-08-09 12:10 - 2014-08-09 12:13 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part076.rar
2014-08-09 12:09 - 2014-08-09 12:12 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part075.rar
2014-08-09 12:08 - 2014-08-09 12:12 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part074.rar
2014-08-09 12:07 - 2014-08-09 12:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part073.rar
2014-08-09 01:07 - 2014-08-09 12:09 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part072.rar
2014-08-09 01:06 - 2014-08-09 12:08 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part071.rar
2014-08-09 01:05 - 2014-08-09 12:07 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part070.rar
2014-08-09 01:04 - 2014-08-09 01:07 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part069.rar
2014-08-09 01:03 - 2014-08-09 01:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part068.rar
2014-08-09 01:01 - 2014-08-09 01:05 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part067.rar
2014-08-09 01:01 - 2014-08-09 01:04 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part066.rar
2014-08-09 01:00 - 2014-08-09 01:03 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part065.rar
2014-08-09 00:59 - 2014-08-09 01:01 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part064.rar
2014-08-09 00:57 - 2014-08-09 01:00 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part063.rar
2014-08-09 00:56 - 2014-08-09 00:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part062.rar
2014-08-09 00:55 - 2014-08-09 00:57 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part061.rar
2014-08-09 00:54 - 2014-08-09 00:56 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part060.rar
2014-08-09 00:52 - 2014-08-09 00:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part059.rar
2014-08-09 00:52 - 2014-08-09 00:54 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part058.rar
2014-08-09 00:49 - 2014-08-09 01:01 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part056.rar
2014-08-09 00:49 - 2014-08-09 00:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part057.rar
2014-08-09 00:49 - 2014-08-09 00:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part055.rar
2014-08-09 00:46 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part054.rar
2014-08-09 00:46 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part053.rar
2014-08-09 00:45 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part052.rar
2014-08-09 00:43 - 2014-08-09 00:46 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part051.rar
2014-08-09 00:42 - 2014-08-09 00:46 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part050.rar
2014-08-09 00:41 - 2014-08-09 00:45 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part049.rar
2014-08-09 00:39 - 2014-08-09 00:43 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part048.rar
2014-08-09 00:39 - 2014-08-09 00:42 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part047.rar
2014-08-09 00:38 - 2014-08-09 00:41 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part046.rar
2014-08-09 00:35 - 2014-08-09 00:39 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part045.rar
2014-08-09 00:35 - 2014-08-09 00:39 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part044.rar
2014-08-09 00:34 - 2014-08-09 00:38 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part043.rar
2014-08-09 00:32 - 2014-08-09 00:35 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part042.rar
2014-08-09 00:32 - 2014-08-09 00:35 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part041.rar
2014-08-09 00:31 - 2014-08-09 00:34 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part040.rar
2014-08-09 00:28 - 2014-08-09 00:32 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part039.rar
2014-08-09 00:28 - 2014-08-09 00:32 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part038.rar
2014-08-09 00:27 - 2014-08-09 00:31 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part037.rar
2014-08-09 00:24 - 2014-08-09 00:28 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part036.rar
2014-08-09 00:24 - 2014-08-09 00:28 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part035.rar
2014-08-09 00:23 - 2014-08-09 00:27 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part034.rar
2014-08-09 00:21 - 2014-08-09 00:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part033.rar
2014-08-09 00:21 - 2014-08-09 00:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part032.rar
2014-08-09 00:20 - 2014-08-09 00:23 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part031.rar
2014-08-09 00:17 - 2014-08-09 00:21 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part030.rar
2014-08-09 00:17 - 2014-08-09 00:21 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part029.rar
2014-08-09 00:17 - 2014-08-09 00:20 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part028.rar
2014-08-09 00:14 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part027.rar
2014-08-09 00:14 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part026.rar
2014-08-09 00:13 - 2014-08-09 00:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part025.rar
2014-08-09 00:10 - 2014-08-09 00:14 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part024.rar
2014-08-09 00:10 - 2014-08-09 00:14 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part023.rar
2014-08-09 00:09 - 2014-08-09 00:13 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part022.rar
2014-08-09 00:06 - 2014-08-09 00:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part021.rar
2014-08-09 00:06 - 2014-08-09 00:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part020.rar
2014-08-09 00:06 - 2014-08-09 00:09 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part019.rar
2014-08-09 00:03 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part018.rar
2014-08-09 00:02 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part017.rar
2014-08-09 00:02 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part016.rar
2014-08-08 23:59 - 2014-08-09 00:03 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part015.rar
2014-08-08 23:59 - 2014-08-09 00:02 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part014.rar
2014-08-08 23:59 - 2014-08-09 00:02 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part013.rar
2014-08-08 23:55 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part012.rar
2014-08-08 23:55 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part011.rar
2014-08-08 23:55 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part010.rar
2014-08-08 23:52 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part009.rar
2014-08-08 23:52 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part008.rar
2014-08-08 23:52 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part007.rar
2014-08-08 23:48 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part006.rar
2014-08-08 23:48 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part005.rar
2014-08-08 23:48 - 2014-08-08 23:51 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part004.rar
2014-08-08 23:44 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part003.rar
2014-08-08 23:44 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part002.rar
2014-08-08 23:44 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part001.rar
2014-08-08 22:19 - 2014-08-08 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2014-08-08 22:19 - 2014-08-08 22:19 - 00000000 ____D () C:\Program Files\WhoCrashed
2014-08-08 22:02 - 2014-08-08 22:03 - 00000000 ____D () C:\Users\DoctorWho\Documents\Visual Studio 2008
2014-08-08 22:01 - 2014-08-08 22:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Microsoft Help
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual C++ 9.0 Express Edition
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files\Microsoft SDKs
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-08-08 21:56 - 2014-08-08 21:56 - 00159744 _____ () C:\Windows\winhlp42.exe
2014-08-08 21:56 - 2014-08-08 21:56 - 00148480 _____ () C:\Windows\system32\DlProtectSvc.exe
2014-08-08 21:56 - 2014-08-08 21:56 - 00003906 _____ () C:\Windows\System32\Tasks\Anwendungs-ID-TreiberAnwendungsidentitätAnwendungsinformationen
2014-08-08 21:56 - 2014-08-08 21:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Hub Timer
2014-08-08 21:55 - 2014-08-08 21:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Security Systems
2014-07-30 20:35 - 2014-07-30 20:35 - 00000000 ____D () C:\Program Files\Bohemia Interactive
2014-07-30 16:16 - 2014-08-11 10:02 - 00000000 ____D () C:\Users\DoctorWho\Tracing
2014-07-30 16:15 - 2014-07-30 16:15 - 00002504 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00001476 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00001323 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ____D () C:\Windows\de
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ____D () C:\Program Files\Windows Live
2014-07-30 16:14 - 2014-07-30 16:14 - 00003114 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1864991570-2205968161-1216624529-1001
2014-07-30 16:14 - 2014-07-30 16:14 - 00000000 ___RD () C:\Users\DoctorWho\OneDrive
2014-07-30 16:14 - 2014-07-30 16:14 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-07-29 23:21 - 2014-07-29 23:27 - 00000000 ____D () C:\Users\DoctorWho\.gimp-2.8
2014-07-29 23:21 - 2014-07-29 23:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\gegl-0.2
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CableNut
