Lavazzaa | 09.09.2014 12:36 | FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-09-2014 01
Ran by Tim (administrator) on TIM-PC on 09-09-2014 13:22:02
Running from C:\Users\Tim\Downloads
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
() C:\ProgramData\Trusted Publisher\SW_Booster\SW_Booster.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NUSB3MON] => C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3802448 2014-09-04] (LogMeIn Inc.)
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-05] (Microsoft Corporation)
HKU\S-1-5-21-3986868162-2867927163-642453104-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2013-11-01] (AMD)
HKU\S-1-5-21-3986868162-2867927163-642453104-1000\...\MountPoints2: {4e5d3021-a732-11e3-b405-806e6f6e6963} - D:\Setup.exe
AppInit_DLLs: C:\PROGRA~2\SW_BOO~1\ASSIST~2.DLL => C:\Program Files (x86)\SW_Booster\Assistant_x64.dll [4210176 2014-09-02] ()
AppInit_DLLs-x32: c:\progra~2\sw_boo~1\assist~1.dll => c:\Program Files (x86)\SW_Booster\Assistant.dll [4296192 2014-09-02] ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x78A3EE000C3BCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: ReggularDeeAilS -> {14BD7B3B-21B4-D9BF-DBCA-29A5A41E9012} -> C:\ProgramData\ReggularDeeAilS\pjyYtKl.x64.dll ()
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: priiceuchhOp -> {9f6837e0-9589-47ab-8617-ecdb0bec3bc9} -> C:\Program Files (x86)\priiceuchhOp\dvZDkQSXnu8jUx.x64.dll ()
BHO: YouTubeAdBlOcckke -> {d9e1a3a7-10ef-42e6-8c76-da53860c64eb} -> C:\Program Files (x86)\YouTubeAdBlOcckke\8wRblt9fUZrNC9.x64.dll ()
BHO-x32: ReggularDeeAilS -> {14BD7B3B-21B4-D9BF-DBCA-29A5A41E9012} -> C:\ProgramData\ReggularDeeAilS\pjyYtKl.dll ()
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: priiceuchhOp -> {9f6837e0-9589-47ab-8617-ecdb0bec3bc9} -> C:\Program Files (x86)\priiceuchhOp\dvZDkQSXnu8jUx.dll ()
BHO-x32: YouTubeAdBlOcckke -> {d9e1a3a7-10ef-42e6-8c76-da53860c64eb} -> C:\Program Files (x86)\YouTubeAdBlOcckke\8wRblt9fUZrNC9.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\h5gkgok8.default
FF SearchEngineOrder.2: Google
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tim\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: YouTubeAdBlOcckke - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\h5gkgok8.default\Extensions\7@LNt.net [2014-09-02]
FF Extension: Pricechop - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\h5gkgok8.default\Extensions\fvP@Uyj.org [2014-09-02]
FF Extension: REgularDeals - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\h5gkgok8.default\Extensions\gphzhd@rpvfdaju.com [2014-09-09]
FF Extension: Ghostery - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\h5gkgok8.default\Extensions\firefox@ghostery.com.xpi [2014-06-18]
FF Extension: Adblock Plus - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\h5gkgok8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-18]
Chrome:
=======
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pricechop) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgecljnnlofpgdedmolaopffolicnppl [2014-09-02]
CHR Extension: (No Name) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\iklgpchfbohgmghgfagediakopecfmbm [2014-08-07]
CHR Extension: (Facebook Messenger) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngabfpibok [2014-09-02]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx []
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 3e9deaca; c:\Program Files (x86)\SW_Booster\AssistantSvc.dll [174928 2014-09-02] () [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-11-01] (Advanced Micro Devices, Inc.) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-08-08] (LogMeIn, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-31] ()
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-20] (Advanced Micro Devices)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [31648 2014-05-31] (REALiX(tm))
R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-05-30] ()
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-09 13:22 - 2014-09-09 13:23 - 00012136 _____ () C:\Users\Tim\Downloads\FRST.txt
2014-09-09 13:21 - 2014-09-09 13:22 - 00000000 ____D () C:\FRST
2014-09-09 13:20 - 2014-09-09 13:20 - 02105344 _____ (Farbar) C:\Users\Tim\Downloads\FRST64.exe
2014-09-09 13:20 - 2014-09-09 13:20 - 00000000 ____D () C:\ProgramData\ReggularDeeAilS
2014-09-08 16:14 - 2014-09-09 02:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
2014-09-08 16:12 - 2014-09-09 02:19 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2013
2014-09-08 16:12 - 2014-09-08 16:12 - 00000000 ____D () C:\Users\Tim\AppData\Roaming\TuneUp Software
