Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Windows 8.1 | Download Protector 2.2.5 | Chrome Erweiterung | Lässt sich nicht löschen (https://www.trojaner-board.de/157832-windows-8-1-download-protector-2-2-5-chrome-erweiterung-laesst-loeschen.html)

Krawall 20.08.2014 15:22
Windows 8.1 | Download Protector 2.2.5 | Chrome Erweiterung | Lässt sich nicht löschen
 
Liste der Anhänge anzeigen (Anzahl: 2)
Hallo, Trojaner - Board

Wie der Titel schon beschrieben hat, handelt es sich um die "Software Download Protector" die einfach sich nicht löschen lassen möchte
Habe bereits schon versucht.

"http://www.trojaner-board.de/157709-...ntfernen.html"

Versuchte Aktionen

Malwarebytes
CCLeaner (Removing)

Beim ausführen von der GMER Software sind 2 Fehlermeldungen aufgetreten (Screenshots) sind unten als Anhang

schrauber 20.08.2014 16:44
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

Krawall 20.08.2014 19:48
1.

FRST LOG

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-08-2014 01
Ran by DoctorWho (administrator) on GAMINGNETWORK on 20-08-2014 15:55:34
Running from C:\Users\DoctorWho\Desktop
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hi-Rez Studios) D:\Smite\HiPatchService.exe
() C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Microsoft) D:\Software\Spotflux\services\SpotfluxConnectionManager.exe
(Microsoft) D:\Software\Spotflux\services\SpotfluxUpdateService.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(LastPass) C:\Program Files (x86)\LastPass\nplastpass.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(KoshyJohn.com) C:\Users\DoctorWho\AppData\Roaming\KoshyJohn.com\MemClean\MemClean.exe
(Alienware) C:\Program Files\Alienware\Command Center\ThermalController.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dell) C:\Users\DoctorWho\AppData\Local\Apps\2.0\B5ZH53CR.TOB\PXL3CW5W.GH6\dell..tion_0f612f649c4a10af_0005.0009_14e1a3fbfbaf942c\DellSystemDetect.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(SoftPerfect Research) C:\Program Files\SoftPerfect Bandwidth Manager\BMCore.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7200984 2013-10-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1353432 2013-09-27] (Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Command Center Controllers] => C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [13840 2013-12-06] (Alienware)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10394392 2014-04-07] (Logitech Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472992 2013-03-21] (Adobe Systems Incorporated)
HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (the data entry has 36 more characters).
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2014-03-29] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-03-29] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2014-04-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2629632 2012-09-25] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816784 2014-07-21] (LogMeIn Inc.)
HKLM-x32\...\Run: [DSL Soforthilfe] => C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe [20585888 2013-11-21] ()
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Agent] => "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse] => "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
HKU\.DEFAULT\...\Policies\Explorer: [NoDriveAutoRun] 0xFFFFFF03
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Memory Cleaner] => C:\Users\DoctorWho\AppData\Roaming\KoshyJohn.com\MemClean\MemClean.exe [791560 2013-02-03] (KoshyJohn.com)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [spotflux] => D:\Software\Spotflux\services\SpotfluxAgent.exe [258560 2014-03-07] (Microsoft)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [759496 2014-01-17] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21648480 2014-07-02] (Skype Technologies S.A.)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Spotify] => C:\Users\DoctorWho\AppData\Roaming\Spotify\Spotify.exe [6162488 2014-07-04] (Spotify Ltd)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Spotify Web Helper] => C:\Users\DoctorWho\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1178168 2014-07-04] (Spotify Ltd)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [east-tec SafeBit] => C:\Program Files (x86)\east-tec SafeBit\safebit.exe [1800296 2014-05-20] ()
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [WarThunderLauncher] => C:\Program Files (x86)\WarThunder\launcher.exe [5488528 2014-06-23] (Gaijin Entertainment)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [Clownfish] => C:\Program Files (x86)\Clownfish\Clownfish.exe [1315072 2014-06-09] (Bogdan Sharkov)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-06-26] (SteelSeries ApS)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272840 2014-03-31] (Microsoft Corporation)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [mapdisk] => C:\Users\DoctorWho\Documents\ArmAWork\mapdisk.bat [52 2014-08-18] ()
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Run: [DellSystemDetect] => C:\Users\DoctorWho\AppData\Local\Apps\2.0\B5ZH53CR.TOB\PXL3CW5W.GH6\dell..tion_0f612f649c4a10af_0005.0009_14e1a3fbfbaf942c\DellSystemDetect.exe [263232 2014-08-19] (Dell)
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoDriveAutoRun] 0xFFFFFF03
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoSMBalloonTip] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoToolbarsOnTaskbar] 0
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\Policies\Explorer: [NoFileAssociate] 1
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\MountPoints2: G - "G:\autorun.exe"
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\MountPoints2: {12c1103b-cc66-11e3-828c-7845c4fea853} - "J:\AutoRun.exe" {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083
HKU\S-1-5-21-1864991570-2205968161-1216624529-1001\...\MountPoints2: {a5451d93-cde5-11e3-828f-7845c4fea853} - "H:\AutoRun.exe" {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083
AppInit_DLLs: prio.dll => prio.dll File Not Found
AppInit_DLLs-x32: prio32.dll => "prio32.dll" File Not Found
IFEO: [Debugger] logonui.exe
Startup: C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_09208823.lnk
ShellIconOverlayIdentifiers: 1TortoiseNormal -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 2TortoiseModified -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 3TortoiseConflict -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 4TortoiseLocked -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 5TortoiseReadOnly -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 6TortoiseDeleted -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 7TortoiseAdded -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 8TortoiseIgnored -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: 9TortoiseUnversioned -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\System32\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\System32\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: 1TortoiseNormal -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 2TortoiseModified -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 3TortoiseConflict -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 4TortoiseLocked -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 5TortoiseReadOnly -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 6TortoiseDeleted -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 7TortoiseAdded -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 8TortoiseIgnored -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 9TortoiseUnversioned -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation)
AlternateShell:
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCJB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.alienwarearena.com/welcome-de
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCJB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.alienwarearena.com/welcome-de
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope {F106FF18-F259-40C6-8A63-039BE77D0174} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {F106FF18-F259-40C6-8A63-039BE77D0174} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - DefaultScope {F106FF18-F259-40C6-8A63-039BE77D0174} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {F106FF18-F259-40C6-8A63-039BE77D0174} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {F106FF18-F259-40C6-8A63-039BE77D0174} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {C32F5BF7-6918-4F78-A97A-53CDF7D07C8C} -> C:\Users\DoctorWho\AppData\LocalLow\Internet Explorer BHO\bho.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\DoctorWho\AppData\Roaming\Mozilla\Firefox\Profiles\s8bdoqx0.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF user.js: detected! => C:\Users\DoctorWho\AppData\Roaming\Mozilla\Firefox\Profiles\s8bdoqx0.default\user.js
FF Extension: Foxy Secure 7 - C:\Users\DoctorWho\AppData\Roaming\Mozilla\Firefox\Profiles\s8bdoqx0.default\Extensions\connect@foxy-sec.com [2014-08-20]
FF Extension: DSL Soforthilfe - C:\Users\DoctorWho\AppData\Roaming\Mozilla\Firefox\Profiles\s8bdoqx0.default\Extensions\{95E05177-EA09-4386-8B79-FEB1EAC063E6} [2014-07-22]
FF HKLM-x32\...\Firefox\Extensions: [{7A5C6A4D-7D7C-4A30-BDCC-FFD2150BBB7F}] - C:\Windows\Installer\{40DAFDFE-B28F-4E76-8BDF-66F6C8B45804}\{7A5C6A4D-7D7C-4A30-BDCC-FFD2150BBB7F}.xpi
FF Extension: Download Protect - C:\Windows\Installer\{40DAFDFE-B28F-4E76-8BDF-66F6C8B45804}\{7A5C6A4D-7D7C-4A30-BDCC-FFD2150BBB7F}.xpi [2014-08-20]
FF StartMenuInternet: FIREFOX.EXE - D:\Browser\firefox.exe

