| |
| |||||||
Log-Analyse und Auswertung: Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nichtWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
14.08.2014, 15:50
| #1 |
 |  Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Hallo liebe Profis, ich beschreibe hier kurz mein Problem. Vor ein paar Monaten ist mir Aufgefallen das mein rechner ewig lange im Wilkommen-bildschirm ist(Trotz SSD). nach ca 5 minuten kommt dann der desktop. Ich habe ein wenig geforscht und fand im Ereigniss fenster von Windows das die mbam.exe und die avira.exe einen Timeout von 300000ms verursachen. Darauf habe ich wieder gegoogled, das es sein kann das AviraPro und MBAM blockieren, ich soll jeweils den anderen Virenscanner in die Ausschlüsse stecken.Das habe ich dann auch gemacht, und siehe da Windows startete wieder in normalzeit. Dann nach einiger zeit fiel mir auf das MBAM garnicht mehr unten neben der uhr ist, ich habe versucht zu starten ging aber nicht mehr. Eine Neuinstallation löste mein problem. Doch jetzt wieder das selbe spiel gestern musste ich wieder mbam neu installieren weil es wieder nicht ging. Heute nach der arbeit war dann ganz vorbei, Windows im Boot abgestürzt, restet, wikommen 5 minuten lang, MBAM ging, avira hatte den status "ungeschützt", taskleiste nicht klickbar mauskreis, vor wut wieder resettet, lief wieder alles. Ich habe einen scan mit beiden antivieren gemacht 0 Funde, ich habe einen scan mit dem rootkit tool von avira gemacht, 0 funde. chdsk habe ich auch bereits gemacht. FRST: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-08-2014 01 Ran by Lil' Hagbrain (administrator) on INTEL3770K-PC on 14-08-2014 16:44:43 Running from C:\Users\Lil' Hagbrain\Downloads Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 10 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe () C:\AMD\amdacpusrsvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Malwarebytes Corporation) C:\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\ Malwarebytes Anti-Malware \mbamservice.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Malwarebytes Corporation) C:\ Malwarebytes Anti-Malware \mbam.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe () C:\Sapphire TRIXX\TRIXX.exe (Beepa P/L) C:\Fraps\fraps.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe (Apple Inc.) D:\Program Files (x86)\iTunes\iTunesHelper.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe (Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Beepa P/L) C:\Fraps\fraps64.dat (FinalWire Ltd.) C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation) HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [iTunesHelper] => D:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-07] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.) Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer: [NoFolderOptions] 0 HKLM\...\Policies\Explorer: [NoWelcomeScreen] 1 HKU\.DEFAULT\...\Run: [CtxfiReg] => CTXFIREG.exe /FAIL1 HKU\S-1-5-21-729600091-3301723442-1201444741-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.) HKU\S-1-5-21-729600091-3301723442-1201444741-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.) Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB3CE59F40B31CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKLM-x32 - DefaultScope value is missing. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 FireFox: ======== FF ProfilePath: C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll () FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll No File FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File FF Plugin-x32: @esn/esnlaunch,version=2.1.3 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @java.com/DTPlugin,version=10.4.1 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.4.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=0.9.9 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: BlackFox V2 - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\zigboom@hotmail.com [2014-08-05] FF Extension: FT DeepDark - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2014-08-05] FF Extension: MEGA - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\firefox@mega.co.nz.xpi [2014-08-05] FF Extension: leethax.net extension - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\leethax@leethax.net.xpi [2014-08-05] FF Extension: YouTube High Definition - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-08-05] FF Extension: Adblock Plus - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-05] FF Extension: DownThemAll! - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-08-05] FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2014-01-25] Chrome: ======= ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 amdacpusrsvc; C:\AMD\amdacpusrsvc.exe [82432 2014-04-17] () [File not signed] R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [804944 2014-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1021520 2014-08-07] (Avira Operations GmbH & Co. KG) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-06-04] () R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [945664 2013-06-13] (ASUSTeK Computer Inc.) [File not signed] R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.) R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe [1643008 2013-06-13] (ASUSTeK Computer Inc.) [File not signed] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-07-16] () [File not signed] S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2013-08-25] (Creative Labs) [File not signed] R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed] R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240584 2012-10-02] (DTS, Inc) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [528096 2014-06-08] (Futuremark) S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-09] (Intel Corporation) R2 MBAMScheduler; C:\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-08-22] (Overwolf Ltd) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.) R3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [34136 2014-07-29] () R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [274656 2014-04-18] (Advanced Micro Devices) R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [47512 2013-01-10] (Asmedia Technology) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-06-04] () R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-09-14] () S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation) S3 atillk64; C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-03] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [42040 2014-07-15] (Avira Operations GmbH & Co. KG) S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [163368 2012-04-01] (Broadcom Corporation.) S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-09-17] (Broadcom Corporation.) S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [14646560 2011-12-15] (Intel Corporation) [File not signed] S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [331264 2011-12-05] (Intel(R) Corporation) [File not signed] S3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2013-07-02] (ASUSTeK Computer Inc.) R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.) R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-14] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation) S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2011-08-02] (Apple Inc.) [File not signed] S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.) S3 ALSysIO; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\ALSysIO64.sys [X] S3 cpuz135; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X] S3 cpuz137; \??\C:\Windows\TEMP\cpuz137\cpuz137_x64.sys [X] S3 GPU-Z; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\GPU-Z.sys [X] S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X] R3 TRIXX; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\TRIXX.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-14 16:44 - 2014-08-14 16:44 - 00019773 _____ () C:\Users\Lil' Hagbrain\Downloads\FRST.txt 2014-08-14 16:31 - 2014-08-14 16:31 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{0E22FE37-C15C-4A33-8F53-88624F8E1608} 2014-08-14 16:28 - 2014-08-14 16:44 - 00000000 ____D () C:\FRST 2014-08-14 16:28 - 2014-08-14 16:28 - 02100224 _____ (Farbar) C:\Users\Lil' Hagbrain\Downloads\FRST64.exe 2014-08-14 16:03 - 2014-08-14 16:03 - 00000750 _____ () C:\Users\Lil' Hagbrain\Desktop\ Malwarebytes Anti-Malware .lnk 2014-08-14 15:54 - 2014-08-14 15:54 - 00003230 _____ () C:\Windows\System32\Tasks\{EBB8A93E-F56B-44BA-ACDB-B902A59DE51F} 2014-08-14 15:53 - 2014-08-14 15:53 - 00232608 _____ () C:\Users\Lil' Hagbrain\Downloads\gfgffsg.exe 2014-08-13 20:03 - 2014-08-14 16:27 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ Malwarebytes Anti-Malware 2014-08-13 20:03 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-08-13 20:03 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-08-13 20:03 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-08-13 20:00 - 2014-08-13 20:00 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lil' Hagbrain\Downloads\mbam-clean-2.1.1.1001.exe 2014-08-13 19:52 - 2014-08-13 19:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lil' Hagbrain\Downloads\ixplor1.exe 2014-08-13 19:40 - 2014-08-13 19:59 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Windows 2014-08-13 19:40 - 2014-08-13 19:40 - 04872677 _____ () C:\Users\Lil' Hagbrain\Downloads\mbam-chameleon-3.1.4.0.zip 2014-08-13 19:33 - 2014-08-13 19:33 - 00350716 _____ () C:\Users\Lil' Hagbrain\Documents\ts3_clientui-win64-1407159763-2014-08-13 19_33_21.879914.dmp 2014-08-13 17:11 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2014-08-13 17:11 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll 2014-08-13 17:11 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2014-08-13 17:11 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-13 17:11 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2014-08-13 17:11 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2014-08-13 17:11 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe 2014-08-13 17:11 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll 2014-08-13 17:09 - 2014-08-13 17:09 - 00003306 _____ () C:\Windows\System32\Tasks\SidebarExecute 2014-08-13 16:00 - 2014-07-24 14:11 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-08-13 16:00 - 2014-07-24 14:10 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-13 16:00 - 2014-07-24 14:10 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-13 16:00 - 2014-07-24 14:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-08-13 16:00 - 2014-07-24 12:52 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-08-13 16:00 - 2014-07-24 12:52 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-08-13 16:00 - 2014-07-24 12:51 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-08-13 16:00 - 2014-07-24 12:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-13 16:00 - 2014-07-24 12:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-08-13 15:59 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-13 15:59 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-08-13 15:59 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-13 15:59 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-08-13 15:59 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-13 15:59 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2014-08-13 15:59 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-13 15:59 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-13 15:59 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL 2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL 2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL 2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2014-08-13 15:59 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL 2014-08-13 15:59 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls 2014-08-13 15:59 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls 2014-08-13 15:59 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-08-13 15:59 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-08-13 15:59 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-13 15:59 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-13 15:59 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-13 15:59 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-13 15:59 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-13 15:59 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-08-13 15:59 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-08-13 15:59 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-08-12 21:47 - 2013-07-02 16:29 - 00024824 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys 2014-08-12 21:46 - 2014-08-12 21:46 - 00000441 _____ () C:\Users\Lil' Hagbrain\Desktop\report.txt 2014-08-12 21:45 - 2014-08-12 21:45 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaii.bin 2014-08-11 22:23 - 2014-08-11 22:23 - 00277648 _____ () C:\Windows\Minidump\081114-11996-01.dmp 2014-08-11 18:22 - 2014-08-11 18:22 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201408111822375768.log 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\ATI 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-08-11 18:21 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-08-11 18:21 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI 2014-08-11 18:20 - 2014-08-11 18:20 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201408111820028054.log 2014-08-11 18:18 - 2014-08-11 18:18 - 06422528 _____ (Advanced Micro Devices) C:\Users\Lil' Hagbrain\Downloads\amdcleanuputility-1.4.0.0.exe 2014-08-11 17:56 - 2013-10-25 17:39 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\MemoryInfo 1005 2014-08-10 15:01 - 2014-08-10 15:01 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{9AA463DB-53C6-4F92-AC01-1E1B906E4E55} 2014-08-10 13:48 - 2014-08-10 13:48 - 00002840 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140810_1348.html 2014-08-10 12:48 - 2014-08-10 12:48 - 00672192 _____ () C:\Users\Lil' Hagbrain\Downloads\RBE_128.exe 2014-08-10 12:17 - 2014-08-10 12:17 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner (2) 2014-08-10 12:16 - 2008-07-11 15:27 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Desktop\HPUSBFW.exe 2014-08-10 12:15 - 2014-08-10 12:15 - 00237695 _____ () C:\Users\Lil' Hagbrain\Downloads\Boot_Diskette.rar 2014-08-10 12:15 - 2014-08-10 12:15 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Downloads\hpusbfwv2.2.3.exe 2014-08-10 12:14 - 2014-08-10 12:14 - 00503615 _____ () C:\Users\Lil' Hagbrain\Downloads\file.zip 2014-08-10 12:09 - 2014-08-10 14:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner 2014-08-10 12:08 - 2014-08-10 12:08 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaiioc.rom 2014-08-10 11:57 - 2014-08-10 11:57 - 00242003 _____ () C:\Users\Lil' Hagbrain\Downloads\atiflash_417.zip 2014-08-10 11:57 - 2013-10-09 11:38 - 00665600 _____ () C:\Users\Lil' Hagbrain\Desktop\flash.exe 2014-08-10 11:29 - 2014-08-10 11:29 - 269338400 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe 2014-08-09 14:11 - 2014-08-09 14:11 - 25347999 _____ () C:\Users\Lil' Hagbrain\Downloads\GPUTweak_2_5_2.zip 2014-08-09 14:07 - 2014-08-09 14:07 - 01538989 _____ () C:\Users\Lil' Hagbrain\Downloads\ati_winflash_2.3.0.zip 2014-08-09 14:07 - 2014-08-09 14:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH 2014-08-08 21:05 - 2014-08-10 13:10 - 00003240 _____ () C:\Windows\System32\Tasks\Sapphire TRIXX 2014-08-08 20:41 - 2014-08-08 20:41 - 320787824 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\amd-catalyst-14.7-rc1-windows-july9.exe 2014-08-08 20:08 - 2014-08-08 20:08 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\PCMark 8 2014-08-08 17:29 - 2014-08-08 17:29 - 00000000 ____D () C:\Program Files\Futuremark 2014-08-08 16:12 - 2014-08-08 16:12 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{2BA3B15D-34CF-4A2B-975C-E0656316C98D} 2014-08-08 15:58 - 2014-08-08 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{8F5DBC1C-460C-42E0-8EA0-2B84842B1B24} 2014-08-07 16:38 - 2014-08-11 18:29 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 2014-08-07 16:17 - 2014-08-07 16:17 - 00002845 _____ () C:\Users\Lil' Hagbrain\Desktop\Unigine_Heaven_Benchmark_4.0_20140807_1617.html 2014-08-05 17:30 - 2014-08-05 17:30 - 00277648 _____ () C:\Windows\Minidump\080514-10171-01.dmp 2014-08-05 10:01 - 2014-08-05 10:01 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EEDCD8FA-FF4A-4B2B-B11F-67024EF54A03} 2014-08-05 09:27 - 2014-08-05 09:27 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Alte Firefox-Daten 2014-08-02 12:45 - 2014-08-03 15:40 - 00154241 _____ () C:\Users\Lil' Hagbrain\Desktop\ROPAMD DISPLAY.lglcd 2014-08-01 15:07 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-08-01 15:07 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2014-08-01 15:07 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-08-01 15:07 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-08-01 15:07 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2014-08-01 15:07 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-08-01 15:07 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2014-08-01 15:07 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-08-01 15:07 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2014-07-31 19:14 - 2014-07-31 19:14 - 00277648 _____ () C:\Windows\Minidump\073114-10389-01.dmp 2014-07-31 18:46 - 2014-07-31 18:46 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab 2014-07-31 17:55 - 2014-07-31 17:55 - 00001196 _____ () C:\Users\Lil' Hagbrain\Desktop\AIDA64 Extreme.lnk 2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-07-30 16:39 - 2014-07-30 16:39 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EC600916-BC49-4AF1-907C-BA4591AADF16} 2014-07-29 20:58 - 2014-07-29 20:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{23D15F95-9C84-48C5-91EE-CEE46A04ACC1} 2014-07-29 20:54 - 2014-07-29 20:54 - 00000541 _____ () C:\Users\Lil' Hagbrain\Desktop\Steam.lnk 2014-07-27 22:41 - 2014-08-14 16:06 - 00003262 _____ () C:\Windows\System32\Tasks\AIDA64 AutoStart 2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\Program Files (x86)\FinalWire 2014-07-27 13:31 - 2014-07-27 13:32 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{FEC58128-C051-49FE-B643-A32E640CE843} 2014-07-27 11:59 - 2014-08-06 16:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3.0 2014-07-27 11:59 - 2014-08-06 16:11 - 00000000 ____D () C:\Program Files\MSI Kombustor 3.0 2014-07-24 17:18 - 2014-07-24 19:06 - 00000000 ____D () C:\Users\Lil' Hagbrain\Downloads\Neuer Ordner 2014-07-21 22:11 - 2014-07-21 22:11 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{C32691E9-5373-464F-B658-2F1AABE8020A} 2014-07-20 12:26 - 2014-07-20 12:26 - 00056720 _____ () C:\Windows\SysWOW64\CCCInstall_201407201226596362.log 2014-07-19 14:30 - 2014-07-19 14:30 - 00001064 _____ () C:\Users\Lil' Hagbrain\Desktop\NFS14.lnk 2014-07-19 14:17 - 2014-07-19 14:29 - 00001274 _____ () C:\Users\Lil' Hagbrain\Desktop\Need For Speed The Run.lnk 2014-07-19 13:29 - 2014-07-19 13:29 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EC15CB6D-9D46-481E-B76B-D9487947E3E8} 2014-07-18 21:02 - 2014-07-18 21:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{652AEF2F-74CC-442E-B2E6-D99C4A4C4D19} 2014-07-18 16:02 - 2014-08-11 18:26 - 00000022 _____ () C:\Windows\GPU-Z.INI 2014-07-18 15:59 - 2014-07-18 15:59 - 00000000 ____D () C:\Program Files (x86)\Futuremark 2014-07-18 15:58 - 2014-08-08 20:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Futuremark 2014-07-18 15:58 - 2014-07-18 16:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 11 2014-07-18 15:58 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\IsolatedStorage 2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sapphire TRIXX 2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Sapphire TRIXX 2014-07-18 15:10 - 2014-07-18 15:10 - 00002841 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140718_1510.html 2014-07-18 14:26 - 2014-07-18 14:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-07-18 14:12 - 2014-07-18 14:12 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201407181412381851.log 2014-07-18 14:09 - 2014-08-14 16:05 - 00065536 _____ () C:\Windows\system32\spu_storage.bin 2014-07-18 12:52 - 2014-07-18 12:52 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201407181252560169.log 2014-07-18 12:52 - 2014-07-18 12:52 - 00000000 ____D () C:\Program Files\AMD 2014-07-17 19:22 - 2014-07-17 19:33 - 00000000 ____D () C:\Users\Lil' Hagbrain\Heaven 2014-07-17 19:21 - 2014-08-11 18:24 - 01065984 _____ () C:\Users\Lil' Hagbrain\AppData\Local\file__0.localstorage 2014-07-17 16:11 - 2014-07-17 16:12 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{4F3A50DD-CDBD-438A-85C3-547BC2DBEABB} 2014-07-16 18:09 - 2014-07-16 18:09 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{1E82F5E7-C7ED-4E2F-8FC8-7396501BF709} 2014-07-15 22:33 - 2014-07-15 22:33 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{C40A1708-F9A1-4A7E-9C96-BD3C310D2977} ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-14 16:44 - 2014-08-14 16:44 - 00019773 _____ () C:\Users\Lil' Hagbrain\Downloads\FRST.txt 2014-08-14 16:44 - 2014-08-14 16:28 - 00000000 ____D () C:\FRST 2014-08-14 16:39 - 2013-04-16 14:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-08-14 16:31 - 2014-08-14 16:31 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{0E22FE37-C15C-4A33-8F53-88624F8E1608} 2014-08-14 16:31 - 2014-05-03 16:31 - 00000911 _____ () C:\Windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job 2014-08-14 16:31 - 2014-05-03 16:31 - 00000725 _____ () C:\Windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job 2014-08-14 16:28 - 2014-08-14 16:28 - 02100224 _____ (Farbar) C:\Users\Lil' Hagbrain\Downloads\FRST64.exe 2014-08-14 16:27 - 2014-08-13 20:03 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-14 16:13 - 2009-07-14 19:58 - 00699432 _____ () C:\Windows\system32\perfh007.dat 2014-08-14 16:13 - 2009-07-14 19:58 - 00149572 _____ () C:\Windows\system32\perfc007.dat 2014-08-14 16:13 - 2009-07-14 07:13 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-14 16:13 - 2009-07-14 06:45 - 00020480 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-08-14 16:13 - 2009-07-14 06:45 - 00020480 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-08-14 16:09 - 2012-05-15 18:09 - 01142131 _____ () C:\Windows\WindowsUpdate.log 2014-08-14 16:06 - 2014-07-27 22:41 - 00003262 _____ () C:\Windows\System32\Tasks\AIDA64 AutoStart 2014-08-14 16:06 - 2014-05-27 09:27 - 00017216 _____ () C:\Windows\setupact.log 2014-08-14 16:06 - 2012-05-22 20:26 - 00000000 ____D () C:\Fraps 2014-08-14 16:06 - 2012-05-15 18:18 - 01345492 _____ () C:\Windows\PFRO.log 2014-08-14 16:06 - 2012-05-14 22:33 - 00003164 _____ () C:\Windows\System32\Tasks\FRAPS 2014-08-14 16:06 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-08-14 16:05 - 2014-07-18 14:09 - 00065536 _____ () C:\Windows\system32\spu_storage.bin 2014-08-14 16:03 - 2014-08-14 16:03 - 00000750 _____ () C:\Users\Lil' Hagbrain\Desktop\ Malwarebytes Anti-Malware .lnk 2014-08-14 16:01 - 2009-07-14 06:45 - 04858024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-14 15:54 - 2014-08-14 15:54 - 00003230 _____ () C:\Windows\System32\Tasks\{EBB8A93E-F56B-44BA-ACDB-B902A59DE51F} 2014-08-14 15:53 - 2014-08-14 15:53 - 00232608 _____ () C:\Users\Lil' Hagbrain\Downloads\gfgffsg.exe 2014-08-13 23:08 - 2012-05-15 19:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\TS3Client 2014-08-13 22:33 - 2013-12-22 19:51 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\DayZ 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ Malwarebytes Anti-Malware 2014-08-13 20:00 - 2014-08-13 20:00 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lil' Hagbrain\Downloads\mbam-clean-2.1.1.1001.exe 2014-08-13 19:59 - 2014-08-13 19:40 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Windows 2014-08-13 19:59 - 2012-05-15 19:06 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\CrashDumps 2014-08-13 19:52 - 2014-08-13 19:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lil' Hagbrain\Downloads\ixplor1.exe 2014-08-13 19:40 - 2014-08-13 19:40 - 04872677 _____ () C:\Users\Lil' Hagbrain\Downloads\mbam-chameleon-3.1.4.0.zip 2014-08-13 19:33 - 2014-08-13 19:33 - 00350716 _____ () C:\Users\Lil' Hagbrain\Documents\ts3_clientui-win64-1407159763-2014-08-13 19_33_21.879914.dmp 2014-08-13 17:14 - 2013-07-23 23:03 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-13 17:13 - 2012-05-15 20:18 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-08-13 17:11 - 2014-05-06 20:57 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-13 17:09 - 2014-08-13 17:09 - 00003306 _____ () C:\Windows\System32\Tasks\SidebarExecute 2014-08-13 17:03 - 2014-06-07 22:12 - 00225280 ___SH () C:\Users\Lil' Hagbrain\Desktop\Thumbs.db 2014-08-12 21:48 - 2012-10-13 17:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dream Aquarium 2014-08-12 21:46 - 2014-08-12 21:46 - 00000441 _____ () C:\Users\Lil' Hagbrain\Desktop\report.txt 2014-08-12 21:45 - 2014-08-12 21:45 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaii.bin 2014-08-11 22:23 - 2014-08-11 22:23 - 00277648 _____ () C:\Windows\Minidump\081114-11996-01.dmp 2014-08-11 22:23 - 2014-06-05 19:32 - 570760084 _____ () C:\Windows\MEMORY.DMP 2014-08-11 22:23 - 2013-02-03 14:16 - 00000000 ____D () C:\Windows\Minidump 2014-08-11 18:29 - 2014-08-07 16:38 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 2014-08-11 18:26 - 2014-07-18 16:02 - 00000022 _____ () C:\Windows\GPU-Z.INI 2014-08-11 18:24 - 2014-07-17 19:21 - 01065984 _____ () C:\Users\Lil' Hagbrain\AppData\Local\file__0.localstorage 2014-08-11 18:22 - 2014-08-11 18:22 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201408111822375768.log 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\ATI 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-08-11 18:22 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-08-11 18:22 - 2013-09-21 12:35 - 00000000 ____D () C:\AMD 2014-08-11 18:22 - 2012-05-15 18:59 - 00000000 ____D () C:\ProgramData\AMD 2014-08-11 18:22 - 2012-05-15 18:59 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies 2014-08-11 18:21 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI 2014-08-11 18:20 - 2014-08-11 18:20 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201408111820028054.log 2014-08-11 18:18 - 2014-08-11 18:18 - 06422528 _____ (Advanced Micro Devices) C:\Users\Lil' Hagbrain\Downloads\amdcleanuputility-1.4.0.0.exe 2014-08-10 15:01 - 2014-08-10 15:01 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{9AA463DB-53C6-4F92-AC01-1E1B906E4E55} 2014-08-10 14:56 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-08-10 14:02 - 2014-08-10 12:09 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner 2014-08-10 13:48 - 2014-08-10 13:48 - 00002840 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140810_1348.html 2014-08-10 13:48 - 2012-05-15 18:09 - 00000000 ____D () C:\Users\Lil' Hagbrain 2014-08-10 13:10 - 2014-08-08 21:05 - 00003240 _____ () C:\Windows\System32\Tasks\Sapphire TRIXX 2014-08-10 12:48 - 2014-08-10 12:48 - 00672192 _____ () C:\Users\Lil' Hagbrain\Downloads\RBE_128.exe 2014-08-10 12:17 - 2014-08-10 12:17 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner (2) 2014-08-10 12:15 - 2014-08-10 12:15 - 00237695 _____ () C:\Users\Lil' Hagbrain\Downloads\Boot_Diskette.rar 2014-08-10 12:15 - 2014-08-10 12:15 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Downloads\hpusbfwv2.2.3.exe 2014-08-10 12:14 - 2014-08-10 12:14 - 00503615 _____ () C:\Users\Lil' Hagbrain\Downloads\file.zip 2014-08-10 12:08 - 2014-08-10 12:08 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaiioc.rom 2014-08-10 11:57 - 2014-08-10 11:57 - 00242003 _____ () C:\Users\Lil' Hagbrain\Downloads\atiflash_417.zip 2014-08-10 11:29 - 2014-08-10 11:29 - 269338400 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe 2014-08-10 11:20 - 2012-05-15 19:47 - 00000000 ____D () C:\ProgramData\Origin 2014-08-10 11:20 - 2012-05-15 19:47 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-08-09 18:41 - 2012-05-17 16:05 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\UseNeXT 2014-08-09 15:27 - 2012-05-15 23:23 - 00000000 ____D () C:\Program Files (x86)\ASUS 2014-08-09 15:27 - 2012-05-15 18:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-08-09 14:11 - 2014-08-09 14:11 - 25347999 _____ () C:\Users\Lil' Hagbrain\Downloads\GPUTweak_2_5_2.zip 2014-08-09 14:11 - 2012-09-02 14:11 - 00000000 ____D () C:\Windows\Downloaded Installations 2014-08-09 14:07 - 2014-08-09 14:07 - 01538989 _____ () C:\Users\Lil' Hagbrain\Downloads\ati_winflash_2.3.0.zip 2014-08-09 14:07 - 2014-08-09 14:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH 2014-08-09 13:42 - 2012-05-15 21:25 - 01095157 _____ () C:\Windows\DirectX.log 2014-08-08 21:12 - 2012-05-15 15:36 - 00000000 ____D () C:\System&Analyse 2014-08-08 20:41 - 2014-08-08 20:41 - 320787824 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\amd-catalyst-14.7-rc1-windows-july9.exe 2014-08-08 20:26 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Futuremark 2014-08-08 20:14 - 2013-08-25 18:13 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-08 20:08 - 2014-08-08 20:08 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\PCMark 8 2014-08-08 17:29 - 2014-08-08 17:29 - 00000000 ____D () C:\Program Files\Futuremark 2014-08-08 16:12 - 2014-08-08 16:12 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{2BA3B15D-34CF-4A2B-975C-E0656316C98D} 2014-08-08 15:58 - 2014-08-08 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{8F5DBC1C-460C-42E0-8EA0-2B84842B1B24} 2014-08-07 22:13 - 2012-05-15 19:58 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-08-07 16:17 - 2014-08-07 16:17 - 00002845 _____ () C:\Users\Lil' Hagbrain\Desktop\Unigine_Heaven_Benchmark_4.0_20140807_1617.html 2014-08-07 04:06 - 2014-08-13 15:59 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-07 04:01 - 2014-08-13 15:59 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-06 16:11 - 2014-07-27 11:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3.0 2014-08-06 16:11 - 2014-07-27 11:59 - 00000000 ____D () C:\Program Files\MSI Kombustor 3.0 2014-08-05 17:30 - 2014-08-05 17:30 - 00277648 _____ () C:\Windows\Minidump\080514-10171-01.dmp 2014-08-05 10:01 - 2014-08-05 10:01 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EEDCD8FA-FF4A-4B2B-B11F-67024EF54A03} 2014-08-05 09:27 - 2014-08-05 09:27 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Alte Firefox-Daten 2014-08-03 18:39 - 2013-12-22 19:51 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\DayZ 2014-08-03 15:44 - 2012-05-15 21:19 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Xfire 2014-08-03 15:41 - 2012-05-15 21:19 - 00000000 ____D () C:\ProgramData\Xfire 2014-08-03 15:40 - 2014-08-02 12:45 - 00154241 _____ () C:\Users\Lil' Hagbrain\Desktop\ROPAMD DISPLAY.lglcd 2014-08-02 14:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-08-02 12:42 - 2012-06-18 16:03 - 00000132 _____ () C:\Users\Lil' Hagbrain\AppData\Roaming\Adobe PNG Format CS5 Prefs 2014-07-31 19:14 - 2014-07-31 19:14 - 00277648 _____ () C:\Windows\Minidump\073114-10389-01.dmp 2014-07-31 18:46 - 2014-07-31 18:46 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab 2014-07-31 18:46 - 2013-09-01 14:39 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2014-07-31 17:55 - 2014-07-31 17:55 - 00001196 _____ () C:\Users\Lil' Hagbrain\Desktop\AIDA64 Extreme.lnk 2014-07-31 17:53 - 2012-05-15 18:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-07-30 16:39 - 2014-07-30 16:39 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EC600916-BC49-4AF1-907C-BA4591AADF16} 2014-07-29 22:19 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\Performance 2014-07-29 20:58 - 2014-07-29 20:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{23D15F95-9C84-48C5-91EE-CEE46A04ACC1} 2014-07-29 20:55 - 2012-05-17 20:57 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-07-29 20:54 - 2014-07-29 20:54 - 00000541 _____ () C:\Users\Lil' Hagbrain\Desktop\Steam.lnk 2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\Program Files (x86)\FinalWire 2014-07-27 18:04 - 2014-06-24 22:19 - 00000879 _____ () C:\Users\Public\Desktop\PVZ Garden Warfare.lnk 2014-07-27 13:32 - 2014-07-27 13:31 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{FEC58128-C051-49FE-B643-A32E640CE843} 2014-07-24 19:06 - 2014-07-24 17:18 - 00000000 ____D () C:\Users\Lil' Hagbrain\Downloads\Neuer Ordner 2014-07-24 14:11 - 2014-08-13 16:00 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-07-24 14:10 - 2014-08-13 16:00 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-07-24 14:10 - 2014-08-13 16:00 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-07-24 14:09 - 2014-08-13 16:00 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-07-24 12:52 - 2014-08-13 16:00 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-07-24 12:52 - 2014-08-13 16:00 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-07-24 12:51 - 2014-08-13 16:00 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-07-24 12:33 - 2014-08-13 16:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-07-24 12:29 - 2014-08-13 16:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-07-23 22:47 - 2012-06-07 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2014-07-21 22:11 - 2014-07-21 22:11 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{C32691E9-5373-464F-B658-2F1AABE8020A} 2014-07-20 14:36 - 2013-04-16 14:36 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-07-20 14:36 - 2012-05-15 20:09 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-07-20 14:36 - 2012-05-15 20:09 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-07-20 14:34 - 2013-05-17 19:46 - 00008029 _____ () C:\Users\Lil' Hagbrain\Documents\TombRaider.log 2014-07-20 12:31 - 2014-02-16 13:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Raptr 2014-07-20 12:31 - 2014-02-16 13:07 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-07-20 12:26 - 2014-07-20 12:26 - 00056720 _____ () C:\Windows\SysWOW64\CCCInstall_201407201226596362.log 2014-07-19 14:30 - 2014-07-19 14:30 - 00001064 _____ () C:\Users\Lil' Hagbrain\Desktop\NFS14.lnk 2014-07-19 14:29 - 2014-07-19 14:17 - 00001274 _____ () C:\Users\Lil' Hagbrain\Desktop\Need For Speed The Run.lnk 2014-07-19 13:29 - 2014-07-19 13:29 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EC15CB6D-9D46-481E-B76B-D9487947E3E8} 2014-07-18 21:02 - 2014-07-18 21:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{652AEF2F-74CC-442E-B2E6-D99C4A4C4D19} 2014-07-18 16:02 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 11 2014-07-18 15:59 - 2014-07-18 15:59 - 00000000 ____D () C:\Program Files (x86)\Futuremark 2014-07-18 15:58 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\IsolatedStorage 2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sapphire TRIXX 2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Sapphire TRIXX 2014-07-18 15:10 - 2014-07-18 15:10 - 00002841 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140718_1510.html 2014-07-18 14:26 - 2014-07-18 14:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-07-18 14:12 - 2014-07-18 14:12 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201407181412381851.log 2014-07-18 12:52 - 2014-07-18 12:52 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201407181252560169.log 2014-07-18 12:52 - 2014-07-18 12:52 - 00000000 ____D () C:\Program Files\AMD 2014-07-17 23:08 - 2013-07-16 15:31 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Arma 3 2014-07-17 19:33 - 2014-07-17 19:22 - 00000000 ____D () C:\Users\Lil' Hagbrain\Heaven 2014-07-17 16:12 - 2014-07-17 16:11 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{4F3A50DD-CDBD-438A-85C3-547BC2DBEABB} 2014-07-16 18:09 - 2014-07-16 18:09 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{1E82F5E7-C7ED-4E2F-8FC8-7396501BF709} 2014-07-16 05:25 - 2014-08-13 15:59 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-07-16 05:23 - 2014-08-13 15:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-07-16 04:46 - 2014-08-13 15:59 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-07-16 04:46 - 2014-08-13 15:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2014-07-16 04:12 - 2014-08-13 15:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-07-15 22:33 - 2014-07-15 22:33 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{C40A1708-F9A1-4A7E-9C96-BD3C310D2977} 2014-07-15 16:27 - 2014-05-25 21:14 - 00042040 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys Some content of TEMP: ==================== C:\Users\Lil' Hagbrain\AppData\Local\Temp\AMDCleanupUtility.exe C:\Users\Lil' Hagbrain\AppData\Local\Temp\avgnt.exe C:\Users\Lil' Hagbrain\AppData\Local\Temp\Cleanup.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\difxapi.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\msvcm80.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\msvcp80.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\msvcr80.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-08 17:57 ==================== End Of Log ============================ Grüße Hagbrain |
|
15.08.2014, 12:09
| #2 |
| |  Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Addition
__________________Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-08-2014 01
Ran by Lil' Hagbrain at 2014-08-14 16:44:59
Running from C:\Users\Lil' Hagbrain\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKCU\...\uTorrent) (Version: 3.4.0.30596 - BitTorrent Inc.)