2014-09-08 16:09 - 2014-09-09 02:19 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2014-09-08 16:09 - 2014-09-09 02:19 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-09-08 16:07 - 2014-09-08 16:07 - 28181408 _____ (TuneUp Software) C:\Users\Tim\Downloads\TuneUpUtilities2013_de-DE.exe
2014-09-07 22:58 - 2014-09-07 22:58 - 00006832 ____N () C:\bootsqm.dat
2014-09-07 21:34 - 2014-09-07 21:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-09-07 21:34 - 2014-09-07 21:34 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-09-02 23:21 - 2014-09-02 23:21 - 00002060 _____ () C:\Users\Public\Desktop\Die*Sims™*3.lnk
2014-09-02 22:36 - 2014-09-02 22:36 - 00000560 _____ () C:\Windows\PFRO.log
2014-09-02 21:55 - 2014-09-02 21:55 - 00001189 _____ () C:\Users\Public\Desktop\Peggle.lnk
2014-09-02 21:24 - 2014-09-02 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartPCFixer
2014-09-02 21:24 - 2014-09-02 21:24 - 00000000 ____D () C:\Program Files (x86)\SmartPCFixer
2014-09-02 21:23 - 2014-09-09 12:47 - 00000476 ____H () C:\Windows\Tasks\SW_Booster-S-2982133423.job
2014-09-02 21:23 - 2014-09-02 21:23 - 00002722 _____ () C:\Windows\System32\Tasks\SW_Booster-S-2982133423
2014-09-02 21:23 - 2014-09-02 21:23 - 00000000 ____D () C:\ProgramData\YouTubeAdBlOcckke
2014-09-02 21:23 - 2014-09-02 21:23 - 00000000 ____D () C:\ProgramData\Trusted Publisher
2014-09-02 21:23 - 2014-09-02 21:23 - 00000000 ____D () C:\Program Files (x86)\SW_Booster
2014-09-02 21:22 - 2014-09-09 13:21 - 00000000 ____D () C:\ProgramData\8c7e074b404257bc
2014-09-02 21:22 - 2014-09-02 21:23 - 00000000 ____D () C:\Program Files (x86)\YouTubeAdBlOcckke
2014-09-02 21:22 - 2014-09-02 21:22 - 00000442 __RSH () C:\ProgramData\ntuser.pol
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Tim\AppData\Local\Torch
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Tim\AppData\Local\Comodo
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Tim\AppData\Local\Chromatic Browser
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast\AppData\Local\Torch
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast\AppData\Local\Google
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast\AppData\Local\Comodo
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast\AppData\Local\Chromatic Browser
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\ProgramData\priiceuchhOp
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Program Files (x86)\priiceuchhOp
2014-09-02 21:20 - 2014-09-02 21:20 - 00823808 _____ (Of And) C:\Users\Tim\Downloads\smartpc-fixer.exe
2014-09-02 21:19 - 2014-09-02 21:19 - 04874632 _____ (LionSea Software co., ltd ) C:\Users\Tim\Downloads\setup(1).exe
2014-09-02 21:06 - 2014-09-02 21:06 - 00000000 ____D () C:\ProgramData\McAfee
2014-09-02 20:59 - 2014-09-03 20:07 - 00000000 ____D () C:\Windows\pss
2014-08-30 11:38 - 2014-08-30 11:38 - 00347816 _____ (Microsoft Corporation) C:\Users\Tim\Downloads\MicrosoftFixit.Devices.Run.exe
2014-08-30 01:44 - 2014-08-30 01:44 - 00275368 _____ () C:\Windows\Minidump\083014-18891-01.dmp
2014-08-29 22:05 - 2014-08-29 22:06 - 00275368 _____ () C:\Windows\Minidump\082914-17222-01.dmp
2014-08-29 21:22 - 2014-08-29 21:22 - 00275368 _____ () C:\Windows\Minidump\082914-22666-01.dmp
2014-08-29 20:52 - 2014-08-29 20:52 - 00275368 _____ () C:\Windows\Minidump\082914-18080-01.dmp
2014-08-29 19:42 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-29 19:42 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-29 19:42 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 14:49 - 2014-08-22 14:49 - 00275368 _____ () C:\Windows\Minidump\082214-22089-01.dmp
2014-08-22 14:31 - 2014-08-22 14:32 - 00275368 _____ () C:\Windows\Minidump\082214-23868-01.dmp
2014-08-21 21:55 - 2014-08-21 21:55 - 00275368 _____ () C:\Windows\Minidump\082114-20888-01.dmp
2014-08-19 00:20 - 2014-08-19 00:20 - 00275368 _____ () C:\Windows\Minidump\081914-23228-01.dmp
2014-08-19 00:08 - 2014-08-19 00:08 - 00275368 _____ () C:\Windows\Minidump\081914-25646-01.dmp
2014-08-18 21:04 - 2014-08-18 21:04 - 00275368 _____ () C:\Windows\Minidump\081814-23868-01.dmp
2014-08-18 16:02 - 2014-08-18 16:02 - 00275368 _____ () C:\Windows\Minidump\081814-45068-01.dmp
2014-08-17 21:35 - 2014-09-09 12:47 - 00002632 _____ () C:\Windows\setupact.log
2014-08-17 21:35 - 2014-08-30 11:27 - 645296480 _____ () C:\Windows\MEMORY.DMP
2014-08-17 21:35 - 2014-08-17 21:35 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-17 20:29 - 2014-08-17 20:29 - 00000723 _____ () C:\Users\Tim\Downloads\50.ojama.ydk
2014-08-17 20:23 - 2014-08-17 20:23 - 00000736 _____ () C:\Users\Tim\Documents\furnimal.ydk
2014-08-17 19:47 - 2014-08-17 19:47 - 00000967 _____ () C:\Users\Tim\Desktop\TeamSpeak 3 Client.lnk
2014-08-17 19:43 - 2014-08-18 19:46 - 525469953 _____ () C:\Users\Tim\Desktop\YGOPro DevPro.zip
