Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'

Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'


Log-Analyse und Auswertung: Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 17.06.2014, 17:48   #1
SetPack
 
Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' - Standard

Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'


Seit mindestens 1 Monat erscheint beim Starten meines PC's (Win7 Prof. 64-bit) immer dieses Fenster


Ich hab mehrfach Scans von ESET NOD32 und Malwarebytes durchführt und es gab paar "gefährliche" Programme, meist Trojaner, aber ob diese für diesen Fehler verantwortlich sind, da bin ich mir nicht sicher.

Wie kann ich dieses Problem beheben, da es vielleicht Ursache anderer Probleme ist.

Danke im Vorraus
SetPack

Alt 17.06.2014, 18:31   #2
M-K-D-B
/// TB-Ausbilder
 
Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' - Standard

Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'





Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.


Bitte beachte folgende Hinweise:
  • Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  • Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  • Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo.
    Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  • Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
  • Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort zu starten!


Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!





Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
Alt 17.06.2014, 20:35   #3
SetPack
 
Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' - Standard

Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'


Hier ist der FRST

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-06-2014
Ran by TuanLeTrung (administrator) on TUANLETRUNG-PC on 17-06-2014 21:29:13
Running from C:\Users\TuanLeTrung\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\vVX1000.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Spotify Ltd) C:\Users\TuanLeTrung\AppData\Roaming\Spotify\spotify.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\3.8.150\SSScheduler.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [VX1000] => C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5581888 2014-02-24] (ESET)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Malwarebytes <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Avira <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\McAfee <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Avira <====== ATTENTION
HKU\S-1-5-21-1235431613-2069701867-2007427622-1000\...\Run: [ngakwge] => regsvr32.exe "
HKU\S-1-5-21-1235431613-2069701867-2007427622-1000\...\Run: [Spotify] => C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Spotify.exe [6170168 2014-05-14] (Spotify Ltd)
HKU\S-1-5-21-1235431613-2069701867-2007427622-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20924576 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1235431613-2069701867-2007427622-1000\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-1235431613-2069701867-2007427622-1001\...\Run: [ngakwge] => regsvr32.exe "
HKU\S-1-5-21-1235431613-2069701867-2007427622-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-1235431613-2069701867-2007427622-1001\...\Run: [Spotify] => C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Spotify.exe [6170168 2014-05-14] (Spotify Ltd)
HKU\S-1-5-21-1235431613-2069701867-2007427622-1001\...\Policies\Explorer: [DisallowRun] 1
AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\\AMAZON~3.DLL => "C:\PROGRA~2\Amazon\AMAZON~1\\AMAZON~3.DLL" File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC95FB5DD9438CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1398549972&from=wld&uid=SamsungXSSDX840XSeries_S19HNSAD699559E&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1398549972&from=wld&uid=SamsungXSSDX840XSeries_S19HNSAD699559E&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=securitascout
SearchScopes: HKCU - URL hxxp://www.trovigo.com/Results.aspx?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP653A5ED8-D6AA-4EEA-932D-D502AC07D183&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=securitascout
BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\TuanLeTrung\AppData\Roaming\Mozilla\Firefox\Profiles\m5k8oc9i.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\TuanLeTrung\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014-05-28]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014-05-28]

Chrome: 
=======
CHR HomePage: hxxp://search.conduit.com/?ctid=CT2122003&octid=EB_ORIGINAL_CTID&SearchSource=61&CUI=&UM=&UP=SP653A5ED8-D6AA-4EEA-932D-D502AC07D183&SSPV=
CHR StartupUrls: "hxxp://google.de/", "https://www.facebook.com/", "https://www.youtube.com/?gl=DE&hl=de"
CHR Extension: (Google Drive) - C:\Users\TuanLeTrung\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-05]
CHR Extension: (YouTube) - C:\Users\TuanLeTrung\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-05]
CHR Extension: (Adblock Plus) - C:\Users\TuanLeTrung\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-04-27]
CHR Extension: (Google-Suche) - C:\Users\TuanLeTrung\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-05]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\TuanLeTrung\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2014-05-11]
CHR Extension: (ProxMate) - C:\Users\TuanLeTrung\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifalmiidchkjjmkkbkoaibpmoeichmki [2014-04-27]
CHR Extension: (Google Wallet) - C:\Users\TuanLeTrung\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-05]
CHR Extension: (Google Mail) - C:\Users\TuanLeTrung\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-05]
CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\TuanLeTrung\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx [2014-04-27]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1343408 2014-02-24] (ESET)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-31] ()