3DMark (HKLM-x32\...\Steam App 223850) (Version: - Futuremark)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe After Effects CS5.5 (HKLM-x32\...\{E82097B9-A3B8-404A-9A92-AC16A8AC9576}) (Version: 10.5 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.7.700.224 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.03) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated)
Age of Conan: Unchained (HKLM-x32\...\Age of Conan_is1) (Version: - Funcom)
AIDA64 Extreme v4.60 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.60 - FinalWire Ltd.)
AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0417.2226.38446 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
Antivirus Pro (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.552 - Avira)
AOC UI Installer 3.1.0 (HKLM-x32\...\{87464284-11C8-4F83-88EC-E8013320B789}) (Version: 3.1.0 - VikingWorks)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
Arma 3 Alpha (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
ArtMoney SE v7.40.5 (HKLM-x32\...\ArtMoney SE_is1) (Version: 7.40.5 - System SoftLab)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.4.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
Bad Piggies (HKLM-x32\...\{9524C306-CC16-44A0-82AA-996409D1A059}) (Version: 1.3.0.0 - Rovio Entertainment Ltd.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
BIK Player (HKLM-x32\...\{C755A3D1-0C93-4B0C-94C4-41C178116B64}_is1) (Version: - bikplayer.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bruteforce Save Data (HKLM-x32\...\Bruteforce Save Data) (Version: - )
Buy Script Maker für CSS 0.601 (HKLM-x32\...\Buy Script Maker für CSS) (Version: 0.601 - www.projectbuilder.de)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Contagion (HKLM-x32\...\Steam App 238430) (Version: - Monochrome LLC)
CopyTrans Control Center deinstallieren (HKCU\...\CopyTrans Suite) (Version: 3.003 - WindSolutions)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version: - )
Counter-Strike: Global Offensive Beta (HKLM-x32\...\Steam App 730) (Version: - )
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
Creative Audio-Systemsteuerung (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
CrystalDiskInfo 5.3.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.3.1 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{42BBD1A5-280D-4457-8567-07175A9FB4FB}) (Version: 0.91.2 - Dotjosh Studios)
Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
Dead Island: Epidemic (HKLM-x32\...\Steam App 222900) (Version: - Stunlock Studios)
DefianceRuntimes (HKLM-x32\...\{79B1FF35-9EA8-48ED-98D6-19ABE004BE89}) (Version: 1.0.2 - Trion Worlds, Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-215 217 Series Printer Uninstall (HKLM\...\EPSON XP-215 217 Series) (Version: - SEIKO EPSON Corporation)
Epson-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.05 - Ubisoft)
Fiddler (HKLM-x32\...\Fiddler2) (Version: 2.4.5.9 - Telerik)
FileZilla Client 3.5.3 (HKCU\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)
FormatFactory 2.96 (HKLM-x32\...\FormatFactory) (Version: 2.96 - Free Time)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{4115C9AA-35E0-45D8-9363-47635B8750C7}) (Version: 4.29.438.0 - Futuremark)
Google Update Helper (x32 Version: 1.3.21.135 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
GRID 2 (c) Codemasters version 1 (HKLM-x32\...\R1JJRDI=_is1) (Version: 1 - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
Hitman Absolution (HKLM-x32\...\Hitman Absolution_is1) (Version: - )
Horizon v2.7.8.0 (HKLM-x32\...\d4cfeebc-b821-40b7-9f81-d366b1466f03_is1) (Version: 2.7.8.0 - Daring Development Inc.)
How to Survive (HKLM-x32\...\Steam App 250400) (Version: - )
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iExplorer 3.2.4.2 (HKLM-x32\...\{7FD8B0C1-CDDA-4B4D-A577-B2E3570EA3A3}_is1) (Version: - Macroplant LLC)
Image Resizer Powertoy Clone for Windows (64 bit) (HKLM\...\{C862EC05-1C15-4327-B15D-C7788D6CFF73}) (Version: 2.1.1 - Brice Lambson)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Network Connections 18.5.54.0 (Version: 18.5.54.0 - Intel) Hidden
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 7 Update 4 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217004FF}) (Version: 7.0.40 - Oracle)
JavaFX 2.1.0 (HKLM-x32\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Left 4 Dead (HKLM-x32\...\Steam App 500) (Version: - Valve)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Loadout (HKLM-x32\...\Steam App 208090) (Version: - Edge of Reality)
Logitech Gaming Software (Version: 8.30.86 - Logitech Inc.) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version: - )
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Max Payne (HKLM-x32\...\{39930321-4C58-4B8B-BCBF-342698C9801D}) (Version: - )
Max Payne 2 (HKLM-x32\...\{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}) (Version: 1.01.102 - )
Max Payne 3 (HKLM-x32\...\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}) (Version: 1.0.0.0 - Rockstar Games)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - THQ)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Minion (HKCU\...\{Minion}}_is1) (Version: 2.0 - ZAM Network LLC)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mp3tag v2.51 (HKLM-x32\...\Mp3tag) (Version: v2.51 - Florian Heidenreich)
MSI Kombustor 2.5.2 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD)
MSI Kombustor 3.3.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MultiBit 0.5.18 (HKLM-x32\...\MultiBit 0.5.18) (Version: 0.5.18 - )
Need for Speed Rivals Version 1.0 (HKLM-x32\...\Need for Speed Rivals_is1) (Version: 1.0 - EA Games)
Need for Speed The Run Limited Edition 1.0 (HKLM-x32\...\Need for Speed The Run Limited Edition_is1) (Version: - ea)
Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - )
Nether Launcher (HKLM\...\{94485F33-9350-4920-9CC9-15DAA20FCA89}) (Version: 16.20.0.0 - Nether Productions, LLC.)
Nether Launcher (HKLM\...\{BA92D323-2D01-407D-AA36-285413610376}) (Version: 16.22.0.0 - Nether Productions, LLC.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.46.0 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4 (HKLM-x32\...\{4C552FD3-2CCD-4E00-AC64-0681DBB3F8B5}) (Version: 3.4.9590 - OpenOffice.org)
Origin (HKLM-x32\...\Origin) (Version: 8.5.2.23 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\T3V0bGFzdA==_is1) (Version: 1 - )
Overwolf (HKLM-x32\...\{48615A7B-F026-4F62-A3F1-49001B8E21CB}) (Version: 0.44.256 - Overwolf)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version: - Ndemic Creations)
PokerTH (HKLM-x32\...\PokerTH 0.9.5) (Version: 0.9.5 - www.pokerth.net)
Programmer's Notepad (HKLM-x32\...\{52CF142B-7B0E-41E7-98F5-B834122523E7}_is1) (Version: 2.3.4.2350 - Simon Steele)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.1.0 - Electronic Arts)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
RAGE (HKLM-x32\...\Steam App 9200) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6954 - Realtek Semiconductor Corp.)
RESIDENT EVIL 6 / BIOHAZARD 6 (HKLM-x32\...\Steam App 221040) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.0.9.5 - Rockstar Games)
RollerCoaster Tycoon 3 (HKLM-x32\...\RollerCoaster Tycoon 3_is1) (Version: - Atari)
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.)
Samsung AllShare (x32 Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.) Hidden
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version: - )
Serious Sam 3: BFE (HKLM-x32\...\Steam App 41070) (Version: - Croteam)
Skyrim Online Mod version r3 (HKLM-x32\...\{719B4740-7A1C-42B7-BA78-0CB2486EE714}_is1) (Version: r3 - Skyrim Online)
Software Updater (HKLM-x32\...\{C09D747A-BD47-42A9-915E-CEB6B1BB7C11}) (Version: 4.2.7 - SEIKO EPSON CORPORATION)
Source Filmmaker (HKLM-x32\...\Steam App 1840) (Version: - Valve)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{19B0831B-0C18-4103-86E4-90FCD04CD3B9}) (Version: 6.0.12.5 - Husdawg, LLC)
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8 (HKLM-x32\...\The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8) (Version: 1.9.32.0.8 - .x.X.RIDDICK.X.x.)
The Walking Dead - Survival Instinct version 5.1 (HKLM-x32\...\{5FF2B4BB-9D81-4312-B574-DE26A738C6C6}_is1) (Version: 5.1 - Black_Box)
The War Z (HKLM-x32\...\Steam App 226700) (Version: - )
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.5.7 - Electronic Arts)
Tom Clancy's Ghost Recon Phantoms - EU (HKLM-x32\...\Steam App 272350) (Version: - Ubisoft Singapore)
Tom Clancy's Splinter Cell Blacklist (HKLM-x32\...\Steam App 235600) (Version: - Ubisoft Toronto)
Tomb Raider (HKLM-x32\...\Tomb Raider_is1) (Version: - )
Tropico 4 (HKLM-x32\...\Steam App 57690) (Version: - Haemimont Games)
Tropico 5 (HKLM-x32\...\Tropico 5_is1) (Version: 1.0 - ADDONiA)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unreal Gold (HKLM-x32\...\Unreal Gold) (Version: - )
Unreal Tournament 3: Black Edition (HKLM-x32\...\Steam App 13210) (Version: - Epic Games, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7C8BBDE-FE98-11E1-87C9-F04DA23A5C58}) (Version: 12.0.367 - Sony)
Vista Shortcut Manager x64 (HKLM\...\{C7311329-C491-427B-8880-133E84869B3A}) (Version: 2.0 - Frameworkx)
VLC media player 0.9.9 (HKLM-x32\...\VLC media player) (Version: 0.9.9 - VideoLAN Team)
VTFEdit 1.2.5 (HKLM-x32\...\VTFEdit_is1) (Version: - Neil Jedrzejewski & Ryan Gregg)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
War Thunder Launcher 1.0.1.361 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
WIDCOMM Bluetooth Software (HKLM\...\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}) (Version: 6.5.0.3200 - Broadcom Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wolfenstein: The New Order (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - )
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Xfire (remove only) (HKLM-x32\...\Xfire) (Version: - )
Zombie Driver (HKLM-x32\...\Steam App 31410) (Version: - EXOR Studios)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-729600091-3301723442-1201444741-1000_Classes\CLSID\{f0d05fbd-2ab5-4529-8178-bbed954324b0}\InprocServer32 -> C:\Windows\SYSTEM32\dfshim.dll (Microsoft Corporation)
==================== Restore Points =========================
08-08-2014 18:14:27 3DMark
08-08-2014 18:43:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
08-08-2014 18:43:21 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
09-08-2014 11:41:55 DirectX wurde installiert
09-08-2014 12:12:00 Installiert ASUS GPU Tweak
09-08-2014 13:27:09 Konfiguriert ASUS GPU Tweak
10-08-2014 09:31:12 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
11-08-2014 16:22:01 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
13-08-2014 15:11:19 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-06-14 14:56 - 2013-07-30 20:36 - 00001090 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com
127.0.0.1 activate.adobe.com
127.0.0.1 anchorfree.net
127.0.0.1 rss2search.com
127.0.0.1 techbrowsing.com
127.0.0.1 box.anchorfree.net
127.0.0.1 www.mefeedia.com
127.0.0.3 www.anchorfree.net
127.0.0.2 www.mefeedia.com
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {1A04970A-49AC-44CE-80C3-4320D636B1E6} - System32\Tasks\AIDA64 AutoStart => C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe [2014-07-29] (FinalWire Ltd.)
Task: {3B79E5DF-4E48-4450-9CB8-52D1B01E4086} - System32\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {43C56C3A-004B-4ABB-9638-7087D70A83F1} - System32\Tasks\Games\UpdateCheck_S-1-5-21-729600091-3301723442-1201444741-1000
Task: {54956001-54A5-42FC-9B44-4E1D10B78940} - System32\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {6D19C9E3-48C7-4077-B5D1-467746F6E2B9} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {741D0369-3DED-454A-8647-853B2133E858} - System32\Tasks\Sapphire TRIXX => C:\Sapphire TRIXX\TRIXX.exe [2013-12-19] ()
Task: {76F04A29-3D7A-42B0-BE42-24771E33951E} - \Software Updater No Task File <==== ATTENTION
Task: {912FDAD1-774A-4DA7-8F3E-FD12C69CC2BC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-20] (Adobe Systems Incorporated)
Task: {96E67F9C-B262-4429-8508-75223DCBEAB4} - \BrowserProtect No Task File <==== ATTENTION
Task: {9C249ED9-4ACB-4ADC-AE5E-5C672565ED0E} - \Software Updater Ui No Task File <==== ATTENTION
Task: {C6245183-9D94-4A89-9080-0B7E3020C63E} - \FreeDriverScout No Task File <==== ATTENTION
Task: {FA3A3E4A-0583-4A8E-94AF-6EF81658F5C5} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\Windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
==================== Loaded Modules (whitelisted) =============
2014-04-17 21:55 - 2014-04-17 21:55 - 00082432 _____ () C:\AMD\amdacpusrsvc.exe
2014-06-05 17:40 - 2013-06-04 17:41 - 00936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2013-12-19 18:19 - 2013-12-19 18:19 - 05623104 _____ () C:\Sapphire TRIXX\TRIXX.exe
2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2012-02-20 21:29 - 2012-02-20 21:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 21:28 - 2012-02-20 21:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-06-05 17:40 - 2014-08-14 16:06 - 00031232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2014-06-05 17:40 - 2013-06-04 17:41 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 01135616 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00656896 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00105472 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00098816 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00077312 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00520234 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00450560 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 05717504 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00029184 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00147456 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 04671488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00070656 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00686080 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00152064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00027648 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00063488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00366592 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\tag.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00289792 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00023040 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00133120 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00290304 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00399826 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00013824 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00031232 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00054784 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00044032 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\us.dll
2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2012-05-15 20:17 - 2007-09-13 18:05 - 00002560 _____ () C:\Windows\system32\CTXFIGER.DLL
2012-05-15 20:17 - 2009-06-29 10:54 - 00164864 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-06-05 18:28 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-07-30 16:47 - 2014-07-30 16:47 - 03800688 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:A303874F
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: SamsungAllShareV2.0 => 2
MSCONFIG\Services: SimpleSlideShowServer => 3
MSCONFIG\startupfolder: C:^Users^Lil' Hagbrain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip => C:\Windows\pss\CurseClientStartup.ccip.Startup
MSCONFIG\startupfolder: C:^Users^Lil' Hagbrain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AsioReg => REGSVR32 /S CTASIO.DLL
MSCONFIG\startupreg: iTunesHelper => "D:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: OpAgent => "OpAgent.exe" /agent
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RtHDVBg_DTS => "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (08/13/2014 07:58:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x59c
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:56:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0xf70
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:52:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x13d4
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:52:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x5d0
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:51:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1410
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:50:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x17c8
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:50:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1414
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:50:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1684
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:43:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0xc20
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:42:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x198
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
System errors:
=============
Error: (08/14/2014 04:04:52 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2014 04:01:38 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 14.08.2014 um 15:55:10 unerwartet heruntergefahren.
