Coppelius5s | 07.01.2015 15:13 | Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlauf Datum: 07.01.2015
Suchlauf-Zeit: 00:17:34
Logdatei: MBAM1.txt
Administrator: Ja
Version: 2.00.4.1028
Malware Datenbank: v2015.01.06.13
Rootkit Datenbank: v2015.01.06.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: oneinc
Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 365488
Verstrichene Zeit: 11 Min, 5 Sek
Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Warnen
PUM: Aktiviert
Prozesse: 0
(Keine schädliche Elemente erkannt)
Module: 0
(Keine schädliche Elemente erkannt)
Registrierungsschlüssel: 2
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3902786967-1432057805-4090323964-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, In Quarantäne, [77be3fb5ec9d013583969f0beb1829d7],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3902786967-1432057805-4090323964-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, In Quarantäne, [38fd8074a2e7ef478ca6fec2e024c739],
Registrierungswerte: 1
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3902786967-1432057805-4090323964-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0H1N1M, In Quarantäne, [38fd8074a2e7ef478ca6fec2e024c739]
Registrierungsdaten: 0
(Keine schädliche Elemente erkannt)
Ordner: 9
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\index-dir, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\databases, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\GPUCache, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Local Storage, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.InetStat.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InetStat, In Quarantäne, [1f1616de98f1ec4ae866db0ef3111ae6],
Dateien: 193
PUP.Optional.Blasteroids.A, C:\ProgramData\Updater\trz3084.tmp, In Quarantäne, [c96c8c687910e650a76ade7e4ab6f907],
PUP.Optional.Blasteroids.A, C:\ProgramData\Websteroids\trz27B9.tmp, In Quarantäne, [9c997f7522675cda2ce5d48805fbf30d],
PUP.Optional.FriedCookie, C:\Users\oneinc\Downloads\flvplayer (1).exe, In Quarantäne, [4bea7b795b2e2c0aafee0574c73e4fb1],
PUP.Optional.InetStat.A, C:\Users\oneinc\AppData\Roaming\InetStat\inetstat.exe, In Quarantäne, [ba7b9c585237d85eb07a77f8b64d659b],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\QuotaManager-journal, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\cookies, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\cookies-journal, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\QuotaManager, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\website.ico, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\01bdbd043a8d87d9_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\0375389fb56ec42e_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\05ff7aa027ded9b9_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\06103210ae5eb92b_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\06c864e3404958fc_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\08695d02c973f074_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\08bec7baf02dd388_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\08f1657b2ae54b9d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\0ac0c4b5c265cb26_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\0ae2ffbcc2649c9c_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\0e6996de6946ff33_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\1041015f9233625e_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\10ba1a6dd717f76d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\11f316f4ebe761a6_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\4918f475d810c370_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\4941e2a1f7a92f58_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\49cbd5ccd89aa924_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\4b62fe917181ed62_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\4daf3cbc2c7e199f_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\4fc1d6c2f5c967dd_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\527d5988fc949ed5_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\52dca8aaa3fab927_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\59f8199c46c0ac72_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\5b46d9fa4491e3ad_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\5e9b31b2ec8de803_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\5ff63e69bbe8fa3c_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\60b548093b7f1c4d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\92b8168192793911_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\92e31fe1b919cd66_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\94615c9a6099d7d2_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\94f523273133ad1a_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\95ddd53adf512dbc_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\97dd353c55aff7f8_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\9873f2673c3d8526_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\99e1ee03e42758be_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\9a48c20a6c6970e8_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\9ae29e3aa2842aa4_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\9b2d4542638c8d16_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\9b82ccf4af53b6a8_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\9c7627e2abfdccd9_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\9d0941604d7de9c1_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\a37cd7ad0d334d3f_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\a386189956ab7bb9_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\d3c58d3a88f5618a_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\d8e08324697a0a01_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\d9a56f39095d6987_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\d9ba3aa2fec10a15_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\db3c6466f084ebf4_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\de3ec9ddc2b44a14_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\e0ea107913adae0a_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\e10b4b56acb982cc_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\e357d97b554be873_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\e35ea7dc1c7e19ac_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\e685b2ebc644ef56_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\e8e2ce151826761e_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\22a42871dcb1101a_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\22a44a690f6df9f2_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\25aba580c575808f_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\26030386f7cfbeb3_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\26e4ff9ecddd5dc1_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\28b0dc98176c4830_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\28bb6cb770207239_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\293ed240bc1264