| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: 360 Browser deinstallierenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
12.07.2014, 12:00
| #1 |
 |  360 Browser deinstallieren Hallo, ich wollte mal den 360 Browser ausprobieren. Leider lässt sich dieser nicht mehr deinstallieren ich weiss nicht wie ich ihn wieder vom System bekomme vielleicht kann mir jemand helfen. Ich benutze Windows 8.1 64 Bit. Danke |
|
12.07.2014, 12:09
| #2 |
| /// TB-Ausbilder   | 360 Browser deinstallieren Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
|
|
12.07.2014, 12:14
| #3 |
| | 360 Browser deinstallieren Hallo,
__________________anbei die Logs. FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-07-2014
Ran by David (administrator) on DAVID822 on 12-07-2014 13:11:45
Running from C:\Users\David\Downloads
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
() C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
(Microsoft) C:\Program Files (x86)\Gigabyte\CloudStation\HomeCloud\GCloud.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft) C:\Program Files (x86)\Gigabyte\CloudStation\HomeCloud\HCLOUD.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\Gigabyte\Smart TimeLock\TimeMgmtDaemon.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
() C:\Program Files (x86)\Gigabyte\CloudStation\RemoteControl\grckm.exe
() C:\Program Files (x86)\Gigabyte\CloudStation\RemoteOC\ubssrv_oc_only.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
() C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe
(Gigabyte Technology CO.) C:\Program Files\GIGABYTE\SmartRecovery2\RPMDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(VIA Technologies, Inc.) C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(FreeDownloadManager.ORG) C:\Program Files (x86)\Free Download Manager\fdm.exe
(BitTorrent Inc.) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Users\David\AppData\Local\Viber\Viber.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe
(IVT Corporation.) C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuWatch.exe
(Avanquest Software) C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Windows\SysWOW64\C2MP\TrayMenu.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayNotify.exe
(IVT Corporation.) C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil VoIP Plugin.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
() C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\Gigabyte\Smart TimeLock\AlarmClock.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Eyeo GmbH) C:\Program Files\Adblock Plus for IE\AdblockPlusEngine.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor
HKLM\...\Run: [360sd] => "C:\Program Files\360\360 Internet Security\360sdrun.exe"
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [281312 2014-05-19] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [LifeCam] => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [EaseUs Watch] => C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuWatch.exe [70728 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [EaseUs Tray] => C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayNotify.exe [1372232 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [YouCam Service6] => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [504792 2014-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [PowerDVD13Agent] => C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe [517144 2014-03-26] (CyberLink Corp.)
HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe [2086568 2014-03-06] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [224128 2014-03-18] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Arc] => C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcLauncher.exe [145744 2014-06-26] (Perfect World Entertainment)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [1590896 2014-06-17] ()
HKLM\...\RunOnce: [RPMKickstart] - C:\Program Files\GIGABYTE\SmartRecovery2\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>)
HKLM-x32\...\RunOnce: [EasyTune] - C:\Program Files (x86)\Gigabyte\EasyTune\RunOnceTask.exe [10240 2013-11-13] (GIGA-BYTE TECHNOLOGY CO., LTD.)
HKLM-x32\...\RunOnce: [PreRun] - C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [8192 2013-04-29] ()
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-06-24] (Raptr, Inc)
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [Free Download Manager] => C:\Program Files (x86)\Free Download Manager\fdm.exe [6983168 2014-05-09] (FreeDownloadManager.ORG)
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [uTorrent] => C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe [1329744 2014-07-11] (BitTorrent Inc.)
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1753280 2014-07-10] (Valve Corporation)
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [Viber] => C:\Users\David\AppData\Local\Viber\Viber.exe [936456 2014-03-05] ()
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3595608 2014-06-26] (Electronic Arts)
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [466656 2014-05-23] (Sony)
HKU\S-1-5-21-2340965807-2163907167-2295275766-1001\...\Run: [Pidgin] => C:\Program Files (x86)\Pidgin\pidgin.exe [60216 2014-02-03] (The Pidgin developer community)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BlueSoleil.lnk
ShortcutTarget: BlueSoleil.lnk -> C:\Program Files (x86)\IVT Corporation\BlueSoleil\gprs.exe (IVT Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\C2MP\TrayMenu.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\SysWOW64\C2MP\UpdateChecker.exe ()
Startup: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk
ShortcutTarget: Samsung Magician.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5702DBD5599BCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre8\bin\ssv.dll (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll (Perfect World Entertainment Inc)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll ()
BHO-x32: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
BHO-x32: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKLM-x32 - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll ()
Toolbar: HKCU - WOT - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\SysWOW64\Skype4COM.dll (Skype Technologies)
Handler-x32: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll ()
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.5.2 - C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.5.2 - C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.5.2 - C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.5.2 - C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\David\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-05-12]
==================== Services (Whitelisted) =================
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88400 2014-06-26] (Perfect World Entertainment Inc)
R2 BlueSoleil Hid Service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe [166520 2008-03-19] ()
R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2014-03-26] (CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2014-03-26] (CyberLink)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [36936 2013-12-02] (CHENGDU YIWO Tech Development Co., Ltd)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [241728 2014-03-11] (Foxit Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2014-02-28] (Futuremark)
R2 gadjservice; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [16384 2014-04-16] () [File not signed]
R2 GCloud; C:\Program Files (x86)\GIGABYTE\CloudStation\HomeCloud\GCloud.exe [12800 2014-03-27] (Microsoft) [File not signed]
R2 Guard Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe [23624 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [5268336 2014-03-25] (INCA Internet Co., Ltd.)
R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [617072 2014-06-17] ()
R2 SamsungRapidSvc; C:\Windows\System32\RAPID\SamsungRapidSvc.exe [27872 2014-05-19] (Samsung Electronics Co., Ltd.)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [File not signed]
R2 Start BT in service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [51816 2008-03-19] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
S2 TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [X]
==================== Drivers (Whitelisted) ====================
R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [100424 2014-06-17] (360.cn)
R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [77896 2014-06-17] (360.cn)
R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [305736 2014-06-17] (360.cn)
R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [311888 2014-06-17] (Qihu 360 Software Co., Ltd.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-11] (Advanced Micro Devices)
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [180816 2014-06-17] (Qihu 360 Software Co., Ltd.)
R3 BlueletAudio; C:\Windows\system32\DRIVERS\blueletaudio.sys [37896 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys [37384 2007-06-24] (IVT Corporation.)
R3 BT; C:\Windows\system32\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.)
S3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [47368 2007-06-24] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\System32\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\SysWOW64\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\System32\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\SysWOW64\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
R3 clwvd6; C:\Windows\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\WINDOWS\SysWOW64\epmntdrv.sys [13896 2013-03-07] ()
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [48200 2013-09-04] ()
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\WINDOWS\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()
R3 GVTDrv64; C:\WINDOWS\GVTDrv64.sys [30528 2014-07-12] ()
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [31648 2014-05-12] (REALiX(tm))
R3 LcUvcUpper; C:\Windows\system32\DRIVERS\LcUvcUpper.sys [34408 2013-10-14] (Microsoft Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R0 SamsungRapidDiskFltr; C:\Windows\System32\DRIVERS\SamsungRapidDiskFltr.sys [265952 2014-05-19] (Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\Windows\System32\DRIVERS\SamsungRapidFSFltr.sys [111328 2014-05-19] (Samsung Electronics Co., Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-05-30] (Duplex Secure Ltd.)
R1 StarPortLite; C:\Windows\System32\drivers\StarPortLite.sys [120704 2013-02-04] (StarWind Software)
S3 Tosrfcom; No ImagePath
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] ()
R3 VComm; C:\Windows\system32\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\System32\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.)
R3 VUSB3HUB; C:\Windows\System32\drivers\ViaHub3.sys [227840 2013-08-12] (VIA Technologies, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
R3 xhcdrv; C:\Windows\System32\drivers\xhcdrv.sys [295424 2013-08-12] (VIA Technologies, Inc.)