Error: (08/14/2014 03:51:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 4 Mal passiert.
Error: (08/14/2014 03:51:05 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (08/14/2014 03:50:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2014 03:50:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/13/2014 07:35:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MBAMService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/13/2014 07:35:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMScheduler" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/13/2014 07:35:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst MBAMScheduler erreicht.
Error: (08/13/2014 07:24:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Microsoft Office Sessions:
=========================
Error: (08/13/2014 07:58:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd59c01cfb72041d99dbcC:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll7fb1dcc9-2313-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:56:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fdf7001cfb71ff53421eeC:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll330a1702-2313-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:52:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd13d401cfb71f61f038eaC:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll9fbd061c-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:52:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd5d001cfb71f5c9dfe08C:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll9a6cee21-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:51:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd141001cfb71f2ae7210eC:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll68ad5e77-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd17c801cfb71f21fdcf46C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll5fc40caf-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd141401cfb71f1c965e64C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll5a5c9bce-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd168401cfb71f0e33e839C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll4bfa25a2-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:43:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fdc2001cfb71e132829a1C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll50e3b882-2311-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:42:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd19801cfb71df8385248C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll35f3e129-2311-11e4-8ffa-c86000a49f7d
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 16%
Total physical RAM: 16323.37 MB
Available physical RAM: 13569.99 MB
Total Pagefile: 32644.91 MB
Available Pagefile: 29476.16 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (Windows x64 SSD) (Fixed) (Total:238.37 GB) (Free:138.3 GB) NTFS
Drive d: (HDD) (Fixed) (Total:1397.26 GB) (Free:206.53 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238 GB) (Disk ID: 4D40156A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=238 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: C4836045)
Partition 1: (Not Active) - (Size=1397 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net Rootkit scan 2014-08-14 17:08:56 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 M4-CT256M4SSD2 rev.070H 238,47GB Running: rfgu3912.exe; Driver: C:\Users\LIL'HA~1\AppData\Local\Temp\kxryraob.sys ---- Kernel code sections - GMER 2.1 ---- INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528 fffff800039b9000 45 bytes [6B, 87, 08, 38, 76, C1, 48, ...] INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 575 fffff800039b902f 16 bytes [00, 00, 00, 00, 00, 00, 00, ...] ---- User code sections - GMER 2.1 ---- .text C:\ Malwarebytes Anti-Malware \mbamscheduler.exe[2080] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075991465 2 bytes [99, 75] .text C:\ Malwarebytes Anti-Malware \mbamscheduler.exe[2080] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000759914bb 2 bytes [99, 75] .text ... * 2 .text C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe[2288] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075991465 2 bytes [99, 75] .text C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe[2288] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000759914bb 2 bytes [99, 75] .text ... * 2 .text C:\ Malwarebytes Anti-Malware \mbam.exe[2656] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075991465 2 bytes [99, 75] .text C:\ Malwarebytes Anti-Malware \mbam.exe[2656] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000759914bb 2 bytes [99, 75] .text ... * 2 .text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[4008] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075991465 2 bytes [99, 75] .text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[4008] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000759914bb 2 bytes [99, 75] .text ... * 2 .text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4664] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075991465 2 bytes [99, 75] .text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4664] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000759914bb 2 bytes [99, 75] .text ... * 2 .text C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe[6792] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075991465 2 bytes [99, 75] .text C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe[6792] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000759914bb 2 bytes [99, 75] .text ... * 2 .text C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe[3172] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075991465 2 bytes [99, 75] .text C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe[3172] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000759914bb 2 bytes [99, 75] .text ... * 2 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\94dbc93a5d7c Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\94dbc93a5d7c@109add1e5ec5 0xE4 0x95 0x8D 0x7C ... Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\94dbc93a5d7c (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\94dbc93a5d7c@109add1e5ec5 0xE4 0x95 0x8D 0x7C ... ---- EOF - GMER 2.1 ---- Geändert von Hagbrain (14.08.2014 um 16:10 Uhr) |
|
15.08.2014, 12:42
| #3 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Hi,
__________________dein Problem ist Folgendes Zitat:
Gecrackte Adobe-Software hast anscheinend auch auf diesem Rechner.
__________________ |
|
15.08.2014, 13:55
| #4 |
| | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Ist behoben, habe das us der hosts genommen, windows ist original, ich habe nie werte in die hosts eingetragen, avira hatte das immer blockiert Neue Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-08-2014
Ran by Lil' Hagbrain at 2014-08-15 14:53:03
Running from C:\Users\Lil' Hagbrain\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3DMark (HKLM-x32\...\Steam App 223850) (Version: - Futuremark)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe After Effects CS5.5 (HKLM-x32\...\{E82097B9-A3B8-404A-9A92-AC16A8AC9576}) (Version: 10.5 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.7.700.224 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.03) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated)
Age of Conan: Unchained (HKLM-x32\...\Age of Conan_is1) (Version: - Funcom)
AIDA64 Extreme v4.60 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.60 - FinalWire Ltd.)
AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0417.2226.38446 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
Antivirus Pro (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.552 - Avira)
AOC UI Installer 3.1.0 (HKLM-x32\...\{87464284-11C8-4F83-88EC-E8013320B789}) (Version: 3.1.0 - VikingWorks)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
Arma 3 Alpha (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
ArtMoney SE v7.40.5 (HKLM-x32\...\ArtMoney SE_is1) (Version: 7.40.5 - System SoftLab)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.4.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
Bad Piggies (HKLM-x32\...\{9524C306-CC16-44A0-82AA-996409D1A059}) (Version: 1.3.0.0 - Rovio Entertainment Ltd.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
BIK Player (HKLM-x32\...\{C755A3D1-0C93-4B0C-94C4-41C178116B64}_is1) (Version: - bikplayer.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Contagion (HKLM-x32\...\Steam App 238430) (Version: - Monochrome LLC)
CopyTrans Control Center deinstallieren (HKCU\...\CopyTrans Suite) (Version: 3.003 - WindSolutions)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version: - )
Counter-Strike: Global Offensive Beta (HKLM-x32\...\Steam App 730) (Version: - )
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
Creative Audio-Systemsteuerung (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
CrystalDiskInfo 5.3.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.3.1 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{42BBD1A5-280D-4457-8567-07175A9FB4FB}) (Version: 0.91.2 - Dotjosh Studios)
Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
Dead Island: Epidemic (HKLM-x32\...\Steam App 222900) (Version: - Stunlock Studios)
DefianceRuntimes (HKLM-x32\...\{79B1FF35-9EA8-48ED-98D6-19ABE004BE89}) (Version: 1.0.2 - Trion Worlds, Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-215 217 Series Printer Uninstall (HKLM\...\EPSON XP-215 217 Series) (Version: - SEIKO EPSON Corporation)
Epson-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.05 - Ubisoft)
FileZilla Client 3.5.3 (HKCU\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)
FormatFactory 2.96 (HKLM-x32\...\FormatFactory) (Version: 2.96 - Free Time)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{4115C9AA-35E0-45D8-9363-47635B8750C7}) (Version: 4.29.438.0 - Futuremark)
Google Update Helper (x32 Version: 1.3.21.135 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
GRID 2 (c) Codemasters version 1 (HKLM-x32\...\R1JJRDI=_is1) (Version: 1 - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
Hitman Absolution (HKLM-x32\...\Hitman Absolution_is1) (Version: - )
Horizon v2.7.8.0 (HKLM-x32\...\d4cfeebc-b821-40b7-9f81-d366b1466f03_is1) (Version: 2.7.8.0 - Daring Development Inc.)
How to Survive (HKLM-x32\...\Steam App 250400) (Version: - )
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iExplorer 3.2.4.2 (HKLM-x32\...\{7FD8B0C1-CDDA-4B4D-A577-B2E3570EA3A3}_is1) (Version: - Macroplant LLC)
Image Resizer Powertoy Clone for Windows (64 bit) (HKLM\...\{C862EC05-1C15-4327-B15D-C7788D6CFF73}) (Version: 2.1.1 - Brice Lambson)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Network Connections 18.5.54.0 (Version: 18.5.54.0 - Intel) Hidden
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 7 Update 4 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217004FF}) (Version: 7.0.40 - Oracle)
JavaFX 2.1.0 (HKLM-x32\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Left 4 Dead (HKLM-x32\...\Steam App 500) (Version: - Valve)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Loadout (HKLM-x32\...\Steam App 208090) (Version: - Edge of Reality)
Logitech Gaming Software (Version: 8.30.86 - Logitech Inc.) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version: - )
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Max Payne (HKLM-x32\...\{39930321-4C58-4B8B-BCBF-342698C9801D}) (Version: - )
Max Payne 2 (HKLM-x32\...\{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}) (Version: 1.01.102 - )
Max Payne 3 (HKLM-x32\...\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}) (Version: 1.0.0.0 - Rockstar Games)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - THQ)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Minion (HKCU\...\{Minion}}_is1) (Version: 2.0 - ZAM Network LLC)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mp3tag v2.51 (HKLM-x32\...\Mp3tag) (Version: v2.51 - Florian Heidenreich)
MSI Kombustor 2.5.2 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD)
MSI Kombustor 3.3.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MultiBit 0.5.18 (HKLM-x32\...\MultiBit 0.5.18) (Version: 0.5.18 - )
Need for Speed Rivals Version 1.0 (HKLM-x32\...\Need for Speed Rivals_is1) (Version: 1.0 - EA Games)
Need for Speed The Run Limited Edition 1.0 (HKLM-x32\...\Need for Speed The Run Limited Edition_is1) (Version: - ea)
Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - )
Nether Launcher (HKLM\...\{94485F33-9350-4920-9CC9-15DAA20FCA89}) (Version: 16.20.0.0 - Nether Productions, LLC.)
Nether Launcher (HKLM\...\{BA92D323-2D01-407D-AA36-285413610376}) (Version: 16.22.0.0 - Nether Productions, LLC.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.46.0 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4 (HKLM-x32\...\{4C552FD3-2CCD-4E00-AC64-0681DBB3F8B5}) (Version: 3.4.9590 - OpenOffice.org)
Origin (HKLM-x32\...\Origin) (Version: 8.5.2.23 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\T3V0bGFzdA==_is1) (Version: 1 - )
Overwolf (HKLM-x32\...\{48615A7B-F026-4F62-A3F1-49001B8E21CB}) (Version: 0.44.256 - Overwolf)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version: - Ndemic Creations)
PokerTH (HKLM-x32\...\PokerTH 0.9.5) (Version: 0.9.5 - www.pokerth.net)
Programmer's Notepad (HKLM-x32\...\{52CF142B-7B0E-41E7-98F5-B834122523E7}_is1) (Version: 2.3.4.2350 - Simon Steele)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.2.0 - Electronic Arts)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
RAGE (HKLM-x32\...\Steam App 9200) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6954 - Realtek Semiconductor Corp.)
RESIDENT EVIL 6 / BIOHAZARD 6 (HKLM-x32\...\Steam App 221040) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.0.9.5 - Rockstar Games)
RollerCoaster Tycoon 3 (HKLM-x32\...\RollerCoaster Tycoon 3_is1) (Version: - Atari)
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.)
Samsung AllShare (x32 Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.) Hidden
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version: - )
Serious Sam 3: BFE (HKLM-x32\...\Steam App 41070) (Version: - Croteam)
Skyrim Online Mod version r3 (HKLM-x32\...\{719B4740-7A1C-42B7-BA78-0CB2486EE714}_is1) (Version: r3 - Skyrim Online)
Software Updater (HKLM-x32\...\{C09D747A-BD47-42A9-915E-CEB6B1BB7C11}) (Version: 4.2.7 - SEIKO EPSON CORPORATION)
Source Filmmaker (HKLM-x32\...\Steam App 1840) (Version: - Valve)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{19B0831B-0C18-4103-86E4-90FCD04CD3B9}) (Version: 6.0.12.5 - Husdawg, LLC)
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8 (HKLM-x32\...\The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8) (Version: 1.9.32.0.8 - .x.X.RIDDICK.X.x.)
The War Z (HKLM-x32\...\Steam App 226700) (Version: - )
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.5.7 - Electronic Arts)
Tom Clancy's Ghost Recon Phantoms - EU (HKLM-x32\...\Steam App 272350) (Version: - Ubisoft Singapore)
Tom Clancy's Splinter Cell Blacklist (HKLM-x32\...\Steam App 235600) (Version: - Ubisoft Toronto)
Tomb Raider (HKLM-x32\...\Tomb Raider_is1) (Version: - )
Tropico 4 (HKLM-x32\...\Steam App 57690) (Version: - Haemimont Games)
Tropico 5 (HKLM-x32\...\Tropico 5_is1) (Version: 1.0 - ADDONiA)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unreal Gold (HKLM-x32\...\Unreal Gold) (Version: - )
Unreal Tournament 3: Black Edition (HKLM-x32\...\Steam App 13210) (Version: - Epic Games, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7C8BBDE-FE98-11E1-87C9-F04DA23A5C58}) (Version: 12.0.367 - Sony)
Vista Shortcut Manager x64 (HKLM\...\{C7311329-C491-427B-8880-133E84869B3A}) (Version: 2.0 - Frameworkx)
VLC media player 0.9.9 (HKLM-x32\...\VLC media player) (Version: 0.9.9 - VideoLAN Team)
VTFEdit 1.2.5 (HKLM-x32\...\VTFEdit_is1) (Version: - Neil Jedrzejewski & Ryan Gregg)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
War Thunder Launcher 1.0.1.361 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
WIDCOMM Bluetooth Software (HKLM\...\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}) (Version: 6.5.0.3200 - Broadcom Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wolfenstein: The New Order (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - )
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Xfire (remove only) (HKLM-x32\...\Xfire) (Version: - )
Zombie Driver (HKLM-x32\...\Steam App 31410) (Version: - EXOR Studios)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-729600091-3301723442-1201444741-1000_Classes\CLSID\{f0d05fbd-2ab5-4529-8178-bbed954324b0}\InprocServer32 -> C:\Windows\SYSTEM32\dfshim.dll (Microsoft Corporation)
==================== Restore Points =========================
08-08-2014 18:14:27 3DMark
08-08-2014 18:43:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
08-08-2014 18:43:21 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
09-08-2014 11:41:55 DirectX wurde installiert
09-08-2014 12:12:00 Installiert ASUS GPU Tweak
09-08-2014 13:27:09 Konfiguriert ASUS GPU Tweak
10-08-2014 09:31:12 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
11-08-2014 16:22:01 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
13-08-2014 15:11:19 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-06-14 14:56 - 2014-08-15 14:49 - 00001020 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 anchorfree.net
127.0.0.1 rss2search.com
127.0.0.1 techbrowsing.com
127.0.0.1 box.anchorfree.net
127.0.0.1 www.mefeedia.com
127.0.0.3 www.anchorfree.net
127.0.0.2 www.mefeedia.com
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0AF3FC3D-CAB5-411C-ABB0-574CC6B0CF57} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: {1A04970A-49AC-44CE-80C3-4320D636B1E6} - System32\Tasks\AIDA64 AutoStart => C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe [2014-07-29] (FinalWire Ltd.)