==================== Drivers (Whitelisted) ====================

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [157432 2013-09-17] (ESET)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-17] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X]
R3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-17 21:29 - 2014-06-17 21:29 - 00016270 _____ () C:\Users\TuanLeTrung\Downloads\FRST.txt
2014-06-17 21:29 - 2014-06-17 21:29 - 00000000 ____D () C:\FRST
2014-06-17 20:50 - 2014-06-17 20:50 - 02081280 _____ (Farbar) C:\Users\TuanLeTrung\Downloads\FRST64.exe
2014-06-17 17:58 - 2014-06-17 17:58 - 00002170 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-06-17 17:58 - 2014-06-17 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-17 17:58 - 2014-06-17 17:58 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-06-17 17:58 - 2014-06-17 17:58 - 00000000 ____D () C:\Program Files (x86)\McAfee Security Scan
2014-06-17 17:57 - 2014-06-17 17:57 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-06-17 17:57 - 2014-06-17 17:57 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-06-17 17:57 - 2014-06-17 17:57 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-06-17 17:56 - 2014-06-17 17:56 - 00023829 _____ () C:\Windows\SysWOW64\collectionCache.bnk
2014-06-17 17:52 - 2014-06-17 17:52 - 00004471 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log
2014-06-17 17:52 - 2014-06-17 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-17 17:52 - 2014-05-07 14:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-17 17:51 - 2014-06-17 17:51 - 00918952 _____ (Oracle Corporation) C:\Users\TuanLeTrung\Downloads\chromeinstall-7u60.exe
2014-06-17 09:42 - 2014-06-17 09:42 - 00000119 _____ () C:\Users\TuanLeTrung\Desktop\regfix.reg
2014-06-17 09:38 - 2014-06-17 09:38 - 00006584 _____ () C:\Users\TuanLeTrung\Desktop\attach.txt
2014-06-17 09:38 - 2014-06-17 09:37 - 00021359 _____ () C:\Users\TuanLeTrung\Desktop\dds.txt
2014-06-17 09:37 - 2014-06-17 09:37 - 00700783 ____R (Swearware) C:\Users\TuanLeTrung\Downloads\dds+.exe
2014-06-16 00:42 - 2014-06-16 00:42 - 01186720 _____ () C:\Windows\Minidump\061614-8673-01.dmp
2014-06-12 19:09 - 2014-06-12 19:09 - 00262144 ____N () C:\Windows\Minidump\061214-8533-01.dmp
2014-06-12 19:04 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 19:04 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 19:04 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-12 19:04 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 19:04 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-12 19:04 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-12 19:04 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-12 19:04 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 19:04 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-12 19:04 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-12 19:04 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-12 19:04 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-12 19:04 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-12 19:04 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-12 19:04 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-12 19:04 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 19:04 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 19:04 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-12 19:04 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-12 19:04 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-12 19:04 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 19:04 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-12 19:04 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 19:04 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-12 19:04 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-12 19:04 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-12 19:04 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-12 19:04 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-12 19:04 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-12 19:04 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-12 19:04 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 19:04 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-12 19:04 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-12 19:04 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-12 19:04 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 19:04 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-12 19:04 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-12 19:04 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-12 19:04 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-12 19:04 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-12 19:04 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-12 19:04 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 19:04 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-12 19:04 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-12 19:04 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-12 19:04 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 19:04 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-12 19:04 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 19:04 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-12 19:04 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-12 19:04 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-12 19:04 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-12 19:04 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-12 19:04 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-12 19:04 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 19:04 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-12 19:04 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-12 19:04 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-12 19:04 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-12 19:04 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-12 19:04 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-12 19:04 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-12 19:04 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-12 19:04 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 21:55 - 2014-06-14 20:44 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\TIPP10
2014-06-11 21:54 - 2014-06-11 21:54 - 04441861 _____ ((c) 2006-2011, Tom Thielicke IT Solutions ) C:\Users\TuanLeTrung\Downloads\tipp10_win_v2-1-0.exe
2014-06-11 21:54 - 2014-06-11 21:54 - 00000983 _____ () C:\Users\TuanLeTrung\Desktop\TIPP10.lnk
2014-06-11 21:54 - 2014-06-11 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TIPP10
2014-06-11 21:54 - 2014-06-11 21:54 - 00000000 ____D () C:\Program Files (x86)\Tipp10
2014-06-06 13:44 - 2014-06-06 13:44 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\SniperV2
2014-06-04 18:33 - 2014-06-04 18:50 - 00000000 ____D () C:\Users\TuanLeTrung\Downloads\world
2014-06-04 18:33 - 2014-06-04 18:33 - 10000357 _____ () C:\Users\TuanLeTrung\Downloads\minecraft_server.1.7.9.exe
2014-06-04 18:33 - 2014-06-04 18:33 - 00000665 _____ () C:\Users\TuanLeTrung\Downloads\server.properties
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\whitelist.json
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\usercache.json
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\ops.json
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\banned-players.json
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\banned-ips.json
2014-06-04 18:20 - 2014-06-04 18:20 - 00675988 _____ () C:\Users\TuanLeTrung\Downloads\Minecraft.exe
2014-06-04 09:11 - 2014-06-04 09:11 - 00002562 _____ () C:\Windows\PFRO.log
2014-06-02 19:34 - 2009-11-25 15:56 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmSE.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmID.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmGR.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmFI.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmTR.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmTH.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmNO.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmKR.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmDK.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmAR.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00002048 _____ (Canon Inc.) C:\Windows\system32\CNCFLmTW.DLL
2014-06-02 19:34 - 2009-11-25 15:56 - 00002048 _____ (Canon Inc.) C:\Windows\system32\CNCFLmCN.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmRU.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmPT.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmPL.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmNL.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmIT.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmFR.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmES.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmDE.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmHU.DLL
2014-06-02 19:34 - 2009-11-25 15:55 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmCZ.DLL
2014-06-02 19:34 - 2009-10-22 11:33 - 00343552 _____ (Canon Inc.) C:\Windows\system32\CNCF2Lm.DLL
2014-06-02 19:34 - 2009-10-22 11:30 - 00182272 _____ (Canon Inc.) C:\Windows\system32\CNCFMSm.EXE
2014-06-02 19:34 - 2009-10-22 11:30 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLmUS.DLL
2014-06-02 19:34 - 2009-10-22 11:30 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLmJP.DLL
2014-06-02 19:14 - 2014-06-02 19:14 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information
2014-06-02 19:14 - 2012-03-14 05:00 - 00385024 _____ (CANON INC.) C:\Windows\system32\CNMLMA7.DLL
2014-06-02 19:12 - 2014-06-02 19:12 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-06-02 19:12 - 2014-06-02 19:12 - 00000000 ____D () C:\Program Files (x86)\Canon
2014-06-02 19:11 - 2014-06-02 19:12 - 15900248 _____ () C:\Users\TuanLeTrung\Downloads\ewpx-win-1_4_1-ea23.exe
2014-06-02 00:18 - 2014-06-02 00:18 - 00005439 _____ () C:\Users\TuanLeTrung\Documents\ebb-letters.html
2014-06-01 23:07 - 2014-06-01 23:08 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2014-06-01 23:07 - 2014-06-01 23:07 - 00002514 _____ () C:\Users\TuanLeTrung\Desktop\Windows 7 USB DVD Download Tool.lnk
2014-06-01 23:07 - 2014-06-01 23:07 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2014-06-01 20:05 - 2014-06-01 20:05 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-31 12:40 - 2014-06-17 18:05 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-05-31 12:40 - 2014-05-31 12:40 - 00000000 ____D () C:\Users\TuanLeTrung\Documents\Battlefield 3
2014-05-31 12:40 - 2014-05-31 12:40 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\PunkBuster
2014-05-31 12:40 - 2014-05-31 12:40 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\ESN
2014-05-31 12:39 - 2014-05-31 12:39 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-31 12:38 - 2014-05-31 12:39 - 02247960 _____ () C:\Users\TuanLeTrung\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-31 12:36 - 2014-05-31 12:36 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-31 02:15 - 2014-06-17 18:05 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-05-31 02:15 - 2014-06-17 18:04 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-05-31 02:15 - 2014-05-31 12:45 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-30 22:13 - 2014-06-06 13:35 - 00055723 _____ () C:\Windows\DirectX.log
2014-05-30 20:46 - 2014-05-30 22:05 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-30 20:45 - 2014-06-04 12:21 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Origin
2014-05-30 20:45 - 2014-05-30 20:50 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Origin
2014-05-30 20:42 - 2014-06-17 18:03 - 00000000 ____D () C:\ProgramData\Origin
2014-05-30 20:42 - 2014-06-17 18:03 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-05-30 20:42 - 2014-05-31 12:36 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-05-30 20:42 - 2014-05-30 20:42 - 00000983 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-05-30 20:41 - 2014-05-30 20:41 - 17009768 _____ (Electronic Arts, Inc.) C:\Users\TuanLeTrung\Downloads\OriginThinSetup.exe
2014-05-29 22:46 - 2014-05-29 22:47 - 00002562 _____ () C:\Windows\diagwrn.xml
2014-05-29 22:46 - 2014-05-29 22:47 - 00001908 _____ () C:\Windows\diagerr.xml
2014-05-28 22:37 - 2014-06-17 18:02 - 01075132 _____ () C:\Windows\WindowsUpdate.log
2014-05-28 22:37 - 2014-06-17 17:54 - 00006024 _____ () C:\Windows\setupact.log
2014-05-28 22:37 - 2014-05-29 22:46 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-28 22:30 - 2014-05-28 22:30 - 00000000 ____D () C:\Windows\pss
2014-05-28 22:01 - 2014-05-28 22:01 - 02953096 _____ (ESET) C:\Windows\SysWOW64\%InstallDir%speclean.exe
2014-05-28 21:57 - 2014-05-28 21:58 - 00065804 _____ () C:\Users\TuanLeTrung\Documents\cc_20140528_215755.reg
2014-05-28 21:54 - 2014-05-28 21:54 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-05-28 21:54 - 2014-05-28 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-05-28 21:54 - 2014-05-28 21:54 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-28 21:53 - 2014-05-28 21:54 - 00000000 ____D () C:\Program Files\Unlocker
2014-05-28 21:53 - 2014-05-28 21:53 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-05-28 21:52 - 2014-05-28 21:52 - 04765152 _____ (Piriform Ltd) C:\Users\TuanLeTrung\Downloads\ccsetup411.exe
2014-05-28 17:30 - 2014-05-28 17:30 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\ESET
2014-05-28 14:54 - 2014-05-28 14:54 - 00002012 _____ () C:\Users\TuanLeTrung\Desktop\ESET NOD32 Antivirus.lnk
2014-05-28 14:53 - 2014-05-28 14:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-05-28 14:53 - 2014-05-28 14:53 - 00000000 ____D () C:\ProgramData\ESET
2014-05-28 14:53 - 2014-05-28 14:53 - 00000000 ____D () C:\Program Files\ESET
2014-05-28 14:17 - 2014-05-28 14:40 - 71543132 _____ () C:\Users\TuanLeTrung\Downloads\279.rar
2014-05-28 13:14 - 2014-05-28 13:14 - 00001268 _____ () C:\Users\TuanLeTrung\Desktop\Revo Uninstaller.lnk
2014-05-28 13:14 - 2014-05-28 13:14 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-28 13:13 - 2014-05-28 13:13 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\TuanLeTrung\Downloads\revosetup_CB-DL-Manager [1].exe
2014-05-28 12:58 - 2014-05-28 12:58 - 06209136 _____ (TeamViewer GmbH) C:\Users\TuanLeTrung\Downloads\TeamViewer_Setup_de.exe
2014-05-28 12:58 - 2014-05-28 12:58 - 00001178 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-05-28 12:58 - 2014-05-28 12:58 - 00001166 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-05-28 12:58 - 2014-05-28 12:58 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\TeamViewer
2014-05-28 12:58 - 2014-05-28 12:58 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-05-28 12:09 - 2014-05-28 12:16 - 03154354 _____ () C:\Users\TuanLeTrung\Downloads\kavremover.zip
2014-05-27 18:58 - 2014-05-27 18:58 - 00003112 _____ () C:\Windows\System32\Tasks\{9EB3E47E-C68C-4592-84E5-24D880D1D4F0}
2014-05-27 16:03 - 2014-05-27 16:03 - 00003112 _____ () C:\Windows\System32\Tasks\{61E654A7-05ED-4BD6-940D-96B0C06DFC19}
2014-05-27 14:41 - 2014-05-27 14:41 - 00003112 _____ () C:\Windows\System32\Tasks\{97823271-ABBA-4804-8343-7623B5AFB45F}
2014-05-26 18:43 - 2014-06-17 17:52 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-26 18:43 - 2014-06-06 14:50 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\.minecraft
2014-05-26 18:43 - 2014-05-26 18:43 - 00000000 ____D () C:\ProgramData\APN
2014-05-26 18:41 - 2014-06-17 17:52 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-26 18:41 - 2014-05-26 18:41 - 00000000 ____D () C:\ProgramData\Sun
2014-05-26 18:41 - 2014-05-07 15:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-26 18:41 - 2014-05-07 14:59 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-26 18:41 - 2014-05-07 14:58 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-26 18:40 - 2014-05-26 18:40 - 00921512 _____ (Oracle Corporation) C:\Users\TuanLeTrung\Downloads\chromeinstall-7u55.exe
2014-05-24 23:55 - 2014-05-27 11:37 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Ahri.tw
2014-05-24 17:42 - 2014-05-24 17:42 - 06006874 _____ () C:\Users\TuanLeTrung\Downloads\BaronReplays.exe
2014-05-22 17:01 - 2014-05-22 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2014-05-22 17:00 - 2014-06-12 19:04 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-22 17:00 - 2014-06-12 19:03 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-22 16:25 - 2014-05-22 16:25 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-05-22 16:25 - 2014-05-22 16:25 - 00000000 ____D () C:\Program Files\OBS
2014-05-22 16:25 - 2014-05-22 16:25 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-05-22 15:47 - 2014-05-22 16:26 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\OBS
2014-05-22 15:40 - 2014-05-22 15:40 - 08541018 _____ () C:\Users\TuanLeTrung\Downloads\OBS_0_624b_Installer.exe
2014-05-22 15:09 - 2014-05-22 15:35 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\FFsplit
2014-05-22 15:06 - 2014-05-22 15:06 - 08463565 _____ (FFsplit Team ) C:\Users\TuanLeTrung\Downloads\FFsplit-07023-Full.exe
2014-05-22 15:04 - 2014-05-22 15:05 - 00001760 _____ () C:\Users\TuanLeTrung\Downloads\debug.log
2014-05-22 14:54 - 2014-05-22 15:36 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-05-22 14:54 - 2014-05-22 14:54 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\SplitMediaLabs
2014-05-22 14:54 - 2014-05-22 14:54 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\SplitMediaLabs
2014-05-22 14:54 - 2014-05-22 14:54 - 00000000 ____D () C:\ProgramData\SplitMediaLabs
2014-05-22 14:53 - 2014-05-22 14:53 - 42360392 _____ (SplitMediaLabs) C:\Users\TuanLeTrung\Downloads\xsplit_bc_installer.exe
2014-05-22 13:05 - 2014-05-22 13:05 - 00003114 _____ () C:\Windows\System32\Tasks\{B1D0505A-D65D-4C7E-9CB5-07FA0E3F8FE7}
2014-05-21 15:10 - 2014-05-21 15:10 - 00000000 ____D () C:\Users\TuanLeTrung\Documents\OneNote-Notizbücher
2014-05-21 14:58 - 2014-05-21 14:58 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Publish Providers
2014-05-21 14:53 - 2014-05-21 14:58 - 00002896 _____ () C:\Users\TuanLeTrung\Documents\Vegas Pro registrieren.htm
2014-05-21 14:40 - 2014-05-21 14:40 - 28147000 _____ () C:\Users\TuanLeTrung\Downloads\SonyVegasPro.v12 (1).rar
2014-05-21 14:26 - 2014-05-28 21:57 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Sony
2014-05-21 14:26 - 2014-05-21 14:41 - 00000000 ____D () C:\ProgramData\Sony
2014-05-21 14:26 - 2014-05-21 14:38 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Sony
2014-05-21 14:26 - 2014-05-21 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-05-21 14:26 - 2014-05-21 14:26 - 00000000 ____D () C:\Program Files\Sony
2014-05-21 14:26 - 2014-05-21 14:26 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-05-21 14:24 - 2014-05-21 14:24 - 28147000 _____ () C:\Users\TuanLeTrung\Downloads\SonyVegasPro.v12.rar
2014-05-20 22:33 - 2014-05-20 22:33 - 02629194 _____ () C:\Users\TuanLeTrung\Downloads\Fraps 3.5.99 by Elite48x.rar
2014-05-20 22:33 - 2014-05-20 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-05-20 22:33 - 2014-05-20 22:33 - 00000000 ____D () C:\Fraps
2014-05-20 22:17 - 2014-05-20 22:17 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-20 22:16 - 2014-05-20 22:17 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-05-20 22:16 - 2014-05-20 22:16 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-20 22:16 - 2014-05-20 22:16 - 00000000 ____D () C:\Program Files\Realtek
2014-05-20 22:16 - 2014-05-06 21:20 - 03956056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-05-20 22:16 - 2014-05-06 16:51 - 60955136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-05-20 22:16 - 2014-05-05 15:15 - 01057494 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-05-20 22:16 - 2014-05-02 11:19 - 00033592 _____ () C:\Windows\system32\audioLibVc.dll
2014-05-20 22:16 - 2014-04-30 11:34 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-05-20 22:16 - 2014-04-28 15:48 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-05-20 22:16 - 2014-04-25 13:51 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-05-20 22:16 - 2014-04-25 13:23 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-05-20 22:16 - 2014-04-23 17:51 - 02117424 _____ () C:\Windows\system32\SStudio.dll
2014-05-20 22:16 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2014-05-20 22:16 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-05-20 22:16 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-05-20 22:16 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2014-05-20 22:16 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-05-20 22:16 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-05-20 22:16 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-05-20 22:16 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-05-20 22:16 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-05-20 22:16 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-05-20 22:16 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-05-20 22:16 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2014-05-20 22:16 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-05-20 22:16 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-05-20 22:16 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-05-20 22:16 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-05-20 22:16 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-05-20 22:16 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-05-20 22:16 - 2014-03-28 18:03 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-05-20 22:16 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2014-05-20 22:16 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-05-20 22:16 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-05-20 22:16 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-05-20 22:16 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-05-20 22:16 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-05-20 22:16 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-05-20 22:16 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2014-05-20 22:16 - 2014-02-26 15:16 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-05-20 22:16 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-05-20 22:16 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-05-20 22:16 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2014-05-20 22:16 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-05-20 22:16 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-05-20 22:16 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-05-20 22:16 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-05-20 22:16 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-05-20 22:16 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-05-20 22:16 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-05-20 22:16 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-05-20 22:16 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-05-20 22:16 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-05-20 22:16 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-05-20 22:16 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-05-20 22:16 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2014-05-20 22:16 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-05-20 22:16 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-05-20 22:16 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-05-20 22:16 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-05-20 22:16 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-05-20 22:16 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-05-20 22:16 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-05-20 22:16 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-05-20 22:16 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-05-20 22:16 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-05-20 22:16 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-05-20 22:16 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-05-20 22:16 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-05-20 22:16 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-05-20 22:16 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-05-20 22:16 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-05-20 22:16 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-05-20 22:16 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-05-20 22:16 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-05-20 22:16 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-05-20 22:16 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-05-20 22:16 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-05-20 22:16 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-05-20 22:16 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-05-20 22:16 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-05-20 22:16 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-05-20 22:16 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-05-20 22:16 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-05-20 22:16 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-05-20 22:16 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-05-20 22:16 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-05-20 22:15 - 2014-05-28 11:52 - 00000000 ____D () C:\Program Files\002
2014-05-20 22:04 - 2014-05-20 22:26 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Solveig Multimedia
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 _____ () C:\Users\TuanLeTrung\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-20 21:58 - 2014-05-20 22:26 - 00000000 ____D () C:\Program Files (x86)\HyperCam 3
2014-05-19 17:42 - 2014-05-19 19:32 - 00000000 ____D () C:\Users\TuanLeTrung\Desktop\Abi (jedjo4vh)