Chrome:
=======
CHR HomePage:
CHR StartupUrls: "hxxp://www.google.com"
CHR Extension: (Google Docs) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-06]
CHR Extension: (Google Drive) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-06]
CHR Extension: (YouTube) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-06]
CHR Extension: (Adblock Plus) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-02-06]
CHR Extension: (Google-Suche) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-06]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2014-02-08]
CHR Extension: (Download Protect) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekgcjailkgdmhefohphkgmjpndnlagjd [2014-08-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-02-06]
CHR Extension: (Premiumize.me) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\lojbjecfjcnaledoelddkcjlifhhfebm [2014-08-19]
CHR Extension: (Google Wallet) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-06]
CHR Extension: (YouTube Unblocker) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-05-09]
CHR Extension: (Click&Clean App) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2014-02-08]
CHR Extension: (Google Mail) - C:\Users\DoctorWho\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-06]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-05-18] () [File not signed]
R2 BMService; C:\Program Files\SoftPerfect Bandwidth Manager\BMCore.exe [6932176 2014-06-06] (SoftPerfect Research)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-02-24] (BitRaider, LLC)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
U2 HiPatchService; D:\Smite\HiPatchService.exe [9216 2014-02-28] (Hi-Rez Studios) [File not signed]
R2 HubService; C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe [536576 2014-07-30] () [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S3 ioloEnergyBooster; C:\Program Files\Alienware\Command Center\ioloEnergyBooster.exe [6145872 2012-11-01] (iolo technologies, LLC)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-16] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4466688 2007-11-08] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37176 2013-08-22] (The OpenVPN Project)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-07-07] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-13] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [288472 2013-09-14] (Realtek Semiconductor)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [187592 2014-01-17] (Sandboxie Holdings, LLC)
R2 SpotfluxConnectionManager; D:\Software\Spotflux\services\SpotfluxConnectionManager.exe [73216 2014-03-07] (Microsoft) [File not signed]
R2 SpotfluxUpdateService; D:\Software\Spotflux\services\SpotfluxUpdateService.exe [20480 2014-03-07] (Microsoft) [File not signed]
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2145080 2014-07-16] (TuneUp Software)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)
S2 TapiUnbttend; C:\Windows\system32\vccorljb110.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 ACLE7Live; C:\Windows\system32\Drivers\ACLE1864.sys [109160 2014-07-07] (Softwareentwicklung Remus - ArchiCrypt - )
R1 ACLiveFlt; C:\Windows\System32\DRIVERS\ACLiveFlt.sys [24680 2013-03-25] (ArchiCrypt - Softwareentwicklung Remus)
R1 ACLiveFlt; C:\Windows\SysWOW64\DRIVERS\ACLiveFlt.sys [24680 2013-03-25] (ArchiCrypt - Softwareentwicklung Remus)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [38424 2010-10-18] (Google Inc)
U3 axscsidrv; C:\Windows\System32\Drivers\axscsidrv.sys [293888 2014-02-18] (Alcohol Soft Development Team)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-02-26] (BitRaider)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 DFX11_1; C:\Windows\system32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Windows (R) Win 7 DDK provider)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-21] (LogMeIn Inc.)
S2 hidedir; C:\Windows\SysWOW64\drivers\hidedir.sys [8704 2007-02-12] () [File not signed]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-20] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [40464 2009-02-08] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R1 PStrip64; C:\Windows\System32\drivers\pstrip64.sys [13008 2006-09-30] ()
R3 SAlphamHid; C:\Windows\System32\drivers\SAlpham64.sys [39168 2014-05-27] (SteelSeries Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202600 2014-01-17] (Sandboxie Holdings, LLC)
R1 spfdrv; C:\Windows\system32\DRIVERS\spfdrv.sys [41432 2013-08-22] (SoftPerfect)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-02-18] (Duplex Secure Ltd.)
S3 tapSF0901; C:\Windows\system32\DRIVERS\tapSF0901.sys [39104 2014-03-07] (Spotflux, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2014-06-23] (TuneUp Software)
R3 vdisk; C:\Windows\System32\drivers\vdisk.sys [81056 2010-05-19] ()
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
S3 zghsdiag; C:\Windows\system32\DRIVERS\zghsdiag.sys [122624 2011-01-13] (ZTE Incorporated)
S3 zghsmdm; C:\Windows\system32\DRIVERS\zghsmdm.sys [122624 2011-01-13] (ZTE Incorporated)
S3 zghsnmea; C:\Windows\system32\DRIVERS\zghsnmea.sys [122624 2011-01-13] (ZTE Incorporated)
U4 AppMgmt;
U3 clr_optimization_v2.0.50727_32;
U3 clr_optimization_v2.0.50727_64;
U4 CscService;
S3 dcdbas; \SystemRoot\System32\drivers\dcdbas64.sys [X]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
U4 IPBusEnum;
U4 PeerDistSvc;
U3 ProtectedStorage;
U3 sppuinotify;
U4 TBS;
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-20 15:54 - 2014-08-20 15:55 - 00036705 _____ () C:\Users\DoctorWho\Desktop\FRST.txt
2014-08-20 15:52 - 2014-08-20 15:52 - 00284470 _____ () C:\Windows\PFRO.log
2014-08-20 15:51 - 2014-08-20 15:51 - 00050477 _____ () C:\Users\DoctorWho\Desktop\Defogger.exe
2014-08-20 15:51 - 2014-08-20 15:51 - 00000590 _____ () C:\Users\DoctorWho\Desktop\defogger_disable.log
2014-08-20 15:51 - 2014-08-20 15:51 - 00000020 _____ () C:\Users\DoctorWho\defogger_reenable
2014-08-20 15:23 - 2014-08-20 15:55 - 00000000 ____D () C:\FRST
2014-08-20 15:22 - 2014-08-20 15:42 - 01220927 _____ () C:\Users\DoctorWho\Downloads\FRST64 (1).exe.opdownload
2014-08-20 15:22 - 2014-08-20 15:22 - 02101760 _____ (Farbar) C:\Users\DoctorWho\Desktop\FRST64.exe
2014-08-20 13:25 - 2014-08-20 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-20 13:20 - 2014-08-20 13:20 - 13087456 _____ (Microsoft Corporation) C:\Users\DoctorWho\Downloads\Silverlight_x64.exe
2014-08-20 13:14 - 2014-08-20 13:14 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Adobe
2014-08-20 12:25 - 2014-08-20 12:25 - 01016261 _____ (Thisisu) C:\Users\DoctorWho\Downloads\JRT.exe
2014-08-20 12:06 - 2014-08-20 12:06 - 00000000 ____D () C:\Program Files\{E2ED24B7-A82D-484D-ABA0-20EF2EFF7D3F}
2014-08-20 12:06 - 2014-08-20 12:06 - 00000000 ____D () C:\Program Files (x86)\{17C19D35-B5C1-4760-A1A0-0690E4278386}
2014-08-20 12:00 - 2014-08-20 12:00 - 00002219 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-08-20 12:00 - 2014-07-16 10:24 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-08-20 12:00 - 2014-07-16 10:24 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-08-20 12:00 - 2014-07-16 10:24 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-08-20 11:48 - 2014-08-20 11:50 - 48123704 _____ (TuneUp Software) C:\Users\DoctorWho\Downloads\TuneUpUtilities2014.exe
2014-08-20 11:39 - 2014-08-20 12:19 - 00000000 ____D () C:\Windows\update_e8_mrb
2014-08-19 15:43 - 2014-08-19 15:44 - 00018587 _____ () C:\Windows\DirectX.log
2014-08-19 15:22 - 2014-08-19 15:22 - 01141680 _____ () C:\Users\DoctorWho\Downloads\SteamSetup.exe
2014-08-19 15:11 - 2014-08-19 15:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DevExtras
2014-08-19 15:11 - 2014-08-19 15:11 - 00000000 ____D () C:\Program Files (x86)\DevExtras
2014-08-19 14:51 - 2014-08-19 14:51 - 00000297 _____ () C:\Windows\setupact.log
2014-08-19 14:51 - 2014-08-19 14:51 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-19 14:27 - 2014-08-20 13:35 - 00152473 _____ () C:\Windows\WindowsUpdate.log
2014-08-19 14:24 - 2014-08-20 13:13 - 05097928 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-19 14:20 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-08-18 21:02 - 2014-08-18 21:02 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Blender Foundation
2014-08-18 21:01 - 2014-08-18 21:01 - 00000000 ____D () C:\Users\DoctorWho\.thumbnails
2014-08-18 21:00 - 2014-08-18 21:00 - 00000000 ____D () C:\Program Files\Blender Foundation
2014-08-18 14:53 - 2014-08-18 14:53 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Quadriga Games
2014-08-18 14:52 - 2014-08-18 14:52 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Die Polizei 2013
2014-08-18 14:52 - 2014-08-18 14:52 - 00000000 ____D () C:\Program Files (x86)\Quadriga Games
2014-08-18 14:51 - 2014-08-18 14:51 - 00000000 ____D () C:\Users\DoctorWho\Desktop\62c548c46b0b35aa3c75cfda92c74a0a
2014-08-17 20:26 - 2014-08-17 20:26 - 01726340 _____ () C:\Users\DoctorWho\Documents\ts3_clientui-win32-1407159763-2014-08-17 20_26_48.508481.dmp
2014-08-15 18:47 - 2014-08-15 18:47 - 00000103 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2014-08-14 17:05 - 2014-08-14 17:05 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-08-14 17:05 - 2014-07-02 19:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-08-14 17:04 - 2014-07-02 22:48 - 31512520 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 24196896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 22994208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 16122344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 15294296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 13922752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 13835208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 12866008 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-08-14 17:04 - 2014-07-02 22:48 - 11283344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 11222048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 04247000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 03989960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 01890080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434052.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 01539928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434052.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00944928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00907096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00903624 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00869152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00846832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00502232 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00418760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00391640 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00348120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-08-14 17:04 - 2014-07-02 22:48 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-08-14 15:56 - 2014-08-14 15:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Take-Two_Interactive_Soft
2014-08-12 23:33 - 2014-08-12 23:33 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Grand_Theft_Auto_IV_Clan
2014-08-12 22:37 - 2014-08-12 22:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LCPD First Response
2014-08-12 11:07 - 2014-08-12 11:07 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Encryptomatic,_LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Encryptomatic, LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Encryptomatic, LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Caphyon
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\Program Files\Encryptomatic, LLC
2014-08-12 10:58 - 2014-08-12 10:58 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Encryptomatic, LLC
2014-08-12 01:35 - 2014-08-20 12:17 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-08-10 19:16 - 2014-08-10 19:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ITSecTeam
2014-08-10 19:16 - 2009-09-09 23:36 - 00260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RICHTX32.ocx
2014-08-10 19:16 - 2004-03-09 12:00 - 00124688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mswinsck.ocx
2014-08-10 19:16 - 2000-12-06 11:30 - 00209608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2014-08-09 14:13 - 2014-08-09 14:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2014-08-09 14:13 - 2014-08-09 14:13 - 00000000 ____D () C:\Program Files (x86)\ffdshow
2014-08-09 14:13 - 2014-06-28 16:39 - 00112640 _____ () C:\Windows\SysWOW64\ff_vfw.dll
2014-08-09 14:12 - 2014-08-09 14:12 - 00000933 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2014-08-09 14:12 - 2014-08-09 14:12 - 00000000 ____D () C:\Program Files\MediaInfo
2014-08-09 12:27 - 2014-08-09 12:28 - 00000000 ____D () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080p.BluRay.x264-CONTRiBUTiON
2014-08-09 12:25 - 2014-08-09 12:27 - 68880193 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part089.rar
2014-08-09 12:24 - 2014-08-09 12:27 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part088.rar