Task: {3B79E5DF-4E48-4450-9CB8-52D1B01E4086} - System32\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {43C56C3A-004B-4ABB-9638-7087D70A83F1} - System32\Tasks\Games\UpdateCheck_S-1-5-21-729600091-3301723442-1201444741-1000
Task: {54956001-54A5-42FC-9B44-4E1D10B78940} - System32\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {6D19C9E3-48C7-4077-B5D1-467746F6E2B9} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {741D0369-3DED-454A-8647-853B2133E858} - System32\Tasks\Sapphire TRIXX => C:\Sapphire TRIXX\TRIXX.exe [2013-12-19] ()
Task: {912FDAD1-774A-4DA7-8F3E-FD12C69CC2BC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-20] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\Windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
==================== Loaded Modules (whitelisted) =============
2014-04-17 21:55 - 2014-04-17 21:55 - 00082432 _____ () C:\AMD\amdacpusrsvc.exe
2014-06-05 17:40 - 2013-06-04 17:41 - 00936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2012-05-15 19:23 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2013-12-19 18:19 - 2013-12-19 18:19 - 05623104 _____ () C:\Sapphire TRIXX\TRIXX.exe
2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2012-02-20 21:29 - 2012-02-20 21:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 21:28 - 2012-02-20 21:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-06-05 17:40 - 2014-08-15 13:06 - 00031232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2014-06-05 17:40 - 2013-06-04 17:41 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 01135616 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00656896 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00105472 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00098816 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00077312 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00520234 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00450560 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 05717504 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00029184 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00147456 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 04671488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00070656 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00686080 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00152064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00027648 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00063488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00366592 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\tag.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00289792 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00023040 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00133120 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00290304 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00399826 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00013824 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00031232 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00054784 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00044032 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\us.dll
2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2012-05-15 20:17 - 2007-09-13 18:05 - 00002560 _____ () C:\Windows\system32\CTXFIGER.DLL
2012-05-15 20:17 - 2009-06-29 10:54 - 00164864 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-06-05 18:28 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-07-30 16:47 - 2014-07-30 16:47 - 03800688 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:A303874F
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: SamsungAllShareV2.0 => 2
MSCONFIG\Services: SimpleSlideShowServer => 3
MSCONFIG\startupfolder: C:^Users^Lil' Hagbrain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip => C:\Windows\pss\CurseClientStartup.ccip.Startup
MSCONFIG\startupfolder: C:^Users^Lil' Hagbrain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AsioReg => REGSVR32 /S CTASIO.DLL
MSCONFIG\startupreg: iTunesHelper => "D:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: OpAgent => "OpAgent.exe" /agent
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RtHDVBg_DTS => "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (08/14/2014 10:26:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DayZ.exe, Version: 0.48.124.737, Zeitstempel: 0x53ea1406
Name des fehlerhaften Moduls: DayZ.exe, Version: 0.48.124.737, Zeitstempel: 0x53ea1406
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001c3f2c
ID des fehlerhaften Prozesses: 0x1530
Startzeit der fehlerhaften Anwendung: 0xDayZ.exe0
Pfad der fehlerhaften Anwendung: DayZ.exe1
Pfad des fehlerhaften Moduls: DayZ.exe2
Berichtskennung: DayZ.exe3
Error: (08/13/2014 07:58:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x59c
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:56:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0xf70
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:52:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x13d4
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:52:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x5d0
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:51:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1410
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:50:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x17c8
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:50:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1414
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:50:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1684
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:43:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0xc20
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
System errors:
=============
Error: (08/14/2014 04:04:52 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2014 04:01:38 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 14.08.2014 um 15:55:10 unerwartet heruntergefahren.
Error: (08/14/2014 03:51:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 4 Mal passiert.
Error: (08/14/2014 03:51:05 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (08/14/2014 03:50:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2014 03:50:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/13/2014 07:35:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MBAMService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/13/2014 07:35:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMScheduler" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/13/2014 07:35:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst MBAMScheduler erreicht.
Error: (08/13/2014 07:24:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Microsoft Office Sessions:
=========================
Error: (08/14/2014 10:26:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: DayZ.exe0.48.124.73753ea1406DayZ.exe0.48.124.73753ea1406c0000005001c3f2c153001cfb7f7c3843099D:\Steam\steamapps\common\DayZ\DayZ.exeD:\Steam\steamapps\common\DayZ\DayZ.exe37a6c944-23f1-11e4-ac72-c86000a49f7d
Error: (08/13/2014 07:58:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd59c01cfb72041d99dbcC:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll7fb1dcc9-2313-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:56:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fdf7001cfb71ff53421eeC:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll330a1702-2313-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:52:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd13d401cfb71f61f038eaC:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll9fbd061c-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:52:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd5d001cfb71f5c9dfe08C:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll9a6cee21-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:51:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd141001cfb71f2ae7210eC:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll68ad5e77-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd17c801cfb71f21fdcf46C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll5fc40caf-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd141401cfb71f1c965e64C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll5a5c9bce-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd168401cfb71f0e33e839C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll4bfa25a2-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:43:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fdc2001cfb71e132829a1C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll50e3b882-2311-11e4-8ffa-c86000a49f7d
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 17%
Total physical RAM: 16323.37 MB
Available physical RAM: 13486.48 MB
Total Pagefile: 32644.91 MB
Available Pagefile: 29357.37 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (Windows x64 SSD) (Fixed) (Total:238.37 GB) (Free:139.44 GB) NTFS
Drive d: (HDD) (Fixed) (Total:1397.26 GB) (Free:214.26 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238 GB) (Disk ID: 4D40156A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=238 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: C4836045)
Partition 1: (Not Active) - (Size=1397 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Bild von der Aktivierung:  Geändert von Hagbrain (15.08.2014 um 14:03 Uhr) |
|
15.08.2014, 13:58
| #5 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nichtZitat:
Außerdem scheint das gecrackte Adobe noch drauf zu sein. Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html Es geht weiter wenn du alles Illegale entfernt hast. Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
15.08.2014, 14:22
| #6 |
| | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Am PC sind nur meine freundin und ich, habe jetzt adobe Photoshop und After effects deinstalliert. FRST: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-08-2014 01 Ran by Lil' Hagbrain (administrator) on INTEL3770K-PC on 15-08-2014 15:21:16 Running from C:\Users\Lil' Hagbrain\Downloads Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 10 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe () C:\AMD\amdacpusrsvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Malwarebytes Corporation) C:\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\ Malwarebytes Anti-Malware \mbamservice.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Malwarebytes Corporation) C:\ Malwarebytes Anti-Malware \mbam.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe () C:\Sapphire TRIXX\TRIXX.exe (Beepa P/L) C:\Fraps\fraps.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe (Apple Inc.) D:\Program Files (x86)\iTunes\iTunesHelper.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (FinalWire Ltd.) C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe (Beepa P/L) C:\Fraps\fraps64.dat (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation) HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [iTunesHelper] => D:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-07] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.) Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer: [NoFolderOptions] 0 HKLM\...\Policies\Explorer: [NoWelcomeScreen] 1 HKU\.DEFAULT\...\Run: [CtxfiReg] => CTXFIREG.exe /FAIL1 HKU\S-1-5-21-729600091-3301723442-1201444741-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.) HKU\S-1-5-21-729600091-3301723442-1201444741-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.) Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login. HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB3CE59F40B31CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 FireFox: ======== FF ProfilePath: C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll () FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll No File FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File FF Plugin-x32: @esn/esnlaunch,version=2.1.3 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @java.com/DTPlugin,version=10.4.1 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.4.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File FF Plugin-x32: @videolan.org/vlc,version=0.9.9 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: BlackFox V2 - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\zigboom@hotmail.com [2014-08-05] FF Extension: FT DeepDark - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2014-08-05] FF Extension: MEGA - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\firefox@mega.co.nz.xpi [2014-08-05] FF Extension: leethax.net extension - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\leethax@leethax.net.xpi [2014-08-05] FF Extension: YouTube High Definition - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-08-05] FF Extension: Adblock Plus - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-05] FF Extension: DownThemAll! - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-08-05] Chrome: ======= ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 amdacpusrsvc; C:\AMD\amdacpusrsvc.exe [82432 2014-04-17] () [File not signed] R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [804944 2014-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1021520 2014-08-07] (Avira Operations GmbH & Co. KG) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-06-04] () R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [945664 2013-06-13] (ASUSTeK Computer Inc.) [File not signed] R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.) R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe [1643008 2013-06-13] (ASUSTeK Computer Inc.) [File not signed] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-07-16] () [File not signed] S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2013-08-25] (Creative Labs) [File not signed] R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed] R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240584 2012-10-02] (DTS, Inc) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [528096 2014-06-08] (Futuremark) S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-09] (Intel Corporation) R2 MBAMScheduler; C:\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-08-22] (Overwolf Ltd) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.) R3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [34136 2014-07-29] () R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [274656 2014-04-18] (Advanced Micro Devices) R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [47512 2013-01-10] (Asmedia Technology) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-06-04] () R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-09-14] () S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation) S3 atillk64; C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-03] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [42040 2014-07-15] (Avira Operations GmbH & Co. KG) S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [163368 2012-04-01] (Broadcom Corporation.) S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-09-17] (Broadcom Corporation.) S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [14646560 2011-12-15] (Intel Corporation) [File not signed] S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [331264 2011-12-05] (Intel(R) Corporation) [File not signed] R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.) R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-15] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation) S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2011-08-02] (Apple Inc.) [File not signed] S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.) S3 ALSysIO; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\ALSysIO64.sys [X] S3 cpuz135; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X] S3 cpuz137; \??\C:\Windows\TEMP\cpuz137\cpuz137_x64.sys [X] S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X] R3 TRIXX; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\TRIXX.