==================== One Month Modified Files and Folders =======

2014-06-17 21:29 - 2014-06-17 21:29 - 00016270 _____ () C:\Users\TuanLeTrung\Downloads\FRST.txt
2014-06-17 21:29 - 2014-06-17 21:29 - 00000000 ____D () C:\FRST
2014-06-17 21:29 - 2014-03-05 18:56 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Temp
2014-06-17 21:23 - 2014-04-19 19:12 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-17 21:20 - 2014-03-05 19:04 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-17 21:14 - 2014-05-13 12:09 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Spotify
2014-06-17 21:09 - 2014-03-19 14:29 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Skype
2014-06-17 20:50 - 2014-06-17 20:50 - 02081280 _____ (Farbar) C:\Users\TuanLeTrung\Downloads\FRST64.exe
2014-06-17 20:41 - 2014-04-19 20:12 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-17 19:06 - 2014-03-05 19:19 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Temp
2014-06-17 18:05 - 2014-05-31 12:40 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-06-17 18:05 - 2014-05-31 02:15 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-17 18:04 - 2014-05-31 02:15 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-06-17 18:03 - 2014-05-30 20:42 - 00000000 ____D () C:\ProgramData\Origin
2014-06-17 18:03 - 2014-05-30 20:42 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-17 18:02 - 2014-05-28 22:37 - 01075132 _____ () C:\Windows\WindowsUpdate.log
2014-06-17 17:59 - 2010-11-21 08:50 - 00702964 _____ () C:\Windows\system32\perfh007.dat
2014-06-17 17:59 - 2010-11-21 08:50 - 00150604 _____ () C:\Windows\system32\perfc007.dat
2014-06-17 17:59 - 2009-07-14 07:13 - 01629372 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-17 17:59 - 2009-07-14 06:45 - 00023120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-17 17:59 - 2009-07-14 06:45 - 00023120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-17 17:58 - 2014-06-17 17:58 - 00002170 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-06-17 17:58 - 2014-06-17 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-17 17:58 - 2014-06-17 17:58 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-06-17 17:58 - 2014-06-17 17:58 - 00000000 ____D () C:\Program Files (x86)\McAfee Security Scan
2014-06-17 17:58 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-06-17 17:57 - 2014-06-17 17:57 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-06-17 17:57 - 2014-06-17 17:57 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-06-17 17:57 - 2014-06-17 17:57 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-06-17 17:57 - 2014-03-12 16:56 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-17 17:56 - 2014-06-17 17:56 - 00023829 _____ () C:\Windows\SysWOW64\collectionCache.bnk
2014-06-17 17:54 - 2014-05-28 22:37 - 00006024 _____ () C:\Windows\setupact.log
2014-06-17 17:54 - 2014-04-19 22:06 - 00003758 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-06-17 17:54 - 2014-03-05 19:19 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-17 17:54 - 2014-03-05 19:04 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-17 17:54 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-17 17:52 - 2014-06-17 17:52 - 00004471 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log
2014-06-17 17:52 - 2014-06-17 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-17 17:52 - 2014-05-26 18:43 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-17 17:52 - 2014-05-26 18:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-17 17:51 - 2014-06-17 17:51 - 00918952 _____ (Oracle Corporation) C:\Users\TuanLeTrung\Downloads\chromeinstall-7u60.exe
2014-06-17 09:42 - 2014-06-17 09:42 - 00000119 _____ () C:\Users\TuanLeTrung\Desktop\regfix.reg
2014-06-17 09:42 - 2014-04-19 20:12 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-06-17 09:42 - 2014-04-19 20:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-06-17 09:42 - 2014-04-19 20:12 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-17 09:38 - 2014-06-17 09:38 - 00006584 _____ () C:\Users\TuanLeTrung\Desktop\attach.txt
2014-06-17 09:37 - 2014-06-17 09:38 - 00021359 _____ () C:\Users\TuanLeTrung\Desktop\dds.txt
2014-06-17 09:37 - 2014-06-17 09:37 - 00700783 ____R (Swearware) C:\Users\TuanLeTrung\Downloads\dds+.exe
2014-06-16 17:28 - 2014-05-13 12:10 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Spotify
2014-06-16 00:42 - 2014-06-16 00:42 - 01186720 _____ () C:\Windows\Minidump\061614-8673-01.dmp
2014-06-16 00:42 - 2014-04-20 16:28 - 00000000 ____D () C:\Windows\Minidump
2014-06-15 21:57 - 2014-03-05 19:58 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\PMB Files
2014-06-15 21:57 - 2014-03-05 19:58 - 00000000 ____D () C:\ProgramData\PMB Files
2014-06-14 20:44 - 2014-06-11 21:55 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\TIPP10
2014-06-14 00:52 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-12 21:35 - 2014-05-06 10:17 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 19:09 - 2014-06-12 19:09 - 00262144 ____N () C:\Windows\Minidump\061214-8533-01.dmp
2014-06-12 19:04 - 2014-05-22 17:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 19:03 - 2014-05-22 17:00 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 21:54 - 2014-06-11 21:54 - 04441861 _____ ((c) 2006-2011, Tom Thielicke IT Solutions ) C:\Users\TuanLeTrung\Downloads\tipp10_win_v2-1-0.exe
2014-06-11 21:54 - 2014-06-11 21:54 - 00000983 _____ () C:\Users\TuanLeTrung\Desktop\TIPP10.lnk
2014-06-11 21:54 - 2014-06-11 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TIPP10
2014-06-11 21:54 - 2014-06-11 21:54 - 00000000 ____D () C:\Program Files (x86)\Tipp10
2014-06-11 20:22 - 2014-03-05 19:05 - 00002377 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-06 14:50 - 2014-05-26 18:43 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\.minecraft
2014-06-06 13:44 - 2014-06-06 13:44 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\SniperV2
2014-06-06 13:35 - 2014-05-30 22:13 - 00055723 _____ () C:\Windows\DirectX.log
2014-06-05 19:32 - 2014-03-05 19:02 - 00000000 ____D () C:\Users\TuanLeTrung\Desktop\Tuan
2014-06-04 18:50 - 2014-06-04 18:33 - 00000000 ____D () C:\Users\TuanLeTrung\Downloads\world
2014-06-04 18:33 - 2014-06-04 18:33 - 10000357 _____ () C:\Users\TuanLeTrung\Downloads\minecraft_server.1.7.9.exe
2014-06-04 18:33 - 2014-06-04 18:33 - 00000665 _____ () C:\Users\TuanLeTrung\Downloads\server.properties
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\whitelist.json
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\usercache.json
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\ops.json
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\banned-players.json
2014-06-04 18:33 - 2014-06-04 18:33 - 00000002 _____ () C:\Users\TuanLeTrung\Downloads\banned-ips.json
2014-06-04 18:20 - 2014-06-04 18:20 - 00675988 _____ () C:\Users\TuanLeTrung\Downloads\Minecraft.exe
2014-06-04 12:21 - 2014-05-30 20:45 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Origin
2014-06-04 09:11 - 2014-06-04 09:11 - 00002562 _____ () C:\Windows\PFRO.log
2014-06-02 19:14 - 2014-06-02 19:14 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information
2014-06-02 19:12 - 2014-06-02 19:12 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-06-02 19:12 - 2014-06-02 19:12 - 00000000 ____D () C:\Program Files (x86)\Canon
2014-06-02 19:12 - 2014-06-02 19:11 - 15900248 _____ () C:\Users\TuanLeTrung\Downloads\ewpx-win-1_4_1-ea23.exe
2014-06-02 00:18 - 2014-06-02 00:18 - 00005439 _____ () C:\Users\TuanLeTrung\Documents\ebb-letters.html
2014-06-01 23:08 - 2014-06-01 23:07 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2014-06-01 23:07 - 2014-06-01 23:07 - 00002514 _____ () C:\Users\TuanLeTrung\Desktop\Windows 7 USB DVD Download Tool.lnk
2014-06-01 23:07 - 2014-06-01 23:07 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2014-06-01 20:05 - 2014-06-01 20:05 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-31 12:45 - 2014-05-31 02:15 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-31 12:40 - 2014-05-31 12:40 - 00000000 ____D () C:\Users\TuanLeTrung\Documents\Battlefield 3
2014-05-31 12:40 - 2014-05-31 12:40 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\PunkBuster
2014-05-31 12:40 - 2014-05-31 12:40 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\ESN
2014-05-31 12:39 - 2014-05-31 12:39 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-31 12:39 - 2014-05-31 12:38 - 02247960 _____ () C:\Users\TuanLeTrung\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-31 12:36 - 2014-05-31 12:36 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-31 12:36 - 2014-05-30 20:42 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-05-31 02:16 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-30 22:05 - 2014-05-30 20:46 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-30 21:03 - 2014-03-05 19:58 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\uTorrent
2014-05-30 20:50 - 2014-05-30 20:45 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Origin
2014-05-30 20:42 - 2014-05-30 20:42 - 00000983 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-05-30 20:41 - 2014-05-30 20:41 - 17009768 _____ (Electronic Arts, Inc.) C:\Users\TuanLeTrung\Downloads\OriginThinSetup.exe
2014-05-30 12:21 - 2014-06-12 19:04 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-12 19:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-12 19:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-12 19:04 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-12 19:04 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:39 - 2014-06-12 19:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:38 - 2014-06-12 19:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-12 19:04 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-12 19:04 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-12 19:04 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-12 19:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-12 19:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-12 19:04 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-12 19:04 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-12 19:04 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-12 19:04 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-12 19:04 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-12 19:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-12 19:04 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-12 19:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-12 19:04 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-12 19:04 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-12 19:04 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-12 19:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-12 19:04 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-12 19:04 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-12 19:04 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-12 19:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-12 19:04 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-12 19:04 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-12 19:04 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-12 19:04 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-12 19:04 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-12 19:04 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-12 19:04 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-12 19:04 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-12 19:04 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-12 19:04 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-12 19:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-12 19:04 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-12 19:04 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-12 19:04 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-12 19:04 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-12 19:04 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-12 19:04 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-12 19:04 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-12 19:04 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-12 19:04 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-12 19:04 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-12 19:04 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-12 19:04 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 09:13 - 2014-06-12 19:04 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-29 22:47 - 2014-05-29 22:46 - 00002562 _____ () C:\Windows\diagwrn.xml
2014-05-29 22:47 - 2014-05-29 22:46 - 00001908 _____ () C:\Windows\diagerr.xml
2014-05-29 22:46 - 2014-05-28 22:37 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-28 22:30 - 2014-05-28 22:30 - 00000000 ____D () C:\Windows\pss
2014-05-28 22:01 - 2014-05-28 22:01 - 02953096 _____ (ESET) C:\Windows\SysWOW64\%InstallDir%speclean.exe
2014-05-28 21:58 - 2014-05-28 21:57 - 00065804 _____ () C:\Users\TuanLeTrung\Documents\cc_20140528_215755.reg
2014-05-28 21:57 - 2014-05-21 14:26 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Sony
2014-05-28 21:57 - 2014-03-05 18:52 - 00000000 ____D () C:\Windows\Panther
2014-05-28 21:54 - 2014-05-28 21:54 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-05-28 21:54 - 2014-05-28 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-05-28 21:54 - 2014-05-28 21:54 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-28 21:54 - 2014-05-28 21:53 - 00000000 ____D () C:\Program Files\Unlocker
2014-05-28 21:53 - 2014-05-28 21:53 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-05-28 21:52 - 2014-05-28 21:52 - 04765152 _____ (Piriform Ltd) C:\Users\TuanLeTrung\Downloads\ccsetup411.exe
2014-05-28 17:30 - 2014-05-28 17:30 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\ESET
2014-05-28 14:54 - 2014-05-28 14:54 - 00002012 _____ () C:\Users\TuanLeTrung\Desktop\ESET NOD32 Antivirus.lnk
2014-05-28 14:53 - 2014-05-28 14:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-05-28 14:53 - 2014-05-28 14:53 - 00000000 ____D () C:\ProgramData\ESET
2014-05-28 14:53 - 2014-05-28 14:53 - 00000000 ____D () C:\Program Files\ESET
2014-05-28 14:51 - 2014-03-05 20:04 - 00000000 ____D () C:\ProgramData\Avira
2014-05-28 14:51 - 2014-03-05 19:08 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-28 14:40 - 2014-05-28 14:17 - 71543132 _____ () C:\Users\TuanLeTrung\Downloads\279.rar
2014-05-28 13:16 - 2014-03-05 20:13 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Avira
2014-05-28 13:14 - 2014-05-28 13:14 - 00001268 _____ () C:\Users\TuanLeTrung\Desktop\Revo Uninstaller.lnk
2014-05-28 13:14 - 2014-05-28 13:14 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-28 13:13 - 2014-05-28 13:13 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\TuanLeTrung\Downloads\revosetup_CB-DL-Manager [1].exe
2014-05-28 13:07 - 2014-03-05 19:04 - 00109296 _____ () C:\Users\TuanLeTrung\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-28 13:00 - 2014-04-19 22:06 - 00000000 ____D () C:\Windows\AutoKMS
2014-05-28 13:00 - 2009-07-14 06:45 - 00415048 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-28 12:58 - 2014-05-28 12:58 - 06209136 _____ (TeamViewer GmbH) C:\Users\TuanLeTrung\Downloads\TeamViewer_Setup_de.exe
2014-05-28 12:58 - 2014-05-28 12:58 - 00001178 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-05-28 12:58 - 2014-05-28 12:58 - 00001166 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-05-28 12:58 - 2014-05-28 12:58 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\TeamViewer
2014-05-28 12:58 - 2014-05-28 12:58 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-05-28 12:16 - 2014-05-28 12:09 - 03154354 _____ () C:\Users\TuanLeTrung\Downloads\kavremover.zip
2014-05-28 11:52 - 2014-05-20 22:15 - 00000000 ____D () C:\Program Files\002
2014-05-27 18:58 - 2014-05-27 18:58 - 00003112 _____ () C:\Windows\System32\Tasks\{9EB3E47E-C68C-4592-84E5-24D880D1D4F0}
2014-05-27 16:03 - 2014-05-27 16:03 - 00003112 _____ () C:\Windows\System32\Tasks\{61E654A7-05ED-4BD6-940D-96B0C06DFC19}
2014-05-27 15:49 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-05-27 14:41 - 2014-05-27 14:41 - 00003112 _____ () C:\Windows\System32\Tasks\{97823271-ABBA-4804-8343-7623B5AFB45F}
2014-05-27 11:37 - 2014-05-24 23:55 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Ahri.tw
2014-05-26 18:43 - 2014-05-26 18:43 - 00000000 ____D () C:\ProgramData\APN
2014-05-26 18:41 - 2014-05-26 18:41 - 00000000 ____D () C:\ProgramData\Sun
2014-05-26 18:40 - 2014-05-26 18:40 - 00921512 _____ (Oracle Corporation) C:\Users\TuanLeTrung\Downloads\chromeinstall-7u55.exe
2014-05-24 17:42 - 2014-05-24 17:42 - 06006874 _____ () C:\Users\TuanLeTrung\Downloads\BaronReplays.exe
2014-05-22 17:01 - 2014-05-22 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2014-05-22 17:01 - 2014-05-06 10:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-05-22 16:26 - 2014-05-22 15:47 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\OBS
2014-05-22 16:25 - 2014-05-22 16:25 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-05-22 16:25 - 2014-05-22 16:25 - 00000000 ____D () C:\Program Files\OBS
2014-05-22 16:25 - 2014-05-22 16:25 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-05-22 15:40 - 2014-05-22 15:40 - 08541018 _____ () C:\Users\TuanLeTrung\Downloads\OBS_0_624b_Installer.exe
2014-05-22 15:36 - 2014-05-22 14:54 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-05-22 15:35 - 2014-05-22 15:09 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\FFsplit
2014-05-22 15:06 - 2014-05-22 15:06 - 08463565 _____ (FFsplit Team ) C:\Users\TuanLeTrung\Downloads\FFsplit-07023-Full.exe
2014-05-22 15:05 - 2014-05-22 15:04 - 00001760 _____ () C:\Users\TuanLeTrung\Downloads\debug.log
2014-05-22 14:54 - 2014-05-22 14:54 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\SplitMediaLabs
2014-05-22 14:54 - 2014-05-22 14:54 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\SplitMediaLabs
2014-05-22 14:54 - 2014-05-22 14:54 - 00000000 ____D () C:\ProgramData\SplitMediaLabs
2014-05-22 14:53 - 2014-05-22 14:53 - 42360392 _____ (SplitMediaLabs) C:\Users\TuanLeTrung\Downloads\xsplit_bc_installer.exe
2014-05-22 13:05 - 2014-05-22 13:05 - 00003114 _____ () C:\Windows\System32\Tasks\{B1D0505A-D65D-4C7E-9CB5-07FA0E3F8FE7}
2014-05-21 15:10 - 2014-05-21 15:10 - 00000000 ____D () C:\Users\TuanLeTrung\Documents\OneNote-Notizbücher
2014-05-21 15:10 - 2014-04-19 19:44 - 00000000 ___RD () C:\Users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-21 14:58 - 2014-05-21 14:58 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Publish Providers
2014-05-21 14:58 - 2014-05-21 14:53 - 00002896 _____ () C:\Users\TuanLeTrung\Documents\Vegas Pro registrieren.htm
2014-05-21 14:58 - 2014-04-26 15:25 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\NVIDIA
2014-05-21 14:45 - 2014-05-11 01:54 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-05-21 14:41 - 2014-05-21 14:26 - 00000000 ____D () C:\ProgramData\Sony
2014-05-21 14:40 - 2014-05-21 14:40 - 28147000 _____ () C:\Users\TuanLeTrung\Downloads\SonyVegasPro.v12 (1).rar
2014-05-21 14:38 - 2014-05-21 14:26 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Local\Sony
2014-05-21 14:26 - 2014-05-21 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-05-21 14:26 - 2014-05-21 14:26 - 00000000 ____D () C:\Program Files\Sony
2014-05-21 14:26 - 2014-05-21 14:26 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-05-21 14:24 - 2014-05-21 14:24 - 28147000 _____ () C:\Users\TuanLeTrung\Downloads\SonyVegasPro.v12.rar
2014-05-20 22:33 - 2014-05-20 22:33 - 02629194 _____ () C:\Users\TuanLeTrung\Downloads\Fraps 3.5.99 by Elite48x.rar
2014-05-20 22:33 - 2014-05-20 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-05-20 22:33 - 2014-05-20 22:33 - 00000000 ____D () C:\Fraps
2014-05-20 22:26 - 2014-05-20 22:04 - 00000000 ____D () C:\Users\TuanLeTrung\AppData\Roaming\Solveig Multimedia
2014-05-20 22:26 - 2014-05-20 21:58 - 00000000 ____D () C:\Program Files (x86)\HyperCam 3
2014-05-20 22:17 - 2014-05-20 22:17 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-20 22:17 - 2014-05-20 22:16 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-05-20 22:16 - 2014-05-20 22:16 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-20 22:16 - 2014-05-20 22:16 - 00000000 ____D () C:\Program Files\Realtek
2014-05-20 22:16 - 2014-03-05 18:59 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-20 22:16 - 2014-03-05 18:59 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-05-20 22:15 - 2014-04-27 18:41 - 00000000 ____D () C:\temp
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 _____ () C:\Users\TuanLeTrung\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-20 10:37 - 2014-03-05 20:07 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-05-20 10:37 - 2014-03-05 20:07 - 00112080 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-05-19 19:32 - 2014-05-19 17:42 - 00000000 ____D () C:\Users\TuanLeTrung\Desktop\Abi (jedjo4vh)