c5_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\2a744e2a8ddc5215_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\2ae4c6c7a9b3ec27_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\2d5e1e7a317b7939_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\76dddbb58cb7031b_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\77e08b9b8b9a3168_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\78bc8d60282388d2_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\7bf30a28dfa9893d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\7c000d76bf1f0157_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\7cc07ed3c66ea2df_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\7fd48320d2231601_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\831810521d2feea0_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\84c76699722246d1_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\67b8233399ef3c0a_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\766cda478ea8e24e_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\86285c0e2a5ab7a8_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\a67a7318862561a7_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\bc0b4ce6dc40703c_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\d2a5bc0f440b0ef0_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\e96840897e658496_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\a682a844981d4e40_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\a90f0297d5bfc8b2_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\aa888114a9fbdc9e_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\aaeefa4ab6eecc50_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\b1ef2869e5362bf1_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\b25c58db0fee2b25_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\b289f232b5094c1c_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\b4b5593bb31743aa_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\b54a51c687d0f8e1_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\b844770e44333abb_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\ea34829245485817_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\eb6c84d93c82f411_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\ebfd932e35eb1606_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\ecfb11388b7aa485_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\eda7d6423171cfd5_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\ee368c55bdf4deb0_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\f61a114aa29835e2_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\f70f260ff6906f39_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\f7658fc23d9ca3db_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\f7a72a7b132e4405_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\f7f0827d429d48d5_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\f95fabb631e0d55a_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\fa63363d3ca087b7_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\fafbda6816d7b162_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\fca5d6c51c1310d9_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\ff24b1f8028ca0bc_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\index, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\124dd836a0efe489_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\1374982dcefea341_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\13a3fb9d2902fb82_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\147e0822752aba6d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\15cc7a904e9646be_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\18969091bcd95b7c_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\1b884a3326d47e6b_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\1dabfe2d28a6a19d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\1daf84db93d6dfe6_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\1dafb2ed7113577d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\1dea29c318e295dd_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\20d08ebe23d790a4_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\220e18fc98923f6e_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\2ed7a48cdf691d09_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\305fcbb0ccbceb0d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\315a39b606bc4359_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\322d928bcd27737a_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\327e2f346370c855_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\34c65f273f242ede_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\38628010c0fdbeaf_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\3b7e35eb8b037bd2_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\3bea56726573f216_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\3e4997c05b1b4686_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\42c87a85d5b6958d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\43cb8db4d827ac00_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\47cff2ba15008159_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\69d51fb93cfef550_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\6a46777b47d8863e_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\6b09da8b7388d231_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\6e38abbb47ff7603_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\6e8dd0d489f1b4f2_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\6e8e626374125728_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\7114f262fb3efe7b_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\724344affef6866f_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\72f3040e9aa19285_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\737a4047bf5ed587_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\bcf9d625242d30a8_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\c288e4b85077669f_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\c3dda71f7388ef35_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\c4c151d41cf155d6_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\c69520283aa67006_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\c89f38f36e14b01c_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\c8de9fbf41e4daa0_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\c97e1c023a3691fd_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\c97e49b414e0159e_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\ce6fbf4de7522baf_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\cf5385267dd3f851_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\873cb7e9b42342e4_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\8a2a3008b4a3fa53_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\8a2abd4eed83e9d6_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\8a89305e64fa0dc3_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\8b8a6730694eb1cb_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\8d8113aecd1a864d_