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CableNut
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\Program Files (x86)\Cablenut
2014-07-25 11:21 - 2014-07-25 11:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\SteelSeries
2014-07-25 11:21 - 2014-07-25 11:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\SteelSeries_ApS
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\ProgramData\SteelSeries
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\Program Files\SteelSeries
2014-07-23 17:07 - 2014-07-23 17:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2014-07-23 17:07 - 2014-07-23 17:07 - 00000000 ____D () C:\Program Files (x86)\AutoHotkey
2014-07-22 15:10 - 2014-07-22 15:10 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TGE
2014-07-22 15:08 - 2014-07-22 15:34 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\mquadr.at
2014-07-22 15:08 - 2014-07-22 15:10 - 00000000 ____D () C:\ProgramData\mquadr.at
2014-07-22 15:07 - 2014-08-19 15:42 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Bohemia_Interactive
2014-07-22 15:07 - 2014-07-22 15:08 - 00000000 __HDC () C:\ProgramData\{CD3330DC-8B86-4AE3-B2E4-09E56CB3E702}
2014-07-22 15:07 - 2014-07-22 15:07 - 00001183 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\DSL Soforthilfe.lnk
2014-07-22 15:07 - 2014-07-22 15:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2
2014-07-22 15:07 - 2014-07-22 15:07 - 00000000 ____D () C:\Program Files (x86)\DSL Soforthilfe
2014-07-22 15:07 - 2013-11-21 22:56 - 03748800 ____N (mquadr.at software engineering und consulting GmbH) C:\Windows\SysWOW64\M2ElevatedCalls.dll
2014-07-22 15:07 - 2013-11-21 22:56 - 03490272 ____N (mquadr.at software engineering & consulting GmbH) C:\Windows\SysWOW64\m2network64helper.exe
2014-07-22 15:07 - 2013-11-21 22:56 - 00962528 ____N (mquadr.at software engineering) C:\Windows\SysWOW64\M2ElevatedNetworkAdapters.dll
2014-07-22 15:07 - 2012-12-03 15:58 - 00279040 ____N (Nicomsoft Ltd.) C:\Windows\system32\WiFiMan.dll
2014-07-22 15:07 - 2012-12-03 15:57 - 00238592 ____N (Nicomsoft Ltd.) C:\Windows\SysWOW64\WiFiMan.dll
2014-07-22 14:45 - 2014-07-22 14:45 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Arma 3 Launcher
2014-07-22 13:59 - 2014-07-22 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-22 13:59 - 2014-07-22 13:59 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-21 18:08 - 2014-07-21 18:08 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-21 12:04 - 2014-07-21 12:04 - 00004623 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-21 11:59 - 2014-07-21 11:59 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-07-21 11:59 - 2014-07-21 11:59 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\CyberLink
2014-07-21 11:03 - 2014-07-21 11:03 - 00000097 _____ () C:\Users\DoctorWho\AppData\Local\fusioncache.dat
2014-07-21 11:00 - 2014-07-21 11:00 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-07-21 10:56 - 2014-07-21 10:56 - 00720896 _____ (Indigo Rose Corporation) C:\Windows\iun6002ev.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-20 15:55 - 2014-08-20 15:54 - 00036705 _____ () C:\Users\DoctorWho\Desktop\FRST.txt
2014-08-20 15:55 - 2014-08-20 15:23 - 00000000 ____D () C:\FRST
2014-08-20 15:54 - 2014-01-31 20:28 - 00000000 ____D () C:\Program Files (x86)\AlienRespawn
2014-08-20 15:52 - 2014-08-20 15:52 - 00284470 _____ () C:\Windows\PFRO.log
2014-08-20 15:52 - 2014-06-27 19:49 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-20 15:52 - 2014-05-31 13:25 - 00000000 __RDO () C:\Users\DoctorWho\SkyDrive
2014-08-20 15:52 - 2014-05-09 16:15 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-20 15:52 - 2014-02-28 18:11 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TSVNCache
2014-08-20 15:52 - 2014-02-26 12:53 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-20 15:52 - 2014-02-26 12:53 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-20 15:52 - 2014-02-06 14:10 - 00001140 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-20 15:52 - 2014-01-31 20:14 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-08-20 15:52 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-20 15:51 - 2014-08-20 15:51 - 00050477 _____ () C:\Users\DoctorWho\Desktop\Defogger.exe
2014-08-20 15:51 - 2014-08-20 15:51 - 00000590 _____ () C:\Users\DoctorWho\Desktop\defogger_disable.log
2014-08-20 15:51 - 2014-08-20 15:51 - 00000020 _____ () C:\Users\DoctorWho\defogger_reenable
2014-08-20 15:51 - 2014-02-06 14:04 - 00000000 ____D () C:\Users\DoctorWho
2014-08-20 15:44 - 2014-02-06 14:07 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{0404D5A3-4D46-4B31-975C-B31FE2AF7222}
2014-08-20 15:42 - 2014-08-20 15:22 - 01220927 _____ () C:\Users\DoctorWho\Downloads\FRST64 (1).exe.opdownload
2014-08-20 15:35 - 2014-02-06 14:10 - 00001144 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-20 15:31 - 2014-03-08 12:24 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-20 15:28 - 2014-02-06 14:09 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1864991570-2205968161-1216624529-1001
2014-08-20 15:22 - 2014-08-20 15:22 - 02101760 _____ (Farbar) C:\Users\DoctorWho\Desktop\FRST64.exe
2014-08-20 15:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2014-08-20 13:35 - 2014-08-19 14:27 - 00152473 _____ () C:\Windows\WindowsUpdate.log
2014-08-20 13:25 - 2014-08-20 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-20 13:20 - 2014-08-20 13:20 - 13087456 _____ (Microsoft Corporation) C:\Users\DoctorWho\Downloads\Silverlight_x64.exe
2014-08-20 13:19 - 2014-01-31 20:21 - 01807578 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-20 13:19 - 2013-08-23 01:24 - 00775384 _____ () C:\Windows\system32\perfh007.dat
2014-08-20 13:19 - 2013-08-23 01:24 - 00164104 _____ () C:\Windows\system32\perfc007.dat
2014-08-20 13:14 - 2014-08-20 13:14 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Adobe
2014-08-20 13:13 - 2014-08-19 14:24 - 05097928 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-20 13:11 - 2014-02-07 14:23 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\TS3Client
2014-08-20 12:37 - 2014-05-08 22:46 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Spotify
2014-08-20 12:25 - 2014-08-20 12:25 - 01016261 _____ (Thisisu) C:\Users\DoctorWho\Downloads\JRT.exe
2014-08-20 12:19 - 2014-08-20 11:39 - 00000000 ____D () C:\Windows\update_e8_mrb
2014-08-20 12:17 - 2014-08-12 01:35 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-08-20 12:17 - 2014-05-18 23:25 - 00000000 ____D () C:\AeroGlass
2014-08-20 12:16 - 2014-02-19 12:57 - 00000912 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\AlienwareDock.lnk
2014-08-20 12:16 - 2014-02-19 12:56 - 00000000 ____D () C:\Program Files\AlienwareDock
2014-08-20 12:06 - 2014-08-20 12:06 - 00000000 ____D () C:\Program Files\{E2ED24B7-A82D-484D-ABA0-20EF2EFF7D3F}
2014-08-20 12:06 - 2014-08-20 12:06 - 00000000 ____D () C:\Program Files (x86)\{17C19D35-B5C1-4760-A1A0-0690E4278386}
2014-08-20 12:06 - 2014-03-08 12:24 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-20 12:00 - 2014-08-20 12:00 - 00002219 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-08-20 11:50 - 2014-08-20 11:48 - 48123704 _____ (TuneUp Software) C:\Users\DoctorWho\Downloads\TuneUpUtilities2014.exe
2014-08-20 11:20 - 2014-05-08 22:46 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Spotify
2014-08-19 17:42 - 2014-02-07 11:14 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Arma 3
2014-08-19 15:44 - 2014-08-19 15:43 - 00018587 _____ () C:\Windows\DirectX.log
2014-08-19 15:42 - 2014-07-22 15:07 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Bohemia_Interactive
2014-08-19 15:22 - 2014-08-19 15:22 - 01141680 _____ () C:\Users\DoctorWho\Downloads\SteamSetup.exe
2014-08-19 15:22 - 2014-06-27 19:49 - 00000981 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-08-19 15:11 - 2014-08-19 15:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DevExtras
2014-08-19 15:11 - 2014-08-19 15:11 - 00000000 ____D () C:\Program Files (x86)\DevExtras
2014-08-19 14:51 - 2014-08-19 14:51 - 00000297 _____ () C:\Windows\setupact.log
2014-08-19 14:51 - 2014-08-19 14:51 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-19 14:51 - 2014-01-31 20:35 - 00000000 ____D () C:\ProgramData\Dell
2014-08-19 14:48 - 2014-02-06 14:08 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Deployment
2014-08-19 14:29 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-08-19 14:26 - 2014-01-31 20:28 - 00000000 ____D () C:\ProgramData\PCDr
2014-08-19 14:25 - 2014-02-26 22:46 - 00000000 ____D () C:\AdwCleaner
2014-08-19 10:52 - 2014-06-03 12:11 - 00003860 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1397123414
2014-08-19 10:52 - 2014-04-10 11:50 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-08-18 23:21 - 2014-05-11 11:40 - 00000132 _____ () C:\Users\DoctorWho\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2014-08-18 21:11 - 2014-04-20 22:14 - 00000000 ____D () C:\Users\DoctorWho\Documents\ArmAWork
2014-08-18 21:02 - 2014-08-18 21:02 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Blender Foundation
2014-08-18 21:01 - 2014-08-18 21:01 - 00000000 ____D () C:\Users\DoctorWho\.thumbnails
2014-08-18 21:00 - 2014-08-18 21:00 - 00000000 ____D () C:\Program Files\Blender Foundation
2014-08-18 14:53 - 2014-08-18 14:53 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Quadriga Games
2014-08-18 14:52 - 2014-08-18 14:52 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Die Polizei 2013