2014-08-14 23:38 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 23:38 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 23:38 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 23:38 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 23:38 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 23:38 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 23:37 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 23:37 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 22:03 - 2014-09-02 21:07 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-08-14 22:03 - 2014-08-14 22:03 - 01101648 _____ () C:\Users\Tim\Downloads\BlueScreenView - CHIP-Installer.exe
2014-08-14 19:34 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 19:34 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-14 19:34 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 19:34 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 19:34 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 19:34 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 19:34 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 19:34 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-14 19:34 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-14 19:34 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-14 19:34 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-14 19:34 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-14 19:34 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 19:34 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-14 19:34 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 19:34 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-14 19:34 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 19:34 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 19:34 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 19:34 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-14 19:34 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 19:34 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-14 19:34 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-14 19:34 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-14 19:33 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-14 19:33 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-14 19:33 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 19:33 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 19:33 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 19:33 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 19:33 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 19:33 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 19:33 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 19:33 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 19:33 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 19:33 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 19:33 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 19:33 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 19:33 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 19:33 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-14 19:33 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 19:33 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 19:33 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-14 19:33 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-14 19:33 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 19:33 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 19:33 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-14 19:33 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-14 19:33 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-14 19:33 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-14 19:33 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 19:33 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 19:33 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-14 19:33 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 19:33 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-14 19:33 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 19:33 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-14 19:33 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-14 19:33 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 19:33 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-14 19:33 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-14 19:33 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-14 19:33 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-14 19:33 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 19:33 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-14 19:33 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 19:33 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 19:33 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-14 