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\8fcb6e646af79aca_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\90c15028014da3f8_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\913b355dd33000c0_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Cache\index-dir\the-real-index, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\databases\Databases.db, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\databases\Databases.db-journal, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\GPUCache\data_0, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\GPUCache\data_1, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\GPUCache\data_2, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\GPUCache\data_3, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\GPUCache\index, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\000005.bak, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\000005.ldb, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\000006.log, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\CURRENT, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\LOCK, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\LOG, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\LOG.old, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\MANIFEST-000004, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Local Storage\file__0.localstorage, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.Gameo.A, C:\Users\oneinc\AppData\Local\Gameo\Local Storage\file__0.localstorage-journal, In Quarantäne, [c96c34c0f59466d0b200875454b0b947],
PUP.Optional.InetStat.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InetStat\InetStat.lnk, In Quarantäne, [1f1616de98f1ec4ae866db0ef3111ae6],
Physische Sektoren: 0
(Keine schädliche Elemente erkannt)
(end)
FRST Logfile:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-01-2015
Ran by oneinc (administrator) on ONEINC on 07-01-2015 00:31:59
Running from C:\Users\oneinc\Desktop
Loaded Profile: oneinc (Available profiles: oneinc)
Platform: Windows 8.1 Pro (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\creator-ws.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\oneinc\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\ws.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
() C:\Program Files (x86)\Opera\24.0.1558.53\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\24.0.1558.53\opera.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2629632 2012-09-25] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-24] (AVAST Software)
HKLM-x32\...\Run: [20131121] => C:\Program Files\AVAST Software\Avast\setup\emupdate\d73d5d61-3def-4c0a-9af3-06ac494ab4eb.exe [180184 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2014-11-21] (Malwarebytes Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\Run: [Spotify Web Helper] => C:\Users\oneinc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-28] (Spotify Ltd)
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\Run: [Spotify] => C:\Users\oneinc\AppData\Roaming\Spotify\spotify.exe [6170168 2014-05-28] (Spotify Ltd)
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\Run: [Amazon Music] => C:\Users\oneinc\AppData\Local\Amazon Music\Amazon Music Helper.exe [6277952 2014-12-08] ()
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\MountPoints2: {22840827-3105-11e3-be75-6cf049113d8f} - "H:\LaunchU3.exe"
AppInit_DLLs: C:\Users\oneinc\AppData\Local\Smartbar\Application\Resources\crdlil64.dll => C:\Users\oneinc\AppData\Local\Smartbar\Application\Resources\crdlil64.dll File Not Found
AppInit_DLLs-x32: C:\Users\oneinc\AppData\Local\Smartbar\Application\Resources\crdlil.dll => "C:\Users\oneinc\AppData\Local\Smartbar\Application\Resources\crdlil.dll" File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk
ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe ()
Startup: C:\Users\oneinc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\UDPixel.lnk
ShortcutTarget: UDPixel.lnk -> C:\Program Files (x86)\UDPixel\UDPixel.exe (hxxp://sam100.free.fr/UDPixel)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:58222;https=127.0.0.1:58222
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
BHO: avast! Online Security -> {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files (x86)\PDF Architect 2\creator-ie-helper.dll (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files (x86)\PDF Architect 2\creator-ie-plugin.dll (pdfforge GmbH)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\oneinc\AppData\Roaming\Mozilla\Firefox\Profiles\x3uzdn52.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll (pdfforge GmbH)
FF Plugin HKU\S-1-5-21-3902786967-1432057805-4090323964-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF user.js: detected! => C:\Users\oneinc\AppData\Roaming\Mozilla\Firefox\Profiles\x3uzdn52.default\user.js
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-10-24]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-10-31]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension
FF Extension: PDF Architect 2 Creator - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2014-12-07]
Chrome:
=======
CHR Plugin: (Web) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Web) - internal-remoting-viewer
CHR Plugin: (Web) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Web) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Web) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Web) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (Web) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Web) - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll No File
CHR Profile: C:\Users\oneinc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Web) - C:\Users\oneinc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-11-02]
CHR Extension: (Web) - C:\Users\oneinc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-23]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-10-31]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-24] (AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [204576 2014-08-01] (Microsoft)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
R3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
R2 PDF Architect 2 Creator; C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP6\RpcAgentSrv.exe [71832 2008-10-02] (SiSoftware) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 avast! Firewall; "C:\Program Files\AVAST Software\Avast\afwServ.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [38984 2013-11-24] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [84328 2013-11-24] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [92544 2013-10-31] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-31] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1032416 2013-11-24] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [409832 2013-11-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-31] ()
R3 athur; C:\Windows\system32\DRIVERS\athuw8x.sys [3744256 2012-11-21] (Qualcomm Atheros Communications, Inc.)