2014-08-18 14:52 - 2014-08-18 14:52 - 00000000 ____D () C:\Program Files (x86)\Quadriga Games
2014-08-18 14:51 - 2014-08-18 14:51 - 00000000 ____D () C:\Users\DoctorWho\Desktop\62c548c46b0b35aa3c75cfda92c74a0a
2014-08-17 20:26 - 2014-08-17 20:26 - 01726340 _____ () C:\Users\DoctorWho\Documents\ts3_clientui-win32-1407159763-2014-08-17 20_26_48.508481.dmp
2014-08-17 20:09 - 2014-02-23 02:58 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\vlc
2014-08-15 22:06 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-08-15 18:47 - 2014-08-15 18:47 - 00000103 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2014-08-15 10:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-08-14 17:21 - 2014-02-06 15:39 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\NVIDIA Corporation
2014-08-14 17:21 - 2014-02-06 15:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-08-14 17:19 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\InputMethod
2014-08-14 17:05 - 2014-08-14 17:05 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-08-14 17:05 - 2014-01-31 20:29 - 00000000 ____D () C:\Temp
2014-08-14 17:05 - 2014-01-31 20:14 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-08-14 15:56 - 2014-08-14 15:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Take-Two_Interactive_Soft
2014-08-13 17:49 - 2014-02-06 14:33 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\PCDr
2014-08-12 23:33 - 2014-08-12 23:33 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Grand_Theft_Auto_IV_Clan
2014-08-12 22:37 - 2014-08-12 22:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LCPD First Response
2014-08-12 11:07 - 2014-08-12 11:07 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Encryptomatic,_LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Encryptomatic, LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Encryptomatic, LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Caphyon
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\Program Files\Encryptomatic, LLC
2014-08-12 10:58 - 2014-08-12 10:58 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Encryptomatic, LLC
2014-08-12 01:21 - 2014-02-09 23:35 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Skype
2014-08-11 10:02 - 2014-07-30 16:16 - 00000000 ____D () C:\Users\DoctorWho\Tracing
2014-08-11 10:02 - 2014-03-29 14:39 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Winamp
2014-08-11 10:02 - 2014-03-29 12:05 - 00000000 ____D () C:\Windows\Minidump
2014-08-11 10:02 - 2014-03-07 22:59 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\FileZilla
2014-08-10 19:16 - 2014-08-10 19:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ITSecTeam
2014-08-10 15:22 - 2014-07-07 12:52 - 00000000 ____D () C:\Users\DoctorWho\Documents\Banished
2014-08-10 15:08 - 2013-08-23 01:26 - 00000000 ____D () C:\Windows\SKB
2014-08-09 14:13 - 2014-08-09 14:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2014-08-09 14:13 - 2014-08-09 14:13 - 00000000 ____D () C:\Program Files (x86)\ffdshow
2014-08-09 14:12 - 2014-08-09 14:12 - 00000933 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2014-08-09 14:12 - 2014-08-09 14:12 - 00000000 ____D () C:\Program Files\MediaInfo
2014-08-09 12:28 - 2014-08-09 12:27 - 00000000 ____D () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080p.BluRay.x264-CONTRiBUTiON
2014-08-09 12:27 - 2014-08-09 12:25 - 68880193 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part089.rar
2014-08-09 12:27 - 2014-08-09 12:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part088.rar
2014-08-09 12:26 - 2014-08-09 12:23 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part087.rar
2014-08-09 12:25 - 2014-08-09 12:22 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part086.rar
2014-08-09 12:24 - 2014-08-09 12:20 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part085.rar
2014-08-09 12:23 - 2014-08-09 12:19 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part084.rar
2014-08-09 12:22 - 2014-08-09 12:18 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part083.rar
2014-08-09 12:20 - 2014-08-09 12:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part082.rar
2014-08-09 12:19 - 2014-08-09 12:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part081.rar
2014-08-09 12:18 - 2014-08-09 12:15 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part080.rar
2014-08-09 12:16 - 2014-08-09 12:13 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part079.rar
2014-08-09 12:16 - 2014-08-09 12:12 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part078.rar
2014-08-09 12:15 - 2014-08-09 12:12 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part077.rar
2014-08-09 12:13 - 2014-08-09 12:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part076.rar
2014-08-09 12:12 - 2014-08-09 12:09 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part075.rar
2014-08-09 12:12 - 2014-08-09 12:08 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part074.rar
2014-08-09 12:10 - 2014-08-09 12:07 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part073.rar
2014-08-09 12:09 - 2014-08-09 01:07 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part072.rar
2014-08-09 12:08 - 2014-08-09 01:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part071.rar
2014-08-09 12:07 - 2014-08-09 01:05 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part070.rar
2014-08-09 01:07 - 2014-08-09 01:04 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part069.rar
2014-08-09 01:06 - 2014-08-09 01:03 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part068.rar
2014-08-09 01:05 - 2014-08-09 01:01 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part067.rar
2014-08-09 01:04 - 2014-08-09 01:01 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part066.rar
2014-08-09 01:03 - 2014-08-09 01:00 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part065.rar
2014-08-09 01:01 - 2014-08-09 00:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part064.rar
2014-08-09 01:01 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part056.rar
2014-08-09 01:00 - 2014-08-09 00:57 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part063.rar
2014-08-09 00:59 - 2014-08-09 00:56 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part062.rar
2014-08-09 00:57 - 2014-08-09 00:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part061.rar
2014-08-09 00:56 - 2014-08-09 00:54 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part060.rar
2014-08-09 00:55 - 2014-08-09 00:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part059.rar
2014-08-09 00:54 - 2014-08-09 00:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part058.rar
2014-08-09 00:52 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part057.rar
2014-08-09 00:52 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part055.rar
2014-08-09 00:49 - 2014-08-09 00:46 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part054.rar
2014-08-09 00:49 - 2014-08-09 00:46 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part053.rar
2014-08-09 00:49 - 2014-08-09 00:45 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part052.rar
2014-08-09 00:46 - 2014-08-09 00:43 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part051.rar
2014-08-09 00:46 - 2014-08-09 00:42 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part050.rar
2014-08-09 00:45 - 2014-08-09 00:41 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part049.rar
2014-08-09 00:43 - 2014-08-09 00:39 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part048.rar
2014-08-09 00:42 - 2014-08-09 00:39 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part047.rar
2014-08-09 00:41 - 2014-08-09 00:38 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part046.rar
2014-08-09 00:39 - 2014-08-09 00:35 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part045.rar
2014-08-09 00:39 - 2014-08-09 00:35 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part044.rar
2014-08-09 00:38 - 2014-08-09 00:34 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part043.rar
2014-08-09 00:35 - 2014-08-09 00:32 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part042.rar
2014-08-09 00:35 - 2014-08-09 00:32 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part041.rar
2014-08-09 00:34 - 2014-08-09 00:31 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part040.rar
2014-08-09 00:32 - 2014-08-09 00:28 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part039.rar
2014-08-09 00:32 - 2014-08-09 00:28 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part038.rar
2014-08-09 00:31 - 2014-08-09 00:27 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part037.rar
2014-08-09 00:28 - 2014-08-09 00:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part036.rar
2014-08-09 00:28 - 2014-08-09 00:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part035.rar
2014-08-09 00:27 - 2014-08-09 00:23 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part034.rar
2014-08-09 00:24 - 2014-08-09 00:21 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part033.rar
2014-08-09 00:24 - 2014-08-09 00:21 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part032.rar
2014-08-09 00:23 - 2014-08-09 00:20 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part031.rar
2014-08-09 00:21 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part030.rar
2014-08-09 00:21 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part029.rar
2014-08-09 00:20 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part028.rar