2014-08-09 12:23 - 2014-08-09 12:26 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part087.rar
2014-08-09 12:22 - 2014-08-09 12:25 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part086.rar
2014-08-09 12:20 - 2014-08-09 12:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part085.rar
2014-08-09 12:19 - 2014-08-09 12:23 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part084.rar
2014-08-09 12:18 - 2014-08-09 12:22 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part083.rar
2014-08-09 12:16 - 2014-08-09 12:20 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part082.rar
2014-08-09 12:16 - 2014-08-09 12:19 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part081.rar
2014-08-09 12:15 - 2014-08-09 12:18 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part080.rar
2014-08-09 12:13 - 2014-08-09 12:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part079.rar
2014-08-09 12:12 - 2014-08-09 12:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part078.rar
2014-08-09 12:12 - 2014-08-09 12:15 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part077.rar
2014-08-09 12:10 - 2014-08-09 12:13 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part076.rar
2014-08-09 12:09 - 2014-08-09 12:12 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part075.rar
2014-08-09 12:08 - 2014-08-09 12:12 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part074.rar
2014-08-09 12:07 - 2014-08-09 12:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part073.rar
2014-08-09 01:07 - 2014-08-09 12:09 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part072.rar
2014-08-09 01:06 - 2014-08-09 12:08 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part071.rar
2014-08-09 01:05 - 2014-08-09 12:07 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part070.rar
2014-08-09 01:04 - 2014-08-09 01:07 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part069.rar
2014-08-09 01:03 - 2014-08-09 01:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part068.rar
2014-08-09 01:01 - 2014-08-09 01:05 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part067.rar
2014-08-09 01:01 - 2014-08-09 01:04 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part066.rar
2014-08-09 01:00 - 2014-08-09 01:03 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part065.rar
2014-08-09 00:59 - 2014-08-09 01:01 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part064.rar
2014-08-09 00:57 - 2014-08-09 01:00 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part063.rar
2014-08-09 00:56 - 2014-08-09 00:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part062.rar
2014-08-09 00:55 - 2014-08-09 00:57 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part061.rar
2014-08-09 00:54 - 2014-08-09 00:56 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part060.rar
2014-08-09 00:52 - 2014-08-09 00:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part059.rar
2014-08-09 00:52 - 2014-08-09 00:54 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part058.rar
2014-08-09 00:49 - 2014-08-09 01:01 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part056.rar
2014-08-09 00:49 - 2014-08-09 00:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part057.rar
2014-08-09 00:49 - 2014-08-09 00:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part055.rar
2014-08-09 00:46 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part054.rar
2014-08-09 00:46 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part053.rar
2014-08-09 00:45 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part052.rar
2014-08-09 00:43 - 2014-08-09 00:46 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part051.rar
2014-08-09 00:42 - 2014-08-09 00:46 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part050.rar
2014-08-09 00:41 - 2014-08-09 00:45 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part049.rar
2014-08-09 00:39 - 2014-08-09 00:43 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part048.rar
2014-08-09 00:39 - 2014-08-09 00:42 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part047.rar
2014-08-09 00:38 - 2014-08-09 00:41 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part046.rar
2014-08-09 00:35 - 2014-08-09 00:39 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part045.rar
2014-08-09 00:35 - 2014-08-09 00:39 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part044.rar
2014-08-09 00:34 - 2014-08-09 00:38 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part043.rar
2014-08-09 00:32 - 2014-08-09 00:35 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part042.rar
2014-08-09 00:32 - 2014-08-09 00:35 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part041.rar
2014-08-09 00:31 - 2014-08-09 00:34 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part040.rar
2014-08-09 00:28 - 2014-08-09 00:32 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part039.rar
2014-08-09 00:28 - 2014-08-09 00:32 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part038.rar
2014-08-09 00:27 - 2014-08-09 00:31 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part037.rar
2014-08-09 00:24 - 2014-08-09 00:28 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part036.rar
2014-08-09 00:24 - 2014-08-09 00:28 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part035.rar
2014-08-09 00:23 - 2014-08-09 00:27 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part034.rar
2014-08-09 00:21 - 2014-08-09 00:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part033.rar
2014-08-09 00:21 - 2014-08-09 00:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part032.rar
2014-08-09 00:20 - 2014-08-09 00:23 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part031.rar
2014-08-09 00:17 - 2014-08-09 00:21 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part030.rar
2014-08-09 00:17 - 2014-08-09 00:21 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part029.rar
2014-08-09 00:17 - 2014-08-09 00:20 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part028.rar
2014-08-09 00:14 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part027.rar
2014-08-09 00:14 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part026.rar
2014-08-09 00:13 - 2014-08-09 00:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part025.rar
2014-08-09 00:10 - 2014-08-09 00:14 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part024.rar
2014-08-09 00:10 - 2014-08-09 00:14 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part023.rar
2014-08-09 00:09 - 2014-08-09 00:13 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part022.rar
2014-08-09 00:06 - 2014-08-09 00:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part021.rar
2014-08-09 00:06 - 2014-08-09 00:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part020.rar
2014-08-09 00:06 - 2014-08-09 00:09 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part019.rar
2014-08-09 00:03 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part018.rar
2014-08-09 00:02 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part017.rar
2014-08-09 00:02 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part016.rar
2014-08-08 23:59 - 2014-08-09 00:03 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part015.rar
2014-08-08 23:59 - 2014-08-09 00:02 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part014.rar
2014-08-08 23:59 - 2014-08-09 00:02 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part013.rar
2014-08-08 23:55 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part012.rar
2014-08-08 23:55 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part011.rar
2014-08-08 23:55 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part010.rar
2014-08-08 23:52 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part009.rar
2014-08-08 23:52 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part008.rar
2014-08-08 23:52 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part007.rar
2014-08-08 23:48 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part006.rar
2014-08-08 23:48 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part005.rar
2014-08-08 23:48 - 2014-08-08 23:51 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part004.rar
2014-08-08 23:44 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part003.rar
2014-08-08 23:44 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part002.rar
2014-08-08 23:44 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part001.rar
2014-08-08 22:19 - 2014-08-08 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2014-08-08 22:19 - 2014-08-08 22:19 - 00000000 ____D () C:\Program Files\WhoCrashed
2014-08-08 22:02 - 2014-08-08 22:03 - 00000000 ____D () C:\Users\DoctorWho\Documents\Visual Studio 2008
2014-08-08 22:01 - 2014-08-08 22:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Microsoft Help
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual C++ 9.0 Express Edition
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files\Microsoft SDKs
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-08-08 21:56 - 2014-08-08 21:56 - 00159744 _____ () C:\Windows\winhlp42.exe
2014-08-08 21:56 - 2014-08-08 21:56 - 00148480 _____ () C:\Windows\system32\DlProtectSvc.exe
2014-08-08 21:56 - 2014-08-08 21:56 - 00003906 _____ () C:\Windows\System32\Tasks\Anwendungs-ID-TreiberAnwendungsidentitätAnwendungsinformationen
2014-08-08 21:56 - 2014-08-08 21:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Hub Timer
2014-08-08 21:55 - 2014-08-08 21:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Security Systems
2014-07-30 20:35 - 2014-07-30 20:35 - 00000000 ____D () C:\Program Files\Bohemia Interactive
2014-07-30 16:16 - 2014-08-11 10:02 - 00000000 ____D () C:\Users\DoctorWho\Tracing
2014-07-30 16:15 - 2014-07-30 16:15 - 00002504 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00001476 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00001323 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ____D () C:\Windows\de
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ____D () C:\Program Files\Windows Live
2014-07-30 16:14 - 2014-07-30 16:14 - 00003114 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1864991570-2205968161-1216624529-1001
2014-07-30 16:14 - 2014-07-30 16:14 - 00000000 ___RD () C:\Users\DoctorWho\OneDrive
2014-07-30 16:14 - 2014-07-30 16:14 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-07-29 23:21 - 2014-07-29 23:27 - 00000000 ____D () C:\Users\DoctorWho\.gimp-2.8
2014-07-29 23:21 - 2014-07-29 23:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\gegl-0.2
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CableNut
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CableNut
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\Program Files (x86)\Cablenut
2014-07-25 11:21 - 2014-07-25 11:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\SteelSeries
2014-07-25 11:21 - 2014-07-25 11:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\SteelSeries_ApS
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\ProgramData\SteelSeries
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\Program Files\SteelSeries
2014-07-23 17:07 - 2014-07-23 17:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2014-07-23 17:07 - 2014-07-23 17:07 - 00000000 ____D () C:\Program Files (x86)\AutoHotkey
2014-07-22 15:10 - 2014-07-22 15:10 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TGE
2014-07-22 15:08 - 2014-07-22 15:34 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\mquadr.at
2014-07-22 15:08 - 2014-07-22 15:10 - 00000000 ____D () C:\ProgramData\mquadr.at
2014-07-22 15:07 - 2014-08-19 15:42 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Bohemia_Interactive
2014-07-22 15:07 - 2014-07-22 15:08 - 00000000 __HDC () C:\ProgramData\{CD3330DC-8B86-4AE3-B2E4-09E56CB3E702}
2014-07-22 15:07 - 2014-07-22 15:07 - 00001183 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\DSL Soforthilfe.lnk
2014-07-22 15:07 - 2014-07-22 15:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2
2014-07-22 15:07 - 2014-07-22 15:07 - 00000000 ____D () C:\Program Files (x86)\DSL Soforthilfe
2014-07-22 15:07 - 2013-11-21 22:56 - 03748800 ____N (mquadr.at software engineering und consulting GmbH) C:\Windows\SysWOW64\M2ElevatedCalls.dll
2014-07-22 15:07 - 2013-11-21 22:56 - 03490272 ____N (mquadr.at software engineering & consulting GmbH) C:\Windows\SysWOW64\m2network64helper.exe
2014-07-22 15:07 - 2013-11-21 22:56 - 00962528 ____N (mquadr.at software engineering) C:\Windows\SysWOW64\M2ElevatedNetworkAdapters.dll
2014-07-22 15:07 - 2012-12-03 15:58 - 00279040 ____N (Nicomsoft Ltd.) C:\Windows\system32\WiFiMan.dll
2014-07-22 15:07 - 2012-12-03 15:57 - 00238592 ____N (Nicomsoft Ltd.) C:\Windows\SysWOW64\WiFiMan.dll
2014-07-22 14:45 - 2014-07-22 14:45 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Arma 3 Launcher
2014-07-22 13:59 - 2014-07-22 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-22 13:59 - 2014-07-22 13:59 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-21 18:08 - 2014-07-21 18:08 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-21 12:04 - 2014-07-21 12:04 - 00004623 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-21 11:59 - 2014-07-21 11:59 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-07-21 11:59 - 2014-07-21 11:59 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\CyberLink