Some content of TEMP:
====================
C:\Users\TuanLeTrung\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-10 15:10

==================== End Of Log ============================
--- --- ---


und der Addition
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-06-2014
Ran by TuanLeTrung at 2014-06-17 21:29:45
Running from C:\Users\TuanLeTrung\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon MX870 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX870_series) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
ESET NOD32 Antivirus (HKLM\...\{EDD78A07-776B-417C-817B-35BB00F12EBF}) (Version: 7.0.317.4 - ESET, spol s r. o.)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Corporation (Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft Corporation (x32 Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
NVIDIA 3D Vision Treiber 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Grafiktreiber 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden
NVIDIA Update 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.15.2 - NVIDIA Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version:  - )
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Spotify (HKCU\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.28223 - TeamViewer)
TIPP10 Version 2.1.0 (HKLM-x32\...\TIPP10_is1) (Version:  - (c) 2006-2011, Tom Thielicke IT Solutions)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2881065) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B7EF38F7-1D58-4085-A9A4-0F6C69A5AA1E}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BE94768F-5232-11E3-BD78-F04DA23A5C58}) (Version: 12.0.770 - Sony)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version:  - Wargaming.net)

==================== Restore Points  =========================

06-06-2014 11:34:51 DirectX wurde installiert
12-06-2014 17:02:35 Windows Update
12-06-2014 19:34:10 Windows Update
17-06-2014 15:52:14 Installed Java 7 Update 60

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {28DB0C08-8568-4E99-839C-4635E158AF56} - \RegClean Pro No Task File <==== ATTENTION
Task: {32F7EF0C-983E-4283-A7DE-CC649C5828C8} - System32\Tasks\{61E654A7-05ED-4BD6-940D-96B0C06DFC19} => Chrome.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {33633A6C-7F79-45A9-A823-B15AC7B1352A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-19] (Adobe Systems Incorporated)
Task: {33DE6904-79D0-4569-8C85-9F71F22A3F6E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)
Task: {56544156-D32E-46BE-983B-3190F63979D6} - \MySearchDial No Task File <==== ATTENTION
Task: {66B6D7B4-2722-4931-91E3-1A0606405E26} - \RegClean Pro_UPDATES No Task File <==== ATTENTION
Task: {79351736-A368-47B3-B2A8-57485DBBEDB0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05] (Google Inc.)
Task: {812A2BAF-D7BF-4248-B13D-46A4E9BCCA6E} - \Re-markit Update No Task File <==== ATTENTION
Task: {9514E30D-7411-48C8-929B-ED3BE8915B2F} - System32\Tasks\{9EB3E47E-C68C-4592-84E5-24D880D1D4F0} => Chrome.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {9D4C075B-5A56-431B-82BF-138D519E1304} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {A218E260-EF05-43E7-A18F-EE550A5E8DE6} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2014-04-19] ()
Task: {A38F7D76-3CCF-4757-9C19-D2A0A58AF36E} - \RegClean Pro_DEFAULT No Task File <==== ATTENTION
Task: {B6F9CD98-EFB5-4F88-B69E-D88DBC931B83} - System32\Tasks\{97823271-ABBA-4804-8343-7623B5AFB45F} => Chrome.exe hxxp://ui.skype.com/ui/0/6.16.0.105/de/go/help.faq.installer?LastError=1638
Task: {B8927C1B-DAA8-4509-9EA2-43E9479808C8} - \Re-markit_wd No Task File <==== ATTENTION
Task: {C390200E-7F23-4FA2-ABAA-C9237101CA00} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {D12D1CDF-2893-4FF9-AF8A-BCE6B0D60178} - System32\Tasks\{B1D0505A-D65D-4C7E-9CB5-07FA0E3F8FE7} => Chrome.exe hxxp://ui.skype.com/ui/0/6.16.59.105/de/go/help.faq.installer?LastError=1638
Task: {F6C76D17-54CB-4840-B783-CD78D2FCC2A8} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {FFD61385-F93A-4947-98AD-B176473E16F1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-03-05 19:18 - 2013-10-23 10:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-31 02:15 - 2014-05-31 12:45 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-13 12:10 - 2014-05-14 15:34 - 00598072 _____ () C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-13 12:10 - 2014-05-14 15:34 - 36966968 _____ () C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\libcef.dll
2014-05-13 12:10 - 2014-05-14 15:34 - 00886840 _____ () C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\libglesv2.dll
2014-05-13 12:10 - 2014-05-14 15:34 - 00108600 _____ () C:\Users\TuanLeTrung\AppData\Roaming\Spotify\Data\libegl.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 00237384 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2014-05-30 20:45 - 2014-05-30 20:45 - 00962560 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2014-05-30 20:44 - 2014-05-30 20:44 - 00024064 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2014-05-30 20:44 - 2014-05-30 20:44 - 00025088 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2014-05-30 20:44 - 2014-05-30 20:44 - 00217088 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2014-05-30 20:44 - 2014-05-30 20:44 - 00261632 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2014-05-30 20:44 - 2014-05-30 20:44 - 00019968 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2014-05-30 20:44 - 2014-05-30 20:44 - 00302592 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2014-05-30 20:44 - 2014-05-30 20:44 - 00018944 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2014-06-11 20:22 - 2014-06-05 15:58 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
2014-06-11 20:22 - 2014-06-05 15:58 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
2014-06-11 20:22 - 2014-06-05 15:58 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-06-11 20:22 - 2014-06-05 15:58 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-06-11 20:22 - 2014-06-05 15:58 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
2014-06-11 20:22 - 2014-06-05 15:58 - 14612296 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/17/2014 05:56:05 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/17/2014 03:01:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/17/2014 00:48:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/17/2014 10:01:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/17/2014 09:35:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 11:01:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 05:30:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 00:43:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 00:44:08 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/15/2014 04:51:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (06/16/2014 09:25:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (06/16/2014 09:25:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (06/16/2014 00:42:17 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000009f (0x0000000000000003, 0xfffffa80029b0060, 0xfffff800043cc518, 0xfffffa8004cbe500)C:\Windows\MEMORY.DMP061614-8673-01