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-15 14:52 - 2014-08-15 14:52 - 02100224 _____ (Farbar) C:\Users\Lil' Hagbrain\Downloads\FRST64(1).exe 2014-08-14 20:30 - 2014-08-14 20:34 - 00000000 ____D () C:\AdwCleaner 2014-08-14 20:30 - 2014-08-14 20:30 - 01356107 _____ () C:\Users\Lil' Hagbrain\Downloads\adwcleaner_3.305.exe 2014-08-14 17:08 - 2014-08-14 17:08 - 00005484 _____ () C:\Users\Lil' Hagbrain\Desktop\GMER.log 2014-08-14 17:04 - 2014-08-14 17:04 - 00380416 _____ () C:\Users\Lil' Hagbrain\Desktop\rfgu3912.exe 2014-08-14 16:44 - 2014-08-15 15:21 - 00019213 _____ () C:\Users\Lil' Hagbrain\Downloads\FRST.txt 2014-08-14 16:44 - 2014-08-15 15:14 - 00054379 _____ () C:\Users\Lil' Hagbrain\Downloads\Addition.txt 2014-08-14 16:31 - 2014-08-14 16:31 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{0E22FE37-C15C-4A33-8F53-88624F8E1608} 2014-08-14 16:28 - 2014-08-15 15:21 - 00000000 ____D () C:\FRST 2014-08-14 16:28 - 2014-08-14 16:28 - 02100224 _____ (Farbar) C:\Users\Lil' Hagbrain\Downloads\FRST64.exe 2014-08-14 16:03 - 2014-08-15 13:54 - 00000830 _____ () C:\Users\Lil' Hagbrain\Desktop\ Malwarebytes Anti-Malware .lnk 2014-08-14 15:54 - 2014-08-14 15:54 - 00003230 _____ () C:\Windows\System32\Tasks\{EBB8A93E-F56B-44BA-ACDB-B902A59DE51F} 2014-08-14 15:53 - 2014-08-14 15:53 - 00232608 _____ () C:\Users\Lil' Hagbrain\Downloads\gfgffsg.exe 2014-08-13 20:03 - 2014-08-15 13:53 - 00000000 ____D () C:\ Malwarebytes Anti-Malware 2014-08-13 20:03 - 2014-08-15 13:16 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-13 20:03 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-08-13 20:03 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-08-13 20:03 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-08-13 20:00 - 2014-08-13 20:00 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lil' Hagbrain\Downloads\mbam-clean-2.1.1.1001.exe 2014-08-13 19:52 - 2014-08-13 19:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lil' Hagbrain\Downloads\ixplor1.exe 2014-08-13 19:40 - 2014-08-13 19:59 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Windows 2014-08-13 19:40 - 2014-08-13 19:40 - 04872677 _____ () C:\Users\Lil' Hagbrain\Downloads\mbam-chameleon-3.1.4.0.zip 2014-08-13 19:33 - 2014-08-13 19:33 - 00350716 _____ () C:\Users\Lil' Hagbrain\Documents\ts3_clientui-win64-1407159763-2014-08-13 19_33_21.879914.dmp 2014-08-13 17:11 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2014-08-13 17:11 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll 2014-08-13 17:11 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2014-08-13 17:11 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-13 17:11 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2014-08-13 17:11 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2014-08-13 17:11 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe 2014-08-13 17:11 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll 2014-08-13 17:09 - 2014-08-13 17:09 - 00003306 _____ () C:\Windows\System32\Tasks\SidebarExecute 2014-08-13 16:00 - 2014-07-24 14:11 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-08-13 16:00 - 2014-07-24 14:10 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-13 16:00 - 2014-07-24 14:10 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-13 16:00 - 2014-07-24 14:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-08-13 16:00 - 2014-07-24 14:09 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-08-13 16:00 - 2014-07-24 12:52 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-08-13 16:00 - 2014-07-24 12:52 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-08-13 16:00 - 2014-07-24 12:51 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-08-13 16:00 - 2014-07-24 12:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-08-13 16:00 - 2014-07-24 12:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-13 16:00 - 2014-07-24 12:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-08-13 15:59 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-13 15:59 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-08-13 15:59 - 2014-07-24 14:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-08-13 15:59 - 2014-07-24 12:51 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-08-13 15:59 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-13 15:59 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-08-13 15:59 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-13 15:59 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2014-08-13 15:59 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-13 15:59 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-13 15:59 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL 2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL 2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL 2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2014-08-13 15:59 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL 2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL 2014-08-13 15:59 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls 2014-08-13 15:59 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls 2014-08-13 15:59 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-08-13 15:59 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-08-13 15:59 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-13 15:59 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-13 15:59 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-13 15:59 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-13 15:59 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-13 15:59 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-08-13 15:59 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-08-13 15:59 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-08-12 21:46 - 2014-08-12 21:46 - 00000441 _____ () C:\Users\Lil' Hagbrain\Desktop\report.txt 2014-08-12 21:45 - 2014-08-12 21:45 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaii.bin 2014-08-11 22:23 - 2014-08-11 22:23 - 00277648 _____ () C:\Windows\Minidump\081114-11996-01.dmp 2014-08-11 18:22 - 2014-08-11 18:22 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201408111822375768.log 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\ATI 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-08-11 18:21 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-08-11 18:21 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI 2014-08-11 18:20 - 2014-08-11 18:20 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201408111820028054.log 2014-08-11 18:18 - 2014-08-11 18:18 - 06422528 _____ (Advanced Micro Devices) C:\Users\Lil' Hagbrain\Downloads\amdcleanuputility-1.4.0.0.exe 2014-08-11 17:56 - 2013-10-25 17:39 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\MemoryInfo 1005 2014-08-10 15:01 - 2014-08-10 15:01 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{9AA463DB-53C6-4F92-AC01-1E1B906E4E55} 2014-08-10 13:48 - 2014-08-10 13:48 - 00002840 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140810_1348.html 2014-08-10 12:48 - 2014-08-10 12:48 - 00672192 _____ () C:\Users\Lil' Hagbrain\Downloads\RBE_128.exe 2014-08-10 12:17 - 2014-08-10 12:17 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner (2) 2014-08-10 12:16 - 2008-07-11 15:27 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Desktop\HPUSBFW.exe 2014-08-10 12:15 - 2014-08-10 12:15 - 00237695 _____ () C:\Users\Lil' Hagbrain\Downloads\Boot_Diskette.rar 2014-08-10 12:15 - 2014-08-10 12:15 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Downloads\hpusbfwv2.2.3.exe 2014-08-10 12:14 - 2014-08-10 12:14 - 00503615 _____ () C:\Users\Lil' Hagbrain\Downloads\file.zip 2014-08-10 12:09 - 2014-08-10 14:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner 2014-08-10 12:08 - 2014-08-10 12:08 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaiioc.rom 2014-08-10 11:57 - 2014-08-10 11:57 - 00242003 _____ () C:\Users\Lil' Hagbrain\Downloads\atiflash_417.zip 2014-08-10 11:57 - 2013-10-09 11:38 - 00665600 _____ () C:\Users\Lil' Hagbrain\Desktop\flash.exe 2014-08-10 11:29 - 2014-08-10 11:29 - 269338400 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe 2014-08-09 14:11 - 2014-08-09 14:11 - 25347999 _____ () C:\Users\Lil' Hagbrain\Downloads\GPUTweak_2_5_2.zip 2014-08-09 14:07 - 2014-08-09 14:07 - 01538989 _____ () C:\Users\Lil' Hagbrain\Downloads\ati_winflash_2.3.0.zip 2014-08-09 14:07 - 2014-08-09 14:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH 2014-08-08 21:05 - 2014-08-10 13:10 - 00003240 _____ () C:\Windows\System32\Tasks\Sapphire TRIXX 2014-08-08 20:41 - 2014-08-08 20:41 - 320787824 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\amd-catalyst-14.7-rc1-windows-july9.exe 2014-08-08 20:08 - 2014-08-08 20:08 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\PCMark 8 2014-08-08 17:29 - 2014-08-08 17:29 - 00000000 ____D () C:\Program Files\Futuremark 2014-08-08 16:12 - 2014-08-08 16:12 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{2BA3B15D-34CF-4A2B-975C-E0656316C98D} 2014-08-08 15:58 - 2014-08-08 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{8F5DBC1C-460C-42E0-8EA0-2B84842B1B24} 2014-08-07 16:38 - 2014-08-11 18:29 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 2014-08-07 16:17 - 2014-08-07 16:17 - 00002845 _____ () C:\Users\Lil' Hagbrain\Desktop\Unigine_Heaven_Benchmark_4.0_20140807_1617.html 2014-08-05 17:30 - 2014-08-05 17:30 - 00277648 _____ () C:\Windows\Minidump\080514-10171-01.dmp 2014-08-05 10:01 - 2014-08-05 10:01 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EEDCD8FA-FF4A-4B2B-B11F-67024EF54A03} 2014-08-05 09:27 - 2014-08-05 09:27 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Alte Firefox-Daten 2014-08-02 12:45 - 2014-08-03 15:40 - 00154241 _____ () C:\Users\Lil' Hagbrain\Desktop\ROPAMD DISPLAY.lglcd 2014-08-01 15:07 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-08-01 15:07 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-08-01 15:07 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2014-08-01 15:07 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-08-01 15:07 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-08-01 15:07 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2014-08-01 15:07 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-08-01 15:07 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2014-08-01 15:07 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-08-01 15:07 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2014-07-31 19:14 - 2014-07-31 19:14 - 00277648 _____ () C:\Windows\Minidump\073114-10389-01.dmp 2014-07-31 18:46 - 2014-07-31 18:46 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab 2014-07-31 17:55 - 2014-07-31 17:55 - 00001196 _____ () C:\Users\Lil' Hagbrain\Desktop\AIDA64 Extreme.lnk 2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-07-30 16:39 - 2014-07-30 16:39 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EC600916-BC49-4AF1-907C-BA4591AADF16} 2014-07-29 20:58 - 2014-07-29 20:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{23D15F95-9C84-48C5-91EE-CEE46A04ACC1} 2014-07-29 20:54 - 2014-07-29 20:54 - 00000541 _____ () C:\Users\Lil' Hagbrain\Desktop\Steam.lnk 2014-07-27 22:41 - 2014-08-15 13:06 - 00003262 _____ () C:\Windows\System32\Tasks\AIDA64 AutoStart 2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\Program Files (x86)\FinalWire 2014-07-27 13:31 - 2014-07-27 13:32 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{FEC58128-C051-49FE-B643-A32E640CE843} 2014-07-27 11:59 - 2014-08-06 16:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3.0 2014-07-27 11:59 - 2014-08-06 16:11 - 00000000 ____D () C:\Program Files\MSI Kombustor 3.0 2014-07-24 17:18 - 2014-07-24 19:06 - 00000000 ____D () C:\Users\Lil' Hagbrain\Downloads\Neuer Ordner 2014-07-21 22:11 - 2014-07-21 22:11 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{C32691E9-5373-464F-B658-2F1AABE8020A} 2014-07-20 12:26 - 2014-07-20 12:26 - 00056720 _____ () C:\Windows\SysWOW64\CCCInstall_201407201226596362.log 2014-07-19 14:30 - 2014-07-19 14:30 - 00001064 _____ () C:\Users\Lil' Hagbrain\Desktop\NFS14.lnk 2014-07-19 14:17 - 2014-07-19 14:29 - 00001274 _____ () C:\Users\Lil' Hagbrain\Desktop\Need For Speed The Run.lnk 2014-07-19 13:29 - 2014-07-19 13:29 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EC15CB6D-9D46-481E-B76B-D9487947E3E8} 2014-07-18 21:02 - 2014-07-18 21:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{652AEF2F-74CC-442E-B2E6-D99C4A4C4D19} 2014-07-18 16:02 - 2014-08-11 18:26 - 00000022 _____ () C:\Windows\GPU-Z.INI 2014-07-18 15:59 - 2014-07-18 15:59 - 00000000 ____D () C:\Program Files (x86)\Futuremark 2014-07-18 15:58 - 2014-08-08 20:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Futuremark 2014-07-18 15:58 - 2014-07-18 16:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 11 2014-07-18 15:58 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\IsolatedStorage 2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sapphire TRIXX 2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Sapphire TRIXX 2014-07-18 15:10 - 2014-07-18 15:10 - 00002841 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140718_1510.html 2014-07-18 14:26 - 2014-07-18 14:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-07-18 14:12 - 2014-07-18 14:12 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201407181412381851.log 2014-07-18 14:09 - 2014-08-14 23:40 - 00065536 _____ () C:\Windows\system32\spu_storage.bin 2014-07-18 12:52 - 2014-07-18 12:52 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201407181252560169.log 2014-07-18 12:52 - 2014-07-18 12:52 - 00000000 ____D () C:\Program Files\AMD 2014-07-17 19:22 - 2014-07-17 19:33 - 00000000 ____D () C:\Users\Lil' Hagbrain\Heaven 2014-07-17 19:21 - 2014-08-11 18:24 - 01065984 _____ () C:\Users\Lil' Hagbrain\AppData\Local\file__0.localstorage 2014-07-17 16:11 - 2014-07-17 16:12 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{4F3A50DD-CDBD-438A-85C3-547BC2DBEABB} 2014-07-16 18:09 - 2014-07-16 18:09 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{1E82F5E7-C7ED-4E2F-8FC8-7396501BF709} ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-15 15:21 - 2014-08-14 16:44 - 00019213 _____ () C:\Users\Lil' Hagbrain\Downloads\FRST.txt 2014-08-15 15:21 - 2014-08-14 16:28 - 00000000 ____D () C:\FRST 2014-08-15 15:18 - 2012-05-15 22:39 - 00000000 ____D () C:\ProgramData\Adobe 2014-08-15 15:17 - 2012-06-14 14:55 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2014-08-15 15:17 - 2012-06-14 14:55 - 00000000 ____D () C:\Program Files\Adobe 2014-08-15 15:17 - 2012-05-15 22:39 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-08-15 15:14 - 2014-08-14 16:44 - 00054379 _____ () C:\Users\Lil' Hagbrain\Downloads\Addition.txt 2014-08-15 15:10 - 2012-05-15 22:40 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Adobe 2014-08-15 15:10 - 2012-05-15 20:10 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Adobe 2014-08-15 15:04 - 2009-07-14 06:45 - 00020480 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-08-15 15:04 - 2009-07-14 06:45 - 00020480 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-08-15 15:02 - 2014-06-07 22:12 - 00433152 ___SH () C:\Users\Lil' Hagbrain\Desktop\Thumbs.db 2014-08-15 14:52 - 2014-08-15 14:52 - 02100224 _____ (Farbar) C:\Users\Lil' Hagbrain\Downloads\FRST64(1).exe 2014-08-15 14:39 - 2013-04-16 14:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-08-15 14:31 - 2014-05-03 16:31 - 00000911 _____ () C:\Windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job 2014-08-15 14:31 - 2014-05-03 16:31 - 00000725 _____ () C:\Windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job 2014-08-15 13:54 - 2014-08-14 16:03 - 00000830 _____ () C:\Users\Lil' Hagbrain\Desktop\ Malwarebytes Anti-Malware .lnk 2014-08-15 13:53 - 2014-08-13 20:03 - 00000000 ____D () C:\ Malwarebytes Anti-Malware 2014-08-15 13:16 - 2014-08-13 20:03 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-15 13:12 - 2009-07-14 19:58 - 00699432 _____ () C:\Windows\system32\perfh007.dat 2014-08-15 13:12 - 2009-07-14 19:58 - 00149572 _____ () C:\Windows\system32\perfc007.dat 2014-08-15 13:12 - 2009-07-14 07:13 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-15 13:10 - 2012-05-15 18:09 - 01202158 _____ () C:\Windows\WindowsUpdate.log 2014-08-15 13:06 - 2014-07-27 22:41 - 00003262 _____ () C:\Windows\System32\Tasks\AIDA64 AutoStart 2014-08-15 13:06 - 2014-05-27 09:27 - 00017384 _____ () C:\Windows\setupact.log 2014-08-15 13:06 - 2012-05-22 20:26 - 00000000 ____D () C:\Fraps 2014-08-15 13:06 - 2012-05-14 22:33 - 00003164 _____ () C:\Windows\System32\Tasks\FRAPS 2014-08-15 13:06 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-08-15 13:06 - 2009-07-14 06:45 - 04858024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-14 23:40 - 2014-07-18 14:09 - 00065536 _____ () C:\Windows\system32\spu_storage.bin 2014-08-14 23:40 - 2012-05-15 19:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\TS3Client 2014-08-14 23:33 - 2012-05-17 16:05 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\UseNeXT 2014-08-14 22:27 - 2012-05-15 19:47 - 00000000 ____D () C:\ProgramData\Origin 2014-08-14 22:27 - 2012-05-15 19:47 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-08-14 22:26 - 2012-05-15 19:06 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\CrashDumps 2014-08-14 21:41 - 2013-12-22 19:51 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\DayZ 2014-08-14 20:36 - 2012-05-15 18:18 - 01345802 _____ () C:\Windows\PFRO.log 2014-08-14 20:34 - 2014-08-14 20:30 - 00000000 ____D () C:\AdwCleaner 2014-08-14 20:30 - 2014-08-14 20:30 - 01356107 _____ () C:\Users\Lil' Hagbrain\Downloads\adwcleaner_3.305.exe 2014-08-14 18:36 - 2014-01-25 00:06 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\Fiddler2 2014-08-14 18:30 - 2014-03-09 22:17 - 00000000 ____D () C:\Program Files (x86)\Bruteforce Save Data 2014-08-14 18:29 - 2014-02-22 02:40 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\uTorrent 2014-08-14 17:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-08-14 17:08 - 2014-08-14 17:08 - 00005484 _____ () C:\Users\Lil' Hagbrain\Desktop\GMER.log 2014-08-14 17:04 - 2014-08-14 17:04 - 00380416 _____ () C:\Users\Lil' Hagbrain\Desktop\rfgu3912.exe 2014-08-14 16:31 - 2014-08-14 16:31 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{0E22FE37-C15C-4A33-8F53-88624F8E1608} 2014-08-14 16:28 - 2014-08-14 16:28 - 02100224 _____ (Farbar) C:\Users\Lil' Hagbrain\Downloads\FRST64.exe 2014-08-14 15:54 - 2014-08-14 15:54 - 00003230 _____ () C:\Windows\System32\Tasks\{EBB8A93E-F56B-44BA-ACDB-B902A59DE51F} 2014-08-14 15:53 - 2014-08-14 15:53 - 00232608 _____ () C:\Users\Lil' Hagbrain\Downloads\gfgffsg.exe 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-13 20:00 - 2014-08-13 20:00 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lil' Hagbrain\Downloads\mbam-clean-2.1.1.1001.exe 2014-08-13 19:59 - 2014-08-13 19:40 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Windows 2014-08-13 19:52 - 2014-08-13 19:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lil' Hagbrain\Downloads\ixplor1.exe 2014-08-13 19:40 - 2014-08-13 19:40 - 04872677 _____ () C:\Users\Lil' Hagbrain\Downloads\mbam-chameleon-3.1.4.0.zip 2014-08-13 19:33 - 2014-08-13 19:33 - 00350716 _____ () C:\Users\Lil' Hagbrain\Documents\ts3_clientui-win64-1407159763-2014-08-13 19_33_21.879914.dmp 2014-08-13 17:14 - 2013-07-23 23:03 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-13 17:13 - 2012-05-15 20:18 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-08-13 17:11 - 2014-05-06 20:57 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-13 17:09 - 2014-08-13 17:09 - 00003306 _____ () C:\Windows\System32\Tasks\SidebarExecute 2014-08-12 21:48 - 2012-10-13 17:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dream Aquarium 2014-08-12 21:46 - 2014-08-12 21:46 - 00000441 _____ () C:\Users\Lil' Hagbrain\Desktop\report.txt 2014-08-12 21:45 - 2014-08-12 21:45 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaii.bin 2014-08-11 22:23 - 2014-08-11 22:23 - 00277648 _____ () C:\Windows\Minidump\081114-11996-01.dmp 2014-08-11 22:23 - 2014-06-05 19:32 - 570760084 _____ () C:\Windows\MEMORY.DMP 2014-08-11 22:23 - 2013-02-03 14:16 - 00000000 ____D () C:\Windows\Minidump 2014-08-11 18:29 - 2014-08-07 16:38 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 2014-08-11 18:26 - 2014-07-18 16:02 - 00000022 _____ () C:\Windows\GPU-Z.INI 2014-08-11 18:24 - 2014-07-17 19:21 - 01065984 _____ () C:\Users\Lil' Hagbrain\AppData\Local\file__0.localstorage 