R3 CVPNDRVA; C:\WINDOWS\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
U0 rylpfl; C:\Windows\System32\drivers\lklh.sys [79064 2015-01-07] (Malwarebytes Corporation)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP6\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 ALSysIO; \??\C:\Users\oneinc\AppData\Local\Temp\ALSysIO64.sys [X]
S1 aswKbd; \??\C:\WINDOWS\system32\drivers\aswKbd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-07 00:31 - 2015-01-07 00:32 - 00018718 _____ () C:\Users\oneinc\Desktop\FRST.txt
2015-01-07 00:31 - 2015-01-07 00:32 - 00000000 ____D () C:\FRST
2015-01-07 00:31 - 2015-01-07 00:31 - 00000474 _____ () C:\Users\oneinc\Desktop\defogger_disable.log
2015-01-07 00:31 - 2015-01-07 00:31 - 00000000 _____ () C:\Users\oneinc\defogger_reenable
2015-01-07 00:29 - 2015-01-07 00:29 - 00079064 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\lklh.sys
2015-01-07 00:27 - 2015-01-07 00:28 - 00380416 _____ () C:\Users\oneinc\Desktop\Gmer-19357.exe
2015-01-07 00:27 - 2015-01-07 00:27 - 02123776 _____ (Farbar) C:\Users\oneinc\Desktop\FRST64.exe
2015-01-07 00:27 - 2015-01-07 00:27 - 00050477 _____ () C:\Users\oneinc\Desktop\Defogger.exe
2015-01-07 00:26 - 2015-01-07 00:30 - 00000000 ____D () C:\Users\oneinc\Desktop\Neuer Ordner
2015-01-07 00:00 - 2015-01-07 00:01 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-07 00:00 - 2015-01-07 00:00 - 04188536 _____ (Piriform Ltd) C:\Users\oneinc\Downloads\ccsetup501_slim.exe
2014-12-28 15:50 - 2014-12-28 15:50 - 00003886 _____ () C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2014-12-16 00:09 - 2014-12-16 00:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-13 19:57 - 2014-10-30 23:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-12-13 19:57 - 2014-10-30 23:34 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-12-11 15:45 - 2014-12-11 15:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-12-10 18:39 - 2014-11-10 03:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2014-12-10 18:39 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2014-12-10 18:39 - 2014-10-31 00:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-12-10 18:39 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2014-12-10 18:23 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-12-10 18:23 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-12-10 18:23 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-12-10 18:23 - 2014-11-22 03:49 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-12-10 18:23 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-12-10 18:23 - 2014-11-22 03:35 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-12-10 18:23 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-12-10 18:23 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-12-10 18:23 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-12-10 18:23 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-12-10 18:23 - 2014-11-22 03:06 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-12-10 18:23 - 2014-11-22 03:06 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-12-10 18:23 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-12-10 18:23 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-12-10 18:23 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-12-10 18:23 - 2014-11-22 02:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-12-10 18:23 - 2014-11-22 02:55 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-12-10 18:23 - 2014-11-22 02:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-12-10 18:23 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-12-10 18:23 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-12-10 18:23 - 2014-11-22 02:49 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-12-10 18:23 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-12-10 18:23 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-12-10 18:23 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-12-10 18:23 - 2014-11-22 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-12-10 18:23 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-12-10 18:23 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-12-10 18:23 - 2014-11-22 02:29 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-12-10 18:23 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-12-10 18:23 - 2014-11-22 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-12-10 18:23 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-12-10 18:23 - 2014-11-22 02:23 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-12-10 18:23 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-12-10 18:23 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-12-10 18:23 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-12-10 18:23 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-12-10 18:23 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-12-10 18:23 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-12-10 18:23 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-12-10 18:23 - 2014-11-07 05:16 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-12-10 18:23 - 2014-11-07 04:26 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-12-10 18:23 - 2014-11-01 00:57 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-12-10 18:23 - 2014-11-01 00:47 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-12-10 18:23 - 2014-10-13 03:43 - 00238912 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-12-10 18:23 - 2014-10-13 03:43 - 00153920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-12-10 18:23 - 2014-10-13 03:43 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-12-10 18:23 - 2014-10-13 03:43 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-07 00:32 - 2014-03-17 15:34 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-07 00:31 - 2013-10-17 15:19 - 00000000 ____D () C:\Users\oneinc
2015-01-07 00:29 - 2014-09-06 21:49 - 00000000 ____D () C:\Users\oneinc\AppData\Roaming\InetStat
2015-01-07 00:29 - 2013-11-25 18:20 - 00000000 ____D () C:\ProgramData\Websteroids
2015-01-07 00:29 - 2013-11-25 18:20 - 00000000 ____D () C:\ProgramData\Updater
2015-01-07 00:29 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\DesktopTileResources
2015-01-07 00:27 - 2013-09-11 13:58 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-01-07 00:21 - 2013-09-11 13:37 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3902786967-1432057805-4090323964-1001