2014-07-21 11:03 - 2014-07-21 11:03 - 00000097 _____ () C:\Users\DoctorWho\AppData\Local\fusioncache.dat
2014-07-21 11:00 - 2014-07-21 11:00 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-07-21 10:56 - 2014-07-21 10:56 - 00720896 _____ (Indigo Rose Corporation) C:\Windows\iun6002ev.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-20 15:55 - 2014-08-20 15:54 - 00036705 _____ () C:\Users\DoctorWho\Desktop\FRST.txt
2014-08-20 15:55 - 2014-08-20 15:23 - 00000000 ____D () C:\FRST
2014-08-20 15:54 - 2014-01-31 20:28 - 00000000 ____D () C:\Program Files (x86)\AlienRespawn
2014-08-20 15:52 - 2014-08-20 15:52 - 00284470 _____ () C:\Windows\PFRO.log
2014-08-20 15:52 - 2014-06-27 19:49 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-20 15:52 - 2014-05-31 13:25 - 00000000 __RDO () C:\Users\DoctorWho\SkyDrive
2014-08-20 15:52 - 2014-05-09 16:15 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-20 15:52 - 2014-02-28 18:11 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TSVNCache
2014-08-20 15:52 - 2014-02-26 12:53 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-20 15:52 - 2014-02-26 12:53 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-20 15:52 - 2014-02-06 14:10 - 00001140 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-20 15:52 - 2014-01-31 20:14 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-08-20 15:52 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-20 15:51 - 2014-08-20 15:51 - 00050477 _____ () C:\Users\DoctorWho\Desktop\Defogger.exe
2014-08-20 15:51 - 2014-08-20 15:51 - 00000590 _____ () C:\Users\DoctorWho\Desktop\defogger_disable.log
2014-08-20 15:51 - 2014-08-20 15:51 - 00000020 _____ () C:\Users\DoctorWho\defogger_reenable
2014-08-20 15:51 - 2014-02-06 14:04 - 00000000 ____D () C:\Users\DoctorWho
2014-08-20 15:44 - 2014-02-06 14:07 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{0404D5A3-4D46-4B31-975C-B31FE2AF7222}
2014-08-20 15:42 - 2014-08-20 15:22 - 01220927 _____ () C:\Users\DoctorWho\Downloads\FRST64 (1).exe.opdownload
2014-08-20 15:35 - 2014-02-06 14:10 - 00001144 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-20 15:31 - 2014-03-08 12:24 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-20 15:28 - 2014-02-06 14:09 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1864991570-2205968161-1216624529-1001
2014-08-20 15:22 - 2014-08-20 15:22 - 02101760 _____ (Farbar) C:\Users\DoctorWho\Desktop\FRST64.exe
2014-08-20 15:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2014-08-20 13:35 - 2014-08-19 14:27 - 00152473 _____ () C:\Windows\WindowsUpdate.log
2014-08-20 13:25 - 2014-08-20 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-20 13:20 - 2014-08-20 13:20 - 13087456 _____ (Microsoft Corporation) C:\Users\DoctorWho\Downloads\Silverlight_x64.exe
2014-08-20 13:19 - 2014-01-31 20:21 - 01807578 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-20 13:19 - 2013-08-23 01:24 - 00775384 _____ () C:\Windows\system32\perfh007.dat
2014-08-20 13:19 - 2013-08-23 01:24 - 00164104 _____ () C:\Windows\system32\perfc007.dat
2014-08-20 13:14 - 2014-08-20 13:14 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Adobe
2014-08-20 13:13 - 2014-08-19 14:24 - 05097928 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-20 13:11 - 2014-02-07 14:23 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\TS3Client
2014-08-20 12:37 - 2014-05-08 22:46 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Spotify
2014-08-20 12:25 - 2014-08-20 12:25 - 01016261 _____ (Thisisu) C:\Users\DoctorWho\Downloads\JRT.exe
2014-08-20 12:19 - 2014-08-20 11:39 - 00000000 ____D () C:\Windows\update_e8_mrb
2014-08-20 12:17 - 2014-08-12 01:35 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-08-20 12:17 - 2014-05-18 23:25 - 00000000 ____D () C:\AeroGlass
2014-08-20 12:16 - 2014-02-19 12:57 - 00000912 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\AlienwareDock.lnk
2014-08-20 12:16 - 2014-02-19 12:56 - 00000000 ____D () C:\Program Files\AlienwareDock
2014-08-20 12:06 - 2014-08-20 12:06 - 00000000 ____D () C:\Program Files\{E2ED24B7-A82D-484D-ABA0-20EF2EFF7D3F}
2014-08-20 12:06 - 2014-08-20 12:06 - 00000000 ____D () C:\Program Files (x86)\{17C19D35-B5C1-4760-A1A0-0690E4278386}
2014-08-20 12:06 - 2014-03-08 12:24 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-20 12:00 - 2014-08-20 12:00 - 00002219 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-08-20 12:00 - 2014-08-20 12:00 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-08-20 11:50 - 2014-08-20 11:48 - 48123704 _____ (TuneUp Software) C:\Users\DoctorWho\Downloads\TuneUpUtilities2014.exe
2014-08-20 11:20 - 2014-05-08 22:46 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Spotify
2014-08-19 17:42 - 2014-02-07 11:14 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Arma 3
2014-08-19 15:44 - 2014-08-19 15:43 - 00018587 _____ () C:\Windows\DirectX.log
2014-08-19 15:42 - 2014-07-22 15:07 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Bohemia_Interactive
2014-08-19 15:22 - 2014-08-19 15:22 - 01141680 _____ () C:\Users\DoctorWho\Downloads\SteamSetup.exe
2014-08-19 15:22 - 2014-06-27 19:49 - 00000981 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-08-19 15:11 - 2014-08-19 15:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DevExtras
2014-08-19 15:11 - 2014-08-19 15:11 - 00000000 ____D () C:\Program Files (x86)\DevExtras
2014-08-19 14:51 - 2014-08-19 14:51 - 00000297 _____ () C:\Windows\setupact.log
2014-08-19 14:51 - 2014-08-19 14:51 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-19 14:51 - 2014-01-31 20:35 - 00000000 ____D () C:\ProgramData\Dell
2014-08-19 14:48 - 2014-02-06 14:08 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Deployment
2014-08-19 14:29 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-08-19 14:26 - 2014-01-31 20:28 - 00000000 ____D () C:\ProgramData\PCDr
2014-08-19 14:25 - 2014-02-26 22:46 - 00000000 ____D () C:\AdwCleaner
2014-08-19 10:52 - 2014-06-03 12:11 - 00003860 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1397123414
2014-08-19 10:52 - 2014-04-10 11:50 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-08-18 23:21 - 2014-05-11 11:40 - 00000132 _____ () C:\Users\DoctorWho\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2014-08-18 21:11 - 2014-04-20 22:14 - 00000000 ____D () C:\Users\DoctorWho\Documents\ArmAWork
2014-08-18 21:02 - 2014-08-18 21:02 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Blender Foundation
2014-08-18 21:01 - 2014-08-18 21:01 - 00000000 ____D () C:\Users\DoctorWho\.thumbnails
2014-08-18 21:00 - 2014-08-18 21:00 - 00000000 ____D () C:\Program Files\Blender Foundation
2014-08-18 14:53 - 2014-08-18 14:53 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Quadriga Games
2014-08-18 14:52 - 2014-08-18 14:52 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Die Polizei 2013
2014-08-18 14:52 - 2014-08-18 14:52 - 00000000 ____D () C:\Program Files (x86)\Quadriga Games
2014-08-18 14:51 - 2014-08-18 14:51 - 00000000 ____D () C:\Users\DoctorWho\Desktop\62c548c46b0b35aa3c75cfda92c74a0a
2014-08-17 20:26 - 2014-08-17 20:26 - 01726340 _____ () C:\Users\DoctorWho\Documents\ts3_clientui-win32-1407159763-2014-08-17 20_26_48.508481.dmp
2014-08-17 20:09 - 2014-02-23 02:58 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\vlc
2014-08-15 22:06 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-08-15 18:47 - 2014-08-15 18:47 - 00000103 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2014-08-15 10:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-08-14 17:21 - 2014-02-06 15:39 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\NVIDIA Corporation
2014-08-14 17:21 - 2014-02-06 15:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-08-14 17:19 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\InputMethod
2014-08-14 17:05 - 2014-08-14 17:05 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-08-14 17:05 - 2014-01-31 20:29 - 00000000 ____D () C:\Temp
2014-08-14 17:05 - 2014-01-31 20:14 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-08-14 15:56 - 2014-08-14 15:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Take-Two_Interactive_Soft
2014-08-13 17:49 - 2014-02-06 14:33 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\PCDr
2014-08-12 23:33 - 2014-08-12 23:33 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Grand_Theft_Auto_IV_Clan
2014-08-12 22:37 - 2014-08-12 22:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LCPD First Response
2014-08-12 11:07 - 2014-08-12 11:07 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Encryptomatic,_LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Encryptomatic, LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Encryptomatic, LLC
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\ProgramData\Caphyon
2014-08-12 10:59 - 2014-08-12 10:59 - 00000000 ____D () C:\Program Files\Encryptomatic, LLC
2014-08-12 10:58 - 2014-08-12 10:58 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Encryptomatic, LLC
2014-08-12 01:21 - 2014-02-09 23:35 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Skype
2014-08-11 10:02 - 2014-07-30 16:16 - 00000000 ____D () C:\Users\DoctorWho\Tracing
2014-08-11 10:02 - 2014-03-29 14:39 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Winamp
2014-08-11 10:02 - 2014-03-29 12:05 - 00000000 ____D () C:\Windows\Minidump
2014-08-11 10:02 - 2014-03-07 22:59 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\FileZilla
2014-08-10 19:16 - 2014-08-10 19:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ITSecTeam
2014-08-10 15:22 - 2014-07-07 12:52 - 00000000 ____D () C:\Users\DoctorWho\Documents\Banished
2014-08-10 15:08 - 2013-08-23 01:26 - 00000000 ____D () C:\Windows\SKB
2014-08-09 14:13 - 2014-08-09 14:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2014-08-09 14:13 - 2014-08-09 14:13 - 00000000 ____D () C:\Program Files (x86)\ffdshow
2014-08-09 14:12 - 2014-08-09 14:12 - 00000933 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2014-08-09 14:12 - 2014-08-09 14:12 - 00000000 ____D () C:\Program Files\MediaInfo
2014-08-09 12:28 - 2014-08-09 12:27 - 00000000 ____D () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080p.BluRay.x264-CONTRiBUTiON
2014-08-09 12:27 - 2014-08-09 12:25 - 68880193 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part089.rar
2014-08-09 12:27 - 2014-08-09 12:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part088.rar
2014-08-09 12:26 - 2014-08-09 12:23 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part087.rar
2014-08-09 12:25 - 2014-08-09 12:22 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part086.rar
2014-08-09 12:24 - 2014-08-09 12:20 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part085.rar
2014-08-09 12:23 - 2014-08-09 12:19 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part084.rar
2014-08-09 12:22 - 2014-08-09 12:18 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part083.rar
2014-08-09 12:20 - 2014-08-09 12:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part082.rar
2014-08-09 12:19 - 2014-08-09 12:16 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part081.rar
2014-08-09 12:18 - 2014-08-09 12:15 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part080.rar
2014-08-09 12:16 - 2014-08-09 12:13 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part079.rar
2014-08-09 12:16 - 2014-08-09 12:12 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part078.rar
2014-08-09 12:15 - 2014-08-09 12:12 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part077.rar
2014-08-09 12:13 - 2014-08-09 12:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part076.rar
2014-08-09 12:12 - 2014-08-09 12:09 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part075.rar
2014-08-09 12:12 - 2014-08-09 12:08 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part074.rar
2014-08-09 12:10 - 2014-08-09 12:07 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part073.rar
2014-08-09 12:09 - 2014-08-09 01:07 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part072.rar
2014-08-09 12:08 - 2014-08-09 01:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part071.rar
2014-08-09 12:07 - 2014-08-09 01:05 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part070.rar
2014-08-09 01:07 - 2014-08-09 01:04 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part069.rar
2014-08-09 01:06 - 2014-08-09 01:03 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part068.rar
2014-08-09 01:05 - 2014-08-09 01:01 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part067.rar
2014-08-09 01:04 - 2014-08-09 01:01 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part066.rar
2014-08-09 01:03 - 2014-08-09 01:00 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part065.rar
2014-08-09 01:01 - 2014-08-09 00:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part064.rar
2014-08-09 01:01 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part056.rar
2014-08-09 01:00 - 2014-08-09 00:57 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part063.rar