Error: (06/15/2014 11:47:16 PM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: \Device\Video5!051d(2528)

Error: (06/12/2014 07:09:31 PM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 20) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Komponente: AMD Northbridge
Fehlerquelle: 3
Fehlertyp: 7
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (06/12/2014 07:09:26 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x00000124 (0x0000000000000000, 0xfffffa8002ee38f8, 0x0000000000000000, 0x0000000000000000)C:\Windows\Minidump\061214-8533-01.dmp061214-8533-01

Error: (06/12/2014 07:09:25 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎12.‎06.‎2014 um 19:07:43 unerwartet heruntergefahren.

Error: (05/28/2014 10:37:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/28/2014 10:37:12 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

Error: (05/28/2014 10:36:24 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {3EB3C877-1F16-487C-9050-104DBCD66683}


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 73%
Total physical RAM: 3326.12 MB
Available physical RAM: 868.01 MB
Total Pagefile: 6650.41 MB
Available Pagefile: 3452.42 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:24.78 GB) NTFS
Drive i: (Seagate Expansion Drive) (Fixed) (Total:931.51 GB) (Free:887.7 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: 208A68D2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=112 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 932 GB) (Disk ID: 90A5A8B5)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

==================== End Of Log ============================
__________________
Alt 18.06.2014, 08:57   #4
M-K-D-B
/// TB-Ausbilder
 
Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' - Standard

Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'


Alle Tools auf den Desktop downloaden bzw. dorthin verschieben und vom Desktop starten, da unsere Anleitungen daraufhin ausgelegt sind.
Zudem lassen sich dann am Ende der Bereinigung alle verwendeten Tools sehr einfach entfernen.





Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.
Alt 20.06.2014, 18:52   #5
SetPack
 
Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' - Standard

Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'