2015-01-07 00:17 - 2014-07-25 17:24 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-07 00:15 - 2014-07-25 17:24 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-07 00:15 - 2014-07-25 17:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-07 00:15 - 2014-07-25 17:24 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-07 00:15 - 2013-11-08 18:11 - 01047040 ___SH () C:\Users\oneinc\Desktop\Thumbs.db
2015-01-07 00:03 - 2014-03-14 20:14 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-07 00:03 - 2013-10-28 17:43 - 00000000 ____D () C:\WINDOWS\Minidump
2015-01-07 00:03 - 2013-10-17 16:15 - 00000000 ___DC () C:\WINDOWS\Panther
2015-01-07 00:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-06 23:49 - 2013-09-11 13:58 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-06 21:49 - 2013-09-11 13:58 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-06 17:42 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-04 16:51 - 2013-09-30 05:14 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-04 16:51 - 2013-09-30 04:56 - 00764340 _____ () C:\WINDOWS\system32\perfh007.dat
2015-01-04 16:51 - 2013-09-30 04:56 - 00159160 _____ () C:\WINDOWS\system32\perfc007.dat
2014-12-28 15:50 - 2014-04-10 19:43 - 00000000 ___DO () C:\Users\oneinc\SkyDrive
2014-12-28 15:48 - 2014-05-26 20:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-28 15:48 - 2013-10-17 15:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-12-28 15:48 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-21 05:28 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-12-15 17:48 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-12-15 16:13 - 2013-09-22 17:02 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-12-15 16:11 - 2013-09-22 17:02 - 112710672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-12-13 20:33 - 2014-11-15 21:35 - 00001239 _____ () C:\Users\oneinc\Desktop\Amazon Music.lnk
2014-12-13 19:49 - 2013-08-22 14:25 - 06291456 ___SH () C:\WINDOWS\system32\config\BBI
2014-12-11 16:01 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-12-10 21:03 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-12-10 21:03 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-12-10 21:03 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-12-10 18:33 - 2013-10-09 18:21 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-09 18:32 - 2014-03-17 15:34 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-12-08 14:28 - 2014-12-07 21:09 - 00000000 ____D () C:\Users\oneinc\AppData\Roaming\PDF Architect 2
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-01-05 06:21
==================== End Of Log ============================ --- --- ---
--- --- ---
--- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-01-2015
Ran by oneinc at 2015-01-07 00:32:45
Running from C:\Users\oneinc\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Out of date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Out of date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Internet Security (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 16 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 16.0.0.240 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Amazon Music (HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\Amazon Amazon Music) (Version: 3.7.1.698 - Amazon Services LLC)
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2008 - Avast Software)
Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite DCP-J125 (HKLM-x32\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
Cisco Systems VPN Client 5.0.07.0290 (HKLM\...\{467D5E81-8349-4892-9E81-C3674ED8E451}) (Version: 5.0.7 - Cisco Systems, Inc.)
CrystalDiskInfo 6.0.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.0.4 - Crystal Dew World)
doPDF (Version: 8.0.915 - Softland) Hidden
doPDF 8 (HKLM-x32\...\{a54197ad-113d-41df-8f35-ad06151b4d42}) (Version: 8.0.915 - Softland)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Free YouTube to MP3 Converter version 3.12.39.604 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.39.604 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 31.0.1650.57 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Logitech SetPoint 6.61 (HKLM\...\sp6) (Version: 6.61.15 - Logitech)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
meinHausplaner (HKLM-x32\...\meinHausplaner) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6219.1000 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 de)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
novaPDF 8 Printer Driver (HKLM\...\{5ED19569-C344-4C55-983F-AAF03CE33723}) (Version: 8.0.915 - Softland)
NVIDIA 3D Vision Controller-Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenOffice 4.0.1 (HKLM-x32\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
Opera Stable 24.0.1558.53 (HKLM-x32\...\Opera 24.0.1558.53) (Version: 24.0.1558.53 - Opera Software ASA)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.51.17865 - pdfforge GmbH)
PDF Architect 2 Create Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDF Architect 2 Edit Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDF Architect 2 View Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDF24 Creator 6.2.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.0.0 - pdfforge)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Secure Eraser (HKLM-x32\...\Secure Eraser_is1) (Version: 4.2.0.1 - ASCOMP Software GmbH)
SHIELD Streaming (Version: 2.1.214 - NVIDIA Corporation) Hidden
SimilarImages (HKLM-x32\...\SimilarImages) (Version: 2013.11 - Nils Maier)
SiSoftware Sandra Lite 2013.SP6 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 19.66.2013.10 - SiSoftware)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)
Star Wars: Knights of the Old Republic (HKLM-x32\...\Steam App 32370) (Version: - BioWare)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UDPixel.exe (HKLM-x32\...\UDPixel) (Version: - )
VLC media player 2.1.0 (HKLM\...\VLC media player) (Version: 2.1.0 - VideoLAN)
Websteroids (HKLM-x32\...\Websteroids) (Version: 2.6.49 - Creative Island Media, LLC) <==== ATTENTION
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
YTD Video Downloader 4.6 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.6 - GreenTree Applications SRL) <==== ATTENTION
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
21-12-2014 05:27:34 Windows Update
28-12-2014 16:23:18 Geplanter Prüfpunkt
05-01-2015 06:26:45 Geplanter Prüfpunkt
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {08942C67-BF2F-418C-851B-BE76F92AF519} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-11] (Google Inc.)
Task: {0E0ACF44-62CB-42C6-8DE0-6E98BCD88872} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-11] (Google Inc.)