2014-08-11 18:22 - 2014-08-11 18:22 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201408111822375768.log 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\ATI 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-08-11 18:22 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-08-11 18:22 - 2013-09-21 12:35 - 00000000 ____D () C:\AMD 2014-08-11 18:22 - 2012-05-15 18:59 - 00000000 ____D () C:\ProgramData\AMD 2014-08-11 18:22 - 2012-05-15 18:59 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies 2014-08-11 18:21 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI 2014-08-11 18:20 - 2014-08-11 18:20 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201408111820028054.log 2014-08-11 18:18 - 2014-08-11 18:18 - 06422528 _____ (Advanced Micro Devices) C:\Users\Lil' Hagbrain\Downloads\amdcleanuputility-1.4.0.0.exe 2014-08-10 15:01 - 2014-08-10 15:01 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{9AA463DB-53C6-4F92-AC01-1E1B906E4E55} 2014-08-10 14:56 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-08-10 14:02 - 2014-08-10 12:09 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner 2014-08-10 13:48 - 2014-08-10 13:48 - 00002840 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140810_1348.html 2014-08-10 13:48 - 2012-05-15 18:09 - 00000000 ____D () C:\Users\Lil' Hagbrain 2014-08-10 13:10 - 2014-08-08 21:05 - 00003240 _____ () C:\Windows\System32\Tasks\Sapphire TRIXX 2014-08-10 12:48 - 2014-08-10 12:48 - 00672192 _____ () C:\Users\Lil' Hagbrain\Downloads\RBE_128.exe 2014-08-10 12:17 - 2014-08-10 12:17 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner (2) 2014-08-10 12:15 - 2014-08-10 12:15 - 00237695 _____ () C:\Users\Lil' Hagbrain\Downloads\Boot_Diskette.rar 2014-08-10 12:15 - 2014-08-10 12:15 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Downloads\hpusbfwv2.2.3.exe 2014-08-10 12:14 - 2014-08-10 12:14 - 00503615 _____ () C:\Users\Lil' Hagbrain\Downloads\file.zip 2014-08-10 12:08 - 2014-08-10 12:08 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaiioc.rom 2014-08-10 11:57 - 2014-08-10 11:57 - 00242003 _____ () C:\Users\Lil' Hagbrain\Downloads\atiflash_417.zip 2014-08-10 11:29 - 2014-08-10 11:29 - 269338400 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe 2014-08-09 15:27 - 2012-05-15 23:23 - 00000000 ____D () C:\Program Files (x86)\ASUS 2014-08-09 15:27 - 2012-05-15 18:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-08-09 14:11 - 2014-08-09 14:11 - 25347999 _____ () C:\Users\Lil' Hagbrain\Downloads\GPUTweak_2_5_2.zip 2014-08-09 14:11 - 2012-09-02 14:11 - 00000000 ____D () C:\Windows\Downloaded Installations 2014-08-09 14:07 - 2014-08-09 14:07 - 01538989 _____ () C:\Users\Lil' Hagbrain\Downloads\ati_winflash_2.3.0.zip 2014-08-09 14:07 - 2014-08-09 14:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH 2014-08-09 13:42 - 2012-05-15 21:25 - 01095157 _____ () C:\Windows\DirectX.log 2014-08-08 21:12 - 2012-05-15 15:36 - 00000000 ____D () C:\System&Analyse 2014-08-08 20:41 - 2014-08-08 20:41 - 320787824 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\amd-catalyst-14.7-rc1-windows-july9.exe 2014-08-08 20:26 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Futuremark 2014-08-08 20:14 - 2013-08-25 18:13 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-08 20:08 - 2014-08-08 20:08 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\PCMark 8 2014-08-08 17:29 - 2014-08-08 17:29 - 00000000 ____D () C:\Program Files\Futuremark 2014-08-08 16:12 - 2014-08-08 16:12 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{2BA3B15D-34CF-4A2B-975C-E0656316C98D} 2014-08-08 15:58 - 2014-08-08 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{8F5DBC1C-460C-42E0-8EA0-2B84842B1B24} 2014-08-07 22:13 - 2012-05-15 19:58 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-08-07 16:17 - 2014-08-07 16:17 - 00002845 _____ () C:\Users\Lil' Hagbrain\Desktop\Unigine_Heaven_Benchmark_4.0_20140807_1617.html 2014-08-07 04:06 - 2014-08-13 15:59 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-07 04:01 - 2014-08-13 15:59 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-06 16:11 - 2014-07-27 11:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3.0 2014-08-06 16:11 - 2014-07-27 11:59 - 00000000 ____D () C:\Program Files\MSI Kombustor 3.0 2014-08-05 17:30 - 2014-08-05 17:30 - 00277648 _____ () C:\Windows\Minidump\080514-10171-01.dmp 2014-08-05 10:01 - 2014-08-05 10:01 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EEDCD8FA-FF4A-4B2B-B11F-67024EF54A03} 2014-08-05 09:27 - 2014-08-05 09:27 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Alte Firefox-Daten 2014-08-03 18:39 - 2013-12-22 19:51 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\DayZ 2014-08-03 15:44 - 2012-05-15 21:19 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Xfire 2014-08-03 15:41 - 2012-05-15 21:19 - 00000000 ____D () C:\ProgramData\Xfire 2014-08-03 15:40 - 2014-08-02 12:45 - 00154241 _____ () C:\Users\Lil' Hagbrain\Desktop\ROPAMD DISPLAY.lglcd 2014-08-02 12:42 - 2012-06-18 16:03 - 00000132 _____ () C:\Users\Lil' Hagbrain\AppData\Roaming\Adobe PNG Format CS5 Prefs 2014-07-31 19:14 - 2014-07-31 19:14 - 00277648 _____ () C:\Windows\Minidump\073114-10389-01.dmp 2014-07-31 18:46 - 2014-07-31 18:46 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab 2014-07-31 18:46 - 2013-09-01 14:39 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2014-07-31 17:55 - 2014-07-31 17:55 - 00001196 _____ () C:\Users\Lil' Hagbrain\Desktop\AIDA64 Extreme.lnk 2014-07-31 17:53 - 2012-05-15 18:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-07-30 16:39 - 2014-07-30 16:39 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EC600916-BC49-4AF1-907C-BA4591AADF16} 2014-07-29 22:19 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\Performance 2014-07-29 20:58 - 2014-07-29 20:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{23D15F95-9C84-48C5-91EE-CEE46A04ACC1} 2014-07-29 20:55 - 2012-05-17 20:57 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-07-29 20:54 - 2014-07-29 20:54 - 00000541 _____ () C:\Users\Lil' Hagbrain\Desktop\Steam.lnk 2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\Program Files (x86)\FinalWire 2014-07-27 18:04 - 2014-06-24 22:19 - 00000879 _____ () C:\Users\Public\Desktop\PVZ Garden Warfare.lnk 2014-07-27 13:32 - 2014-07-27 13:31 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{FEC58128-C051-49FE-B643-A32E640CE843} 2014-07-24 19:06 - 2014-07-24 17:18 - 00000000 ____D () C:\Users\Lil' Hagbrain\Downloads\Neuer Ordner 2014-07-24 14:11 - 2014-08-13 16:00 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-07-24 14:10 - 2014-08-13 16:00 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-07-24 14:10 - 2014-08-13 16:00 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-07-24 14:09 - 2014-08-13 16:00 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-07-24 14:09 - 2014-08-13 16:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-07-24 14:09 - 2014-08-13 15:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-07-24 12:52 - 2014-08-13 16:00 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-07-24 12:52 - 2014-08-13 16:00 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-07-24 12:51 - 2014-08-13 16:00 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-07-24 12:51 - 2014-08-13 16:00 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-07-24 12:51 - 2014-08-13 15:59 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-07-24 12:33 - 2014-08-13 16:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-07-24 12:29 - 2014-08-13 16:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-07-23 22:47 - 2012-06-07 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2014-07-21 22:11 - 2014-07-21 22:11 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{C32691E9-5373-464F-B658-2F1AABE8020A} 2014-07-20 14:36 - 2013-04-16 14:36 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-07-20 14:36 - 2012-05-15 20:09 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-07-20 14:36 - 2012-05-15 20:09 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-07-20 14:34 - 2013-05-17 19:46 - 00008029 _____ () C:\Users\Lil' Hagbrain\Documents\TombRaider.log 2014-07-20 12:31 - 2014-02-16 13:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Raptr 2014-07-20 12:31 - 2014-02-16 13:07 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-07-20 12:26 - 2014-07-20 12:26 - 00056720 _____ () C:\Windows\SysWOW64\CCCInstall_201407201226596362.log 2014-07-19 14:30 - 2014-07-19 14:30 - 00001064 _____ () C:\Users\Lil' Hagbrain\Desktop\NFS14.lnk 2014-07-19 14:29 - 2014-07-19 14:17 - 00001274 _____ () C:\Users\Lil' Hagbrain\Desktop\Need For Speed The Run.lnk 2014-07-19 13:29 - 2014-07-19 13:29 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{EC15CB6D-9D46-481E-B76B-D9487947E3E8} 2014-07-18 21:02 - 2014-07-18 21:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{652AEF2F-74CC-442E-B2E6-D99C4A4C4D19} 2014-07-18 16:02 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 11 2014-07-18 15:59 - 2014-07-18 15:59 - 00000000 ____D () C:\Program Files (x86)\Futuremark 2014-07-18 15:58 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\IsolatedStorage 2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sapphire TRIXX 2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Sapphire TRIXX 2014-07-18 15:10 - 2014-07-18 15:10 - 00002841 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140718_1510.html 2014-07-18 14:26 - 2014-07-18 14:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-07-18 14:12 - 2014-07-18 14:12 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201407181412381851.log 2014-07-18 12:52 - 2014-07-18 12:52 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201407181252560169.log 2014-07-18 12:52 - 2014-07-18 12:52 - 00000000 ____D () C:\Program Files\AMD 2014-07-17 23:08 - 2013-07-16 15:31 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Arma 3 2014-07-17 19:33 - 2014-07-17 19:22 - 00000000 ____D () C:\Users\Lil' Hagbrain\Heaven 2014-07-17 16:12 - 2014-07-17 16:11 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{4F3A50DD-CDBD-438A-85C3-547BC2DBEABB} 2014-07-16 18:09 - 2014-07-16 18:09 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\{1E82F5E7-C7ED-4E2F-8FC8-7396501BF709} 2014-07-16 05:25 - 2014-08-13 15:59 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-07-16 05:23 - 2014-08-13 15:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-07-16 04:46 - 2014-08-13 15:59 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-07-16 04:46 - 2014-08-13 15:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2014-07-16 04:12 - 2014-08-13 15:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys Some content of TEMP: ==================== C:\Users\Lil' Hagbrain\AppData\Local\Temp\AMDCleanupUtility.exe C:\Users\Lil' Hagbrain\AppData\Local\Temp\avgnt.exe C:\Users\Lil' Hagbrain\AppData\Local\Temp\Cleanup.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\difxapi.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\msvcm80.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\msvcp80.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\msvcr80.dll C:\Users\Lil' Hagbrain\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-08 17:57 ==================== End Of Log ============================ --- --- --- Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-08-2014 01
Ran by Lil' Hagbrain at 2014-08-15 15:21:30
Running from C:\Users\Lil' Hagbrain\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3DMark (HKLM-x32\...\Steam App 223850) (Version: - Futuremark)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.7.700.224 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.03) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated)
Age of Conan: Unchained (HKLM-x32\...\Age of Conan_is1) (Version: - Funcom)
AIDA64 Extreme v4.60 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.60 - FinalWire Ltd.)
AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0417.2226.38446 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
Antivirus Pro (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.552 - Avira)
AOC UI Installer 3.1.0 (HKLM-x32\...\{87464284-11C8-4F83-88EC-E8013320B789}) (Version: 3.1.0 - VikingWorks)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
Arma 3 Alpha (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
ArtMoney SE v7.40.5 (HKLM-x32\...\ArtMoney SE_is1) (Version: 7.40.5 - System SoftLab)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.4.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
Bad Piggies (HKLM-x32\...\{9524C306-CC16-44A0-82AA-996409D1A059}) (Version: 1.3.0.0 - Rovio Entertainment Ltd.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
BIK Player (HKLM-x32\...\{C755A3D1-0C93-4B0C-94C4-41C178116B64}_is1) (Version: - bikplayer.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Contagion (HKLM-x32\...\Steam App 238430) (Version: - Monochrome LLC)
CopyTrans Control Center deinstallieren (HKCU\...\CopyTrans Suite) (Version: 3.003 - WindSolutions)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version: - )
Counter-Strike: Global Offensive Beta (HKLM-x32\...\Steam App 730) (Version: - )
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
Creative Audio-Systemsteuerung (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
CrystalDiskInfo 5.3.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.3.1 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{42BBD1A5-280D-4457-8567-07175A9FB4FB}) (Version: 0.91.2 - Dotjosh Studios)
Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
Dead Island: Epidemic (HKLM-x32\...\Steam App 222900) (Version: - Stunlock Studios)
DefianceRuntimes (HKLM-x32\...\{79B1FF35-9EA8-48ED-98D6-19ABE004BE89}) (Version: 1.0.2 - Trion Worlds, Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-215 217 Series Printer Uninstall (HKLM\...\EPSON XP-215 217 Series) (Version: - SEIKO EPSON Corporation)
Epson-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.05 - Ubisoft)
FileZilla Client 3.5.3 (HKCU\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)
FormatFactory 2.96 (HKLM-x32\...\FormatFactory) (Version: 2.96 - Free Time)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{4115C9AA-35E0-45D8-9363-47635B8750C7}) (Version: 4.29.438.0 - Futuremark)
Google Update Helper (x32 Version: 1.3.21.135 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
GRID 2 (c) Codemasters version 1 (HKLM-x32\...\R1JJRDI=_is1) (Version: 1 - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
Hitman Absolution (HKLM-x32\...\Hitman Absolution_is1) (Version: - )
Horizon v2.7.8.0 (HKLM-x32\...\d4cfeebc-b821-40b7-9f81-d366b1466f03_is1) (Version: 2.7.8.0 - Daring Development Inc.)
How to Survive (HKLM-x32\...\Steam App 250400) (Version: - )
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iExplorer 3.2.4.2 (HKLM-x32\...\{7FD8B0C1-CDDA-4B4D-A577-B2E3570EA3A3}_is1) (Version: - Macroplant LLC)
Image Resizer Powertoy Clone for Windows (64 bit) (HKLM\...\{C862EC05-1C15-4327-B15D-C7788D6CFF73}) (Version: 2.1.1 - Brice Lambson)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Network Connections 18.5.54.0 (Version: 18.5.54.0 - Intel) Hidden
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 7 Update 4 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217004FF}) (Version: 7.0.40 - Oracle)
JavaFX 2.1.0 (HKLM-x32\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Left 4 Dead (HKLM-x32\...\Steam App 500) (Version: - Valve)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Loadout (HKLM-x32\...\Steam App 208090) (Version: - Edge of Reality)
Logitech Gaming Software (Version: 8.30.86 - Logitech Inc.) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version: - )
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Max Payne (HKLM-x32\...\{39930321-4C58-4B8B-BCBF-342698C9801D}) (Version: - )
Max Payne 2 (HKLM-x32\...\{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}) (Version: 1.01.102 - )
Max Payne 3 (HKLM-x32\...\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}) (Version: 1.0.0.0 - Rockstar Games)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - THQ)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Minion (HKCU\...\{Minion}}_is1) (Version: 2.0 - ZAM Network LLC)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mp3tag v2.51 (HKLM-x32\...\Mp3tag) (Version: v2.51 - Florian Heidenreich)
MSI Kombustor 2.5.2 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD)
MSI Kombustor 3.3.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MultiBit 0.5.18 (HKLM-x32\...\MultiBit 0.5.18) (Version: 0.5.18 - )
Need for Speed Rivals Version 1.0 (HKLM-x32\...\Need for Speed Rivals_is1) (Version: 1.0 - EA Games)
Need for Speed The Run Limited Edition 1.0 (HKLM-x32\...\Need for Speed The Run Limited Edition_is1) (Version: - ea)
Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - )
Nether Launcher (HKLM\...\{94485F33-9350-4920-9CC9-15DAA20FCA89}) (Version: 16.20.0.0 - Nether Productions, LLC.)
Nether Launcher (HKLM\...\{BA92D323-2D01-407D-AA36-285413610376}) (Version: 16.22.0.0 - Nether Productions, LLC.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.46.0 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4 (HKLM-x32\...\{4C552FD3-2CCD-4E00-AC64-0681DBB3F8B5}) (Version: 3.4.9590 - OpenOffice.org)
Origin (HKLM-x32\...\Origin) (Version: 8.5.2.23 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\T3V0bGFzdA==_is1) (Version: 1 - )
Overwolf (HKLM-x32\...\{48615A7B-F026-4F62-A3F1-49001B8E21CB}) (Version: 0.44.256 - Overwolf)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version: - Ndemic Creations)
PokerTH (HKLM-x32\...\PokerTH 0.9.5) (Version: 0.9.5 - Home - PokerTH - Community Portal)
Programmer's Notepad (HKLM-x32\...\{52CF142B-7B0E-41E7-98F5-B834122523E7}_is1) (Version: 2.3.4.2350 - Simon Steele)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.2.0 - Electronic Arts)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
RAGE (HKLM-x32\...\Steam App 9200) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6954 - Realtek Semiconductor Corp.)
RESIDENT EVIL 6 / BIOHAZARD 6 (HKLM-x32\...\Steam App 221040) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.0.9.5 - Rockstar Games)
RollerCoaster Tycoon 3 (HKLM-x32\...\RollerCoaster Tycoon 3_is1) (Version: - Atari)
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.)