19:33 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-14 19:33 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-14 19:33 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-14 19:33 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 19:33 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-14 19:33 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-14 19:33 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-14 19:33 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-14 19:33 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 19:33 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 19:33 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-14 19:33 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-14 19:33 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-14 19:33 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-14 19:33 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 19:33 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-13 11:58 - 2014-09-02 13:03 - 00001483 _____ () C:\Users\Public\Desktop\Die Sims 4 Erstelle einen Sim-Demo.lnk
2014-08-13 11:58 - 2014-08-13 11:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Die Sims 4 Erstelle einen Sim-Demo
2014-08-12 14:19 - 2014-08-12 14:51 - 00000000 ____D () C:\Users\Tim\.gimp-2.8
2014-08-12 14:19 - 2014-08-12 14:19 - 00000894 _____ () C:\Users\Tim\Desktop\GIMP 2.lnk
2014-08-12 14:19 - 2014-08-12 14:19 - 00000000 ____D () C:\Users\Tim\AppData\Local\gegl-0.2
2014-08-12 14:18 - 2014-08-12 14:19 - 00000000 ____D () C:\Program Files\GIMP 2
2014-08-12 14:18 - 2014-08-12 14:18 - 00000034 _____ () C:\Users\Tim\Desktop\FOS.txt
2014-08-12 14:17 - 2014-08-12 14:17 - 90396104 _____ (The GIMP Team ) C:\Users\Tim\Downloads\gimp-2.8.10-setup.exe
2014-08-12 13:57 - 2014-08-12 13:57 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-12 13:57 - 2014-08-12 13:57 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-12 13:56 - 2014-08-12 13:59 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-12 13:56 - 2014-08-12 13:56 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-12 12:26 - 2014-08-12 12:26 - 00000000 ____D () C:\Users\Tim\Documents\Firefall
2014-08-12 12:26 - 2014-08-12 12:26 - 00000000 ____D () C:\Users\Tim\AppData\Local\Red 5 Studios
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-09 13:23 - 2014-09-09 13:22 - 00012136 _____ () C:\Users\Tim\Downloads\FRST.txt
2014-09-09 13:22 - 2014-09-09 13:21 - 00000000 ____D () C:\FRST
2014-09-09 13:21 - 2014-09-02 21:22 - 00000000 ____D () C:\ProgramData\8c7e074b404257bc
2014-09-09 13:20 - 2014-09-09 13:20 - 02105344 _____ (Farbar) C:\Users\Tim\Downloads\FRST64.exe
2014-09-09 13:20 - 2014-09-09 13:20 - 00000000 ____D () C:\ProgramData\ReggularDeeAilS
2014-09-09 13:15 - 2014-05-06 15:24 - 00000000 ____D () C:\Users\Tim\AppData\Roaming\TS3Client
2014-09-09 12:54 - 2009-07-14 06:45 - 00017136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-09 12:54 - 2009-07-14 06:45 - 00017136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-09 12:51 - 2014-07-28 17:30 - 01979496 _____ () C:\Windows\WindowsUpdate.log
2014-09-09 12:47 - 2014-09-02 21:23 - 00000476 ____H () C:\Windows\Tasks\SW_Booster-S-2982133423.job
2014-09-09 12:47 - 2014-08-17 21:35 - 00002632 _____ () C:\Windows\setupact.log
2014-09-09 12:47 - 2014-06-29 20:25 - 00000000 ____D () C:\Users\Tim\AppData\Local\LogMeIn Hamachi
2014-09-09 12:47 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-09 02:19 - 2014-09-08 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
2014-09-09 02:19 - 2014-09-08 16:12 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2013
2014-09-09 02:19 - 2014-09-08 16:09 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2014-09-09 02:19 - 2014-09-08 16:09 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-09-09 02:19 - 2014-05-16 15:50 - 00000000 ____D () C:\Windows\Minidump
2014-09-09 02:19 - 2014-03-08 22:38 - 00000000 ____D () C:\Users\Tim\AppData\Roaming\Adobe
2014-09-09 02:19 - 2014-03-08 22:01 - 00000000 ____D () C:\AMD
2014-09-09 02:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-09-09 02:14 - 2014-03-08 22:02 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-09-09 01:35 - 2014-03-08 22:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-09 01:22 - 2014-03-08 21:33 - 00000000 ____D () C:\Users\Tim
2014-09-09 01:14 - 2009-07-14 04:34 - 63176704 _____ () C:\Windows\system32\config\SOFTWARE_tureg_old
2014-09-09 01:14 - 2009-07-14 04:34 - 18612224 _____ () C:\Windows\system32\config\SYSTEM_tureg_old
2014-09-09 01:14 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY_tureg_old
2014-09-09 01:12 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SAM_tureg_old
2014-09-09 01:12 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\DEFAULT_tureg_old