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
S3 GPUZ; \??\C:\WINDOWS\TEMP\GPUZ.sys [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-07-12 13:11 - 2014-07-12 13:11 - 02084864 _____ (Farbar) C:\Users\David\Downloads\FRST64.exe
2014-07-12 13:11 - 2014-07-12 13:11 - 00025737 _____ () C:\Users\David\Downloads\FRST.txt
2014-07-12 13:11 - 2014-07-12 13:11 - 00000000 ____D () C:\FRST
2014-07-11 21:52 - 2014-07-11 21:52 - 00000000 ____D () C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Browser
2014-07-11 21:51 - 2014-07-11 21:52 - 00002297 _____ () C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\360 Browser.lnk
2014-07-11 21:51 - 2014-07-11 21:51 - 00000000 ____D () C:\Users\David\AppData\Local\360Browser
2014-07-11 21:36 - 2014-07-11 21:36 - 00000295 _____ () C:\Users\David\Desktop\Neues Textdokument (2).txt
2014-07-11 18:31 - 2014-07-11 18:32 - 00000000 ____D () C:\Users\David\Documents\FrostWire
2014-07-11 18:31 - 2014-07-11 18:32 - 00000000 ____D () C:\Users\David\.frostwire5
2014-07-11 18:29 - 2014-07-11 18:29 - 00000000 ____D () C:\Users\David\AppData\Roaming\Haihaisoft
2014-07-11 18:28 - 2014-07-11 18:33 - 00000000 ____D () C:\Program Files (x86)\Haihaisoft Universal Player
2014-07-11 18:28 - 2014-07-11 18:29 - 00000000 ____D () C:\Users\David\AppData\Roaming\Haihaisoft Universal Player
2014-07-11 18:28 - 2014-07-11 18:28 - 00000028 _____ () C:\WINDOWS\MyActiveX.INI
2014-07-11 17:25 - 2014-07-11 17:25 - 00007604 _____ () C:\Users\David\AppData\Local\Resmon.ResmonCfg
2014-07-11 16:56 - 2014-07-11 16:56 - 00001189 _____ () C:\Users\David\Desktop\mbam.txt
2014-07-11 15:30 - 2014-07-11 15:30 - 00000022 _____ () C:\Users\David\Desktop\PowerArchiver ZIP File (neu).zip
2014-07-09 22:30 - 2014-04-14 05:29 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2014-07-09 22:29 - 2014-07-09 22:29 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-09 22:29 - 2014-06-17 00:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-09 22:29 - 2014-06-17 00:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-09 22:29 - 2014-06-06 16:20 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-07-09 22:29 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-07-09 22:29 - 2014-05-29 14:02 - 00565576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-07-09 22:29 - 2014-05-29 09:55 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-07-09 22:29 - 2014-05-29 08:40 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-09 22:29 - 2014-05-29 08:37 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-07-09 22:29 - 2014-05-29 07:34 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-07-09 22:29 - 2014-05-29 07:27 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-07-09 22:28 - 2014-07-09 22:28 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-07-09 22:28 - 2014-07-09 22:28 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-09 22:28 - 2014-07-01 00:45 - 00688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-07-09 22:28 - 2014-06-28 09:48 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-07-09 22:28 - 2014-06-28 09:07 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-07-09 22:28 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-09 22:28 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-09 22:28 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-09 22:28 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-09 22:28 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-09 22:28 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-09 22:28 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-09 22:28 - 2014-06-19 01:46 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-09 22:28 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-09 22:28 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-09 22:28 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-09 22:28 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-09 22:28 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-09 22:28 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-09 22:28 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-09 22:28 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-09 22:28 - 2014-06-19 00:57 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-09 22:28 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-09 22:28 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-09 22:28 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-09 22:28 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-09 22:28 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-09 22:28 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-09 22:28 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-09 22:28 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-09 22:28 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-09 22:28 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-09 22:28 - 2014-06-06 15:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-09 22:28 - 2014-06-06 14:18 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-07-09 22:28 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2014-07-09 22:28 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2014-07-09 22:28 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-07-09 22:28 - 2014-05-31 12:07 - 00467800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-07-09 22:28 - 2014-05-31 12:07 - 00440664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-07-09 22:28 - 2014-05-31 12:07 - 00419672 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-07-09 22:28 - 2014-05-31 12:07 - 00089944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-07-09 22:28 - 2014-05-31 12:07 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-09 22:28 - 2014-05-31 12:07 - 00027480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-07-09 22:28 - 2014-05-31 12:06 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-09 22:28 - 2014-05-31 08:30 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-07-09 22:28 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2014-07-09 22:28 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2014-07-09 22:28 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2014-07-09 22:28 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2014-07-09 22:28 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll
2014-07-09 22:28 - 2014-05-31 05:40 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-09 22:28 - 2014-05-31 05:30 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-09 22:28 - 2014-05-31 05:12 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 22:28 - 2014-05-31 05:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-09 22:28 - 2014-05-31 05:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-09 22:28 - 2014-05-31 05:01 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 22:28 - 2014-05-31 04:56 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-09 22:28 - 2014-05-31 04:54 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-09 22:28 - 2014-05-31 04:48 - 03463680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-09 22:28 - 2014-05-31 04:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-07-09 22:28 - 2014-05-31 04:36 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-09 22:28 - 2014-05-31 04:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-07-09 22:28 - 2014-05-31 04:32 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-09 22:28 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-07-09 22:28 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-07-09 22:28 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2014-07-09 22:28 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-07-09 22:28 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-07-04 17:05 - 2014-07-04 17:05 - 00001797 _____ () C:\Users\David\Desktop\Archlord2.lnk
2014-07-04 17:05 - 2014-07-04 17:05 - 00000000 ____D () C:\Webzen
2014-07-04 17:05 - 2014-07-04 17:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archlord2
2014-07-03 17:29 - 2014-07-03 17:29 - 00000000 ____H () C:\Users\David\Documents\Default.rdp
2014-07-01 22:22 - 2014-07-01 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Cetner
2014-07-01 22:16 - 2014-07-08 11:07 - 00000000 __SHD () C:\ProgramData\360Quarant
2014-07-01 22:16 - 2014-07-08 11:07 - 00000000 __SHD () C:\$360Section
2014-07-01 22:12 - 2014-07-01 22:22 - 00000000 ____D () C:\Users\David\AppData\Roaming\360safe