2014-08-09 00:59 - 2014-08-09 00:56 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part062.rar
2014-08-09 00:57 - 2014-08-09 00:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part061.rar
2014-08-09 00:56 - 2014-08-09 00:54 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part060.rar
2014-08-09 00:55 - 2014-08-09 00:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part059.rar
2014-08-09 00:54 - 2014-08-09 00:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part058.rar
2014-08-09 00:52 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part057.rar
2014-08-09 00:52 - 2014-08-09 00:49 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part055.rar
2014-08-09 00:49 - 2014-08-09 00:46 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part054.rar
2014-08-09 00:49 - 2014-08-09 00:46 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part053.rar
2014-08-09 00:49 - 2014-08-09 00:45 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part052.rar
2014-08-09 00:46 - 2014-08-09 00:43 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part051.rar
2014-08-09 00:46 - 2014-08-09 00:42 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part050.rar
2014-08-09 00:45 - 2014-08-09 00:41 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part049.rar
2014-08-09 00:43 - 2014-08-09 00:39 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part048.rar
2014-08-09 00:42 - 2014-08-09 00:39 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part047.rar
2014-08-09 00:41 - 2014-08-09 00:38 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part046.rar
2014-08-09 00:39 - 2014-08-09 00:35 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part045.rar
2014-08-09 00:39 - 2014-08-09 00:35 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part044.rar
2014-08-09 00:38 - 2014-08-09 00:34 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part043.rar
2014-08-09 00:35 - 2014-08-09 00:32 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part042.rar
2014-08-09 00:35 - 2014-08-09 00:32 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part041.rar
2014-08-09 00:34 - 2014-08-09 00:31 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part040.rar
2014-08-09 00:32 - 2014-08-09 00:28 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part039.rar
2014-08-09 00:32 - 2014-08-09 00:28 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part038.rar
2014-08-09 00:31 - 2014-08-09 00:27 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part037.rar
2014-08-09 00:28 - 2014-08-09 00:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part036.rar
2014-08-09 00:28 - 2014-08-09 00:24 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part035.rar
2014-08-09 00:27 - 2014-08-09 00:23 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part034.rar
2014-08-09 00:24 - 2014-08-09 00:21 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part033.rar
2014-08-09 00:24 - 2014-08-09 00:21 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part032.rar
2014-08-09 00:23 - 2014-08-09 00:20 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part031.rar
2014-08-09 00:21 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part030.rar
2014-08-09 00:21 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part029.rar
2014-08-09 00:20 - 2014-08-09 00:17 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part028.rar
2014-08-09 00:17 - 2014-08-09 00:14 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part027.rar
2014-08-09 00:17 - 2014-08-09 00:14 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part026.rar
2014-08-09 00:16 - 2014-08-09 00:13 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part025.rar
2014-08-09 00:14 - 2014-08-09 00:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part024.rar
2014-08-09 00:14 - 2014-08-09 00:10 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part023.rar
2014-08-09 00:13 - 2014-08-09 00:09 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part022.rar
2014-08-09 00:10 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part021.rar
2014-08-09 00:10 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part020.rar
2014-08-09 00:09 - 2014-08-09 00:06 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part019.rar
2014-08-09 00:06 - 2014-08-09 00:03 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part018.rar
2014-08-09 00:06 - 2014-08-09 00:02 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part017.rar
2014-08-09 00:06 - 2014-08-09 00:02 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part016.rar
2014-08-09 00:03 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part015.rar
2014-08-09 00:02 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part014.rar
2014-08-09 00:02 - 2014-08-08 23:59 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part013.rar
2014-08-08 23:59 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part012.rar
2014-08-08 23:59 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part011.rar
2014-08-08 23:59 - 2014-08-08 23:55 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part010.rar
2014-08-08 23:55 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part009.rar
2014-08-08 23:55 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part008.rar
2014-08-08 23:55 - 2014-08-08 23:52 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part007.rar
2014-08-08 23:52 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part006.rar
2014-08-08 23:52 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part005.rar
2014-08-08 23:51 - 2014-08-08 23:48 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part004.rar
2014-08-08 23:48 - 2014-08-08 23:44 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part003.rar
2014-08-08 23:48 - 2014-08-08 23:44 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part002.rar
2014-08-08 23:48 - 2014-08-08 23:44 - 106954752 _____ () C:\Users\DoctorWho\Downloads\Zwei.wie.Pech.und.Schwefel.1974.German.DL.1080-CONTRiBUTiON.part001.rar
2014-08-08 22:19 - 2014-08-08 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2014-08-08 22:19 - 2014-08-08 22:19 - 00000000 ____D () C:\Program Files\WhoCrashed
2014-08-08 22:03 - 2014-08-08 22:02 - 00000000 ____D () C:\Users\DoctorWho\Documents\Visual Studio 2008
2014-08-08 22:02 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Microsoft Help
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual C++ 9.0 Express Edition
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files\Microsoft SDKs
2014-08-08 22:01 - 2014-08-08 22:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-08-08 21:56 - 2014-08-08 21:56 - 00159744 _____ () C:\Windows\winhlp42.exe
2014-08-08 21:56 - 2014-08-08 21:56 - 00148480 _____ () C:\Windows\system32\DlProtectSvc.exe
2014-08-08 21:56 - 2014-08-08 21:56 - 00003906 _____ () C:\Windows\System32\Tasks\Anwendungs-ID-TreiberAnwendungsidentitätAnwendungsinformationen
2014-08-08 21:56 - 2014-08-08 21:56 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Hub Timer
2014-08-08 21:56 - 2014-08-08 21:55 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Security Systems
2014-08-08 21:56 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-08 21:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-08-08 18:38 - 2014-02-24 20:02 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\fabi.me
2014-08-05 22:38 - 2014-05-01 22:28 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\foobar2000
2014-08-05 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\tracing
2014-08-01 23:01 - 2014-06-01 12:03 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-08-01 11:50 - 2014-02-06 15:15 - 00000000 ____D () C:\ProgramData\Origin
2014-08-01 11:50 - 2014-02-06 15:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-07-31 14:52 - 2014-01-31 20:25 - 00000000 ____D () C:\ProgramData\Temp
2014-07-30 20:35 - 2014-07-30 20:35 - 00000000 ____D () C:\Program Files\Bohemia Interactive
2014-07-30 16:17 - 2014-02-09 12:15 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Windows Live
2014-07-30 16:15 - 2014-07-30 16:15 - 00002504 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00001476 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00001323 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ____D () C:\Windows\de
2014-07-30 16:15 - 2014-07-30 16:15 - 00000000 ____D () C:\Program Files\Windows Live
2014-07-30 16:15 - 2014-02-09 12:15 - 00001392 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-07-30 16:15 - 2014-02-09 12:15 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-07-30 16:14 - 2014-07-30 16:14 - 00003114 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1864991570-2205968161-1216624529-1001
2014-07-30 16:14 - 2014-07-30 16:14 - 00000000 ___RD () C:\Users\DoctorWho\OneDrive
2014-07-30 16:14 - 2014-07-30 16:14 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-07-29 23:27 - 2014-07-29 23:21 - 00000000 ____D () C:\Users\DoctorWho\.gimp-2.8
2014-07-29 23:21 - 2014-07-29 23:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\gegl-0.2
2014-07-29 10:27 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-07-28 21:59 - 2014-03-13 00:40 - 00002628 _____ () C:\Windows\Sandboxie.ini
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CableNut
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CableNut
2014-07-27 23:01 - 2014-07-27 23:01 - 00000000 ____D () C:\Program Files (x86)\Cablenut
2014-07-27 20:20 - 2014-02-06 15:12 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-07-27 18:52 - 2014-07-09 11:06 - 00000000 ____D () C:\Program Files (x86)\east-tec SafeBit
2014-07-27 14:30 - 2014-02-06 15:19 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-07-25 15:50 - 2014-06-03 12:02 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-07-25 15:50 - 2014-06-03 12:02 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-07-25 15:50 - 2014-02-06 15:39 - 01283136 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-07-25 15:50 - 2014-02-06 15:39 - 01126480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-07-25 11:21 - 2014-07-25 11:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\SteelSeries
2014-07-25 11:21 - 2014-07-25 11:21 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\SteelSeries_ApS
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\ProgramData\SteelSeries
2014-07-25 11:20 - 2014-07-25 11:20 - 00000000 ____D () C:\Program Files\SteelSeries
2014-07-23 17:07 - 2014-07-23 17:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2014-07-23 17:07 - 2014-07-23 17:07 - 00000000 ____D () C:\Program Files (x86)\AutoHotkey
2014-07-23 17:07 - 2013-08-23 01:26 - 00000000 ____D () C:\Windows\ShellNew
2014-07-22 15:34 - 2014-07-22 15:08 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\mquadr.at
2014-07-22 15:10 - 2014-07-22 15:10 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\TGE
2014-07-22 15:10 - 2014-07-22 15:08 - 00000000 ____D () C:\ProgramData\mquadr.at
2014-07-22 15:08 - 2014-07-22 15:07 - 00000000 __HDC () C:\ProgramData\{CD3330DC-8B86-4AE3-B2E4-09E56CB3E702}
2014-07-22 15:07 - 2014-07-22 15:07 - 00001183 _____ () C:\Users\DoctorWho\AppData\Roaming\Microsoft\Windows\Start Menu\DSL Soforthilfe.lnk
2014-07-22 15:07 - 2014-07-22 15:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2
2014-07-22 15:07 - 2014-07-22 15:07 - 00000000 ____D () C:\Program Files (x86)\DSL Soforthilfe
2014-07-22 14:45 - 2014-07-22 14:45 - 00000000 ____D () C:\Users\DoctorWho\AppData\Local\Arma 3 Launcher
2014-07-22 14:23 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-22 13:59 - 2014-07-22 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-22 13:59 - 2014-07-22 13:59 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-21 18:08 - 2014-07-21 18:08 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-21 15:40 - 2014-02-06 15:19 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-07-21 12:04 - 2014-07-21 12:04 - 00004623 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-21 12:04 - 2014-03-12 21:47 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-21 12:04 - 2014-02-16 00:20 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-21 12:00 - 2014-02-07 00:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-07-21 12:00 - 2014-02-07 00:54 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-07-21 12:00 - 2014-01-31 20:20 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-21 11:59 - 2014-07-21 11:59 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-07-21 11:59 - 2014-07-21 11:59 - 00000000 ____D () C:\Users\DoctorWho\AppData\Roaming\CyberLink
2014-07-21 11:03 - 2014-07-21 11:03 - 00000097 _____ () C:\Users\DoctorWho\AppData\Local\fusioncache.dat
2014-07-21 11:01 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Registration
2014-07-21 11:00 - 2014-07-21 11:00 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-07-21 11:00 - 2014-01-31 20:23 - 01807894 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-21 10:56 - 2014-07-21 10:56 - 00720896 _____ (Indigo Rose Corporation) C:\Windows\iun6002ev.exe
2014-07-21 10:46 - 2014-07-20 19:50 - 00000000 ____D () C:\Users\DoctorWho\Documents\www.gtavicecity.ru mods