2014-08-09 00:17 - 2014-08-09 00:14 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part027.rar
2014-08-09 00:17 - 2014-08-09 00:14 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part026.rar
2014-08-09 00:16 - 2014-08-09 00:13 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part025.rar
2014-08-09 00:14 - 2014-08-09 00:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part024.rar
2014-08-09 00:14 - 2014-08-09 00:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part023.rar
2014-08-09 00:13 - 2014-08-09 00:09 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part022.rar
2014-08-09 00:10 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part021.rar
2014-08-09 00:10 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part020.rar
2014-08-09 00:09 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part019.rar
2014-08-09 00:06 - 2014-08-09 00:03 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part018.rar
2014-08-09 00:06 - 2014-08-09 00:02 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part017.rar
2014-08-09 00:06 - 2014-08-09 00:02 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part016.rar
2014-08-09 00:03 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part015.rar
2014-08-09 00:02 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part014.rar
2014-08-09 00:02 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part013.rar
2014-08-08 23:59 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part012.rar
2014-08-08 23:59 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part011.rar
2014-08-08 23:59 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part010.rar
2014-08-08 23:55 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part009.rar
2014-08-08 23:55 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part008.rar
2014-08-08 23:55 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part007.rar
2014-08-08 23:52 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part006.rar
2014-08-08 23:52 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part005.rar
2014-08-08 23:51 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part004.rar
2014-08-08 23:48 - 2014-08-08 23:44 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part003.rar
2014-08-08 23:48 - 2014-08-08 23:44 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part002.rar
2014-08-08 23:48 - 2014-08-08 23:44 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part001.rar
2014-08-08 22:19 - 2014-08-08 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2014-08-08 22:19 - 2014-08-08 22:19 - 00000000 ____D () C:\Program Files\WhoCrashed
2014-08-08 22:03 - 2014-08-08 22:02 - 00000000 ____D () C:\Users\DoctorWho\Documents\Visual Studio 2008
2014-08-08 22:02 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Microsoft Help
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual C++ 9.0 Express Edition
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files\Microsoft SDKs
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-08-08 21:56 - 2014-08-08 21:56 - 00159744 _____ () C:\Windows\winhlp42.exe
2014-08-08 21:56 - 2014-08-08 21:56 - 00148480 _____ () C:\Windows\system32\DlProtectSvc.exe
2014-08-08 21:56 - 2014-08-08 21:56 - 00003906 _____ () C:\Windows\System32\Tasks\Anwendungs-ID-TreiberAnwendungsidentitätAnwendungsinformationen
2014-08-08 21:56 - 2014-08-08 21:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Hub Timer
2014-08-08 21:56 - 2014-08-08 21:55 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Security Systems
2014-08-08 21:56 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-08 21:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-08-08 18:38 - 2014-02-24 20:02 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\fabi.me
2014-08-05 22:38 - 2014-05-01 22:28 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\foobar2000
2014-08-05 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\tracing
2014-08-01 23:01 - 2014-06-01 12:03 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-08-01 11:50 - 2014-02-06 15:15 - 00000000 ____D () C:\ProgramData\Origin
2014-08-01 11:50 - 2014-02-06 15:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-07-31 14:52 - 2014-01-31 20:25 - 00000000 ____D () C:\ProgramData\Temp
2014-07-30 20:35 - 2014-07-30 20:35 - 00000000 ____D () C:\Program Files\Bohemia Interactive
2014-07-30 16:17 - 2014-02-09 12:15 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Windows Live
2014-07-30 16:15 - 2014-07-30 16:15 - 00002504 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00001476 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00001323 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ____D () C:\Windows\de
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ____D () C:\Program Files\Windows Live
2014-07-30 16:15 - 2014-02-09 12:15 - 00001392 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-07-30 16:15 - 2014-02-09 12:15 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-07-30 16:14 - 2014-07-30 16:14 - 00003114 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1864991570-2205968161-1216624529-1001
2014-07-30 16:14 - 2014-07-30 16:14 - 00000000 ___RD () C:\Users\DoctorWho\OneDrive
2014-07-30 16:14 - 2014-07-30 16:14 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-07-29 23:27 - 2014-07-29 23:21 - 00000000 ____D () C:\Users\DoctorWho\.gimp-2.8
2014-07-29 23:21 - 2014-07-29 23:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\gegl-0.2
2014-07-29 10:27 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-07-28 21:59 - 2014-03-13 00:40 - 00002628 _____ () C:\Windows\Sandboxie.ini
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CableNut
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CableNut
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\Program Files (x86)\Cablenut
2014-07-27 20:20 - 2014-02-06 15:12 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-07-27 18:52 - 2014-07-09 11:06 - 00000000 ____D () C:\Program Files (x86)\east-tec SafeBit
2014-07-27 14:30 - 2014-02-06 15:19 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-07-25 15:50 - 2014-06-03 12:02 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-07-25 15:50 - 2014-06-03 12:02 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-07-25 15:50 - 2014-02-06 15:39 - 01283136 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-07-25 15:50 - 2014-02-06 15:39 - 01126480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-07-25 11:21 - 2014-07-25 11:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\SteelSeries
2014-07-25 11:21 - 2014-07-25 11:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\SteelSeries_ApS
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\ProgramData\SteelSeries
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\Program Files\SteelSeries
2014-07-23 17:07 - 2014-07-23 17:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2014-07-23 17:07 - 2014-07-23 17:07 - 00000000 ____D () C:\Program Files (x86)\AutoHotkey
2014-07-23 17:07 - 2013-08-23 01:26 - 00000000 ____D () C:\Windows\ShellNew
2014-07-22 15:34 - 2014-07-22 15:08 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\mquadr.at
2014-07-22 15:10 - 2014-07-22 15:10 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TGE
2014-07-22 15:10 - 2014-07-22 15:08 - 00000000 ____D () C:\ProgramData\mquadr.at
2014-07-22 15:08 - 2014-07-22 15:07 - 00000000 __HDC () C:\ProgramData\{CD3330DC-8B86-4AE3-B2E4-09E56CB3E702}
2014-07-22 15:07 - 2014-07-22 15:07 - 00001183 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\DSL Soforthilfe.lnk
2014-07-22 15:07 - 2014-07-22 15:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2
2014-07-22 15:07 - 2014-07-22 15:07 - 00000000 ____D () C:\Program Files (x86)\DSL Soforthilfe
2014-07-22 14:45 - 2014-07-22 14:45 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Arma 3 Launcher
2014-07-22 14:23 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-22 13:59 - 2014-07-22 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-22 13:59 - 2014-07-22 13:59 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-21 18:08 - 2014-07-21 18:08 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-21 15:40 - 2014-02-06 15:19 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-07-21 12:04 - 2014-07-21 12:04 - 00004623 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-21 12:04 - 2014-03-12 21:47 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-21 12:04 - 2014-02-16 00:20 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-21 12:00 - 2014-02-07 00:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-07-21 12:00 - 2014-02-07 00:54 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-07-21 12:00 - 2014-01-31 20:20 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-21 11:59 - 2014-07-21 11:59 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-07-21 11:59 - 2014-07-21 11:59 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\CyberLink
2014-07-21 11:03 - 2014-07-21 11:03 - 00000097 _____ () C:\Users\DoctorWho\AppData\Local\fusioncache.dat
2014-07-21 11:01 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Registration
2014-07-21 11:00 - 2014-07-21 11:00 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-07-21 11:00 - 2014-01-31 20:23 - 01807894 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-21 10:56 - 2014-07-21 10:56 - 00720896 _____ (Indigo Rose Corporation) C:\Windows\iun6002ev.exe
2014-07-21 10:46 - 2014-07-20 19:50 - 00000000 ____D () C:\Users\DoctorWho\Documents\www.gtavicecity.ru mods