Task: {166258AC-3C52-435A-AEB7-9E830961700F} - \ASP No Task File <==== ATTENTION
Task: {2913F5B8-B072-421C-8AD5-B6C724946864} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {59131116-35C9-48F3-972A-8BA4AD3A1FD3} - System32\Tasks\Opera scheduled Autoupdate 1378903396 => C:\Program Files (x86)\Opera\launcher.exe [2014-08-27] (Opera Software)
Task: {5E3DC786-A497-4F2A-A94E-2A03ACF75315} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-11-24] (AVAST Software)
Task: {7C621DFE-39EC-472F-81D0-A7FE7747B477} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-12-15] (Microsoft Corporation)
Task: {90BDF400-075E-4027-8C7A-E75C68C28FC2} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09] (Adobe Systems Incorporated)
Task: {95F4449F-E037-4F96-AE69-38D6454C1050} - System32\Tasks\{FA42EE2F-49DC-412A-BD32-E73B1512954C} => pcalua.exe -a C:\ProgramData\Websteroids\uninstall.exe -c /kb=y /ic=2
Task: {9DDAAE45-9B2E-4A0C-94FE-DE3938DD4358} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [2014-08-01] ()
Task: {DEC7DBEB-1329-4427-8F1F-942459475EFA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-10-17 15:16 - 2014-05-20 02:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-08-11 19:25 - 2014-08-11 19:25 - 00130933 ____N () C:\WINDOWS\TEMP\fe783e8b-f0bc-4703-9683-464fedcba743\AgileDotNetRT64.dll
2014-08-11 19:25 - 2014-08-11 19:25 - 00130933 ____N () C:\WINDOWS\TEMP\ea61bc6a-15ba-440c-8065-d70e53d325ff\AgileDotNetRT64.dll
2014-11-15 21:34 - 2014-12-08 07:27 - 06277952 _____ () C:\Users\oneinc\AppData\Local\Amazon Music\Amazon Music Helper.exe
2014-12-12 23:24 - 2014-12-12 23:24 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-09-03 14:18 - 2014-09-03 14:17 - 01372280 _____ () C:\Program Files (x86)\Opera\24.0.1558.53\opera_crashreporter.exe
2013-12-22 13:21 - 2013-12-22 09:44 - 02153472 _____ () C:\Program Files\AVAST Software\Avast\defs\13122200\algo.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-03-23 12:26 - 2010-03-23 12:26 - 00201512 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll
2013-10-26 19:35 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2013-10-31 19:06 - 2013-10-31 19:06 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-09-03 14:18 - 2014-08-27 10:15 - 00155768 _____ () C:\Program Files (x86)\Opera\24.0.1558.53\message_center_win8.dll
2014-09-03 14:18 - 2014-09-03 14:17 - 01378936 _____ () C:\Program Files (x86)\Opera\24.0.1558.53\libglesv2.dll
2014-09-03 14:18 - 2014-09-03 14:17 - 00182392 _____ () C:\Program Files (x86)\Opera\24.0.1558.53\libegl.dll
2014-09-03 14:18 - 2014-09-03 14:17 - 00974968 _____ () C:\Program Files (x86)\Opera\24.0.1558.53\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\oneinc\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\oneinc\SkyDrive.old:ms-properties
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\StartupApproved\StartupFolder: => "UDPixel.lnk"
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3902786967-1432057805-4090323964-1001\...\StartupApproved\Run: => "Amazon Music"
========================= Accounts: ==========================
Administrator (S-1-5-21-3902786967-1432057805-4090323964-500 - Administrator - Disabled)
Gast (S-1-5-21-3902786967-1432057805-4090323964-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3902786967-1432057805-4090323964-1019 - Limited - Enabled)
oneinc (S-1-5-21-3902786967-1432057805-4090323964-1001 - Administrator - Enabled) => C:\Users\oneinc
==================== Faulty Device Manager Devices =============
Name: Cisco Systems VPN Adapter for 64-bit Windows
Description: Cisco Systems VPN Adapter for 64-bit Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: CVirtA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/06/2015 05:27:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f6c5
Name des fehlerhaften Moduls: nvwgf2umx.dll, Version: 9.18.13.3788, Zeitstempel: 0x537a8ee2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000398da9
ID des fehlerhaften Prozesses: 0x17dc
Startzeit der fehlerhaften Anwendung: 0xLogonUI.exe0
Pfad der fehlerhaften Anwendung: LogonUI.exe1
Pfad des fehlerhaften Moduls: LogonUI.exe2
Berichtskennung: LogonUI.exe3
Vollständiger Name des fehlerhaften Pakets: LogonUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LogonUI.exe5
Error: (01/06/2015 01:34:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f6c5
Name des fehlerhaften Moduls: nvwgf2umx.dll, Version: 9.18.13.3788, Zeitstempel: 0x537a8ee2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000398da9
ID des fehlerhaften Prozesses: 0x1d08
Startzeit der fehlerhaften Anwendung: 0xLogonUI.exe0
Pfad der fehlerhaften Anwendung: LogonUI.exe1
Pfad des fehlerhaften Moduls: LogonUI.exe2
Berichtskennung: LogonUI.exe3
Vollständiger Name des fehlerhaften Pakets: LogonUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LogonUI.exe5
Error: (01/04/2015 04:48:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f6c5