Files to move or delete:
====================
C:\Users\DoctorWho\bcdedit.exe


Some content of TEMP:
====================
C:\Users\DoctorWho\AppData\Local\Temp\ACLE18.dll
C:\Users\DoctorWho\AppData\Local\Temp\AlienwareDock Installer.exe
C:\Users\DoctorWho\AppData\Local\Temp\CH.dll
C:\Users\DoctorWho\AppData\Local\Temp\CH2.dll
C:\Users\DoctorWho\AppData\Local\Temp\Copy.dll
C:\Users\DoctorWho\AppData\Local\Temp\drm_dyndata_7370014.dll
C:\Users\DoctorWho\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\DoctorWho\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\DoctorWho\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\DoctorWho\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\DoctorWho\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\DoctorWho\AppData\Local\Temp\nvStInst.exe
C:\Users\DoctorWho\AppData\Local\Temp\proxy_vole529735779844383184.dll
C:\Users\DoctorWho\AppData\Local\Temp\Quarantine.exe
C:\Users\DoctorWho\AppData\Local\Temp\x2blapi.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-19 17:38

==================== End Of Log ============================
--- --- ---

Krawall 20.08.2014 19:52
Addition LOG
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-08-2014 01
Ran by DoctorWho at 2014-08-20 15:55:55
Running from C:\Users\DoctorWho\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Dreamweaver CC (HKLM-x32\...\{00E094E1-A852-11E2-803D-ACEA632352B4}) (Version: 13 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5 64-bit (HKLM\...\{6C1A010F-9108-4162-A26F-9FEC4AC0F0F0}) (Version: 5.0.1 - Adobe)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Age of Empires III - The WarChiefs (HKLM-x32\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{A8CF5C37-8EC5-4C33-BB4A-87F468B77D45}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
AlienAutopsy (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
AlienRespawn - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.7.1.2 - Alienware)
AlienRespawn (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.7.1.2 - Alienware)
Alienware Command Center (HKLM-x32\...\InstallShield_{B453A92F-0954-4832-9132-40C2A7C2AE96}) (Version: 3.5.15.0 - Alienware Corp.)
Alienware Command Center (Version: 3.5.15.0 - Alienware Corp.) Hidden
Alienware Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Alienware Dock 1.00 (HKLM-x32\...\Alienware Dock 1.00) (Version: 1.00 - Mr Blade Design's)
Alienware Eclipse 8 (HKLM-x32\...\Alienware Eclipse 8) (Version:  - )
Alienware Evolution Win8 (HKLM-x32\...\Alienware Evolution Win8) (Version: 1.00 - Mr Blade Design's)
APB Reloaded (HKLM-x32\...\APB Reloaded) (Version: 1.6.1.603578 - )
ArchiCrypt Live Version 7.0.6.10964 (HKLM\...\ArchiCrypt Live 7_is1) (Version: 7.0.6.10964 - Softwareentwicklung Patric Remus - ArchiCrypt)
ARMA 3 Launcher By Head (HKLM-x32\...\ARMA 3 Launcher By Head) (Version: 1.0.0.0 - Whoopshop Studios)
AutoHotkey 1.0.48.05 (HKLM-x32\...\AutoHotkey) (Version: 1.0.48.05 - Chris Mallett)
AwesomiumSetup (HKLM-x32\...\{19EF99D1-7EE6-4B5E-ABEE-0B3825F703B0}) (Version: 1.00.0000 - SIX Networks GmbH)
Bandizip (HKCU\...\Bandizip) (Version: 3.08 - Bandisoft.com)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.3.2.3825 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
BinMake Uninstall (HKLM-x32\...\BinMake) (Version:  - )
BinPBO Personal Edition Uninstall (HKLM-x32\...\BinPBO Personal Edition) (Version:  - )
BI's Tools drive Uninstall (HKLM-x32\...\BI's Tools drive) (Version:  - )
Bitcoin Core (32-bit) (HKCU\...\Bitcoin Core (32-bit)) (Version: 0.9.1 - Bitcoin Core project)
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.9.9 - BitRaider, LLC)
Blender (HKLM\...\Blender) (Version: 2.71 - Blender Foundation)
Brother MFL-Pro Suite DCP-J315W (HKLM-x32\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Cablenut 4.08 (HKLM-x32\...\Cablenut) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Clownfish for Skype (HKLM-x32\...\Clownfish) (Version:  - )
Counter-Strike (HKLM-x32\...\Steam App 10) (Version:  - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
CSScripter (HKLM-x32\...\{AEBCE459-02CE-430F-8F16-60290D2B2C67}) (Version: 1.0.0 - CSScripter)
CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (x32 Version: 10.0.1.3214 - CyberLink Corp.) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.3123 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.1.3126 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (x32 Version: 12.0.3205.55 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.9.0.5 - Dell)
DevExtras - CodeReflect (HKLM-x32\...\{D3F9A17B-0655-45B9-899D-7B46DC1CD2CC}) (Version: 1.0.8 - DevExtras)
Die Polizei 2013 (HKLM-x32\...\Die Polizei 2013) (Version:  - Quadriga Games)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.90 - DivX, LLC)
Download Protect (HKCU\...\{132401a7-2006-4342-b43c-ccf5f02c2b01}) (Version:  - Download Protect)
DSC/AA Factory Installer (Version: 3.4.6299.48 - PC-Doctor, Inc.) Hidden
DSL Soforthilfe (HKLM-x32\...\DSL Soforthilfe) (Version: 1.1.0.51 - Telefónica Germany GmbH & Co. OHG)
east-tec SafeBit 2 (HKLM-x32\...\east-tec SafeBit 2) (Version:  - )
EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies)
Equalify v2.5.3 (Stable) (HKLM-x32\...\{33EC4F70-9F4B-406F-BB2A-F75A285E927D}) (Version: 2.5.3.0 - Equalify)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version:  - SCS Software)
Euro Truck Simulator 2 Multiplayer 0.1.0.7.3 Alpha (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.1.0.7.3 Alpha - ETS2MP Team)
Fallout New Vegas Ultimate Edition (HKLM-x32\...\Fallout New Vegas Ultimate Edition_is1) (Version:  - )
ffdshow v1.3.4531 [2014-06-28] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4531.0 - )
FFsplit version 0.7 (HKLM-x32\...\{82458834-6226-4A34-AE96-6907354F9F36}_is1) (Version: 0.7 - FFsplit Team)
FileViewPro (HKLM\...\FileViewPro_is1) (Version: 4.0 - Solvusoft Corporation)
FileZilla Client 3.7.4.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.4.1 - Tim Kosse)
FontToTga Uninstall (HKLM-x32\...\FontToTga) (Version:  - )
foobar2000 v1.3.2 (HKLM-x32\...\foobar2000) (Version: 1.3.2 - Peter Pawlowski)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit Advanced PDF Editor 3 (HKLM-x32\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.0.0.0 - Foxit Corporation)
Foxy Secure (HKLM-x32\...\Foxy Secure) (Version: 6 - )
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
FreeDee (HKLM-x32\...\{343C2B7A-886A-425E-ACC8-E3C043925EE2}) (Version: 0.022 - Arma2NET Developers and FreeDee Developer)
FSM Editor Personal Edition Uninstall (HKLM-x32\...\FSM Editor Personal Edition) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.2.1000 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.650 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Landmark Beta (HKCU\...\SOE-Landmark Beta) (Version: 1.0.3.183 - Sony Online Entertainment)
LastPass (Nur deinstallieren) (HKLM-x32\...\LastPass) (Version:  - LastPass)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.150 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.227 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.227 - LogMeIn, Inc.) Hidden
Lumac (HKLM-x32\...\InstallShield_{5DE11949-2B11-4F13-BAD5-1C237122CFDB}) (Version: 1.1.92.0 - Firstload)
Lumac (x32 Version: 1.1.92.0 - Firstload) Hidden
MAGIX 3D Maker 7 Download-Version (HKLM-x32\...\MAGIX_{8F182094-4AF1-4961-896F-E497CDFF2370}) (Version: 7.0.0.499 - MAGIX AG)
MAGIX 3D Maker 7 Download-Version (Version: 7.0.0.499 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MediaInfo 0.7.69 (HKLM\...\MediaInfo) (Version: 0.7.69 - MediaArea.net)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 DEU (HKLM\...\{CCBF4FD7-F4D2-4DB0-BC0E-F4EC42220EFF}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Express Edition - DEU (HKLM-x32\...\Microsoft Visual C++ 2008 Express Edition - DEU) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2008 Express Edition - DEU (x32 Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - DEU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - DEU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - DEU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - DEU (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework (HKLM\...\{53C900F7-0CB1-3EDE-B9F3-76EDE6F0C253}) (Version: 3.5.21022 - Microsoft)
Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32 (HKLM\...\{11EB1163-5761-4BC6-8F48-98DCF6A46BBF}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MTA:SA v1.3.5 (HKLM-x32\...\MTA:SA 1.3) (Version: v1.3.5 - Multi Theft Auto)
MultiDoge 0.1.2 (HKLM-x32\...\MultiDoge 0.1.2) (Version: 0.1.2 - )
Murdered: Soul Suspect (HKLM-x32\...\TXVyZGVyZWRTb3VsU3VzcGVjdA==_is1) (Version: 1 - )
My Game Long Name (HKLM\...\UDK-89908f5f-68a6-4854-b601-d1d922fc830d) (Version:  - Epic Games, Inc.)
Nether Launcher (HKLM\...\{8A11F467-FBC3-4E55-B4D9-5F3BACC52B7D}) (Version: 16.26.0.0 - Nether Productions, LLC.)
Nether Launcher (HKLM\...\{94485F33-9350-4920-9CC9-15DAA20FCA89}) (Version: 16.20.0.0 - Nether Productions, LLC.)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.3 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
NVIDIA Update 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
OpenOffice 4.0.1 (HKLM-x32\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
OpenVPN 2.3-I003  (HKLM\...\OpenVPN) (Version: 2.3-I003 - )
Opera Stable 23.0.1522.77 (HKLM-x32\...\Opera 23.0.1522.77) (Version: 23.0.1522.77 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.1.116 - Electronic Arts, Inc.)
Oxygen 2 Personal Edition Uninstall (HKLM-x32\...\Oxygen 2 Personal Edition) (Version:  - )
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Patch Alienware Eclipse 8 (HKLM-x32\...\Patch Alienware Eclipse 8) (Version: 8 - Mr Blade Design's)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PE Explorer 1.99 R6 (HKLM-x32\...\PE Explorer_is1) (Version: 1.99.6 - Heaventools Software)
Perfect Effects 8 (HKLM-x32\...\{ABC791C9-E95B-40C8-8BDD-F5E84E2E268B}) (Version: 8.1.0 - onOne Software)
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PowerStrip 3 (remove only) (HKLM-x32\...\PowerStrip 3 (remove only)) (Version:  - )
PremiumSoft Navicat Premium 11.0 (HKLM-x32\...\PremiumSoft Navicat Premium_is1) (Version: 11.0.8 - PremiumSoft CyberTech Ltd.)
PSTViewer Pro (HKLM\...\{FC8FEFE3-9286-406C-86E0-CF4245D3A427}) (Version: 6.0.0.297 - Encryptomatic, LLC)
Rapid CSS 2014 v12.2 (HKLM-x32\...\Rapid CSS 2014_is1) (Version: 12.0 - Karlis Blumentals)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7058 - Realtek Semiconductor Corp.)
Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC)
Sanny Builder 3.2.2 (HKLM-x32\...\Sanny Builder 3_is1) (Version:  - )
Secure Eraser (HKLM-x32\...\Secure Eraser_is1) (Version: 4.2.0.1 - ASCOMP Software GmbH)
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
Shutdown Timer (HKLM\...\{0B1BBEE3-C10D-44BE-A6BE-EEC867315F87}) (Version: 3.3.4 - Sinvise Systems)
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version:  - )
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2189.2 - Hi-Rez Studios)
Sniper Elite 3 Update 1 (HKLM-x32\...\U25pcGVyRWxpdGUz_is1) (Version: 1 - )
SoftPerfect Bandwidth Manager 3.0.7 (HKLM\...\SoftPerfect Bandwidth Manager_is1) (Version:  - SoftPerfect Research)
Sound Tools Uninstall (HKLM-x32\...\Sound Tools) (Version:  - )
Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform)
Spintires (HKLM-x32\...\Spintires_is1) (Version:  - )
Spotify (HKCU\...\Spotify) (Version: 0.9.11.27.g2b1a638c - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 7.0.0.34 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
SteelSeries Engine (HKLM\...\SteelSeries Engine) (Version: 2.8.450.22786 - SteelSeries)
Stylizer (HKLM-x32\...\Skybound Stylizer 5) (Version: 5 - )
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer)
TexView 2 Uninstall (HKLM-x32\...\TexView 2) (Version:  - )
TortoiseSVN 1.8.5.25224 (64 bit) (HKLM\...\{57FCA88C-D94A-490A-B8C6-8ECC3A9A48D2}) (Version: 1.8.25224 - TortoiseSVN)
Tropico 5 (HKLM-x32\...\Tropico 5_is1) (Version: 1.0 - ENiGMA)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
TS3 Server Admin Program (HKCU\...\c5afc0dbcf794dc2) (Version: 0.9.4.2 - TS3 Server Admin Program)
TUGZip 3.5 (HKLM-x32\...\TUGZip_is1) (Version:  - Christian Kindahl)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.340 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
UltraUXThemePatcher (HKLM-x32\...\UltraUXThemePatcher) (Version: 2.1.0.0 - Manuel Hoefs (Zottel))
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Uplay (HKLM-x32\...\Uplay) (Version: 4.5 - Ubisoft)
Uplink (HKLM-x32\...\Steam App 1510) (Version:  - Introversion Software)
VC Runtimes MSI (x32 Version: 9.0.21022 - Microsoft) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{3D46565E-4D02-11E3-A75C-F04DA23A5C58}) (Version: 12.0.765 - Sony)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
Visitor 3 Uninstall (HKLM-x32\...\Visitor 3) (Version:  - )
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VTFEdit 1.3.3 (HKLM\...\VTFEdit_is1) (Version:  - Neil Jedrzejewski & Ryan Gregg)
War Thunder Launcher 1.0.1.376 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - Gaijin Entertainment)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version:  - Ubisoft)
WeBuilder 2014 v12.2 (HKLM-x32\...\WeBuilder 2014_is1) (Version: 12.0 - Karlis Blumentals)
WhoCrashed 5.02 (HKLM\...\WhoCrashed_is1) (Version:  - Resplendence Software Projects Sp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
winpcap-overlook 4.02 (HKLM-x32\...\winpcap-overlook) (Version:  - )
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinSCP 5.5.4 (HKLM-x32\...\winscp3_is1) (Version: 5.5.4 - Martin Prikryl)
Wolfenstein: The New Order (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1864991570-2205968161-1216624529-1001_Classes\CLSID\{1819ED18-F0F6-41C3-B268-F8E11A8EAA99}\InprocServer32 -> C:\Windows\system32\kernel32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1864991570-2205968161-1216624529-1001_Classes\CLSID\{5B69A6B4-393B-459C-8EBB-214237A9E7AC}\InprocServer32 -> C:\Users\DoctorWho\AppData\Local\Bandizip\bdzshl64.dll (Bandisoft.com)
CustomCLSID: HKU\S-1-5-21-1864991570-2205968161-1216624529-1001_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-1864991570-2205968161-1216624529-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\DoctorWho\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