Der Combofix.txt
Code:
ATTFilter
ComboFix 14-06-19.01 - TuanLeTrung 20.06.2014  19:18:43.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.3326.893 [GMT 2:00]
ausgeführt von:: c:\users\TuanLeTrung\Downloads\ComboFix.exe
AV: ESET NOD32 Antivirus 7.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: ESET NOD32 Antivirus 7.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\TuanLeTrung\AppData\Local\Microsoft\Windows\Temporary Internet Files\Mylink.url
c:\windows\SysWow64\SET5D6C.tmp
c:\windows\SysWow64\SET5EEB.tmp
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-05-20 bis 2014-06-20  ))))))))))))))))))))))))))))))
.
.
2014-06-20 17:28 . 2014-06-20 17:28	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2014-06-20 17:28 . 2014-06-20 17:28	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-06-19 21:25 . 2014-06-19 21:25	--------	d-----w-	c:\program files\McAfee Security Scan
2014-06-17 19:29 . 2014-06-17 19:33	--------	d-----w-	C:\FRST
2014-06-17 15:58 . 2014-06-19 21:25	--------	d-----w-	c:\programdata\McAfee Security Scan
2014-06-17 15:57 . 2014-06-17 15:57	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2014-06-17 15:52 . 2014-06-17 15:52	--------	d-----w-	c:\program files (x86)\Common Files\Java
2014-06-11 19:55 . 2014-06-14 18:44	--------	d-----w-	c:\users\TuanLeTrung\AppData\Roaming\TIPP10
2014-06-11 19:54 . 2014-06-11 19:54	--------	d-----w-	c:\program files (x86)\Tipp10
2014-06-06 11:44 . 2014-06-06 11:44	--------	d-----w-	c:\users\TuanLeTrung\AppData\Local\SniperV2
2014-06-02 17:14 . 2014-06-02 17:14	--------	d--h--w-	c:\windows\system32\CanonIJ Uninstaller Information
2014-06-02 17:14 . 2012-03-14 03:00	99840	----a-w-	c:\windows\system32\Spool\prtprocs\x64\CNMPPA7.DLL
2014-06-02 17:14 . 2012-03-14 03:00	30208	----a-w-	c:\windows\system32\Spool\prtprocs\x64\CNMPDA7.DLL
2014-06-02 17:14 . 2012-03-14 03:00	385024	----a-w-	c:\windows\system32\CNMLMA7.DLL
2014-06-02 17:12 . 2014-06-02 17:12	--------	d--h--w-	c:\programdata\CanonBJ
2014-06-02 17:12 . 2014-06-02 17:12	--------	d-----w-	c:\program files (x86)\Canon
2014-06-01 21:07 . 2014-06-01 21:07	119808	----a-r-	c:\users\TuanLeTrung\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2014-06-01 18:05 . 2014-06-01 18:05	--------	d-----w-	c:\programdata\PopCap Games
2014-05-31 10:40 . 2014-06-17 16:05	290184	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2014-05-31 10:40 . 2014-05-31 10:40	--------	d-----w-	c:\users\TuanLeTrung\AppData\Local\PunkBuster
2014-05-31 10:40 . 2014-05-31 10:40	--------	d-----w-	c:\users\TuanLeTrung\AppData\Local\ESN
2014-05-31 10:39 . 2014-05-31 10:39	--------	d-----w-	c:\program files (x86)\Battlelog Web Plugins
2014-05-31 10:36 . 2014-05-31 10:36	--------	d-----w-	c:\programdata\EA Core
2014-05-31 10:36 . 2014-05-31 10:56	--------	d-----w-	c:\programdata\EA Logs
2014-05-31 00:15 . 2014-06-17 16:05	290184	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2014-05-31 00:15 . 2014-06-17 16:04	280904	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2014-05-31 00:15 . 2014-05-31 10:45	76888	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2014-05-30 20:14 . 2014-05-31 00:16	--------	d--h--w-	c:\program files (x86)\Common Files\EAInstaller
2014-05-30 18:46 . 2014-05-30 20:05	--------	d-----w-	c:\program files (x86)\Origin Games
2014-05-30 18:45 . 2014-06-04 10:21	--------	d-----w-	c:\users\TuanLeTrung\AppData\Roaming\Origin
2014-05-30 18:45 . 2014-05-30 18:50	--------	d-----w-	c:\users\TuanLeTrung\AppData\Local\Origin
2014-05-30 18:42 . 2014-06-17 20:58	--------	d-----w-	c:\programdata\Origin
2014-05-30 18:42 . 2014-05-31 10:36	--------	d-----w-	c:\programdata\Electronic Arts
2014-05-30 18:42 . 2014-06-17 16:03	--------	d-----w-	c:\program files (x86)\Origin
2014-05-28 20:01 . 2014-05-28 20:01	2953096	----a-w-	c:\windows\SysWow64\%InstallDir%speclean.exe
2014-05-28 19:54 . 2014-05-28 19:54	--------	d-----w-	c:\program files\CCleaner
2014-05-28 19:53 . 2014-05-28 19:54	--------	d-----w-	c:\program files\Unlocker
2014-05-28 15:30 . 2014-05-28 15:30	--------	d-----w-	c:\users\TuanLeTrung\AppData\Local\ESET
2014-05-28 12:53 . 2014-05-28 12:53	--------	d-----w-	c:\program files\ESET
2014-05-28 11:14 . 2014-05-28 11:14	--------	d-----w-	c:\program files (x86)\VS Revo Group
2014-05-28 10:58 . 2014-05-28 10:58	--------	d-----w-	c:\users\TuanLeTrung\AppData\Roaming\TeamViewer
2014-05-28 10:58 . 2014-05-28 10:58	--------	d-----w-	c:\program files (x86)\TeamViewer
2014-05-28 09:42 . 2014-05-19 23:26	10702536	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{39D58E09-5032-4970-8E62-95F7C2ACB5EA}\mpengine.dll
2014-05-26 16:43 . 2014-05-26 16:43	--------	d-----w-	c:\programdata\APN
2014-05-26 16:43 . 2014-06-06 12:50	--------	d-----w-	c:\users\TuanLeTrung\AppData\Roaming\.minecraft
2014-05-26 16:43 . 2014-06-17 15:52	--------	d-----w-	c:\programdata\Oracle
2014-05-26 16:41 . 2014-05-07 13:02	98216	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-05-26 16:41 . 2014-06-17 15:52	--------	d-----w-	c:\program files (x86)\Java
2014-05-24 21:55 . 2014-05-27 09:37	--------	d-----w-	c:\users\TuanLeTrung\AppData\Local\Ahri.tw
2014-05-22 15:01 . 2014-05-22 15:01	--------	d-----w-	c:\program files (x86)\Microsoft
2014-05-22 15:00 . 2014-06-12 17:04	--------	d-----w-	c:\windows\system32\MRT
2014-05-22 14:25 . 2014-05-22 14:25	--------	d-----w-	c:\program files\OBS
2014-05-22 14:25 . 2014-05-22 14:25	--------	d-----w-	c:\program files (x86)\OBS
2014-05-22 13:47 . 2014-05-22 14:26	--------	d-----w-	c:\users\TuanLeTrung\AppData\Roaming\OBS
2014-05-22 13:09 . 2014-05-22 13:35	--------	d-----w-	c:\users\TuanLeTrung\AppData\Roaming\FFsplit
2014-05-22 12:54 . 2014-05-22 12:54	--------	d-----w-	c:\users\TuanLeTrung\AppData\Local\SplitMediaLabs
2014-05-22 12:54 . 2014-05-22 13:36	--------	d-sh--w-	c:\windows\SysWow64\AI_RecycleBin
2014-05-22 12:54 . 2014-05-22 12:54	--------	d-----w-	c:\programdata\SplitMediaLabs
2014-05-22 12:54 . 2014-05-22 12:54	--------	d-----w-	c:\users\TuanLeTrung\AppData\Roaming\SplitMediaLabs
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-06-20 16:38 . 2014-04-19 18:12	122584	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-20 08:37 . 2014-03-05 18:07	130584	----a-w-	c:\windows\system32\drivers\avipbb.sys
2014-05-20 08:37 . 2014-03-05 18:07	112080	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2014-05-12 05:26 . 2014-04-19 18:12	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2014-05-12 05:26 . 2014-04-19 18:12	91352	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2014-05-12 05:25 . 2014-04-19 18:12	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
2014-05-09 06:14 . 2014-05-15 09:15	477184	----a-w-	c:\windows\system32\aepdu.dll
2014-05-09 06:11 . 2014-05-15 09:15	424448	----a-w-	c:\windows\system32\aeinv.dll
2014-05-06 19:20 . 2014-05-20 20:16	3956056	----a-w-	c:\windows\system32\drivers\RTKVHD64.sys
2014-05-06 14:51 . 2014-05-20 20:16	60955136	----a-w-	c:\windows\system32\RCoRes64.dat
2014-05-02 09:19 . 2014-05-20 20:16	33592	----a-w-	c:\windows\system32\audioLibVc.dll
2014-04-30 09:34 . 2014-05-20 20:16	948952	----a-w-	c:\windows\system32\RCoInstII64.dll
2014-04-28 13:48 . 2014-05-20 20:16	2800344	----a-w-	c:\windows\system32\RltkAPO64.dll
2014-04-25 11:51 . 2014-05-20 20:16	2834648	----a-w-	c:\windows\system32\RtPgEx64.dll
2014-04-25 11:23 . 2014-05-20 20:16	1022168	----a-w-	c:\windows\system32\RtkApi64.dll
2014-04-23 15:51 . 2014-05-20 20:16	2117424	----a-w-	c:\windows\system32\SStudio.dll
2014-04-19 17:12 . 2014-03-19 14:37	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-19 17:12 . 2014-03-19 14:37	692616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-04-17 15:42 . 2014-05-20 20:16	1317976	----a-w-	c:\windows\system32\MaxxAudioAPO6064.dll
2014-04-17 15:42 . 2014-05-20 20:16	1168472	----a-w-	c:\windows\system32\MaxxAudioAPO5064.dll
2014-04-17 15:42 . 2014-05-20 20:16	1136728	----a-w-	c:\windows\system32\MaxxAudioAPO4064.dll
2014-04-12 02:22 . 2014-05-15 09:14	95680	----a-w-	c:\windows\system32\drivers\ksecdd.sys
2014-04-12 02:22 . 2014-05-15 09:14	155072	----a-w-	c:\windows\system32\drivers\ksecpkg.sys
2014-04-12 02:19 . 2014-05-15 09:14	29184	----a-w-	c:\windows\system32\sspisrv.dll
2014-04-12 02:19 . 2014-05-15 09:14	136192	----a-w-	c:\windows\system32\sspicli.dll
2014-04-12 02:19 . 2014-05-15 09:14	28160	----a-w-	c:\windows\system32\secur32.dll
2014-04-12 02:19 . 2014-05-15 09:14	1460736	----a-w-	c:\windows\system32\lsasrv.dll
2014-04-12 02:19 . 2014-05-15 09:14	31232	----a-w-	c:\windows\system32\lsass.exe
2014-04-12 02:12 . 2014-05-15 09:14	22016	----a-w-	c:\windows\SysWow64\secur32.dll