2014-09-09 00:39 - 2014-03-09 04:26 - 00000000 ____D () C:\Windows\Panther
2014-09-08 23:41 - 2014-05-25 17:45 - 00000000 ____D () C:\Users\Tim\AppData\Roaming\.minecraft
2014-09-08 16:12 - 2014-09-08 16:12 - 00000000 ____D () C:\Users\Tim\AppData\Roaming\TuneUp Software
2014-09-08 16:07 - 2014-09-08 16:07 - 28181408 _____ (TuneUp Software) C:\Users\Tim\Downloads\TuneUpUtilities2013_de-DE.exe
2014-09-07 22:58 - 2014-09-07 22:58 - 00006832 ____N () C:\bootsqm.dat
2014-09-07 21:34 - 2014-09-07 21:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-09-07 21:34 - 2014-09-07 21:34 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-09-03 20:10 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-09-03 20:07 - 2014-09-02 20:59 - 00000000 ____D () C:\Windows\pss
2014-09-02 23:21 - 2014-09-02 23:21 - 00002060 _____ () C:\Users\Public\Desktop\Die*Sims™*3.lnk
2014-09-02 23:21 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-09-02 23:17 - 2014-03-08 21:56 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-02 23:12 - 2014-05-29 22:04 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2014-09-02 22:45 - 2014-05-26 18:07 - 00000000 ____D () C:\ProgramData\Origin
2014-09-02 22:44 - 2014-05-26 18:07 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-09-02 22:36 - 2014-09-02 22:36 - 00000560 _____ () C:\Windows\PFRO.log
2014-09-02 21:55 - 2014-09-02 21:55 - 00001189 _____ () C:\Users\Public\Desktop\Peggle.lnk
2014-09-02 21:54 - 2014-05-26 18:09 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-09-02 21:24 - 2014-09-02 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartPCFixer
2014-09-02 21:24 - 2014-09-02 21:24 - 00000000 ____D () C:\Program Files (x86)\SmartPCFixer
2014-09-02 21:23 - 2014-09-02 21:23 - 00002722 _____ () C:\Windows\System32\Tasks\SW_Booster-S-2982133423
2014-09-02 21:23 - 2014-09-02 21:23 - 00000000 ____D () C:\ProgramData\YouTubeAdBlOcckke
2014-09-02 21:23 - 2014-09-02 21:23 - 00000000 ____D () C:\ProgramData\Trusted Publisher
2014-09-02 21:23 - 2014-09-02 21:23 - 00000000 ____D () C:\Program Files (x86)\SW_Booster
2014-09-02 21:23 - 2014-09-02 21:22 - 00000000 ____D () C:\Program Files (x86)\YouTubeAdBlOcckke
2014-09-02 21:22 - 2014-09-02 21:22 - 00000442 __RSH () C:\ProgramData\ntuser.pol
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Tim\AppData\Local\Torch
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Tim\AppData\Local\Comodo
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Tim\AppData\Local\Chromatic Browser
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast\AppData\Local\Torch
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast\AppData\Local\Google
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast\AppData\Local\Comodo
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast\AppData\Local\Chromatic Browser
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Gast
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Users\Administrator
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\ProgramData\priiceuchhOp
2014-09-02 21:22 - 2014-09-02 21:22 - 00000000 ____D () C:\Program Files (x86)\priiceuchhOp
2014-09-02 21:22 - 2014-05-04 22:30 - 00000000 ____D () C:\Users\Tim\AppData\Local\Google
2014-09-02 21:22 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-09-02 21:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-09-02 21:20 - 2014-09-02 21:20 - 00823808 _____ (Of And) C:\Users\Tim\Downloads\smartpc-fixer.exe
2014-09-02 21:19 - 2014-09-02 21:19 - 04874632 _____ (LionSea Software co., ltd ) C:\Users\Tim\Downloads\setup(1).exe
2014-09-02 21:10 - 2014-06-19 19:20 - 00000000 ____D () C:\AdwCleaner
2014-09-02 21:07 - 2014-08-14 22:03 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-09-02 21:06 - 2014-09-02 21:06 - 00000000 ____D () C:\ProgramData\McAfee
2014-09-02 21:06 - 2014-03-08 22:36 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-02 21:06 - 2014-03-08 22:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-02 21:06 - 2014-03-08 22:36 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-02 13:03 - 2014-08-13 11:58 - 00001483 _____ () C:\Users\Public\Desktop\Die Sims 4 Erstelle einen Sim-Demo.lnk
2014-09-02 11:57 - 2014-05-30 16:20 - 00007605 _____ () C:\Users\Tim\AppData\Local\Resmon.ResmonCfg
2014-08-30 11:38 - 2014-08-30 11:38 - 00347816 _____ (Microsoft Corporation) C:\Users\Tim\Downloads\MicrosoftFixit.Devices.Run.exe
2014-08-30 11:27 - 2014-08-17 21:35 - 645296480 _____ () C:\Windows\MEMORY.DMP
2014-08-30 11:15 - 2009-07-14 06:45 - 00267816 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-30 01:44 - 2014-08-30 01:44 - 00275368 _____ () C:\Windows\Minidump\083014-18891-01.dmp
2014-08-29 22:06 - 2014-08-29 22:05 - 00275368 _____ () C:\Windows\Minidump\082914-17222-01.dmp