Name des fehlerhaften Moduls: nvwgf2umx.dll, Version: 9.18.13.3788, Zeitstempel: 0x537a8ee2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000398da9
ID des fehlerhaften Prozesses: 0x16c8
Startzeit der fehlerhaften Anwendung: 0xLogonUI.exe0
Pfad der fehlerhaften Anwendung: LogonUI.exe1
Pfad des fehlerhaften Moduls: LogonUI.exe2
Berichtskennung: LogonUI.exe3
Vollständiger Name des fehlerhaften Pakets: LogonUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LogonUI.exe5
Error: (01/04/2015 02:20:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f6c5
Name des fehlerhaften Moduls: nvwgf2umx.dll, Version: 9.18.13.3788, Zeitstempel: 0x537a8ee2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000398da9
ID des fehlerhaften Prozesses: 0x17f4
Startzeit der fehlerhaften Anwendung: 0xLogonUI.exe0
Pfad der fehlerhaften Anwendung: LogonUI.exe1
Pfad des fehlerhaften Moduls: LogonUI.exe2
Berichtskennung: LogonUI.exe3
Vollständiger Name des fehlerhaften Pakets: LogonUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LogonUI.exe5
Error: (12/21/2014 05:27:38 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (12/17/2014 05:32:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f6c5
Name des fehlerhaften Moduls: nvwgf2umx.dll, Version: 9.18.13.3788, Zeitstempel: 0x537a8ee2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000398da9
ID des fehlerhaften Prozesses: 0x1080
Startzeit der fehlerhaften Anwendung: 0xLogonUI.exe0
Pfad der fehlerhaften Anwendung: LogonUI.exe1
Pfad des fehlerhaften Moduls: LogonUI.exe2
Berichtskennung: LogonUI.exe3
Vollständiger Name des fehlerhaften Pakets: LogonUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LogonUI.exe5
Error: (12/16/2014 10:45:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f6c5
Name des fehlerhaften Moduls: nvwgf2umx.dll, Version: 9.18.13.3788, Zeitstempel: 0x537a8ee2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000398da9
ID des fehlerhaften Prozesses: 0x5f4
Startzeit der fehlerhaften Anwendung: 0xLogonUI.exe0
Pfad der fehlerhaften Anwendung: LogonUI.exe1
Pfad des fehlerhaften Moduls: LogonUI.exe2
Berichtskennung: LogonUI.exe3
Vollständiger Name des fehlerhaften Pakets: LogonUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LogonUI.exe5
Error: (12/16/2014 06:53:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f6c5
Name des fehlerhaften Moduls: nvwgf2umx.dll, Version: 9.18.13.3788, Zeitstempel: 0x537a8ee2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000398da9
ID des fehlerhaften Prozesses: 0x12b8
Startzeit der fehlerhaften Anwendung: 0xLogonUI.exe0
Pfad der fehlerhaften Anwendung: LogonUI.exe1
Pfad des fehlerhaften Moduls: LogonUI.exe2
Berichtskennung: LogonUI.exe3
Vollständiger Name des fehlerhaften Pakets: LogonUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LogonUI.exe5
Error: (12/15/2014 05:53:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm backgroundTaskHost.exe, Version 6.3.9600.16384 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: c48
Startzeit: 01d018868df157df
Endzeit: 4294967295
Anwendungspfad: C:\WINDOWS\system32\backgroundTaskHost.exe
Berichts-ID: dade54a8-847a-11e4-befe-6cf049113d8f
Vollständiger Name des fehlerhaften Pakets: Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nnt
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App
Error: (12/15/2014 05:47:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe_winethc.dll, Version: 6.3.9600.16384, Zeitstempel: 0x5215f00d
Name des fehlerhaften Moduls: USER32.dll, Version: 6.3.9600.17278, Zeitstempel: 0x53eebd22
Ausnahmecode: 0xc0000142
Fehleroffset: 0x00000000000ec0b4
ID des fehlerhaften Prozesses: 0x1764
Startzeit der fehlerhaften Anwendung: 0xrundll32.exe_winethc.dll0
Pfad der fehlerhaften Anwendung: rundll32.exe_winethc.dll1
Pfad des fehlerhaften Moduls: rundll32.exe_winethc.dll2
Berichtskennung: rundll32.exe_winethc.dll3
Vollständiger Name des fehlerhaften Pakets: rundll32.exe_winethc.dll4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: rundll32.exe_winethc.dll5
System errors:
=============
Error: (01/05/2015 06:22:54 AM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/05/2015 06:22:54 AM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/05/2015 06:22:54 AM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/05/2015 06:22:54 AM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/04/2015 04:49:30 PM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/04/2015 04:49:25 PM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/04/2015 04:49:25 PM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/04/2015 04:49:03 PM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/04/2015 04:48:54 PM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Error: (01/04/2015 04:48:45 PM) (Source: cdrom) (EventID: 15) (User: )
Description: Das Gerät \Device\CdRom0 ist für den Zugriff noch nicht bereit.