Files to move or delete:
====================
C:\Users\DoctorWho\bcdedit.exe


Some content of TEMP:
====================
C:\Users\DoctorWho\AppData\Local\Temp\ACLE18.dll
C:\Users\DoctorWho\AppData\Local\Temp\AlienwareDock Installer.exe
C:\Users\DoctorWho\AppData\Local\Temp\CH.dll
C:\Users\DoctorWho\AppData\Local\Temp\CH2.dll
C:\Users\DoctorWho\AppData\Local\Temp\Copy.dll
C:\Users\DoctorWho\AppData\Local\Temp\drm_dyndata_7370014.dll
C:\Users\DoctorWho\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\DoctorWho\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\DoctorWho\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\DoctorWho\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\DoctorWho\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\DoctorWho\AppData\Local\Temp\nvStInst.exe
C:\Users\DoctorWho\AppData\Local\Temp\proxy_vole529735779844383184.dll
C:\Users\DoctorWho\AppData\Local\Temp\Quarantine.exe
C:\Users\DoctorWho\AppData\Local\Temp\x2blapi.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-19 17:38

==================== End Of Log ============================
--- --- ---

Krawall 20.08.2014 19:52
Addition LOG
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-08-2014 01
Ran by DoctorWho at 2014-08-20 15:55:55
Running from C:\Users\DoctorWho\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Dreamweaver CC (HKLM-x32\...\{00E094E1-A852-11E2-803D-ACEA632352B4}) (Version: 13 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5 64-bit (HKLM\...\{6C1A010F-9108-4162-A26F-9FEC4AC0F0F0}) (Version: 5.0.1 - Adobe)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Age of Empires III - The WarChiefs (HKLM-x32\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{A8CF5C37-8EC5-4C33-BB4A-87F468B77D45}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
AlienAutopsy (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
AlienRespawn - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.7.1.2 - Alienware)
AlienRespawn (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.7.1.2 - Alienware)
Alienware Command Center (HKLM-x32\...\InstallShield_{B453A92F-0954-4832-9132-40C2A7C2AE96}) (Version: 3.5.15.0 - Alienware Corp.)
Alienware Command Center (Version: 3.5.15.0 - Alienware Corp.) Hidden
Alienware Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Alienware Dock 1.00 (HKLM-x32\...\Alienware Dock 1.00) (Version: 1.00 - Mr Blade Design's)
Alienware Eclipse 8 (HKLM-x32\...\Alienware Eclipse 8) (Version:  - )
Alienware Evolution Win8 (HKLM-x32\...\Alienware Evolution Win8) (Version: 1.00 - Mr Blade Design's)
APB Reloaded (HKLM-x32\...\APB Reloaded) (Version: 1.6.1.603578 - )
ArchiCrypt Live Version 7.0.6.10964 (HKLM\...\ArchiCrypt Live 7_is1) (Version: 7.0.6.10964 - Softwareentwicklung Patric Remus - ArchiCrypt)
ARMA 3 Launcher By Head (HKLM-x32\...\ARMA 3 Launcher By Head) (Version: 1.0.0.0 - Whoopshop Studios)
AutoHotkey 1.0.48.05 (HKLM-x32\...\AutoHotkey) (Version: 1.0.48.05 - Chris Mallett)
AwesomiumSetup (HKLM-x32\...\{19EF99D1-7EE6-4B5E-ABEE-0B3825F703B0}) (Version: 1.00.0000 - SIX Networks GmbH)
Bandizip (HKCU\...\Bandizip) (Version: 3.08 - Bandisoft.com)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.3.2.3825 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
BinMake Uninstall (HKLM-x32\...\BinMake) (Version:  - )
BinPBO Personal Edition Uninstall (HKLM-x32\...\BinPBO Personal Edition) (Version:  - )
BI's Tools drive Uninstall (HKLM-x32\...\BI's Tools drive) (Version:  - )
Bitcoin Core (32-bit) (HKCU\...\Bitcoin Core (32-bit)) (Version: 0.9.1 - Bitcoin Core project)
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.9.9 - BitRaider, LLC)
Blender (HKLM\...\Blender) (Version: 2.71 - Blender Foundation)
Brother MFL-Pro Suite DCP-J315W (HKLM-x32\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Cablenut 4.08 (HKLM-x32\...\Cablenut) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Clownfish for Skype (HKLM-x32\...\Clownfish) (Version:  - )
Counter-Strike (HKLM-x32\...\Steam App 10) (Version:  - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
CSScripter (HKLM-x32\...\{AEBCE459-02CE-430F-8F16-60290D2B2C67}) (Version: 1.0.0 - CSScripter)
CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (x32 Version: 10.0.1.3214 - CyberLink Corp.) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.3123 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.1.3126 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (x32 Version: 12.0.3205.55 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.9.0.5 - Dell)
DevExtras - CodeReflect (HKLM-x32\...\{D3F9A17B-0655-45B9-899D-7B46DC1CD2CC}) (Version: 1.0.8 - DevExtras)
Die Polizei 2013 (HKLM-x32\...\Die Polizei 2013) (Version:  - Quadriga Games)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.90 - DivX, LLC)
Download Protect (HKCU\...\{132401a7-2006-4342-b43c-ccf5f02c2b01}) (Version:  - Download Protect)
DSC/AA Factory Installer (Version: 3.4.6299.48 - PC-Doctor, Inc.) Hidden
DSL Soforthilfe (HKLM-x32\...\DSL Soforthilfe) (Version: 1.1.0.51 - Telefónica Germany GmbH & Co. OHG)
east-tec SafeBit 2 (HKLM-x32\...\east-tec SafeBit 2) (Version:  - )
EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies)
Equalify v2.5.3 (Stable) (HKLM-x32\...\{33EC4F70-9F4B-406F-BB2A-F75A285E927D}) (Version: 2.5.3.0 - Equalify)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version:  - SCS Software)
Euro Truck Simulator 2 Multiplayer 0.1.0.7.3 Alpha (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.1.0.7.3 Alpha - ETS2MP Team)
Fallout New Vegas Ultimate Edition (HKLM-x32\...\Fallout New Vegas Ultimate Edition_is1) (Version:  - )
ffdshow v1.3.4531 [2014-06-28] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4531.0 - )
FFsplit version 0.7 (HKLM-x32\...\{82458834-6226-4A34-AE96-6907354F9F36}_is1) (Version: 0.7 - FFsplit Team)
FileViewPro (HKLM\...\FileViewPro_is1) (Version: 4.0 - Solvusoft Corporation)
FileZilla Client 3.7.4.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.4.1 - Tim Kosse)
FontToTga Uninstall (HKLM-x32\...\FontToTga) (Version:  - )
foobar2000 v1.3.2 (HKLM-x32\...\foobar2000) (Version: 1.3.2 - Peter Pawlowski)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit Advanced PDF Editor 3 (HKLM-x32\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.0.0.0 - Foxit Corporation)
Foxy Secure (HKLM-x32\...\Foxy Secure) (Version: 6 - )
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
FreeDee (HKLM-x32\...\{343C2B7A-886A-425E-ACC8-E3C043925EE2}) (Version: 0.022 - Arma2NET Developers and FreeDee Developer)
FSM Editor Personal Edition Uninstall (HKLM-x32\...\FSM Editor Personal Edition) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.2.1000 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.650 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Landmark Beta (HKCU\...\SOE-Landmark Beta) (Version: 1.0.3.183 - Sony Online Entertainment)
LastPass (Nur deinstallieren) (HKLM-x32\...\LastPass) (Version:  - LastPass)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.150 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.227 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.227 - LogMeIn, Inc.) Hidden
Lumac (HKLM-x32\...\InstallShield_{5DE11949-2B11-4F13-BAD5-1C237122CFDB}) (Version: 1.1.92.0 - Firstload)
Lumac (x32 Version: 1.1.92.0 - Firstload) Hidden
MAGIX 3D Maker 7 Download-Version (HKLM-x32\...\MAGIX_{8F182094-4AF1-4961-896F-E497CDFF2370}) (Version: 7.0.0.499 - MAGIX AG)