2014-08-29 21:22 - 2014-08-29 21:22 - 00275368 _____ () C:\Windows\Minidump\082914-22666-01.dmp
2014-08-29 20:52 - 2014-08-29 20:52 - 00275368 _____ () C:\Windows\Minidump\082914-18080-01.dmp
2014-08-23 04:07 - 2014-08-29 19:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 03:45 - 2014-08-29 19:42 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-23 02:59 - 2014-08-29 19:42 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 14:49 - 2014-08-22 14:49 - 00275368 _____ () C:\Windows\Minidump\082214-22089-01.dmp
2014-08-22 14:32 - 2014-08-22 14:31 - 00275368 _____ () C:\Windows\Minidump\082214-23868-01.dmp
2014-08-21 21:55 - 2014-08-21 21:55 - 00275368 _____ () C:\Windows\Minidump\082114-20888-01.dmp
2014-08-21 20:52 - 2014-03-08 23:04 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-19 00:20 - 2014-08-19 00:20 - 00275368 _____ () C:\Windows\Minidump\081914-23228-01.dmp
2014-08-19 00:08 - 2014-08-19 00:08 - 00275368 _____ () C:\Windows\Minidump\081914-25646-01.dmp
2014-08-18 21:04 - 2014-08-18 21:04 - 00275368 _____ () C:\Windows\Minidump\081814-23868-01.dmp
2014-08-18 19:46 - 2014-08-17 19:43 - 525469953 _____ () C:\Users\Tim\Desktop\YGOPro DevPro.zip
2014-08-18 16:02 - 2014-08-18 16:02 - 00275368 _____ () C:\Windows\Minidump\081814-45068-01.dmp
2014-08-17 23:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-08-17 21:35 - 2014-08-17 21:35 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-17 20:29 - 2014-08-17 20:29 - 00000723 _____ () C:\Users\Tim\Downloads\50.ojama.ydk
2014-08-17 20:23 - 2014-08-17 20:23 - 00000736 _____ () C:\Users\Tim\Documents\furnimal.ydk
2014-08-17 19:47 - 2014-08-17 19:47 - 00000967 _____ () C:\Users\Tim\Desktop\TeamSpeak 3 Client.lnk
2014-08-15 12:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-14 23:43 - 2014-05-26 18:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 23:41 - 2014-05-26 18:56 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-14 23:37 - 2014-05-07 18:20 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 22:03 - 2014-08-14 22:03 - 01101648 _____ () C:\Users\Tim\Downloads\BlueScreenView - CHIP-Installer.exe
2014-08-13 11:58 - 2014-08-13 11:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Die Sims 4 Erstelle einen Sim-Demo
2014-08-13 11:58 - 2014-06-17 19:52 - 00000000 ____D () C:\Users\Tim\Documents\Electronic Arts
2014-08-13 11:57 - 2014-03-08 21:48 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-12 22:00 - 2014-06-18 13:28 - 00000000 ____D () C:\Users\Tim\AppData\Roaming\Tropico 5
2014-08-12 14:51 - 2014-08-12 14:19 - 00000000 ____D () C:\Users\Tim\.gimp-2.8
2014-08-12 14:19 - 2014-08-12 14:19 - 00000894 _____ () C:\Users\Tim\Desktop\GIMP 2.lnk
2014-08-12 14:19 - 2014-08-12 14:19 - 00000000 ____D () C:\Users\Tim\AppData\Local\gegl-0.2
2014-08-12 14:19 - 2014-08-12 14:18 - 00000000 ____D () C:\Program Files\GIMP 2
2014-08-12 14:18 - 2014-08-12 14:18 - 00000034 _____ () C:\Users\Tim\Desktop\FOS.txt
2014-08-12 14:17 - 2014-08-12 14:17 - 90396104 _____ (The GIMP Team ) C:\Users\Tim\Downloads\gimp-2.8.10-setup.exe
2014-08-12 13:59 - 2014-08-12 13:56 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-12 13:57 - 2014-08-12 13:57 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-12 13:57 - 2014-08-12 13:57 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-12 13:56 - 2014-08-12 13:56 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-12 12:26 - 2014-08-12 12:26 - 00000000 ____D () C:\Users\Tim\Documents\Firefall
2014-08-12 12:26 - 2014-08-12 12:26 - 00000000 ____D () C:\Users\Tim\AppData\Local\Red 5 Studios
Some content of TEMP:
====================
C:\Users\Tim\AppData\Local\Temp\YgoUpdater.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-08-29 20:07
==================== End Of Log ============================ --- --- ---
--- --- --- Addition.exe
FRST Additions Logfile: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-09-2014 01
Ran by Tim at 2014-09-09 13:25:37
Running from C:\Users\Tim\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.20.100.31101 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1101.1244.20992 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{76E8353E-9CE9-ED86-8631-7FBE17A17C31}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2013.1101.1244.20992 - Ihr Firmenname) Hidden
AMD Problem Report Wizard (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) Hidden
AMD Steady Video Plug-In (Version: 2.06.0000 - AMD) Hidden