2014-04-12 02:10 . 2014-05-15 09:14	96768	----a-w-	c:\windows\SysWow64\sspicli.dll
2014-04-10 10:20 . 2014-05-20 20:16	12894808	----a-w-	c:\windows\system32\MaxxVoiceAPO3064.dll
2014-04-10 10:20 . 2014-05-20 20:16	1934424	----a-w-	c:\windows\system32\MaxxAudioRealtek264.dll
2014-04-10 10:19 . 2014-05-20 20:16	2101848	----a-w-	c:\windows\system32\WavesGUILib64.dll
2014-04-10 10:19 . 2014-05-20 20:16	900696	----a-w-	c:\windows\SysWow64\MaxxAudioAPOShell.dll
2014-04-10 10:19 . 2014-05-20 20:16	3959384	----a-w-	c:\windows\system32\MaxxAudioVnN64.dll
2014-04-10 10:19 . 2014-05-20 20:16	2041432	----a-w-	c:\windows\system32\MaxxAudioEQ64.dll
2014-04-10 10:19 . 2014-05-20 20:16	28343384	----a-w-	c:\windows\system32\MaxxAudioVnA64.dll
2014-04-10 10:19 . 2014-05-20 20:16	14863448	----a-w-	c:\windows\system32\MaxxAudioRealtek64.dll
2014-04-10 10:19 . 2014-05-20 20:16	1063512	----a-w-	c:\windows\system32\MaxxAudioAPOShell64.dll
2014-04-09 14:39 . 2014-05-20 20:16	942384	----a-w-	c:\windows\system32\NAHIMICAPOSettingsIPC.dll
2014-04-09 14:38 . 2014-05-20 20:16	5751048	----a-w-	c:\windows\system32\NAHIMICAPOlfx.dll
2014-04-07 14:03 . 2014-05-20 20:16	6218072	----a-w-	c:\windows\system32\DDPP64A.dll
2014-04-07 14:03 . 2014-05-20 20:16	315736	----a-w-	c:\windows\system32\DDPO64A.dll
2014-04-07 14:03 . 2014-05-20 20:16	261464	----a-w-	c:\windows\system32\DDPA64.dll
2014-04-07 14:03 . 2014-05-20 20:16	1939800	----a-w-	c:\windows\system32\DDPD64A.dll
2014-03-31 20:46 . 2014-03-31 20:46	130712	----a-w-	c:\windows\SysWow64\MSSTDFMT.DLL
2014-03-31 20:46 . 2014-03-31 20:46	1070232	----a-w-	c:\windows\SysWow64\MSCOMCTL.OCX
2014-03-31 07:35 . 2010-11-21 03:27	270496	------w-	c:\windows\system32\MpSigStub.exe
2014-03-29 22:31 . 2014-03-29 22:31	194048	----a-w-	c:\windows\SysWow64\elshyph.dll
2014-03-29 22:31 . 2014-03-29 22:31	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2014-03-29 22:31 . 2014-03-29 22:31	645120	----a-w-	c:\windows\SysWow64\jsIntl.dll
2014-03-29 22:31 . 2014-03-29 22:31	235008	----a-w-	c:\windows\system32\elshyph.dll
2014-03-29 22:31 . 2014-03-29 22:31	182272	----a-w-	c:\windows\SysWow64\msls31.dll
2014-03-29 22:31 . 2014-03-29 22:31	62464	----a-w-	c:\windows\SysWow64\tdc.ocx
2014-03-29 22:31 . 2014-03-29 22:31	61952	----a-w-	c:\windows\SysWow64\MshtmlDac.dll
2014-03-29 22:31 . 2014-03-29 22:31	36352	----a-w-	c:\windows\SysWow64\imgutil.dll
2014-03-29 22:31 . 2014-03-29 22:31	337408	----a-w-	c:\windows\SysWow64\html.iec
2014-03-29 22:31 . 2014-03-29 22:31	24576	----a-w-	c:\windows\SysWow64\licmgr10.dll
2014-03-29 22:31 . 2014-03-29 22:31	151552	----a-w-	c:\windows\SysWow64\iexpress.exe
2014-03-29 22:31 . 2014-03-29 22:31	139264	----a-w-	c:\windows\SysWow64\wextract.exe
2014-03-29 22:31 . 2014-03-29 22:31	13312	----a-w-	c:\windows\SysWow64\mshta.exe
2014-03-29 22:31 . 2014-03-29 22:31	942592	----a-w-	c:\windows\system32\jsIntl.dll
2014-03-29 22:31 . 2014-03-29 22:31	90112	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2014-03-29 22:31 . 2014-03-29 22:31	86016	----a-w-	c:\windows\SysWow64\iesysprep.dll
2014-03-29 22:31 . 2014-03-29 22:31	86016	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2014-03-29 22:31 . 2014-03-29 22:31	81408	----a-w-	c:\windows\system32\icardie.dll
2014-03-29 22:31 . 2014-03-29 22:31	77312	----a-w-	c:\windows\system32\tdc.ocx
2014-03-29 22:31 . 2014-03-29 22:31	74240	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2014-03-29 22:31 . 2014-03-29 22:31	616104	----a-w-	c:\windows\system32\ieapfltr.dat
2014-03-29 22:31 . 2014-03-29 22:31	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2014-03-29 22:31 . 2014-03-29 22:31	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2014-03-29 22:31 . 2014-03-29 22:31	48640	----a-w-	c:\windows\system32\mshtmler.dll
2014-03-29 22:31 . 2014-03-29 22:31	413696	----a-w-	c:\windows\system32\html.iec
2014-03-29 22:31 . 2014-03-29 22:31	247808	----a-w-	c:\windows\system32\msls31.dll
2014-03-29 22:31 . 2014-03-29 22:31	13312	----a-w-	c:\windows\system32\msfeedssync.exe
2014-03-29 22:31 . 2014-03-29 22:31	131072	----a-w-	c:\windows\system32\IEAdvpack.dll
2014-03-29 22:31 . 2014-03-29 22:31	111616	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2014-03-29 22:31 . 2014-03-29 22:31	105984	----a-w-	c:\windows\system32\iesysprep.dll
2014-03-29 22:31 . 2014-03-29 22:31	83968	----a-w-	c:\windows\system32\MshtmlDac.dll
2014-03-29 22:31 . 2014-03-29 22:31	774144	----a-w-	c:\windows\system32\jscript.dll
2014-03-29 22:31 . 2014-03-29 22:31	62464	----a-w-	c:\windows\system32\pngfilt.dll
2014-03-29 22:31 . 2014-03-29 22:31	48128	----a-w-	c:\windows\system32\imgutil.dll
2014-03-29 22:31 . 2014-03-29 22:31	30208	----a-w-	c:\windows\system32\licmgr10.dll
2014-03-29 22:31 . 2014-03-29 22:31	263376	----a-w-	c:\windows\system32\iedkcs32.dll
2014-03-29 22:31 . 2014-03-29 22:31	243200	----a-w-	c:\windows\system32\webcheck.dll
2014-03-29 22:31 . 2014-03-29 22:31	235520	----a-w-	c:\windows\system32\url.dll
2014-03-29 22:31 . 2014-03-29 22:31	167424	----a-w-	c:\windows\system32\iexpress.exe
2014-03-29 22:31 . 2014-03-29 22:31	147968	----a-w-	c:\windows\system32\occache.dll
2014-03-29 22:31 . 2014-03-29 22:31	143872	----a-w-	c:\windows\system32\wextract.exe
2014-03-29 22:31 . 2014-03-29 22:31	13824	----a-w-	c:\windows\system32\mshta.exe
2014-03-29 22:31 . 2014-03-29 22:31	135680	----a-w-	c:\windows\system32\iepeers.dll
2014-03-29 22:31 . 2014-03-29 22:31	101376	----a-w-	c:\windows\system32\inseng.dll
2014-03-29 09:45 . 2014-03-29 09:45	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-29 09:45 . 2014-03-29 09:45	9728	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-29 09:45 . 2014-03-29 09:45	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-29 09:45 . 2014-03-29 09:45	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-29 09:45 . 2014-03-29 09:45	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-29 09:45 . 2014-03-29 09:45	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-29 09:45 . 2014-03-29 09:45	522752	----a-w-	c:\windows\system32\XpsGdiConverter.dll
2014-03-29 09:45 . 2014-03-29 09:45	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify"="c:\users\TuanLeTrung\AppData\Roaming\Spotify\Spotify.exe" [2014-05-14 6170168]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20924576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2014-02-21 152392]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"LifeCam"="c:\program files (x86)\Microsoft LifeCam\LifeExp.exe" [2010-05-20 119152]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2014-05-07 256896]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-05-08 959904]
.
c:\users\TuanLeTrung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk - c:\program files (x86)\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.8.150\SSScheduler.exe [2014-4-9 332016]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.150\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.150\McCHSvc.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 X6va016;X6va016;c:\windows\SysWOW64\Drivers\X6va016;c:\windows\SysWOW64\Drivers\X6va016 [x]
R3 X6va017;X6va017;c:\windows\SysWOW64\Drivers\X6va017;c:\windows\SysWOW64\Drivers\X6va017 [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - MBAMSWISSARMY
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-11 18:21	1091912	----a-w-	c:\program files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-06-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-19 17:12]
.
2014-06-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 17:04]
.
2014-06-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 17:04]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VX1000"="c:\windows\vVX1000.exe" [2010-05-20 762736]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2014-02-24 5581888]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1398549972&from=wld&uid=SamsungXSSDX840XSeries_S19HNSAD699559E&q={searchTerms}
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-ngakwge - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va016]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va016"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va017]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va017"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-06-20  19:46:28
ComboFix-quarantined-files.txt  2014-06-20 17:46
.
Vor Suchlauf: 13 Verzeichnis(se), 32.444.932.096 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 32.443.899.904 Bytes frei
.
- - End Of File - - D2C2B1B533B7738A6902C3142FEACA23
A36C5E4F47E84449FF07ED3517B43A31