MAGIX 3D Maker 7 Download-Version (Version: 7.0.0.499 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MediaInfo 0.7.69 (HKLM\...\MediaInfo) (Version: 0.7.69 - MediaArea.net)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 DEU (HKLM\...\{CCBF4FD7-F4D2-4DB0-BC0E-F4EC42220EFF}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Express Edition - DEU (HKLM-x32\...\Microsoft Visual C++ 2008 Express Edition - DEU) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2008 Express Edition - DEU (x32 Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - DEU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - DEU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - DEU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - DEU (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework (HKLM\...\{53C900F7-0CB1-3EDE-B9F3-76EDE6F0C253}) (Version: 3.5.21022 - Microsoft)
Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32 (HKLM\...\{11EB1163-5761-4BC6-8F48-98DCF6A46BBF}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MTA:SA v1.3.5 (HKLM-x32\...\MTA:SA 1.3) (Version: v1.3.5 - Multi Theft Auto)
MultiDoge 0.1.2 (HKLM-x32\...\MultiDoge 0.1.2) (Version: 0.1.2 - )
Murdered: Soul Suspect (HKLM-x32\...\TXVyZGVyZWRTb3VsU3VzcGVjdA==_is1) (Version: 1 - )
My Game Long Name (HKLM\...\UDK-89908f5f-68a6-4854-b601-d1d922fc830d) (Version:  - Epic Games, Inc.)
Nether Launcher (HKLM\...\{8A11F467-FBC3-4E55-B4D9-5F3BACC52B7D}) (Version: 16.26.0.0 - Nether Productions, LLC.)
Nether Launcher (HKLM\...\{94485F33-9350-4920-9CC9-15DAA20FCA89}) (Version: 16.20.0.0 - Nether Productions, LLC.)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.3 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
NVIDIA Update 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
OpenOffice 4.0.1 (HKLM-x32\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
OpenVPN 2.3-I003  (HKLM\...\OpenVPN) (Version: 2.3-I003 - )
Opera Stable 23.0.1522.77 (HKLM-x32\...\Opera 23.0.1522.77) (Version: 23.0.1522.77 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.1.116 - Electronic Arts, Inc.)
Oxygen 2 Personal Edition Uninstall (HKLM-x32\...\Oxygen 2 Personal Edition) (Version:  - )
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Patch Alienware Eclipse 8 (HKLM-x32\...\Patch Alienware Eclipse 8) (Version: 8 - Mr Blade Design's)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PE Explorer 1.99 R6 (HKLM-x32\...\PE Explorer_is1) (Version: 1.99.6 - Heaventools Software)
Perfect Effects 8 (HKLM-x32\...\{ABC791C9-E95B-40C8-8BDD-F5E84E2E268B}) (Version: 8.1.0 - onOne Software)
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PowerStrip 3 (remove only) (HKLM-x32\...\PowerStrip 3 (remove only)) (Version:  - )
PremiumSoft Navicat Premium 11.0 (HKLM-x32\...\PremiumSoft Navicat Premium_is1) (Version: 11.0.8 - PremiumSoft CyberTech Ltd.)
PSTViewer Pro (HKLM\...\{FC8FEFE3-9286-406C-86E0-CF4245D3A427}) (Version: 6.0.0.297 - Encryptomatic, LLC)
Rapid CSS 2014 v12.2 (HKLM-x32\...\Rapid CSS 2014_is1) (Version: 12.0 - Karlis Blumentals)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7058 - Realtek Semiconductor Corp.)
Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC)
Sanny Builder 3.2.2 (HKLM-x32\...\Sanny Builder 3_is1) (Version:  - )
Secure Eraser (HKLM-x32\...\Secure Eraser_is1) (Version: 4.2.0.1 - ASCOMP Software GmbH)
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
Shutdown Timer (HKLM\...\{0B1BBEE3-C10D-44BE-A6BE-EEC867315F87}) (Version: 3.3.4 - Sinvise Systems)
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version:  - )
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2189.2 - Hi-Rez Studios)
Sniper Elite 3 Update 1 (HKLM-x32\...\U25pcGVyRWxpdGUz_is1) (Version: 1 - )
SoftPerfect Bandwidth Manager 3.0.7 (HKLM\...\SoftPerfect Bandwidth Manager_is1) (Version:  - SoftPerfect Research)
Sound Tools Uninstall (HKLM-x32\...\Sound Tools) (Version:  - )
Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform)
Spintires (HKLM-x32\...\Spintires_is1) (Version:  - )
Spotify (HKCU\...\Spotify) (Version: 0.9.11.27.g2b1a638c - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 7.0.0.34 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
SteelSeries Engine (HKLM\...\SteelSeries Engine) (Version: 2.8.450.22786 - SteelSeries)
Stylizer (HKLM-x32\...\Skybound Stylizer 5) (Version: 5 - )
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer)
TexView 2 Uninstall (HKLM-x32\...\TexView 2) (Version:  - )
TortoiseSVN 1.8.5.25224 (64 bit) (HKLM\...\{57FCA88C-D94A-490A-B8C6-8ECC3A9A48D2}) (Version: 1.8.25224 - TortoiseSVN)
Tropico 5 (HKLM-x32\...\Tropico 5_is1) (Version: 1.0 - ENiGMA)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
TS3 Server Admin Program (HKCU\...\c5afc0dbcf794dc2) (Version: 0.9.4.2 - TS3 Server Admin Program)
TUGZip 3.5 (HKLM-x32\...\TUGZip_is1) (Version:  - Christian Kindahl)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.340 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
UltraUXThemePatcher (HKLM-x32\...\UltraUXThemePatcher) (Version: 2.1.0.0 - Manuel Hoefs (Zottel))
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Uplay (HKLM-x32\...\Uplay) (Version: 4.5 - Ubisoft)
Uplink (HKLM-x32\...\Steam App 1510) (Version:  - Introversion Software)
VC Runtimes MSI (x32 Version: 9.0.21022 - Microsoft) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{3D46565E-4D02-11E3-A75C-F04DA23A5C58}) (Version: 12.0.765 - Sony)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
Visitor 3 Uninstall (HKLM-x32\...\Visitor 3) (Version:  - )
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VTFEdit 1.3.3 (HKLM\...\VTFEdit_is1) (Version:  - Neil Jedrzejewski & Ryan Gregg)
War Thunder Launcher 1.0.1.376 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - Gaijin Entertainment)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version:  - Ubisoft)
WeBuilder 2014 v12.2 (HKLM-x32\...\WeBuilder 2014_is1) (Version: 12.0 - Karlis Blumentals)
WhoCrashed 5.02 (HKLM\...\WhoCrashed_is1) (Version:  - Resplendence Software Projects Sp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
winpcap-overlook 4.02 (HKLM-x32\...\winpcap-overlook) (Version:  - )
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinSCP 5.5.4 (HKLM-x32\...\winscp3_is1) (Version: 5.5.4 - Martin Prikryl)
Wolfenstein: The New Order (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1864991570-2205968161-1216624529-1001_Classes\CLSID\{1819ED18-F0F6-41C3-B268-F8E11A8EAA99}\InprocServer32 -> C:\Windows\system32\kernel32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1864991570-2205968161-1216624529-1001_Classes\CLSID\{5B69A6B4-393B-459C-8EBB-214237A9E7AC}\InprocServer32 -> C:\Users\DoctorWho\AppData\Local\Bandizip\bdzshl64.dll (Bandisoft.com)
CustomCLSID: HKU\S-1-5-21-1864991570-2205968161-1216624529-1001_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-1864991570-2205968161-1216624529-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\DoctorWho\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

05-08-2014 18:58:37 DirectX wurde installiert
07-08-2014 08:15:53 DirectX wurde installiert
12-08-2014 07:42:10 DirectX wurde installiert
14-08-2014 15:21:02 DirectX wurde installiert
15-08-2014 20:16:25 DirectX wurde installiert
17-08-2014 09:07:31 DirectX wurde installiert
18-08-2014 12:53:04 DirectX wurde installiert
19-08-2014 13:11:52 Installed DevExtras - CodeReflect