2014-07-01 22:11 - 2014-07-08 10:53 - 00000000 ____D () C:\ProgramData\360safe
2014-07-01 22:11 - 2014-06-17 15:10 - 00077896 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AvFlt.sys
2014-07-01 22:11 - 2014-06-17 15:10 - 00023752 _____ (360安全中心) C:\WINDOWS\system32\Drivers\efimon.sys
2014-07-01 22:10 - 2014-07-01 22:10 - 00001169 _____ () C:\Users\David\Desktop\360 Total Security.lnk
2014-07-01 22:10 - 2014-07-01 22:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2014-07-01 22:10 - 2014-06-17 15:10 - 00311888 _____ (Qihu 360 Software Co., Ltd.) C:\WINDOWS\system32\Drivers\360fsflt.sys
2014-07-01 22:10 - 2014-06-17 15:10 - 00305736 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys
2014-07-01 22:10 - 2014-06-17 15:10 - 00180816 _____ (Qihu 360 Software Co., Ltd.) C:\WINDOWS\system32\Drivers\BAPIDRV64.SYS
2014-07-01 22:10 - 2014-06-17 15:10 - 00100424 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys
2014-07-01 22:09 - 2014-07-01 22:09 - 2350578100 _____ () C:\WINDOWS\MEMORY.DMP
2014-07-01 22:09 - 2014-07-01 22:09 - 00281200 _____ () C:\WINDOWS\Minidump\070114-4828-01.dmp
2014-07-01 22:09 - 2014-07-01 22:09 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-01 17:39 - 2014-07-01 17:39 - 00000000 ____D () C:\WINDOWS\system32\RAPID
2014-07-01 17:39 - 2014-05-19 19:55 - 00265952 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\SamsungRapidDiskFltr.sys
2014-07-01 17:37 - 2014-07-01 17:37 - 00003270 _____ () C:\WINDOWS\System32\Tasks\SamsungMagician
2014-07-01 17:37 - 2014-07-01 17:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2014-06-27 21:41 - 2014-06-27 21:41 - 00001960 _____ () C:\Users\Public\Desktop\Metin2.lnk
2014-06-27 21:41 - 2014-06-27 21:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-06-27 21:36 - 2014-07-10 15:32 - 00000000 ____D () C:\Users\David\Downloads\Gameforge Live
2014-06-27 21:36 - 2014-07-02 22:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-06-27 21:36 - 2014-07-02 22:58 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-06-27 21:36 - 2014-06-27 21:36 - 00001083 _____ () C:\Users\Public\Desktop\Gameforge Live.lnk
2014-06-27 21:36 - 2014-06-27 21:36 - 00000000 ____D () C:\Users\David\AppData\Local\Gameforge4d
2014-06-27 21:27 - 2014-06-27 21:27 - 00000000 ____D () C:\Program Files\WOT
2014-06-27 21:27 - 2014-06-27 21:27 - 00000000 ____D () C:\Program Files (x86)\WOT
2014-06-26 16:00 - 2014-06-26 16:00 - 00000000 ____D () C:\Users\David\AppData\Roaming\Nikon
2014-06-26 16:00 - 2014-06-26 16:00 - 00000000 ____D () C:\Users\David\AppData\Local\Nikon
2014-06-26 16:00 - 2014-06-26 16:00 - 00000000 ____D () C:\Users\David\AppData\Local\ArcSoft
2014-06-26 16:00 - 2014-06-26 16:00 - 00000000 ____D () C:\ProgramData\Nikon
2014-06-26 15:59 - 2014-06-26 19:20 - 00000000 ____D () C:\ProgramData\ArcSoft
2014-06-26 15:59 - 2014-06-26 16:00 - 00000000 ____D () C:\Users\David\AppData\Roaming\ArcSoft
2014-06-26 15:59 - 2014-06-26 15:59 - 00002074 _____ () C:\Users\Public\Desktop\Panorama Maker 6.lnk
2014-06-26 15:59 - 2014-06-26 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Panorama Maker 6
2014-06-26 15:59 - 2014-06-26 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
2014-06-26 15:59 - 2014-06-26 15:59 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2014-06-26 15:58 - 2014-06-26 16:06 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2014-06-26 15:58 - 2014-06-26 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
2014-06-26 15:57 - 2014-07-10 00:07 - 00000020 ____H () C:\ProgramData\PKP_DLet.DAT
2014-06-26 15:57 - 2014-06-26 16:05 - 00002069 _____ () C:\Users\Public\Desktop\ViewNX 2.lnk
2014-06-26 15:57 - 2014-06-26 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX 2
2014-06-26 15:57 - 2014-06-26 15:58 - 00000000 ____D () C:\Program Files\Common Files\Nikon
2014-06-26 15:57 - 2014-06-26 15:58 - 00000000 ____D () C:\Program Files (x86)\Nikon
2014-06-26 15:57 - 2014-06-26 15:57 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ATL71.DLL
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\Users\David\AppData\Roaming\Instrument Library
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\Users\David\AppData\Roaming\Installer Plugin
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\Users\David\AppData\Roaming\InkjetPrinter
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\ProgramData\Jazz
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\ProgramData\Iterate Items
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\ProgramData\Internet Services
2014-06-26 15:57 - 2014-06-26 15:57 - 00000020 ____H () C:\ProgramData\PKP_DLev.DAT
2014-06-26 15:57 - 2014-06-26 15:57 - 00000020 ____H () C:\ProgramData\PKP_DLes.DAT
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\Ultima_T15
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\Tuner
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\Track Settings
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\SystemConfiguration
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\EnterNHelp
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\Program Files\Nikon
2014-06-26 15:56 - 2014-06-26 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
2014-06-26 15:56 - 2014-06-26 15:56 - 00000000 ____D () C:\Users\David\Downloads\Nikon
2014-06-25 13:09 - 2014-06-25 13:09 - 00000000 ____D () C:\ProgramData\Avanquest Bluetooth SDK
2014-06-25 12:48 - 2014-06-25 12:49 - 00000000 ____D () C:\ProgramData\Bluetooth
2014-06-25 12:48 - 2014-06-25 12:48 - 00000000 ____D () C:\Users\David\Documents\Bluetooth
2014-06-25 12:46 - 2014-06-25 12:46 - 00002145 _____ () C:\Users\Public\Desktop\BlueSoleil.lnk
2014-06-25 12:46 - 2014-06-25 12:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVT BlueSoleil
2014-06-25 12:46 - 2014-06-25 12:46 - 00000000 ____D () C:\Program Files (x86)\IVT Corporation
2014-06-25 12:46 - 2007-06-24 21:56 - 00037896 _____ (IVT Corporation.) C:\WINDOWS\system32\Drivers\blueletaudio.sys
2014-06-25 12:46 - 2007-06-24 21:56 - 00037384 _____ (IVT Corporation.) C:\WINDOWS\system32\Drivers\BlueletSCOAudio.sys
2014-06-25 12:46 - 2007-06-24 21:56 - 00016392 _____ (IVT Corporation.) C:\WINDOWS\system32\btinstall.dll
2014-06-25 12:46 - 2007-03-05 20:47 - 00025360 _____ (IVT Corporation.) C:\WINDOWS\system32\Drivers\BtNetDrv.sys
2014-06-25 12:46 - 2007-03-05 20:44 - 00023184 _____ (IVT Corporation.) C:\WINDOWS\system32\Drivers\VHIDMini.sys
2014-06-25 12:46 - 2007-03-05 20:42 - 00049680 _____ (IVT Corporation.) C:\WINDOWS\system32\Drivers\BTHidMgr.sys
2014-06-25 12:46 - 2007-03-05 20:41 - 00024976 _____ (IVT Corporation.) C:\WINDOWS\system32\Drivers\VBTEnum.sys
2014-06-25 12:46 - 2007-03-05 20:39 - 00063248 _____ (IVT Corporation.) C:\WINDOWS\system32\Drivers\VcommMgr.sys
2014-06-25 12:46 - 2007-03-05 20:38 - 00047120 _____ (IVT Corporation.) C:\WINDOWS\system32\Drivers\VComm.sys
2014-06-25 12:46 - 2006-10-09 15:29 - 00032832 _____ () C:\WINDOWS\system32\Drivers\BTNetFilter.sys
2014-06-22 17:08 - 2014-06-22 17:08 - 00004096 ___SH () C:\{6808FC54-7C48-4653-9571-AAE1E15C9046}.CBM
2014-06-22 16:41 - 2014-06-22 16:41 - 00475648 ___SH () C:\EUMONBMP.SYS
2014-06-21 22:08 - 2014-06-21 22:08 - 00000000 ____D () C:\Users\David\AppData\Roaming\Athentech
2014-06-20 17:53 - 2014-06-20 17:53 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Aufgaben der Ereignisanzeige
2014-06-19 19:24 - 2014-07-12 13:04 - 00000000 ____D () C:\Users\David\AppData\Roaming\.purple
2014-06-19 19:24 - 2014-06-19 19:24 - 00001007 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
2014-06-19 19:24 - 2014-06-19 19:24 - 00000995 _____ () C:\Users\Public\Desktop\Pidgin.lnk
2014-06-19 19:24 - 2014-06-19 19:24 - 00000000 ____D () C:\Users\David\AppData\Local\enchant
2014-06-19 19:24 - 2014-06-19 19:24 - 00000000 ____D () C:\Program Files (x86)\Pidgin
2014-06-19 13:01 - 2014-07-09 23:00 - 00000000 _RSHD () C:\360SANDBOX
2014-06-19 13:00 - 2014-06-19 13:00 - 00000000 ____D () C:\Program Files\360
2014-06-19 12:59 - 2014-06-19 12:59 - 00000000 ____D () C:\WINDOWS\Tasks\360Disabled
2014-06-19 12:57 - 2014-07-01 22:10 - 00000000 ____D () C:\Program Files (x86)\360
2014-06-17 16:13 - 2014-06-17 16:13 - 00000000 ____D () C:\Program Files (x86)\Toshiba
2014-06-16 19:56 - 2014-06-16 19:56 - 00000000 ____D () C:\Users\David\.jmc
2014-06-16 19:55 - 2014-06-16 19:55 - 00000000 ____D () C:\Users\David\.eclipse
2014-06-16 19:02 - 2014-06-16 19:02 - 00000000 ____D () C:\ProgramData\Sony Mobile