05-08-2014 18:58:37 DirectX wurde installiert
07-08-2014 08:15:53 DirectX wurde installiert
12-08-2014 07:42:10 DirectX wurde installiert
14-08-2014 15:21:02 DirectX wurde installiert
15-08-2014 20:16:25 DirectX wurde installiert
17-08-2014 09:07:31 DirectX wurde installiert
18-08-2014 12:53:04 DirectX wurde installiert
19-08-2014 13:11:52 Installed DevExtras - CodeReflect

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2014-04-01 10:51 - 00001132 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1                  activate.adobe.com
127.0.0.1                  practivate.adobe.com
127.0.0.1                  lmlicenses.wip4.adobe.com
127.0.0.1                  lm.licenses.adobe.com
127.0.0.1                  na1r.services.adobe.com
127.0.0.1                  hlrcv.stage.adobe.com


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0C6B38B8-BBCB-40EF-8DF3-F879F022F6E7} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-bobbyrastaws@hushmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated)
Task: {1E3F209C-6EFA-46EB-B259-FCAE87B86CF6} - \SUPERAntiSpyware Scheduled Task 8893324a-2d86-42a7-9f38-27de4e84252c No Task File <==== ATTENTION
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2154ED69-7C73-4ACC-8FAD-002A331F9CED} - System32\Tasks\Opera scheduled Autoupdate 1397123414 => C:\Program Files (x86)\Opera\launcher.exe [2014-08-14] (Opera Software)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2FD61E0E-7FC8-4C53-933F-A4FE26A2AD1F} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {322B32B4-48CC-4669-9446-DB1B0B81153B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-20] (Adobe Systems Incorporated)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4DA4FA04-C20F-461E-9978-70E657A593F5} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {66812841-0579-4F8B-A547-40D62900FD48} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1864991570-2205968161-1216624529-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6B346D06-EC76-4083-B108-1F780EC234FC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-06] (Google Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7F98719B-7457-46D7-A40C-92DA0B13FBD5} - \SUPERAntiSpyware Scheduled Task 7723f68e-f327-457f-85dc-0581b6776a89 No Task File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A0EF40FC-E9B6-464D-9F1F-E74F99134AFB} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {AE0447F0-3238-4011-9B37-71D36D7D7FE1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {B8E11557-69BA-4233-BAF2-64B8AB6892CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-06] (Google Inc.)
Task: {C64D32C8-0AB4-4D9C-B5BA-7DCEDBE63C8D} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\AlienAutopsy\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {C6E6369E-BF0B-4876-BE90-C3DA751B341B} - System32\Tasks\Anwendungs-ID-TreiberAnwendungsidentitätAnwendungsinformationen => C:\Windows\winhlp42.exe [2014-08-08] ()
Task: {C96C7519-55AA-4E2D-A7DD-E7DD011B85A4} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\AlienAutopsy\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {CD2ECD1D-51C3-4B2D-9C22-C411CCC912E9} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-01-31 20:14 - 2014-07-02 20:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-08-08 21:56 - 2014-07-30 13:22 - 00536576 _____ () C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe
2014-02-09 02:15 - 2014-07-07 18:28 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-07 07:01 - 2014-03-07 07:01 - 00006656 _____ () D:\Software\Spotflux\services\SpotfluxCore.dll
2014-03-07 07:01 - 2014-03-07 07:01 - 00009216 _____ () D:\Software\Spotflux\services\SFEvents.dll
2014-03-07 07:01 - 2014-03-07 07:01 - 00017408 _____ () D:\Software\Spotflux\services\WebServices.dll
2014-05-28 12:12 - 2005-04-22 06:36 - 00143360 _____ () C:\Windows\system32\BrSNMP64.dll
2014-07-16 10:24 - 2014-07-16 10:24 - 00699704 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2014-02-18 22:16 - 2014-02-18 22:16 - 00076016 _____ () C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll
2014-02-18 22:16 - 2014-02-18 22:16 - 00088816 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00504832 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineLib.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 09315328 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineWinGui.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00015872 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Localization.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00011264 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\ISSPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00011264 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Utilities.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00115200 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DriverCommunication.dll
2014-05-16 17:57 - 2014-05-16 17:57 - 00047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesDrivers\x2api.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00034304 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DBUtils.dll
2014-05-16 17:57 - 2014-05-16 17:57 - 01102336 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\System.Data.SQLite.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00189440 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\D3MousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00031744 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\KKMousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SRawPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00159744 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MLGSenseiPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00020992 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWGoldPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\GW2MousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00029696 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CSGOMousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030208 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DOTA2MousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00023040 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWWirelessPlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CODMousePlugin.dll
2014-06-26 20:39 - 2014-06-26 20:39 - 00030208 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoTMousePlugin.dll
2014-02-06 15:39 - 2014-07-25 15:51 - 00699680 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2014-02-06 15:39 - 2014-07-25 15:51 - 00855328 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2014-07-18 22:05 - 2014-06-06 15:44 - 00724176 _____ () C:\Program Files\SoftPerfect Bandwidth Manager\sqlite.dll
2014-07-18 22:05 - 2014-06-06 15:44 - 00420048 _____ () C:\Program Files\SoftPerfect Bandwidth Manager\ndpi.dll
2014-08-08 21:56 - 2014-08-08 21:56 - 00374272 _____ () C:\Users\DoctorWho\AppData\Roaming\Hub Timer\sub\default.dll
2014-02-18 21:32 - 2014-02-18 21:32 - 00065776 _____ () C:\Program Files\TortoiseSVN\bin\TortoiseStub32.dll
2014-02-18 21:32 - 2014-02-18 21:32 - 00071920 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2014-08-08 21:56 - 2014-08-20 12:17 - 00012288 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2014-02-11 21:29 - 2014-02-11 21:29 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 00718152 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libglesv2.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libegl.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-13 10:36 - 2014-08-07 05:20 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
2014-05-28 12:12 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2014-01-31 20:25 - 2013-03-05 05:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-05 12:41 - 2013-03-05 12:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-04-10 14:30 - 2014-04-10 14:30 - 00134664 _____ () C:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2014-08-19 14:51 - 2013-09-04 14:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData:NT
AlternateDataStreams: C:\Users\All Users:NT
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:NT
AlternateDataStreams: C:\ProgramData\Application Data:NT
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT
AlternateDataStreams: C:\ProgramData\Temp:E04BDBD2
AlternateDataStreams: C:\Users\DoctorWho\Anwendungsdaten:NT
AlternateDataStreams: C:\Users\DoctorWho\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\DoctorWho\SkyDrive (2).old:ms-properties
AlternateDataStreams: C:\Users\DoctorWho\SkyDrive.old:ms-properties
AlternateDataStreams: C:\Users\DoctorWho\AppData\Roaming:NT