AMD USB 3.0 Device Detector (Version: 2.1.29.0 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1101.1244.20992 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1101.1244.20992 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1101.1244.20992 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Desktop (x32 Version: 2013.1101.1244.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1101.1243.20992 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1101.1244.20992 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Die Sims™ 4 Erstelle einen Sim-Demo (HKLM-x32\...\{6908ED99-F02B-4E99-A202-3FAC99C510ED}) (Version: 1.0.237.100 - Electronic Arts Inc.)
Firefall (HKLM-x32\...\Steam App 227700) (Version: - Red 5 Studios)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
HWiNFO32 Version 4.36 (HKLM-x32\...\HWiNFO32_is1) (Version: 4.36 - Martin Malík - REALiX)
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.236 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.236 - LogMeIn, Inc.) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
priiceuchhOp (HKLM-x32\...\{FDB962F0-B5B8-9460-D12F-7966E97BAA43}) (Version: 3.2.0.1382 - pricechop) <==== ATTENTION
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{FE5DFB80-6937-4154-A2C7-EF845C1301F8}) (Version: 1.0.30.1259 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
ReggularDeeAilS (HKLM-x32\...\{76DEE3DC-2B8B-E212-2126-D31D9E73DFE4}) (Version: - RegularrDealuss)
Risk of Rain (HKLM-x32\...\Steam App 248820) (Version: - )
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group)
SmartPCFixer 5.2 (HKLM-x32\...\{2C5927BD-3F65-4207-8FB5-8EDF638A3511}_is1) (Version: 5.2 - LionSea Software co., ltd) <==== ATTENTION
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
SW_Booster (HKLM-x32\...\S-2982133423) (Version: 3.0.0.1326 - PremiumSoft) <==== ATTENTION
SW_Sustainer 1.80 (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{3e9deaca}) (Version: - Certified Publisher) <==== ATTENTION
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Tropico 5 (HKLM-x32\...\Steam App 245620) (Version: - Haemimont Games)
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3000.132 - TuneUp Software) Hidden
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
Worms Revolution (HKLM-x32\...\Steam App 200170) (Version: - Team17 Digital Ltd.)
YouTubeAdBlOcckke (HKLM-x32\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version: 3.1.0.1783 - )
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3986868162-2867927163-642453104-1000_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
==================== Restore Points =========================
21-08-2014 20:07:09 Windows Update
29-08-2014 17:40:26 Windows Update
29-08-2014 23:47:59 Windows Update
02-09-2014 11:20:58 Entfernt The Sims 3
02-09-2014 18:19:40 Windows Update
02-09-2014 20:05:16 Entfernt The Sims 3
02-09-2014 21:14:49 Installiert The Sims 3
03-09-2014 18:36:55 Installiert The Sims 3
07-09-2014 21:33:57 Windows Update
08-09-2014 14:09:38 TuneUp Utilities 2013 wird installiert
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {1038272C-0A04-4687-A943-C1D393D74E58} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {817481F5-0144-463F-AB97-85A9EC2427E5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-02] (Adobe Systems Incorporated)
Task: {A7381A11-F2F9-4BFB-A22E-25F266901703} - System32\Tasks\Driver Booster SkipUAC (Tim) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {BA514455-B71B-4509-B675-0A5368F09B5C} - System32\Tasks\SW_Booster-S-2982133423 => c:\programdata\trusted publisher\sw_booster\SW_Booster.exe [2013-09-02] () <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\SW_Booster-S-2982133423.job => c:\programdata\trusted publisher\sw_booster\SW_Booster.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2014-09-02 21:23 - 2014-09-02 21:23 - 04210176 _____ () C:\Program Files (x86)\SW_Booster\Assistant_x64.dll
2013-09-02 21:23 - 2013-09-02 21:23 - 01082880 _____ () c:\programdata\trusted publisher\sw_booster\SW_Booster.exe
2013-11-01 12:46 - 2013-11-01 12:46 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 06:59 - 2013-07-26 06:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 06:59 - 2013-07-26 06:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-05-31 22:48 - 2014-05-31 22:48 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-02-28 11:14 - 2014-02-28 11:14 - 00173568 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 01080832 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00833024 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-02-28 15:07 - 2014-02-28 15:07 - 00102344 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2014-02-28 15:07 - 2014-02-28 15:07 - 00108488 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00030208 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00233984 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-02-28 15:10 - 2014-02-28 15:10 - 00563656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-02-28 15:10 - 2014-02-28 15:10 - 00577480 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00159232 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2014-09-02 21:23 - 2014-09-02 21:23 - 04296192 _____ () c:\Program Files (x86)\SW_Booster\Assistant.dll