Microsoft Office Sessions:
=========================
Error: (01/06/2015 05:27:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.3788537a8ee2c00000050000000000398da917dc01d029c0efa021c3C:\WINDOWS\system32\LogonUI.exeC:\WINDOWS\system32\nvwgf2umx.dlld91c2ed4-95c0-11e4-beff-6cf049113d8f
Error: (01/06/2015 01:34:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.3788537a8ee2c00000050000000000398da91d0801d0283e264898beC:\WINDOWS\system32\LogonUI.exeC:\WINDOWS\system32\nvwgf2umx.dll54b7945c-95a0-11e4-beff-6cf049113d8f
Error: (01/04/2015 04:48:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.3788537a8ee2c00000050000000000398da916c801d0282abfe30473C:\WINDOWS\system32\LogonUI.exeC:\WINDOWS\system32\nvwgf2umx.dll2502e372-9429-11e4-beff-6cf049113d8f
Error: (01/04/2015 02:20:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.3788537a8ee2c00000050000000000398da917f401d022b6a6cb9ff3C:\WINDOWS\system32\LogonUI.exeC:\WINDOWS\system32\nvwgf2umx.dll6246e5a0-9414-11e4-beff-6cf049113d8f
Error: (12/21/2014 05:27:38 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
Error: (12/17/2014 05:32:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.3788537a8ee2c00000050000000000398da9108001d019799fe41a92C:\WINDOWS\System32\LogonUI.exeC:\WINDOWS\System32\nvwgf2umx.dll3ef63f09-860a-11e4-befe-6cf049113d8f
Error: (12/16/2014 10:45:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.3788537a8ee2c00000050000000000398da95f401d019799fbb92f4C:\WINDOWS\System32\LogonUI.exeC:\WINDOWS\System32\nvwgf2umx.dlle413a6df-856c-11e4-befe-6cf049113d8f
Error: (12/16/2014 06:53:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.163845215f6c5nvwgf2umx.dll9.18.13.3788537a8ee2c00000050000000000398da912b801d018c09d0942ecC:\WINDOWS\System32\LogonUI.exeC:\WINDOWS\System32\nvwgf2umx.dll8050c90d-854c-11e4-befe-6cf049113d8f
Error: (12/15/2014 05:53:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: backgroundTaskHost.exe6.3.9600.16384c4801d018868df157df4294967295C:\WINDOWS\system32\backgroundTaskHost.exedade54a8-847a-11e4-befe-6cf049113d8fFacebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nntApp
Error: (12/15/2014 05:47:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: rundll32.exe_winethc.dll6.3.9600.163845215f00dUSER32.dll6.3.9600.1727853eebd22c000014200000000000ec0b4176401d01886e27fbe34C:\WINDOWS\System32\rundll32.exeUSER32.dll20329a2c-847a-11e4-befe-6cf049113d8f
CodeIntegrity Errors:
===================================
Date: 2014-10-16 22:31:28.695
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-16 22:31:28.213
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-16 22:31:27.386
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\LHidEqd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-16 22:31:27.281
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\LHidEqd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: AMD Athlon(tm) II X2 240 Processor
Percentage of memory in use: 41%
Total physical RAM: 4094.55 MB
Available physical RAM: 2408.87 MB
Total Pagefile: 5356.56 MB
Available Pagefile: 2750.61 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:45.8 GB) NTFS
Drive d: () (Fixed) (Total:186.3 GB) (Free:128.13 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: D8E0BAD5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 186.3 GB) (Disk ID: 309D309D)
Partition 1: (Not Active) - (Size=186.3 GB) - (Type=07 NTFS)
==================== End Of Log ============================ |