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2014-04-01 10:51 - 00001132 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1                  activate.adobe.com
127.0.0.1                  practivate.adobe.com
127.0.0.1                  lmlicenses.wip4.adobe.com
127.0.0.1                  lm.licenses.adobe.com
127.0.0.1                  na1r.services.adobe.com
127.0.0.1                  hlrcv.stage.adobe.com


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0C6B38B8-BBCB-40EF-8DF3-F879F022F6E7} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-bobbyrastaws@hushmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated)
Task: {1E3F209C-6EFA-46EB-B259-FCAE87B86CF6} - \SUPERAntiSpyware Scheduled Task 8893324a-2d86-42a7-9f38-27de4e84252c No Task File <==== ATTENTION
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2154ED69-7C73-4ACC-8FAD-002A331F9CED} - System32\Tasks\Opera scheduled Autoupdate 1397123414 => C:\Program Files (x86)\Opera\launcher.exe [2014-08-14] (Opera Software)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2FD61E0E-7FC8-4C53-933F-A4FE26A2AD1F} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {322B32B4-48CC-4669-9446-DB1B0B81153B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-20] (Adobe Systems Incorporated)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4DA4FA04-C20F-461E-9978-70E657A593F5} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {66812841-0579-4F8B-A547-40D62900FD48} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1864991570-2205968161-1216624529-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6B346D06-EC76-4083-B108-1F780EC234FC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-06] (Google Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7F98719B-7457-46D7-A40C-92DA0B13FBD5} - \SUPERAntiSpyware Scheduled Task 7723f68e-f327-457f-85dc-0581b6776a89 No Task File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A0EF40FC-E9B6-464D-9F1F-E74F99134AFB} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {AE0447F0-3238-4011-9B37-71D36D7D7FE1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {B8E11557-69BA-4233-BAF2-64B8AB6892CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-06] (Google Inc.)
Task: {C64D32C8-0AB4-4D9C-B5BA-7DCEDBE63C8D} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\AlienAutopsy\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {C6E6369E-BF0B-4876-BE90-C3DA751B341B} - System32\Tasks\Anwendungs-ID-TreiberAnwendungsidentitätAnwendungsinformationen => C:\Windows\winhlp42.exe [2014-08-08] ()
Task: {C96C7519-55AA-4E2D-A7DD-E7DD011B85A4} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\AlienAutopsy\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {CD2ECD1D-51C3-4B2D-9C22-C411CCC912E9} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-01-31 20:14 - 2014-07-02 20:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-08-08 21:56 - 2014-07-30 13:22 - 00536576 _____ () C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe
2014-02-09 02:15 - 2014-07-07 18:28 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-07 07:01 - 2014-03-07 07:01 - 00006656 _____ () D:\Software\Spotflux\services\SpotfluxCore.dll
2014-03-07 07:01 - 2014-03-07 07:01 - 00009216 _____ () D:\Software\Spotflux\services\SFEvents.dll
2014-03-07 07:01 - 2014-03-07 07:01 - 00017408 _____ () D:\Software\Spotflux\services\WebServices.dll
2014-05-28 12:12 - 2005-04-22 06:36 - 00143360 _____ () C:\Windows\system32\BrSNMP64.dll
2014-07-16 10:24 - 2014-07-16 10:24 - 00699704 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2014-02-18 22:16 - 2014-02-18 22:16 - 00076016 _____ () C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll
2014-02-18 22:16 - 2014-02-18 22:16 - 00088816 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00504832 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineLib.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 09315328 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineWinGui.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00015872 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Localization.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00011264 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\ISSPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00011264 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Utilities.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00115200 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DriverCommunication.dll
2014-05-16 17:57 - 2014-05-16 17:57 - 00047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesDrivers\x2api.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00034304 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DBUtils.dll
2014-05-16 17:57 - 2014-05-16 17:57 - 01102336 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\System.Data.SQLite.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00189440 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\D3MousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00031744 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\KKMousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SRawPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00159744 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MLGSenseiPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00020992 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWGoldPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\GW2MousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00029696 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CSGOMousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030208 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DOTA2MousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00023040 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWWirelessPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CODMousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030208 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoTMousePlugin.dll
2014-02-06 15:39 - 2014-07-25 15:51 - 00699680 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2014-02-06 15:39 - 2014-07-25 15:51 - 00855328 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2014-07-18 22:05 - 2014-06-06 15:44 - 00724176 _____ () C:\Program Files\SoftPerfect Bandwidth Manager\sqlite.dll
2014-07-18 22:05 - 2014-06-06 15:44 - 00420048 _____ () C:\Program Files\SoftPerfect Bandwidth Manager\ndpi.dll
2014-08-08 21:56 - 2014-08-08 21:56 - 00374272 _____ () C:\Users\DoctorWho\AppData\Roaming\Hub Timer\sub\default.dll
2014-02-18 21:32 - 2014-02-18 21:32 - 00065776 _____ () C:\Program Files\TortoiseSVN\bin\TortoiseStub32.dll
2014-02-18 21:32 - 2014-02-18 21:32 - 00071920 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2014-08-08 21:56 - 2014-08-20 12:17 - 00012288 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2014-02-11 21:29 - 2014-02-11 21:29 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 00718152 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libglesv2.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libegl.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
2014-05-28 12:12 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2014-01-31 20:25 - 2013-03-05 05:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-05 12:41 - 2013-03-05 12:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-04-10 14:30 - 2014-04-10 14:30 - 00134664 _____ () C:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2014-08-19 14:51 - 2013-09-04 14:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData:NT
AlternateDataStreams: C:\Users\All Users:NT
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:NT
AlternateDataStreams: C:\ProgramData\Application Data:NT
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT
AlternateDataStreams: C:\ProgramData\Temp:E04BDBD2
AlternateDataStreams: C:\Users\DoctorWho\Anwendungsdaten:NT
AlternateDataStreams: C:\Users\DoctorWho\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\DoctorWho\SkyDrive (2).old:ms-properties
AlternateDataStreams: C:\Users\DoctorWho\SkyDrive.old:ms-properties
AlternateDataStreams: C:\Users\DoctorWho\AppData\Roaming:NT

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ksupmgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ksupmgr => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: WMPNetworkSvc => 2
HKLM\...\StartupApproved\Run: => "InstallerLauncher"
HKLM\...\StartupApproved\Run32: => "DivXMediaServer"
HKLM\...\StartupApproved\Run32: => "DivXUpdate"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "DSL Soforthilfe"
HKCU\...\StartupApproved\StartupFolder: => "GamersFirst LIVE!.lnk"
HKCU\...\StartupApproved\StartupFolder: => "Rainmeter.lnk"
HKCU\...\StartupApproved\Run: => "Skype"
HKCU\...\StartupApproved\Run: => "spotflux"
HKCU\...\StartupApproved\Run: => "SandboxieControl"
HKCU\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_40CE17C9F57753E2CEC22F84E70150E7"
HKCU\...\StartupApproved\Run: => "Spotify"
HKCU\...\StartupApproved\Run: => "Spotify Web Helper"
HKCU\...\StartupApproved\Run: => "WarThunderLauncher"
HKCU\...\StartupApproved\Run: => "east-tec SafeBit"
HKCU\...\StartupApproved\Run: => "msnmsgr"
HKCU\...\StartupApproved\Run: => "Clownfish"
HKCU\...\StartupApproved\Run: => "mapdisk"

==================== Faulty Device Manager Devices =============

Name: Spotflux Virtual Network Device Driver
Description: Spotflux Virtual Network Device Driver
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Spotflux, Inc.
Service: tapSF0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #4
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #2
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #3
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #5
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #6
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #7
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #8
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #10
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #11
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #12
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #14
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #13
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #15
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #16
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #17
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (08/20/2014 03:52:40 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (08/20/2014 03:52:33 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (08/20/2014 03:52:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "hidedir" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (08/20/2014 03:52:30 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\hidedir.sys

Error: (08/20/2014 03:52:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "UAC-Dateivirtualisierung" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (08/20/2014 01:14:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (08/20/2014 01:13:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (08/20/2014 01:13:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "hidedir" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (08/20/2014 01:13:49 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\hidedir.sys

Error: (08/20/2014 01:13:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "UAC-Dateivirtualisierung" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-08-20 15:38:05.542
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.516
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.491
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.466
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.441
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.418
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.392
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.369
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.345
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.321
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4930K CPU @ 3.40GHz
Percentage of memory in use: 17%
Total physical RAM: 16302.14 MB
Available physical RAM: 13454.88 MB
Total Pagefile: 21678.14 MB
Available Pagefile: 18270.89 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:228.01 GB) (Free:53.85 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:384.11 GB) NTFS
Drive g: (Polizei 2013) (CDROM) (Total:1.29 GB) (Free:0 GB) CDFS
Drive p: (Privat) (Fixed) (Total:3.34 GB) (Free:3.29 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: FE72631D)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 78CB61DD)

Partition: GPT Partition Type.