2014-06-16 19:02 - 2014-06-16 19:02 - 00000000 ____D () C:\Program Files (x86)\Sony Mobile
2014-06-15 19:07 - 2014-06-15 19:07 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-06-13 13:50 - 2014-06-25 10:55 - 00002042 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-06-13 13:50 - 2014-06-25 10:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-06-13 13:50 - 2014-06-13 13:50 - 00000000 ____D () C:\ProgramData\Sony
2014-06-13 13:50 - 2014-06-13 13:50 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-06-12 21:17 - 2014-06-12 21:17 - 00000000 ____D () C:\Users\David\AppData\Local\Unity
==================== One Month Modified Files and Folders =======
2014-07-12 13:11 - 2014-07-12 13:11 - 02084864 _____ (Farbar) C:\Users\David\Downloads\FRST64.exe
2014-07-12 13:11 - 2014-07-12 13:11 - 00025737 _____ () C:\Users\David\Downloads\FRST.txt
2014-07-12 13:11 - 2014-07-12 13:11 - 00000000 ____D () C:\FRST
2014-07-12 13:11 - 2014-05-13 08:59 - 00000000 ____D () C:\Users\David\AppData\Roaming\uTorrent
2014-07-12 13:11 - 2014-05-12 14:50 - 00000000 ____D () C:\Users\David\AppData\Roaming\Free Download Manager
2014-07-12 13:11 - 2014-05-12 12:35 - 00000000 ____D () C:\Users\David\AppData\Roaming\Skype
2014-07-12 13:10 - 2014-05-11 23:30 - 01312783 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-12 13:06 - 2014-05-11 23:37 - 00000000 ____D () C:\Users\David\AppData\Roaming\ClassicShell
2014-07-12 13:04 - 2014-06-19 19:24 - 00000000 ____D () C:\Users\David\AppData\Roaming\.purple
2014-07-12 13:04 - 2014-05-12 01:05 - 00000000 ____D () C:\Users\David\Documents\Outlook-Dateien
2014-07-12 13:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-07-12 12:47 - 2014-05-11 23:06 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2340965807-2163907167-2295275766-1001
2014-07-12 12:16 - 2014-03-18 12:03 - 01780340 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-12 12:16 - 2014-03-18 11:25 - 00765378 _____ () C:\WINDOWS\system32\perfh007.dat
2014-07-12 12:16 - 2014-03-18 11:25 - 00159696 _____ () C:\WINDOWS\system32\perfc007.dat
2014-07-12 12:14 - 2014-05-11 23:36 - 00003930 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5051C0A7-FF11-4CDF-836B-E75F827AB9CE}
2014-07-12 12:12 - 2014-05-12 01:14 - 00000000 ____D () C:\Users\David\Documents\YouCam
2014-07-12 12:11 - 2014-06-06 10:52 - 00000000 ____D () C:\ProgramData\Origin
2014-07-12 12:11 - 2014-06-06 10:52 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-07-12 12:11 - 2014-05-15 10:01 - 00000000 ____D () C:\Users\David\AppData\Roaming\ViberPC
2014-07-12 12:11 - 2014-05-15 10:00 - 00000000 ____D () C:\Users\David\AppData\Local\Viber
2014-07-12 12:11 - 2014-05-12 14:37 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-12 12:11 - 2014-05-12 00:46 - 00000000 ____D () C:\Users\David\AppData\Roaming\Raptr
2014-07-12 12:11 - 2014-05-12 00:20 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2014-07-12 12:11 - 2014-05-11 23:33 - 00000000 ___DO () C:\Users\David\OneDrive
2014-07-12 12:10 - 2014-05-12 00:43 - 00030528 _____ () C:\WINDOWS\GVTDrv64.sys
2014-07-12 12:10 - 2014-05-12 00:43 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\etdrv.sys
2014-07-12 12:10 - 2014-05-12 00:43 - 00000004 _____ () C:\WINDOWS\SysWOW64\GVTunner.ref
2014-07-12 12:10 - 2014-03-18 03:50 - 01444186 _____ () C:\WINDOWS\PFRO.log
2014-07-12 12:10 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-11 23:47 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-07-11 21:52 - 2014-07-11 21:52 - 00000000 ____D () C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Browser
2014-07-11 21:52 - 2014-07-11 21:51 - 00002297 _____ () C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\360 Browser.lnk
2014-07-11 21:51 - 2014-07-11 21:51 - 00000000 ____D () C:\Users\David\AppData\Local\360Browser
2014-07-11 21:36 - 2014-07-11 21:36 - 00000295 _____ () C:\Users\David\Desktop\Neues Textdokument (2).txt
2014-07-11 18:33 - 2014-07-11 18:28 - 00000000 ____D () C:\Program Files (x86)\Haihaisoft Universal Player
2014-07-11 18:32 - 2014-07-11 18:31 - 00000000 ____D () C:\Users\David\Documents\FrostWire
2014-07-11 18:32 - 2014-07-11 18:31 - 00000000 ____D () C:\Users\David\.frostwire5
2014-07-11 18:31 - 2014-05-11 23:28 - 00000000 ____D () C:\Users\David
2014-07-11 18:29 - 2014-07-11 18:29 - 00000000 ____D () C:\Users\David\AppData\Roaming\Haihaisoft
2014-07-11 18:29 - 2014-07-11 18:28 - 00000000 ____D () C:\Users\David\AppData\Roaming\Haihaisoft Universal Player
2014-07-11 18:28 - 2014-07-11 18:28 - 00000028 _____ () C:\WINDOWS\MyActiveX.INI
2014-07-11 18:02 - 2014-05-12 13:25 - 00000000 ____D () C:\Users\David\AppData\Local\CrashDumps
2014-07-11 17:25 - 2014-07-11 17:25 - 00007604 _____ () C:\Users\David\AppData\Local\Resmon.ResmonCfg
2014-07-11 16:56 - 2014-07-11 16:56 - 00001189 _____ () C:\Users\David\Desktop\mbam.txt
2014-07-11 15:30 - 2014-07-11 15:30 - 00000022 _____ () C:\Users\David\Desktop\PowerArchiver ZIP File (neu).zip
2014-07-11 13:08 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-07-11 12:59 - 2014-05-25 15:53 - 00038912 ___SH () C:\Users\David\Desktop\Thumbs.db
2014-07-11 11:56 - 2014-05-12 20:03 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-07-11 10:05 - 2014-05-13 09:00 - 00000897 _____ () C:\Users\David\Desktop\µTorrent.lnk
2014-07-11 10:05 - 2014-05-13 09:00 - 00000877 _____ () C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-07-10 20:39 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-07-10 15:32 - 2014-06-27 21:36 - 00000000 ____D () C:\Users\David\Downloads\Gameforge Live
2014-07-10 00:07 - 2014-06-26 15:57 - 00000020 ____H () C:\ProgramData\PKP_DLet.DAT
2014-07-09 23:00 - 2014-06-19 13:01 - 00000000 _RSHD () C:\360SANDBOX
2014-07-09 22:54 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-07-09 22:54 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-09 22:54 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-09 22:54 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-07-09 22:54 - 2013-08-22 16:44 - 00410032 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-09 22:31 - 2014-05-11 21:42 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-09 22:31 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-07-09 22:30 - 2014-05-12 00:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-09 22:30 - 2014-05-11 21:42 - 96441528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-09 22:30 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-07-09 22:29 - 2014-07-09 22:29 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-09 22:29 - 2014-03-18 11:40 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-09 22:28 - 2014-07-09 22:28 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-07-09 22:28 - 2014-07-09 22:28 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-09 17:05 - 2014-05-12 13:09 - 00000000 ____D () C:\Users\David\AppData\Roaming\TS3Client
2014-07-08 11:07 - 2014-07-01 22:16 - 00000000 __SHD () C:\ProgramData\360Quarant
2014-07-08 11:07 - 2014-07-01 22:16 - 00000000 __SHD () C:\$360Section
2014-07-08 10:53 - 2014-07-01 22:11 - 00000000 ____D () C:\ProgramData\360safe
2014-07-04 23:51 - 2014-05-12 18:13 - 00000000 ____D () C:\Users\David\AppData\Roaming\TV-Browser
2014-07-04 17:05 - 2014-07-04 17:05 - 00001797 _____ () C:\Users\David\Desktop\Archlord2.lnk
2014-07-04 17:05 - 2014-07-04 17:05 - 00000000 ____D () C:\Webzen
2014-07-04 17:05 - 2014-07-04 17:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archlord2
2014-07-03 17:29 - 2014-07-03 17:29 - 00000000 ____H () C:\Users\David\Documents\Default.rdp
2014-07-03 16:52 - 2013-08-22 16:46 - 00295224 _____ () C:\WINDOWS\setupact.log
2014-07-03 16:51 - 2014-05-12 01:06 - 00000000 ____D () C:\ProgramData\SUPPORTDIR
2014-07-02 22:58 - 2014-06-27 21:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-07-02 22:58 - 2014-06-27 21:36 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-07-01 22:23 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\GroupPolicy
2014-07-01 22:22 - 2014-07-01 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Cetner
2014-07-01 22:22 - 2014-07-01 22:12 - 00000000 ____D () C:\Users\David\AppData\Roaming\360safe
2014-07-01 22:10 - 2014-07-01 22:10 - 00001169 _____ () C:\Users\David\Desktop\360 Total Security.lnk
2014-07-01 22:10 - 2014-07-01 22:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2014-07-01 22:10 - 2014-06-19 12:57 - 00000000 ____D () C:\Program Files (x86)\360