Alt 21.06.2014, 09:19   #6
M-K-D-B
/// TB-Ausbilder
 
Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' - Standard

Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'


Schritt 1
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).





Schritt 2
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.







Schritt 3
Bitte deaktiviere dein Anti-Viren-Programm, da es das Ergebnis beeinflussen oder ggf. die Bereinigung stören kann.
Bitte lade dir zoek.exe von hier: http://hijackthis.nl/smeenk/ und speichere die Datei auf deinem Desktop.
  • Starte Zoek.exe mit einem Doppelklick.
  • Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und könnte andere Computer beschädigen.
  • Kopiere den Text der folgenden Box in das Skriptfenster von zoek:
    Code:
    ATTFilter
    iedefaults;
resetIEproxy;
FFdefaults;
CHRdefaults;
emptyclsid;
autoclean;
  • Nun klicke auf "Run script" und sei geduldig bis das Skript durchgelaufen ist.
  • Wenn das Tool fertig ist, wird sich Notepad mit der Logdatei öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:\ .
  • Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken).





Schritt 4
  • Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Scan.
  • FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei von AdwCleaner,
  • die Logdatei von MBAM,
  • die Logdatei von Zoek,
  • die beiden neuen Logdateien von FRST.
Alt 26.06.2014, 19:37   #7
M-K-D-B
/// TB-Ausbilder
 
Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' - Standard

Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'


Fehlende Rückmeldung
Dieses Thema wurde aus den Abos gelöscht. Somit bekomme ich keine Benachrichtigung über neue Antworten.
PM an mich falls Du denoch weiter machen willst.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen!

Antwort

Themen zu Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'
anderer, arten, beheben, beim starten, erschein, erscheint, eset, fehler, gefährliche, laden, malwarebytes, mehrfach, mindestens, nod32, problem, probleme, programme, regsvr32 fehler beim laden des moduls, scans, start, starte, starten, troja, trojaner, win, win7


« Trojaner Verdacht - CPU im Leerlauf bei 50 - 100% Auslastung | Hartnäckiger BKA Trojaner, Kaspersky versagt, Systemwiederherstellung bricht ab...Netbook »


Ähnliche Themen: Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'


  1. Windows 7: "Fehler beim Laden des Moduls" - RegSvr32
    Log-Analyse und Auswertung - 13.07.2015 (10)
  2. "RegSvr32 Fehler beim Laden des Moduls..." Windows 8
    Log-Analyse und Auswertung - 18.12.2014 (10)
  3. RegSvr32 Fehler beim Laden des Moduls ""
    Plagegeister aller Art und deren Bekämpfung - 31.10.2014 (23)
  4. Windows 7 meldet beim Start 'RegSvr32 Fehler beim Laden des Moduls "". ' seit mit Avira Malware entfernt wurde
    Log-Analyse und Auswertung - 10.10.2014 (22)
  5. RegSvr32 Fehler beim Laden des Moduls "", nach Virenscan mit Avira
    Log-Analyse und Auswertung - 18.09.2014 (13)
  6. Win7: RegSvr32 - Fehler beim Laden des Moduls ""
    Log-Analyse und Auswertung - 28.08.2014 (15)
  7. Trojaner entfernt: RegSvr32 Fehler beim Laden des Moduls ""
    Plagegeister aller Art und deren Bekämpfung - 25.08.2014 (11)
  8. RegSvr32 "Fehler beim Laden des Moduls """ (mal wieder...)
    Log-Analyse und Auswertung - 21.08.2014 (6)
  9. RegSvr32 Fehler beim Laden des Moduls "".
    Plagegeister aller Art und deren Bekämpfung - 20.08.2014 (9)
  10. RegSvr32 - Fehler beim Laden des Moduls " " ?
    Plagegeister aller Art und deren Bekämpfung - 17.08.2014 (3)
  11. Fehlermeldung bei Systemstart von WINDOWS 7 64-bit: RegSvr32 "Fehler beim Laden des Moduls ""."
    Log-Analyse und Auswertung - 17.08.2014 (10)
  12. Windows 7: Fehlermeldung bei Systemstart- RegSvr32 "Fehler beim Laden des Moduls ""."
    Alles rund um Windows - 12.08.2014 (18)
  13. regsvr32 fehler beim laden des moduls ""
    Log-Analyse und Auswertung - 06.08.2014 (9)
  14. RegSvr32 - Fehler beim Laden des Moduls "". (Windows 7 64bit)
    Plagegeister aller Art und deren Bekämpfung - 19.06.2014 (13)
  15. Windows 7: Fehlermeldung bei Systemstart- RegSvr32 "Fehler beim Laden des Moduls ""."
    Log-Analyse und Auswertung - 16.06.2014 (11)
  16. Win 7: beim Start kommt eine Fehlermeldung: Regsvr32 Fehler beim laden des Moduls
    Alles rund um Windows - 11.06.2014 (1)
  17. Meldung "regsvr32 - fehler beim laden des moduls"
    Plagegeister aller Art und deren Bekämpfung - 08.06.2014 (15)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' - Seit mindestens 1 Monat erscheint beim Starten meines PC's (Win7 Prof. 64-bit) immer dieses Fenster Ich hab mehrfach Scans von ESET NOD32 und Malwarebytes durchführt und es gab paar "gefährliche" - Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".'...
Archiv
Du betrachtest: Win 7: Beim Start 'RegSvr32 Fehler beim Laden des Moduls"".' auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19