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ksupmgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ksupmgr => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: WMPNetworkSvc => 2
HKLM\...\StartupApproved\Run: => "InstallerLauncher"
HKLM\...\StartupApproved\Run32: => "DivXMediaServer"
HKLM\...\StartupApproved\Run32: => "DivXUpdate"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "DSL Soforthilfe"
HKCU\...\StartupApproved\StartupFolder: => "GamersFirst LIVE!.lnk"
HKCU\...\StartupApproved\StartupFolder: => "Rainmeter.lnk"
HKCU\...\StartupApproved\Run: => "Skype"
HKCU\...\StartupApproved\Run: => "spotflux"
HKCU\...\StartupApproved\Run: => "SandboxieControl"
HKCU\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_40CE17C9F57753E2CEC22F84E70150E7"
HKCU\...\StartupApproved\Run: => "Spotify"
HKCU\...\StartupApproved\Run: => "Spotify Web Helper"
HKCU\...\StartupApproved\Run: => "WarThunderLauncher"
HKCU\...\StartupApproved\Run: => "east-tec SafeBit"
HKCU\...\StartupApproved\Run: => "msnmsgr"
HKCU\...\StartupApproved\Run: => "Clownfish"
HKCU\...\StartupApproved\Run: => "mapdisk"

==================== Faulty Device Manager Devices =============

Name: Spotflux Virtual Network Device Driver
Description: Spotflux Virtual Network Device Driver
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Spotflux, Inc.
Service: tapSF0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #4
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #2
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #3
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #5
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #6
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #7
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #8
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #10
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #11
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #12
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #14
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #13
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #15
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #16
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9 #17
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (08/20/2014 03:52:40 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (08/20/2014 03:52:33 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (08/20/2014 03:52:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "hidedir" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (08/20/2014 03:52:30 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\hidedir.sys

Error: (08/20/2014 03:52:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "UAC-Dateivirtualisierung" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (08/20/2014 01:14:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (08/20/2014 01:13:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058

Error: (08/20/2014 01:13:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "hidedir" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (08/20/2014 01:13:49 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\hidedir.sys

Error: (08/20/2014 01:13:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "UAC-Dateivirtualisierung" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-08-20 15:38:05.542
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.516
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.491
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.466
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.441
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.418
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.392
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.369
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.345
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-08-20 15:38:05.321
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4930K CPU @ 3.40GHz
Percentage of memory in use: 17%
Total physical RAM: 16302.14 MB
Available physical RAM: 13454.88 MB
Total Pagefile: 21678.14 MB
Available Pagefile: 18270.89 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:228.01 GB) (Free:53.85 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:384.11 GB) NTFS
Drive g: (Polizei 2013) (CDROM) (Total:1.29 GB) (Free:0 GB) CDFS
Drive p: (Privat) (Fixed) (Total:3.34 GB) (Free:3.29 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: FE72631D)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 78CB61DD)

Partition: GPT Partition Type.

==================== End Of Log ============================
GMER Log

GMER Logfile:
Code:
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-08-20 16:01:12
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\0000004b LITEONIT_LCS-256M6S_2.5_7mm_256GB rev.DC8110E 238,47GB
Running: Gmer-19357.exe; Driver: C:\Users\DOCTOR~1\AppData\Local\Temp\kwdcauog.sys


---- Kernel code sections - GMER 2.1 ----

.text    C:\Windows\System32\win32k.sys!W32pServiceTable                                                                                                                      fffff96000209e00 15 bytes [00, FA, 0E, 02, C0, 9C, 70, ...]
.text    C:\Windows\System32\win32k.sys!W32pServiceTable + 16                                                                                                                  fffff96000209e10 11 bytes [00, 00, FC, FF, 80, FA, C0, ...]

---- User code sections - GMER 2.1 ----

.text    C:\Windows\system32\dwm.exe[828] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                                              00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\dwm.exe[828] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                                              00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\dwm.exe[828] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                                                  00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\dwm.exe[828] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                                                  00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[1028] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                                          00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[1028] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                                          00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[1028] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                                              00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[1028] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                                              00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe[2184] C:\Windows\system32\PsApi.dll!GetModuleBaseNameA + 506                                                00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe[2184] C:\Windows\system32\PsApi.dll!GetModuleBaseNameA + 514                                                00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe[2184] C:\Windows\system32\PsApi.dll!QueryWorkingSet + 118                                                  00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe[2184] C:\Windows\system32\PsApi.dll!QueryWorkingSet + 142                                                  00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Windows\system32\svchost.exe[2652] C:\Windows\system32\WSOCK32.dll!setsockopt + 194                                                                                00007fffe3601f6a 4 bytes [60, E3, FF, 7F]
.text    C:\Windows\system32\svchost.exe[2652] C:\Windows\system32\WSOCK32.dll!setsockopt + 218                                                                                00007fffe3601f82 4 bytes [60, E3, FF, 7F]
.text    C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe[2752] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe[2752] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe[2752] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                  00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe[2752] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                  00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\Windows Defender\MsMpEng.exe[2776] C:\Windows\system32\psapi.dll!GetModuleBaseNameA + 506                                                            00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\Windows Defender\MsMpEng.exe[2776] C:\Windows\system32\psapi.dll!GetModuleBaseNameA + 514                                                            00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\Windows Defender\MsMpEng.exe[2776] C:\Windows\system32\psapi.dll!QueryWorkingSet + 118                                                              00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\Windows Defender\MsMpEng.exe[2776] C:\Windows\system32\psapi.dll!QueryWorkingSet + 142                                                              00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe[2812] C:\Windows\system32\PsApi.dll!GetModuleBaseNameA + 506                                                    00007ffffaf9169a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe[2812] C:\Windows\system32\PsApi.dll!GetModuleBaseNameA + 514                                                    00007ffffaf916a2 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe[2812] C:\Windows\system32\PsApi.dll!QueryWorkingSet + 118                                                        00007ffffaf9181a 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe[2812] C:\Windows\system32\PsApi.dll!QueryWorkingSet + 142                                                        00007ffffaf91832 4 bytes [F9, FA, FF, 7F]
.text    C:\Program Files\SoftPerfect Bandwidth Manager\BMCore.exe[7932] C:\Windows\SYSTEM32\wsock32.dll!setsockopt + 194                                                      00007fffe3601f6a 4 bytes [60, E3, FF, 7F]
.text    C:\Program Files\SoftPerfect Bandwidth Manager\BMCore.exe[7932] C:\Windows\SYSTEM32\wsock32.dll!setsockopt + 218                                                      00007fffe3601f82 4 bytes [60, E3, FF, 7F]

---- Threads - GMER 2.1 ----

Thread  C:\Windows\system32\csrss.exe [824:848]                                                                                                                              fffff960009814d0
Thread  C:\Windows\Explorer.EXE [3708:4612]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4648]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4100]                                                                                                                                  00007ffff26d6b3c
Thread  C:\Windows\Explorer.EXE [3708:4256]                                                                                                                                  00007fffe558ce30
Thread  C:\Windows\Explorer.EXE [3708:4336]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4884]                                                                                                                                  00007ffff364ec38
Thread  C:\Windows\Explorer.EXE [3708:5088]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4528]                                                                                                                                  00007fffe7367bb0
Thread  C:\Windows\Explorer.EXE [3708:4664]                                                                                                                                  00007fffe0fdefc0
Thread  C:\Windows\Explorer.EXE [3708:4756]                                                                                                                                  00007fffe0e6f36c
Thread  C:\Windows\Explorer.EXE [3708:4984]                                                                                                                                  00007ffffa037ea8
Thread  C:\Windows\Explorer.EXE [3708:6032]                                                                                                                                  00007fffdf3f1e40
Thread  C:\Windows\Explorer.EXE [3708:6640]                                                                                                                                  00007ffff6e51120
Thread  C:\Windows\Explorer.EXE [3708:7692]                                                                                                                                  00007ffffb582764
Thread  C:\Windows\Explorer.EXE [3708:7712]                                                                                                                                  00007fffceb6d6bc
Thread  C:\Windows\Explorer.EXE [3708:5172]                                                                                                                                  00007fffe35deeb4
Thread  C:\Windows\Explorer.EXE [3708:908]                                                                                                                                    00007fffce6dd6bc
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:7032]                                                                                                                            0000000000da48be
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:3848]                                                                                                                            000000006a0c4a56
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6148]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6944]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6568]                                                                                                                            0000000077058cde
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6604]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6360]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:6220]                                                                                                                            000000006a128ebc
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:7368]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:7540]                                                                                                                            0000000067783309
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:7780]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:3184]                                                                                                                            000000006a198ab0
Thread  C:\Windows\SYSTEM32\ntdll.dll [7028:3292]                                                                                                                            000000006a198ab0
---- Processes - GMER 2.1 ----

Process  C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe (*** suspicious ***) @ C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe [2128](2014-08-08 19:56:10)          0000000000400000
Library  C:\Users\DoctorWho\AppData\Roaming\Hub Timer\sub\default.dll (*** suspicious ***) @ C:\Users\DoctorWho\AppData\Roaming\Hub Timer\hub.exe [2128](2014-08-08 19:56:18)  0000000001620000

---- Disk sectors - GMER 2.1 ----

Disk    \Device\Harddisk0\DR0                                                                                                                                                unknown MBR code

---- EOF - GMER 2.1 ----
--- --- ---

Defogger Log

Code:
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 15:51 on 20/08/2014 (DoctorWho)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
SPTD -> Disabled (Service running -> reboot required)


-=E.O.F=-
Fehler anzeige bei GMER

Screenshot 1

http://s14.directupload.net/images/140820/on2zcphp.png

Screenshot 2
http://s1.directupload.net/images/140820/i94g79z8.png

schrauber 21.08.2014 17:14
Zitat:
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
gecracktes Adobe erstmal entfernen....

Krawall 21.08.2014 18:59
Ja habe mir vor wenn ich mich nicht täusche, 2 Woche ungefair über nen freund "Student" die Vollversion geholt. habs nun in der Host datei gelöscht

Aber habe keinerlei Cracks / DLL´s´benutzt daher kommt es nicht

Benutzte dafür extra nen PC wo alles Grafik sachen + Bearbeitung ist

schrauber 22.08.2014 17:12
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.


Alle Zeitangaben in WEZ +1. Es ist jetzt 21:39 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131