2014-07-01 22:09 - 2014-07-01 22:09 - 2350578100 _____ () C:\WINDOWS\MEMORY.DMP
2014-07-01 22:09 - 2014-07-01 22:09 - 00281200 _____ () C:\WINDOWS\Minidump\070114-4828-01.dmp
2014-07-01 22:09 - 2014-07-01 22:09 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-01 17:39 - 2014-07-01 17:39 - 00000000 ____D () C:\WINDOWS\system32\RAPID
2014-07-01 17:37 - 2014-07-01 17:37 - 00003270 _____ () C:\WINDOWS\System32\Tasks\SamsungMagician
2014-07-01 17:37 - 2014-07-01 17:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2014-07-01 17:37 - 2014-05-12 00:29 - 00001245 _____ () C:\Users\Public\Desktop\Samsung Magician.lnk
2014-07-01 00:45 - 2014-07-09 22:28 - 00688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-06-28 09:48 - 2014-07-09 22:28 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-06-28 09:07 - 2014-07-09 22:28 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-06-27 21:41 - 2014-06-27 21:41 - 00001960 _____ () C:\Users\Public\Desktop\Metin2.lnk
2014-06-27 21:41 - 2014-06-27 21:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-06-27 21:36 - 2014-06-27 21:36 - 00001083 _____ () C:\Users\Public\Desktop\Gameforge Live.lnk
2014-06-27 21:36 - 2014-06-27 21:36 - 00000000 ____D () C:\Users\David\AppData\Local\Gameforge4d
2014-06-27 21:27 - 2014-06-27 21:27 - 00000000 ____D () C:\Program Files\WOT
2014-06-27 21:27 - 2014-06-27 21:27 - 00000000 ____D () C:\Program Files (x86)\WOT
2014-06-26 22:55 - 2013-08-22 17:38 - 00703968 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-06-26 22:55 - 2013-08-22 17:38 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-26 21:19 - 2014-05-12 16:22 - 00000000 ____D () C:\Users\David\AppData\Local\CrystalDiskMark
2014-06-26 19:20 - 2014-06-26 15:59 - 00000000 ____D () C:\ProgramData\ArcSoft
2014-06-26 19:20 - 2014-05-12 00:13 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-26 16:06 - 2014-06-26 15:58 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2014-06-26 16:05 - 2014-06-26 15:57 - 00002069 _____ () C:\Users\Public\Desktop\ViewNX 2.lnk
2014-06-26 16:05 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX 2
2014-06-26 16:05 - 2014-06-26 15:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
2014-06-26 16:05 - 2014-05-12 00:34 - 00000000 ____D () C:\Users\David\AppData\Local\Downloaded Installations
2014-06-26 16:02 - 2014-06-26 15:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
2014-06-26 16:00 - 2014-06-26 16:00 - 00000000 ____D () C:\Users\David\AppData\Roaming\Nikon
2014-06-26 16:00 - 2014-06-26 16:00 - 00000000 ____D () C:\Users\David\AppData\Local\Nikon
2014-06-26 16:00 - 2014-06-26 16:00 - 00000000 ____D () C:\Users\David\AppData\Local\ArcSoft
2014-06-26 16:00 - 2014-06-26 16:00 - 00000000 ____D () C:\ProgramData\Nikon
2014-06-26 16:00 - 2014-06-26 15:59 - 00000000 ____D () C:\Users\David\AppData\Roaming\ArcSoft
2014-06-26 15:59 - 2014-06-26 15:59 - 00002074 _____ () C:\Users\Public\Desktop\Panorama Maker 6.lnk
2014-06-26 15:59 - 2014-06-26 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Panorama Maker 6
2014-06-26 15:59 - 2014-06-26 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
2014-06-26 15:59 - 2014-06-26 15:59 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2014-06-26 15:58 - 2014-06-26 15:57 - 00000000 ____D () C:\Program Files\Common Files\Nikon
2014-06-26 15:58 - 2014-06-26 15:57 - 00000000 ____D () C:\Program Files (x86)\Nikon
2014-06-26 15:57 - 2014-06-26 15:57 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ATL71.DLL
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\Users\David\AppData\Roaming\Instrument Library
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\Users\David\AppData\Roaming\Installer Plugin
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\Users\David\AppData\Roaming\InkjetPrinter
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\ProgramData\Jazz
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\ProgramData\Iterate Items
2014-06-26 15:57 - 2014-06-26 15:57 - 00000268 ___RH () C:\ProgramData\Internet Services
2014-06-26 15:57 - 2014-06-26 15:57 - 00000020 ____H () C:\ProgramData\PKP_DLev.DAT
2014-06-26 15:57 - 2014-06-26 15:57 - 00000020 ____H () C:\ProgramData\PKP_DLes.DAT
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\Ultima_T15
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\Tuner
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\Track Settings
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\SystemConfiguration
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\EnterNHelp
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
2014-06-26 15:57 - 2014-06-26 15:57 - 00000000 ____D () C:\Program Files\Nikon
2014-06-26 15:56 - 2014-06-26 15:56 - 00000000 ____D () C:\Users\David\Downloads\Nikon
2014-06-26 10:02 - 2014-05-12 00:46 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-06-25 13:09 - 2014-06-25 13:09 - 00000000 ____D () C:\ProgramData\Avanquest Bluetooth SDK
2014-06-25 12:49 - 2014-06-25 12:48 - 00000000 ____D () C:\ProgramData\Bluetooth
2014-06-25 12:48 - 2014-06-25 12:48 - 00000000 ____D () C:\Users\David\Documents\Bluetooth
2014-06-25 12:46 - 2014-06-25 12:46 - 00002145 _____ () C:\Users\Public\Desktop\BlueSoleil.lnk
2014-06-25 12:46 - 2014-06-25 12:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVT BlueSoleil
2014-06-25 12:46 - 2014-06-25 12:46 - 00000000 ____D () C:\Program Files (x86)\IVT Corporation
2014-06-25 11:57 - 2014-05-23 18:31 - 00500094 _____ () C:\WINDOWS\DPINST.LOG
2014-06-25 10:55 - 2014-06-13 13:50 - 00002042 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-06-25 10:55 - 2014-06-13 13:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-06-23 21:16 - 2014-05-22 17:18 - 00000000 ____D () C:\Users\David\AppData\Roaming\Foxit Software
2014-06-23 21:10 - 2014-06-06 10:48 - 00000000 ____D () C:\Users\David\AppData\Roaming\ActivePresenter
2014-06-23 20:16 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-06-23 12:21 - 2014-05-18 15:32 - 00000000 ____D () C:\Users\David\.VirtualBox
2014-06-22 17:08 - 2014-06-22 17:08 - 00004096 ___SH () C:\{6808FC54-7C48-4653-9571-AAE1E15C9046}.CBM
2014-06-22 16:41 - 2014-06-22 16:41 - 00475648 ___SH () C:\EUMONBMP.SYS
2014-06-21 22:18 - 2014-05-12 13:17 - 00000000 ____D () C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Joymax
2014-06-21 22:18 - 2014-05-12 13:16 - 00000000 ____D () C:\Program Files (x86)\SilkroadR
2014-06-21 22:08 - 2014-06-21 22:08 - 00000000 ____D () C:\Users\David\AppData\Roaming\Athentech
2014-06-21 15:01 - 2014-05-12 20:03 - 00001118 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-06-21 15:01 - 2014-05-12 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-06-21 15:01 - 2014-05-12 20:03 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-06-20 17:53 - 2014-06-20 17:53 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Aufgaben der Ereignisanzeige
2014-06-19 19:24 - 2014-06-19 19:24 - 00001007 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
2014-06-19 19:24 - 2014-06-19 19:24 - 00000995 _____ () C:\Users\Public\Desktop\Pidgin.lnk
2014-06-19 19:24 - 2014-06-19 19:24 - 00000000 ____D () C:\Users\David\AppData\Local\enchant
2014-06-19 19:24 - 2014-06-19 19:24 - 00000000 ____D () C:\Program Files (x86)\Pidgin
2014-06-19 13:00 - 2014-06-19 13:00 - 00000000 ____D () C:\Program Files\360
2014-06-19 12:59 - 2014-06-19 12:59 - 00000000 ____D () C:\WINDOWS\Tasks\360Disabled
2014-06-19 12:01 - 2014-05-18 12:10 - 00000000 ____D () C:\Users\David\AppData\Roaming\Arc