2014-09-02 21:23 - 2014-09-02 21:23 - 00174928 _____ () c:\Program Files (x86)\SW_Booster\AssistantSvc.dll
2014-08-07 18:11 - 2014-07-17 07:42 - 03800688 _____ () c:\program files (x86)\mozilla firefox\mozjs.dll
2014-09-02 21:06 - 2014-09-02 21:06 - 17048240 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Killer Network Manager.lnk => C:\Windows\pss\Killer Network Manager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Packer.exe.lnk => C:\Windows\pss\Packer.exe.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: LOLReplay Recorder => "C:\Program Files (x86)\LOLReplay\LOLRecorder.exe" -minimize
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TeamSpeak 3 Client => "C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/09/2014 01:27:19 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:27:19 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:27:19 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:27:19 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:21:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 31.0.0.5310, Zeitstempel: 0x53c75e91
Name des fehlerhaften Moduls: mozalloc.dll, Version: 31.0.0.5310, Zeitstempel: 0x53c72e91
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000141b
ID des fehlerhaften Prozesses: 0xe14
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (09/09/2014 01:06:01 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:06:01 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:06:01 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:06:01 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 00:56:24 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
System errors:
=============
Error: (09/09/2014 01:27:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 11 Mal passiert.
Error: (09/09/2014 01:27:19 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem Fehler beendet:
%%2
Error: (09/09/2014 01:06:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 10 Mal passiert.
Error: (09/09/2014 01:06:01 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem Fehler beendet:
%%2
Error: (09/09/2014 00:56:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 9 Mal passiert.
Error: (09/09/2014 00:56:24 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem Fehler beendet:
%%2
Error: (09/09/2014 00:56:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 8 Mal passiert.
Error: (09/09/2014 00:56:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem Fehler beendet:
%%2
Error: (09/09/2014 00:49:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 7 Mal passiert.
Error: (09/09/2014 00:49:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem Fehler beendet:
%%2
Microsoft Office Sessions:
=========================
Error: (09/09/2014 01:27:19 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description:
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:27:19 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Kontext: Windows Anwendung
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:27:19 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:27:19 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Search.TripoliIndexer
Error: (09/09/2014 01:21:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe31.0.0.531053c75e91mozalloc.dll31.0.0.531053c72e91800000030000141be1401cfcc1f841d8077C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll68a6a129-3813-11e4-b89a-bc5ff4fd3669
Error: (09/09/2014 01:06:01 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description:
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:06:01 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Kontext: Windows Anwendung
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:06:01 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Error: (09/09/2014 01:06:01 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
Search.TripoliIndexer
Error: (09/09/2014 00:56:24 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description:
Details:
Das System kann die angegebene Datei nicht finden. (HRESULT : 0x80070002) (0x80070002)
==================== Memory info ===========================
Processor: AMD A10-7850K APU with Radeon(TM) R7 Graphics
Percentage of memory in use: 29%
Total physical RAM: 6081.22 MB
Available physical RAM: 4300.62 MB
Total Pagefile: 12162.44 MB
Available Pagefile: 9720.98 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:1397.26 GB) (Free:1278.25 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: 4880CF11)
Partition 1: (Active) - (Size=1397.3 GB) - (Type=07 NTFS)
==================== End Of Log ============================ --- --- --- |