==================== End Of Log ============================
GMER Log

GMER Logfile:
Code:
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-08-20 16:01:12
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\0000004b LITEONIT_LCS-256M6S_2.5_7mm_256GB rev.DC8110E 238,47GB
Running: Gmer-19357.exe; Driver: C:\Users\DOCTOR~1\AppData\Local\Temp\kwdcauog.sys


---- Kernel code sections - GMER 2.1 ----

.text    C:\Windows\System32\win32k.sys!W32pServiceTable                                                                                                                      fffff96000209e00 15 bytes [00, FA, 0E, 02, C0, 9C, 70, ...]
.text    C:\Windows\System32\win32k.sys!W32pServiceTable + 16                                                                                                                  fffff96000209e10 11 bytes [00, 00, FC, FF, 80, FA, C0, ...]

---- User code sections - GMER 2.1 ----

.text    C:\Windows\system32\dwm.exe[828] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                                              00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\dwm.exe[828] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                                              00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\dwm.exe[828] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                                                  00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\dwm.exe[828] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                                                  00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[1028] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                                          00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[1028] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                                          00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[1028] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                                              00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[1028] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                                              00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe[2184] C:\Windows\system32\PsApi.dll!GetModuleBaseNameA + 506                                                00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe[2184] C:\Windows\system32\PsApi.dll!GetModuleBaseNameA + 514                                                00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe[2184] C:\Windows\system32\PsApi.dll!QueryWorkingSet + 118                                                  00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe[2184] C:\Windows\system32\PsApi.dll!QueryWorkingSet + 142                                                  00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\svchost.exe[2652] C:\Windows\system32\WSOCK32.dll!setsockopt + 194                                                                                00007fffe3601f6a 4 bytes [60, E3, FF, 7F]
.text    C:\Windows\system32\svchost.exe[2652] C:\Windows\system32\WSOCK32.dll!setsockopt + 218                                                                                00007fffe3601f82 4 bytes [60, E3, FF, 7F]
.text    C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe[2752] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe[2752] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe[2752] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                  00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe[2752] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                  00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\Windows Defender\MsMpEng.exe[2776] C:\Windows\system32\psapi.dll!GetModuleBaseNameA + 506                                                            00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\Windows Defender\MsMpEng.exe[2776] C:\Windows\system32\psapi.dll!GetModuleBaseNameA + 514                                                            00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\Windows Defender\MsMpEng.exe[2776] C:\Windows\system32\psapi.dll!QueryWorkingSet + 118                                                              00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\Windows Defender\MsMpEng.exe[2776] C:\Windows\system32\psapi.dll!QueryWorkingSet + 142                                                              00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe[2812] C:\Windows\system32\PsApi.dll!GetModuleBaseNameA + 506                                                    00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe[2812] C:\Windows\system32\PsApi.dll!GetModuleBaseNameA + 514                                                    00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe[2812] C:\Windows\system32\PsApi.dll!QueryWorkingSet + 118                                                        00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe[2812] C:\Windows\system32\PsApi.dll!QueryWorkingSet + 142                                                        00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\SoftPerfect Bandwidth Manager\BMCore.exe[7932] C:\Windows\SYSTEM32\wsock32.dll!setsockopt + 194                                                      00007fffe3601f6a 4 bytes [60, E3, FF, 7F]
.text    C:\Program Files\SoftPerfect Bandwidth Manager\BMCore.exe[7932] C:\Windows\SYSTEM32\wsock32.dll!setsockopt + 218                                                      00007fffe3601f82 4 bytes [60, E3, FF, 7F]

---- Threads - GMER 2.1 ----

Thread  C:\Windows\system32\csrss.exe [824:848]                                                                                                                              fffff960009814d0
Thread  C:\Windows\Explorer.EXE [3708:4612]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4648]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4100]                                                                                                                                  00007ffff26d6b3c
Thread  C:\Windows\Explorer.EXE [3708:4256]                                                                                                                                  00007fffe558ce30
Thread  C:\Windows\Explorer.EXE [3708:4336]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4884]                                                                                                                                  00007ffff364ec38
Thread  C:\Windows\Explorer.EXE [3708:5088]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4528]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4664]                                                                                                                                  00007fffe0fdefc0
Thread  C:\Windows\Explorer.EXE [3708:4756]                                                                                                                                  00007fffe0e6f36c
Thread  C:\Windows\Explorer.EXE [3708:4984]                                                                                                                                  00007ffffa037ea8
Thread  C:\Windows\Explorer.EXE [3708:6032]                                                                                                                                  00007fffdf3f1e40
Thread  C:\Windows\Explorer.EXE [3708:6640]                                                                                                                                  00007ffff6e51120
Thread  C:\Windows\Explorer.EXE [3708:7692]                                                                                                                                  00007ffffb582764
Thread  C:\Windows\Explorer.EXE [3708:7712]                                                                                                                                  00007fffceb6d6bc
Thread  C:\Windows\Explorer.EXE [3708:5172]                                                                                                                                  00007fffe35deeb4
Thread  C:\Windows\Explorer.EXE [3708:908]                                                                                                                                    00007fffce6dd6bc
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:7032]                                                                                                                            0000000000da48be
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:3848]                                                                                                                            000000006a0c4a56
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6148]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6944]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6568]                                                                                                                            0000000077058cde
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6604]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6360]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6220]                                                                                                                            000000006a128ebc
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:7368]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:7540]                                                                                                                            0000000067783309
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:7780]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:3184]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:3292]                                                                                                                            000000006a198ab0
---- Processes - GMER 2.1 ----

Process  C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe (*** suspicious ***) @ C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe [2128](2014-08-08 19:56:10)          0000000000400000
Library  C:\Users\DoctorWho\AppData\Roaming\Hub Timer\sub\default.dll (*** suspicious ***) @ C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe [2128](2014-08-08 19:56:18)  0000000001620000

---- Disk sectors - GMER 2.1 ----

Disk    \Device\Harddisk0\DR0                                                                                                                                                unknown MBR code

---- EOF - GMER 2.1 ----
--- --- ---

Defogger Log

Code:
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 15:51 on 20/08/2014 (DoctorWho)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
SPTD -> Disabled (Service running -> reboot required)


-=E.O.F=-
Fehler anzeige bei GMER

Screenshot 1

http://s14.directupload.net/images/140820/on2zcphp.png

Screenshot 2
http://s1.directupload.net/images/140820/i94g79z8.png

schrauber 21.08.2014 17:14
Zitat:
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
gecracktes Adobe erstmal entfernen....

Krawall 21.08.2014 18:59
Ja habe mir vor wenn ich mich nicht täusche, 2 Woche ungefair über nen freund "Student" die Vollversion geholt. habs nun in der Host datei gelöscht

Aber habe keinerlei Cracks / DLL´s´benutzt daher kommt es nicht

Benutzte dafür extra nen PC wo alles Grafik sachen + Bearbeitung ist

schrauber 22.08.2014 17:12
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.


Alle Zeitangaben in WEZ +1. Es ist jetzt 19:52 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55