2014-06-19 03:39 - 2014-07-09 22:28 - 23464448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-06-19 02:48 - 2014-07-09 22:28 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-06-19 02:16 - 2014-07-09 22:28 - 17276416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-06-19 02:09 - 2014-07-09 22:28 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-06-19 01:51 - 2014-07-09 22:28 - 05721088 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-06-19 01:50 - 2014-07-09 22:28 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-06-19 01:48 - 2014-07-09 22:28 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-06-19 01:46 - 2014-07-09 22:28 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-06-19 01:39 - 2014-07-09 22:28 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-06-19 01:33 - 2014-07-09 22:28 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-06-19 01:32 - 2014-07-09 22:28 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-06-19 01:27 - 2014-07-09 22:28 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-06-19 01:12 - 2014-07-09 22:28 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-06-19 00:59 - 2014-07-09 22:28 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-06-19 00:58 - 2014-07-09 22:28 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-06-19 00:58 - 2014-07-09 22:28 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-06-19 00:57 - 2014-07-09 22:28 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-06-19 00:52 - 2014-07-09 22:28 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-06-19 00:51 - 2014-07-09 22:28 - 13527040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-06-19 00:49 - 2014-07-09 22:28 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-06-19 00:45 - 2014-07-09 22:28 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-06-19 00:35 - 2014-07-09 22:28 - 11742208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-06-19 00:34 - 2014-07-09 22:28 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-06-19 00:15 - 2014-07-09 22:28 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-06-19 00:13 - 2014-07-09 22:28 - 01791488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-06-19 00:09 - 2014-07-09 22:28 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-06-19 00:07 - 2014-07-09 22:28 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-06-18 13:18 - 2014-05-12 11:41 - 00000000 ____D () C:\Users\David\AppData\Roaming\DVDVideoSoft
2014-06-17 16:13 - 2014-06-17 16:13 - 00000000 ____D () C:\Program Files (x86)\Toshiba
2014-06-17 15:10 - 2014-07-01 22:11 - 00077896 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AvFlt.sys
2014-06-17 15:10 - 2014-07-01 22:11 - 00023752 _____ (360安全中心) C:\WINDOWS\system32\Drivers\efimon.sys
2014-06-17 15:10 - 2014-07-01 22:10 - 00311888 _____ (Qihu 360 Software Co., Ltd.) C:\WINDOWS\system32\Drivers\360fsflt.sys
2014-06-17 15:10 - 2014-07-01 22:10 - 00305736 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys
2014-06-17 15:10 - 2014-07-01 22:10 - 00180816 _____ (Qihu 360 Software Co., Ltd.) C:\WINDOWS\system32\Drivers\BAPIDRV64.SYS
2014-06-17 15:10 - 2014-07-01 22:10 - 00100424 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys
2014-06-17 00:26 - 2014-07-09 22:29 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-06-17 00:24 - 2014-07-09 22:29 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-06-16 19:56 - 2014-06-16 19:56 - 00000000 ____D () C:\Users\David\.jmc
2014-06-16 19:55 - 2014-06-16 19:55 - 00000000 ____D () C:\Users\David\.eclipse
2014-06-16 19:02 - 2014-06-16 19:02 - 00000000 ____D () C:\ProgramData\Sony Mobile
2014-06-16 19:02 - 2014-06-16 19:02 - 00000000 ____D () C:\Program Files (x86)\Sony Mobile
2014-06-15 19:07 - 2014-06-15 19:07 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-06-15 19:07 - 2013-08-22 17:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-06-15 19:06 - 2014-05-11 23:53 - 00000000 ____D () C:\Users\David\AppData\Local\Trend Micro
2014-06-15 19:06 - 2014-05-11 23:52 - 00000000 ____D () C:\ProgramData\Trend Micro
2014-06-15 19:06 - 2012-07-26 10:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-06-13 13:50 - 2014-06-13 13:50 - 00000000 ____D () C:\ProgramData\Sony
2014-06-13 13:50 - 2014-06-13 13:50 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-06-12 21:17 - 2014-06-12 21:17 - 00000000 ____D () C:\Users\David\AppData\Local\Unity
2014-06-12 21:17 - 2014-06-11 20:10 - 00000000 ____D () C:\Users\David\AppData\Local\Deployment
Some content of TEMP:
====================
C:\Users\David\AppData\Local\Temp\c1b7bb687fbbb4d7db1c287e4bf5afb4.dll
C:\Users\David\AppData\Local\Temp\ochelper.dll
C:\Users\David\AppData\Local\Temp\ochelper.exe
C:\Users\David\AppData\Local\Temp\proxy_vole929337394333479652.dll
C:\Users\David\AppData\Local\Temp\Samsung_Magician_Setup_v44.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-07 11:47
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-07-2014
Ran by David at 2014-07-12 13:12:04
Running from C:\Users\David\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: 360 Total Security (Enabled - Up to date) {2B66EE1E-E5C8-C2F7-648F-4E55AC68D37D}
AS: 360 Total Security (Enabled - Up to date) {90070FFA-C3F2-CD79-5E3F-7527D7EF99C0}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
@BIOS B14.0418.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
@BIOS B14.0418.1 (x32 Version: 3.00.0000 - GIGABYTE) Hidden
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32239 - BitTorrent Inc.)
360 Browser (HKCU\...\360Browser) (Version: 7.5.2.104 - 360 Security Center)
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 4.0.0.2067 - 360 Security Center)
3DMark (HKLM-x32\...\{38f32cea-14ce-4349-882e-8779bcd45e5c}) (Version: 1.2.362.0 - Futuremark)
3DMark (Version: 1.2.362.0 - Futuremark) Hidden
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{C23EE7CE-C1A3-4F94-A8F0-9E0AC9C6DE6E}) (Version: 1.1 - Eyeo GmbH)
Adblock Plus for IE (HKLM-x32\...\{fd97d1e2-368a-4cd9-af63-8eeff938044a}) (Version: 1.1 - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.111 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 13.0.0.111 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0417.2226.38446 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AnyMP4 DVD Ripper 6.2.20 (HKLM-x32\...\{991684FE-29A2-4b20-8CD5-FFD2275FD2CD}_is1) (Version: 6.2.20 - AnyMP4 Studio)
App Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.14.0429 - Gigabyte)
APP Center (x32 Version: 1.14.0429 - Gigabyte) Hidden
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
Archlord2 (HKLM-x32\...\{4B23B4C1-769A-49A4-AA12-1FF72B548F5D}_is1) (Version: 1.0.0.1 - Webzen)
ArcSoft Panorama Maker 6 (HKLM-x32\...\{41123708-D150-432C-9F15-EC80C079AB52}) (Version: 6.1.1.105 - ArcSoft)
Athentech Perfectly Clear (HKLM-x32\...\_{B109CAE0-1D2E-4BF6-8205-C18012E490A9}) (Version: 1.0.0.106 - Corel Corporation)
Athentech Perfectly Clear (Version: 1.0.0.106 - Corel Corporation) Hidden
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Ihr Firmenname) Hidden
Bluesoleil2.7.0.35 VoIP Release 080317 (HKLM-x32\...\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}) (Version: 2.7.0.35 VoIP Release 080317 - IVT Corporation)
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.13.0911.1 - GIGABYTE)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
Cloud Station (HKLM-x32\...\InstallShield_{41B20CB6-32EE-468B-982C-4864E2135BD0}) (Version: 1.00.1404.2901 - GIGABYTE)
Cloud Station (x32 Version: 1.00.1404.2901 - GIGABYTE) Hidden
Cole2k Media - Codec Pack (Advanced) 8.0.2 (HKLM-x32\...\Cole2k Media - Codec Pack) (Version: 8.0.2 - Cole2k Media)
Corel PaintShop Pro X6 (HKLM-x32\...\_{166D1CB6-DD8A-40DD-9E25-4D31D2D6DE4D}) (Version: 16.2.0.20 - Corel Corporation)
CPUID CPU-Z 1.69.2 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CrystalDiskInfo 6.1.12 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.1.12 - Crystal Dew World)
CrystalDiskMark 3.0.3b Shizuku Edition (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.3b - Crystal Dew World)
CyberLink Holiday Pack Vol.5 for YouCam (HKLM-x32\...\InstallShield_{328C22D6-8AE2-4A38-BC4D-30E332FD675F}) (Version: 2.0 for YouCam - CyberLink Corp.)
CyberLink Holiday Pack Vol.5 for YouCam (x32 Version: 2.0 for YouCam - CyberLink Corp.) Hidden
CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.3919.58 - CyberLink Corp.)
CyberLink PowerDVD 13 (x32 Version: 13.0.3919.58 - CyberLink Corp.) Hidden
CyberLink YouCam 6 (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.2728.0 - CyberLink Corp.)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{043645C8-48EC-458F-B9BD-9C8F15CEF6F7}) (Version: - Microsoft)
EaseUS Partition Master 10.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
EaseUS Todo Backup Home 6.5 (HKLM-x32\...\EaseUS Todo Backup Home 6.5 Trial_is1) (Version: 6.5 - CHENGDU YIWO Tech Development Co., Ltd)
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.00.0002 - GIGABYTE)
EasyTune (x32 Version: 1.00.0002 - GIGABYTE) Hidden
EZSetupN B13.1114.1 (HKLM-x32\...\InstallShield_{9EAB60B6-70FE-4EC7-8DF4-54773E4EAC05}) (Version: 1.00.0000 - GIGABYTE)
EZSetupN B13.1114.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
FaceFilter v3.02 Standard (HKLM-x32\...\{6020758E-57A9-41E3-AF20-8EE311EA6156}) (Version: 3.02.1506.1 - Reallusion Inc.)
Far Cry 3 Blood Dragon (HKLM-x32\...\{A071F478-73E0-4143-AE55-4DD6BABD74F5}) (Version: 1.02 - Ubisoft)
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.00.0000 - GIGABYTE)
Fast Boot (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.16.0 - Androxyde)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 1.3.99.311 - Foxit Corporation)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.2.0.429 - Foxit Corporation)
Free Download Manager 3.9.4 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG)
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.0.430 - DVDVideoSoft Ltd.)
Futuremark SystemInfo (HKLM-x32\...\{EF7EA37B-C009-4D53-AE2A-FF7C6AEC35CE}) (Version: 4.26.386 - Futuremark)
Gameforge Live 2.0.4 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.4 - Gameforge)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
HWiNFO64 Version 4.38 (HKLM\...\HWiNFO64_is1) (Version: 4.38 - Martin Malík - REALiX)
ICA (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
IPM_PSP_COM64 (Version: 16.1.0.48 - Corel Corporation) Hidden
Java 8 Update 5 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418005FF}) (Version: 8.0.50 - Oracle Corporation)
Java 8 Update 5 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218005FF}) (Version: 8.0.50 - Oracle Corporation)
Java Auto Updater (x32 Version: 2.8.05.13 - Oracle, Inc.) Hidden
Java SE Development Kit 8 Update 5 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180050}) (Version: 8.0.50 - Oracle Corporation)
Java SE Development Kit 8 Update 5 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180050}) (Version: 8.0.50 - Oracle Corporation)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft Corporation (Version: 11.0.50727.0 - Microsoft Corporation) Hidden
Microsoft Corporation (x32 Version: 11.0.50727.0 - Microsoft Corporation) Hidden
Microsoft LifeCam (HKLM\...\{8EC9E7BB-2443-49B1-8476-490EBF932C2E}) (Version: 4.25.512.0 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Business 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Minimal ADB and Fastboot version 1.1.3 (HKLM-x32\...\{DE46417A-9E9E-4BCD-BBDD-DA21943193BB}_is1) (Version: 1.1.3 - )
NetBeans IDE 8.0 (HKLM\...\nbi-nb-base-8.0.0.0.201403101706) (Version: 8.0 - NetBeans.org)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.9.2 - Nikon)
ON_OFF Charge 2 B13.1028.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B13.1028.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Oracle VM VirtualBox 4.3.12 (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
PatchBeam (HKLM-x32\...\PatchBeam) (Version: 1.20 - ConeXware, Inc.)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.1 - Nikon)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.9 - )
Platform (x32 Version: 1.42 - VIA Technologies, Inc.) Hidden
PowerArchiver 2013 (HKLM-x32\...\PowerArchiver 2013 14.05.09) (Version: 14.05.09 - ConeXware, Inc.)
PowerArchiver 2013 (x32 Version: 14.05.09 - ConeXware, Inc.) Hidden
PSPPContent (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
PSPPro64 (Version: 16.2.0.20 - Corel Corporation) Hidden
RAPID Mode (Version: 1.0.1.68 - Samsung Electronics Co., Ltd.) Hidden
Rappelz (HKLM-x32\...\{90877318-0BD0-4BDE-BFC0-C4BB12DAC86A}_is1) (Version: Rappelz - WEBZEN Dublin Ltd.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.21.909.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7076 - Realtek Semiconductor Corp.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.4.0 - Samsung Electronics)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Setup (x32 Version: 16.1.0.48 - Ihr Firmenname) Hidden
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Smart Recovery 2 B14.0418.3 (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B14.0416.2 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B14.0416.2 (x32 Version: 1.00.0001 - GIGABYTE) Hidden
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.14.8.201405281228 - Sony Mobile Communications AB)
Sony PC Companion 2.10.211 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.211 - Sony)
StarBurn Version 15.2 (Build 0x20131129) (HKLM-x32\...\StarBurn_is1) (Version: 15.2 - StarBurn Software)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Talisman Online Ver.2029 (HKLM-x32\...\Talisman Online_is1) (Version: - Mira Game / Miracle Castle)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Thief (HKLM-x32\...\Steam App 239160) (Version: - Eidos-Montréal)
TV-Browser 3.3.3 (HKLM-x32\...\tvbrowser) (Version: 3.3.3 - TV-Browser Team)
TweakNow PowerPack (HKLM-x32\...\TweakNow PowerPack_is1) (Version: 4.3.1 - TweakNow.com)
Ultimate Creative Collection (X6) (HKLM-x32\...\_{FE752025-AED8-4AED-BC44-B03C9048A3D4}) (Version: 1.0.0.107 - Corel Corporation)
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Ihr Firmenname) Hidden
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version: - Microsoft)
Update for Microsoft Excel 2010 (KB2837600) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{17815BC8-062D-49BE-B40C-B54149C85CE3}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{84B191B5-5319-463A-A305-8C4D53B1D20A}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{6E760BBA-B83F-4C2D-918F-5F91EF6C9861}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{D1F3B526-7EB2-4701-92DB-0784988D78DE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{52BEF8AE-9324-40A1-9A92-E5A8FB63A475}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 64-Bit Edition (HKLM\...\{90140000-001F-0410-1000-0000000FF1CE}_Office14.SingleImage_{B2508D75-61CF-4CC0-84C0-CF257219201D}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{56551B9F-2FE1-4705-ACF0-8FA920535E18}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{56551B9F-2FE1-4705-ACF0-8FA920535E18}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.SingleImage_{8F699D53-05FB-488E-B7D3-E4E47257BE5D}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.SingleImage_{324703B5-6765-489D-9B9B-B082D34F882E}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.SingleImage_{4B9B2BAF-EE1F-4B60-A4D9-17B7BEEB13A1}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.SingleImage_{6164E0E5-C903-488C-93AF-1B7AF7EBC331}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{DDDC32A5-9528-4771-B91A-97A8E1D7957B}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.SingleImage_{FD360122-6829-4497-97C1-1BF578EF695B}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A20A650C-F820-4CE4-AEA5-EC140192FAFB}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{F6F342A1-530B-4D48-A468-1E3F70928984}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{C950A55F-82E3-4CC8-8FA2-E8A2A0F651F3}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{89FDC8D9-FB84-4EFE-950D-AF4EECC3B64C}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 4.5 - Ubisoft)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Viber (HKCU\...\Viber) (Version: 3.0.0.134193 - Viber Media Inc)
ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.9.2 - Nikon)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (05/06/2013 4.0.0000.00000) (HKLM\...\B9E470A255460BD67ECB573B8C06A6225474D8DE) (Version: 05/06/2013 4.0.0000.00000 - Google, Inc.)
WOT für Internet Explorer (HKLM\...\{373B90E1-A28C-434C-92B6-7281AFA6115A}) (Version: 13.9.2.0 - WOT Services Oy)
==================== Restore Points =========================
26-06-2014 13:57:16 Installiert "ViewNX 2"
27-06-2014 19:27:06 Removed WOT for Internet Explorer
01-07-2014 15:37:48 RAPID
01-07-2014 15:39:53 RAPID
09-07-2014 20:29:07 Windows Update
==================== Hosts content: ==========================
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {1DE0CA86-2FC0-42EE-B3E5-675AE49C6571} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2559CBD2-D54B-411A-84C9-E2A689E2115A} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-03-18] (Microsoft Corporation)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3CADF3DA-D064-4651-8207-E3F881B153C8} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {61CA2C49-DE16-4473-9E65-172DCD03E38E} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-05-19] (Samsung Electronics.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7BB1EC61-3140-48A7-9245-3DD56ECC42BA} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {80A36587-C1BA-472D-B32B-C6DA92E45EB7} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {C8BB2B1C-B8AE-4666-A8CF-6B1F822E3FAD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-07-09] (Microsoft Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D4F1838F-B2D1-4B45-AEF2-FB800DF0E0ED} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
==================== Loaded Modules (whitelisted) =============
2014-07-01 22:10 - 2014-06-17 15:10 - 00617072 _____ () C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
2008-03-19 16:52 - 2008-03-19 16:52 - 00166520 _____ () C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
2014-04-16 16:09 - 2014-04-16 16:09 - 00016384 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
2008-03-19 16:52 - 2008-03-19 16:52 - 00051816 _____ () C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
2014-01-21 13:36 - 2014-01-21 13:36 - 00015872 _____ () C:\Program Files (x86)\Gigabyte\CloudStation\RemoteControl\grckm.exe
2014-02-26 19:22 - 2014-02-26 19:22 - 00107008 _____ () C:\Program Files (x86)\Gigabyte\CloudStation\RemoteOC\ubssrv_oc_only.exe
2014-04-29 14:40 - 2014-04-29 14:40 - 01239360 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe
2014-05-15 10:01 - 2014-03-05 22:05 - 00936456 _____ () C:\Users\David\AppData\Local\Viber\Viber.exe
2014-06-13 13:50 - 2013-10-31 12:35 - 00070880 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2013-03-19 15:15 - 2013-03-19 15:15 - 00704008 _____ () C:\Windows\SysWOW64\C2MP\TrayMenu.exe
2014-07-01 22:10 - 2014-06-17 15:10 - 01590896 _____ () C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-02-15 03:36 - 2013-02-15 03:36 - 01554496 _____ () C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\David\OneDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== MSCONFIG/TASK MANAGER disabled items =========
==================== Faulty Device Manager Devices =============
Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/11/2014 06:02:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: WOT.dll_unloaded, Version: 13.9.2.0, Zeitstempel: 0x52247977
Ausnahmecode: 0xc000041d
Fehleroffset: 0x00035e82
ID des fehlerhaften Prozesses: 0x1684
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/11/2014 06:02:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: WOT.dll_unloaded, Version: 13.9.2.0, Zeitstempel: 0x52247977
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00035e82
ID des fehlerhaften Prozesses: 0x1684
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/11/2014 03:29:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001006f
ID des fehlerhaften Prozesses: 0x2190
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/11/2014 03:22:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00009710
ID des fehlerhaften Prozesses: 0xfe0
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/11/2014 03:09:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: fdmumsp.dll, Version: 1.0.23.0, Zeitstempel: 0x5356ac5c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00004c8e
ID des fehlerhaften Prozesses: 0xf28
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/11/2014 02:51:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: fdmumsp.dll, Version: 1.0.23.0, Zeitstempel: 0x5356ac5c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00004c8e
ID des fehlerhaften Prozesses: 0xcbc
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/11/2014 11:01:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: fdmumsp.dll, Version: 1.0.23.0, Zeitstempel: 0x5356ac5c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00004c8e
ID des fehlerhaften Prozesses: 0x1bc4
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/11/2014 00:47:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: BlueSoleil.exe, Version: 2.7.0.35, Zeitstempel: 0x47e0d402
Name des fehlerhaften Moduls: BlueSoleil.exe, Version: 2.7.0.35, Zeitstempel: 0x47e0d402
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000d043f
ID des fehlerhaften Prozesses: 0x1bbc
Startzeit der fehlerhaften Anwendung: 0xBlueSoleil.exe0
Pfad der fehlerhaften Anwendung: BlueSoleil.exe1
Pfad des fehlerhaften Moduls: BlueSoleil.exe2
Berichtskennung: BlueSoleil.exe3
Vollständiger Name des fehlerhaften Pakets: BlueSoleil.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BlueSoleil.exe5
Error: (07/10/2014 02:12:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: WOT.dll_unloaded, Version: 13.9.2.0, Zeitstempel: 0x52247977
Ausnahmecode: 0xc000041d
Fehleroffset: 0x00035e82
ID des fehlerhaften Prozesses: 0x1a98
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/10/2014 02:12:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17126, Zeitstempel: 0x53882e30
Name des fehlerhaften Moduls: WOT.dll_unloaded, Version: 13.9.2.0, Zeitstempel: 0x52247977
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00035e82
ID des fehlerhaften Prozesses: 0x1a98
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
System errors:
=============
Error: (07/12/2014 00:10:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "TOSHIBA Bluetooth Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (07/11/2014 07:14:49 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (07/11/2014 07:14:49 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (07/11/2014 07:14:49 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (07/11/2014 07:14:49 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (07/11/2014 05:07:34 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 20.
Error: (07/11/2014 04:43:05 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 802.
Error: (07/11/2014 04:43:05 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 1106.
Error: (07/11/2014 01:39:44 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (07/11/2014 01:39:44 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Microsoft Office Sessions:
=========================
Error: (07/11/2014 06:02:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30WOT.dll_unloaded13.9.2.052247977c000041d00035e82168401cf9d216a508cc0C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEWOT.dllceea3dc3-0914-11e4-bed4-94de80cef034
Error: (07/11/2014 06:02:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30WOT.dll_unloaded13.9.2.052247977c000000500035e82168401cf9d216a508cc0C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEWOT.dllcd4f34fe-0914-11e4-bed4-94de80cef034
Error: (07/11/2014 03:29:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30unknown0.0.0.000000000c00000050001006f219001cf9d0b24f782e5C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown5d490a0b-08ff-11e4-bed4-94de80cef034
Error: (07/11/2014 03:22:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30unknown0.0.0.000000000c000000500009710fe001cf9d09ffe5a636C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown5c04cdf4-08fe-11e4-bed4-94de80cef034
Error: (07/11/2014 03:09:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30fdmumsp.dll1.0.23.05356ac5cc000000500004c8ef2801cf9d06d2b70cfdC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Program Files (x86)\Free Download Manager\fdmumsp.dll948771d0-08fc-11e4-bed4-94de80cef034
Error: (07/11/2014 02:51:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30fdmumsp.dll1.0.23.05356ac5cc000000500004c8ecbc01cf9d0449c7b787C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Program Files (x86)\Free Download Manager\fdmumsp.dll0b786927-08fa-11e4-bed4-94de80cef034
Error: (07/11/2014 11:01:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30fdmumsp.dll1.0.23.05356ac5cc000000500004c8e1bc401cf9ce3895646c3C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Program Files (x86)\Free Download Manager\fdmumsp.dllfdf40696-08d9-11e4-bed4-94de80cef034
Error: (07/11/2014 00:47:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: BlueSoleil.exe2.7.0.3547e0d402BlueSoleil.exe2.7.0.3547e0d402c0000005000d043f1bbc01cf9c2fb1144cc8C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exeC:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe396e066c-0884-11e4-bed3-94de80cef034
Error: (07/10/2014 02:12:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30WOT.dll_unloaded13.9.2.052247977c000041d00035e821a9801cf9c36d9521e03C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEWOT.dll71c94153-082b-11e4-bed3-94de80cef034
Error: (07/10/2014 02:12:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1712653882e30WOT.dll_unloaded13.9.2.052247977c000000500035e821a9801cf9c36d9521e03C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEWOT.dll709cd440-082b-11e4-bed3-94de80cef034
CodeIntegrity Errors:
===================================
Date: 2014-05-25 20:39:27.462
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Moborobo\MoboroboAssDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-05-25 20:38:45.732
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Moborobo\MoboroboAssDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-05-25 20:38:04.146
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Moborobo\MoboroboAssDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Percentage of memory in use: 28%
Total physical RAM: 16335.52 MB
Available physical RAM: 11707.33 MB
Total Pagefile: 32719.52 MB
Available Pagefile: 27619.62 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:231.93 GB) (Free:105.07 GB) NTFS
Drive d: () (Fixed) (Total:232.88 GB) (Free:167.2 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 233 GB) (Disk ID: 000DA42D)
Partition: GPT Partition Type.
========================================================
Disk: 1 (Size: 233 GB) (Disk ID: 000ED21F)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
12.07.2014, 12:17
| #4 |
| /// TB-Ausbilder | 360 Browser deinstallieren Deinstalliere die folgenden Programme über die Systemsteuerung: 360 Browser 360 Total Security Starte den Rechner anschließend neu auf und berichte. |
|
12.07.2014, 12:20
| #5 |
| | 360 Browser deinstallieren Hallo, es geht leider nicht wenn ich auf deinstallieren gehe in der Systemsteuerung kommt das Deinstallationsprogramm es deinstalliert aber nichts. |
|
12.07.2014, 12:37
| #6 | |
| /// TB-Ausbilder | 360 Browser deinstallierenZitat:
Software mit Revo Uninstaller deinstallieren Downloade Dir bitte den Revo Uninstaller
Starte den Rechner neu auf. |
|
13.07.2014, 13:03
| #7 |
| | 360 Browser deinstallieren Hallo, ich konnte es mit Revo deinstallieren wahrscheinlich war der unin staller nicht ok vielen Dank. |
|
14.07.2014, 11:45
| #8 |
| /// TB-Ausbilder | 360 Browser deinstallieren Noch Probleme?  |
|
16.07.2014, 19:31
| #9 |
| /// TB-Ausbilder | 360 Browser deinstallieren Ich bin froh, dass wir helfen konnten  In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest: Lob, Kritik und Wünsche Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank! Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen. |
|
| Themen zu 360 Browser deinstallieren |
| browser, deinstalliere, deinstallieren, nicht mehr, system, windows, windows 8.1 |
Linear-Darstellung