Samsung AllShare (x32 Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.) Hidden
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version: - )
Serious Sam 3: BFE (HKLM-x32\...\Steam App 41070) (Version: - Croteam)
Skyrim Online Mod version r3 (HKLM-x32\...\{719B4740-7A1C-42B7-BA78-0CB2486EE714}_is1) (Version: r3 - Skyrim Online)
Software Updater (HKLM-x32\...\{C09D747A-BD47-42A9-915E-CEB6B1BB7C11}) (Version: 4.2.7 - SEIKO EPSON CORPORATION)
Source Filmmaker (HKLM-x32\...\Steam App 1840) (Version: - Valve)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{19B0831B-0C18-4103-86E4-90FCD04CD3B9}) (Version: 6.0.12.5 - Husdawg, LLC)
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8 (HKLM-x32\...\The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8) (Version: 1.9.32.0.8 - .x.X.RIDDICK.X.x.)
The War Z (HKLM-x32\...\Steam App 226700) (Version: - )
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.5.7 - Electronic Arts)
Tom Clancy's Ghost Recon Phantoms - EU (HKLM-x32\...\Steam App 272350) (Version: - Ubisoft Singapore)
Tom Clancy's Splinter Cell Blacklist (HKLM-x32\...\Steam App 235600) (Version: - Ubisoft Toronto)
Tomb Raider (HKLM-x32\...\Tomb Raider_is1) (Version: - )
Tropico 4 (HKLM-x32\...\Steam App 57690) (Version: - Haemimont Games)
Tropico 5 (HKLM-x32\...\Tropico 5_is1) (Version: 1.0 - ADDONiA)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unreal Gold (HKLM-x32\...\Unreal Gold) (Version: - )
Unreal Tournament 3: Black Edition (HKLM-x32\...\Steam App 13210) (Version: - Epic Games, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7C8BBDE-FE98-11E1-87C9-F04DA23A5C58}) (Version: 12.0.367 - Sony)
Vista Shortcut Manager x64 (HKLM\...\{C7311329-C491-427B-8880-133E84869B3A}) (Version: 2.0 - Frameworkx)
VLC media player 0.9.9 (HKLM-x32\...\VLC media player) (Version: 0.9.9 - VideoLAN Team)
VTFEdit 1.2.5 (HKLM-x32\...\VTFEdit_is1) (Version: - Neil Jedrzejewski & Ryan Gregg)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
War Thunder Launcher 1.0.1.361 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
WIDCOMM Bluetooth Software (HKLM\...\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}) (Version: 6.5.0.3200 - Broadcom Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wolfenstein: The New Order (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - )
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Xfire (remove only) (HKLM-x32\...\Xfire) (Version: - )
Zombie Driver (HKLM-x32\...\Steam App 31410) (Version: - EXOR Studios)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-729600091-3301723442-1201444741-1000_Classes\CLSID\{f0d05fbd-2ab5-4529-8178-bbed954324b0}\InprocServer32 -> C:\Windows\SYSTEM32\dfshim.dll (Microsoft Corporation)
==================== Restore Points =========================
08-08-2014 18:14:27 3DMark
08-08-2014 18:43:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
08-08-2014 18:43:21 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
09-08-2014 11:41:55 DirectX wurde installiert
09-08-2014 12:12:00 Installiert ASUS GPU Tweak
09-08-2014 13:27:09 Konfiguriert ASUS GPU Tweak
10-08-2014 09:31:12 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
11-08-2014 16:22:01 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
13-08-2014 15:11:19 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-06-14 14:56 - 2014-08-15 14:49 - 00001020 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 anchorfree.net
127.0.0.1 rss2search.com
127.0.0.1 techbrowsing.com
127.0.0.1 box.anchorfree.net
127.0.0.1 MeFeedia
127.0.0.3 Anchorfree
127.0.0.2 MeFeedia
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0AF3FC3D-CAB5-411C-ABB0-574CC6B0CF57} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: {1A04970A-49AC-44CE-80C3-4320D636B1E6} - System32\Tasks\AIDA64 AutoStart => C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe [2014-07-29] (FinalWire Ltd.)
Task: {3B79E5DF-4E48-4450-9CB8-52D1B01E4086} - System32\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {43C56C3A-004B-4ABB-9638-7087D70A83F1} - System32\Tasks\Games\UpdateCheck_S-1-5-21-729600091-3301723442-1201444741-1000
Task: {54956001-54A5-42FC-9B44-4E1D10B78940} - System32\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {6D19C9E3-48C7-4077-B5D1-467746F6E2B9} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {741D0369-3DED-454A-8647-853B2133E858} - System32\Tasks\Sapphire TRIXX => C:\Sapphire TRIXX\TRIXX.exe [2013-12-19] ()
Task: {912FDAD1-774A-4DA7-8F3E-FD12C69CC2BC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-20] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\Windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
==================== Loaded Modules (whitelisted) =============
2014-04-17 21:55 - 2014-04-17 21:55 - 00082432 _____ () C:\AMD\amdacpusrsvc.exe
2014-06-05 17:40 - 2013-06-04 17:41 - 00936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2012-05-15 19:23 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2013-12-19 18:19 - 2013-12-19 18:19 - 05623104 _____ () C:\Sapphire TRIXX\TRIXX.exe
2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2012-02-20 21:29 - 2012-02-20 21:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 21:28 - 2012-02-20 21:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-06-05 17:40 - 2014-08-15 13:06 - 00031232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2014-06-05 17:40 - 2013-06-04 17:41 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 01135616 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00656896 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00105472 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00098816 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00077312 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00520234 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00450560 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 05717504 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00029184 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00147456 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 04671488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00070656 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00686080 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00152064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00027648 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00063488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00366592 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\tag.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00289792 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00023040 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00133120 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00290304 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00399826 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00013824 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00031232 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00054784 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00044032 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\us.dll
2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2012-05-15 20:17 - 2007-09-13 18:05 - 00002560 _____ () C:\Windows\system32\CTXFIGER.DLL
2012-05-15 20:17 - 2009-06-29 10:54 - 00164864 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-06-05 18:28 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-07-30 16:47 - 2014-07-30 16:47 - 03800688 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:A303874F
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: SamsungAllShareV2.0 => 2
MSCONFIG\Services: SimpleSlideShowServer => 3
MSCONFIG\startupfolder: C:^Users^Lil' Hagbrain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip => C:\Windows\pss\CurseClientStartup.ccip.Startup
MSCONFIG\startupfolder: C:^Users^Lil' Hagbrain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AsioReg => REGSVR32 /S CTASIO.DLL
MSCONFIG\startupreg: iTunesHelper => "D:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: OpAgent => "OpAgent.exe" /agent
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RtHDVBg_DTS => "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (08/14/2014 10:26:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DayZ.exe, Version: 0.48.124.737, Zeitstempel: 0x53ea1406
Name des fehlerhaften Moduls: DayZ.exe, Version: 0.48.124.737, Zeitstempel: 0x53ea1406
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001c3f2c
ID des fehlerhaften Prozesses: 0x1530
Startzeit der fehlerhaften Anwendung: 0xDayZ.exe0
Pfad der fehlerhaften Anwendung: DayZ.exe1
Pfad des fehlerhaften Moduls: DayZ.exe2
Berichtskennung: DayZ.exe3
Error: (08/13/2014 07:58:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x59c
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:56:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0xf70
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:52:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x13d4
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:52:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x5d0
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:51:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1410
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:50:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x17c8
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:50:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1414
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Error: (08/13/2014 07:50:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam - Kopie.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1684
Startzeit der fehlerhaften Anwendung: 0xmbam - Kopie.exe0
Pfad der fehlerhaften Anwendung: mbam - Kopie.exe1
Pfad des fehlerhaften Moduls: mbam - Kopie.exe2
Berichtskennung: mbam - Kopie.exe3
Error: (08/13/2014 07:43:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.532, Zeitstempel: 0x53518532
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0xc20
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
System errors:
=============
Error: (08/14/2014 04:04:52 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2014 04:01:38 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 14.08.2014 um 15:55:10 unerwartet heruntergefahren.
Error: (08/14/2014 03:51:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 4 Mal passiert.
Error: (08/14/2014 03:51:05 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (08/14/2014 03:50:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2014 03:50:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/13/2014 07:35:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MBAMService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/13/2014 07:35:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMScheduler" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/13/2014 07:35:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst MBAMScheduler erreicht.
Error: (08/13/2014 07:24:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Microsoft Office Sessions:
=========================
Error: (08/14/2014 10:26:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: DayZ.exe0.48.124.73753ea1406DayZ.exe0.48.124.73753ea1406c0000005001c3f2c153001cfb7f7c3843099D:\Steam\steamapps\common\DayZ\DayZ.exeD:\Steam\steamapps\common\DayZ\DayZ.exe37a6c944-23f1-11e4-ac72-c86000a49f7d
Error: (08/13/2014 07:58:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd59c01cfb72041d99dbcC:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll7fb1dcc9-2313-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:56:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fdf7001cfb71ff53421eeC:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll330a1702-2313-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:52:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd13d401cfb71f61f038eaC:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll9fbd061c-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:52:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd5d001cfb71f5c9dfe08C:\ Malwarebytes Anti-Malware \mbam.exeC:\ Malwarebytes Anti-Malware \MSVCR100.dll9a6cee21-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:51:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd141001cfb71f2ae7210eC:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll68ad5e77-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd17c801cfb71f21fdcf46C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll5fc40caf-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd141401cfb71f1c965e64C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll5a5c9bce-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:50:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam - Kopie.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd168401cfb71f0e33e839C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam - Kopie.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll4bfa25a2-2312-11e4-8ffa-c86000a49f7d
Error: (08/13/2014 07:43:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fdc2001cfb71e132829a1C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exeC:\Program Files (x86)\ Malwarebytes Anti-Malware \MSVCR100.dll50e3b882-2311-11e4-8ffa-c86000a49f7d
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 17%
Total physical RAM: 16323.37 MB
Available physical RAM: 13461.59 MB
Total Pagefile: 32644.91 MB
Available Pagefile: 29333.15 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (Windows x64 SSD) (Fixed) (Total:238.37 GB) (Free:142.44 GB) NTFS
Drive d: (HDD) (Fixed) (Total:1397.26 GB) (Free:214.26 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238 GB) (Disk ID: 4D40156A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=238 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: C4836045)
Partition 1: (Not Active) - (Size=1397 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
15.08.2014, 14:25
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Bitte mal ein Log mit CF machen Scan mit Combofix
__________________ Logfiles bitte immer in CODE-Tags posten |
|
15.08.2014, 14:35
| #8 |
| | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nichtCode:
ATTFilter ComboFix 14-08-15.01 - Lil' Hagbrain 15.08.2014 15:30:33.1.8 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.49.1031.18.16323.13454 [GMT 2:00]
ausgeführt von:: c:\users\Lil' Hagbrain\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2014-07-15 bis 2014-08-15 ))))))))))))))))))))))))))))))
.
.
2014-08-14 18:30 . 2014-08-14 18:34 -------- d-----w- C:\AdwCleaner
2014-08-14 14:28 . 2014-08-15 13:21 -------- d-----w- C:\FRST
2014-08-13 18:03 . 2014-08-15 13:33 122584 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-13 18:03 . 2014-08-15 11:53 -------- d-----w- C:\ Malwarebytes Anti-Malware
2014-08-13 18:03 . 2014-08-13 18:03 -------- d-----w- c:\programdata\Malwarebytes
2014-08-13 18:03 . 2014-05-12 05:26 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-08-13 18:03 . 2014-05-12 05:26 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-08-13 18:03 . 2014-05-12 05:25 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-08-13 15:11 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2014-08-13 15:11 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2014-08-13 15:11 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2014-08-13 15:11 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2014-08-13 15:11 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2014-08-13 15:11 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2014-08-13 15:11 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2014-08-13 15:11 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-08-13 13:59 . 2014-07-24 12:09 19279872 ----a-w- c:\windows\system32\mshtml.dll
2014-08-11 16:22 . 2014-08-11 16:22 -------- d-----w- c:\programdata\ATI
2014-08-11 16:22 . 2014-08-11 16:22 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2014-08-11 16:22 . 2014-08-11 16:22 -------- d-----w- c:\program files (x86)\AMD AVT
2014-08-11 16:22 . 2014-08-11 16:22 -------- d-----w- c:\program files (x86)\ATI Technologies
2014-08-11 16:21 . 2014-08-11 16:21 -------- d-----w- c:\program files\ATI
2014-08-11 16:21 . 2014-08-11 16:22 -------- d-----w- c:\program files\ATI Technologies
2014-08-08 15:29 . 2014-08-08 15:29 -------- d-----w- c:\program files\Futuremark
2014-07-31 16:46 . 2014-07-31 16:46 -------- d-----w- c:\programdata\SystemRequirementsLab
2014-07-27 20:14 . 2014-07-27 20:14 -------- d-----w- c:\program files (x86)\FinalWire
2014-07-27 09:59 . 2014-08-06 14:11 -------- d-----w- c:\program files\MSI Kombustor 3.0
2014-07-18 13:59 . 2014-07-18 13:59 -------- d-----w- c:\program files (x86)\Futuremark
2014-07-18 13:58 . 2014-08-08 18:26 -------- d-----w- c:\users\Lil' Hagbrain\AppData\Local\Futuremark
2014-07-18 13:58 . 2014-07-18 13:58 -------- d-----w- c:\users\Lil' Hagbrain\AppData\Local\IsolatedStorage
2014-07-18 13:15 . 2014-07-18 13:15 -------- d-----w- C:\Sapphire TRIXX
2014-07-18 12:09 . 2014-08-15 13:33 65536 ----a-w- c:\windows\system32\spu_storage.bin
2014-07-18 10:52 . 2014-07-18 10:52 -------- d-----w- c:\program files\AMD
2014-07-17 17:22 . 2014-07-17 17:33 -------- d-----w- c:\users\Lil' Hagbrain\Heaven
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-13 15:13 . 2012-05-15 18:18 99218768 ----a-w- c:\windows\system32\MRT.exe
2014-07-20 12:36 . 2012-05-15 18:09 699056 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-07-20 12:36 . 2012-05-15 18:09 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-07-15 14:27 . 2014-05-25 19:14 42040 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2014-07-11 12:22 . 2011-03-28 16:36 23264 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-07-09 15:35 . 2014-07-09 15:35 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe
2014-07-09 15:35 . 2014-07-09 15:35 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe
2014-07-09 15:35 . 2014-07-09 15:35 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe
2014-07-09 15:35 . 2014-07-09 15:35 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe
2014-07-03 14:21 . 2014-05-25 19:14 117712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2014-06-18 02:18 . 2014-07-09 13:52 692736 ----a-w- c:\windows\system32\osk.exe
2014-06-18 01:51 . 2014-07-09 13:52 646144 ----a-w- c:\windows\SysWow64\osk.exe
2014-06-06 10:10 . 2014-07-09 13:52 624128 ----a-w- c:\windows\system32\qedit.dll
2014-06-06 09:44 . 2014-07-09 13:52 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-06-05 17:59 . 2014-06-05 15:43 1048576 ----a-w- c:\windows\PE_Rom.dll
2014-06-05 14:45 . 2014-07-09 13:52 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-06-05 14:26 . 2014-07-09 13:52 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-06-05 14:25 . 2014-07-09 13:52 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-05-30 08:08 . 2014-07-09 13:52 210944 ----a-w- c:\windows\system32\wdigest.dll
2014-05-30 08:08 . 2014-07-09 13:52 86528 ----a-w- c:\windows\system32\TSpkg.dll
2014-05-30 08:08 . 2014-07-09 13:52 340992 ----a-w- c:\windows\system32\schannel.dll
2014-05-30 08:08 . 2014-07-09 13:52 314880 ----a-w- c:\windows\system32\msv1_0.dll
2014-05-30 08:08 . 2014-07-09 13:52 307200 ----a-w- c:\windows\system32\ncrypt.dll
2014-05-30 08:08 . 2014-07-09 13:52 728064 ----a-w- c:\windows\system32\kerberos.dll
2014-05-30 08:08 . 2014-07-09 13:52 22016 ----a-w- c:\windows\system32\credssp.dll
2014-05-30 07:52 . 2014-07-09 13:52 172032 ----a-w- c:\windows\SysWow64\wdigest.dll
2014-05-30 07:52 . 2014-07-09 13:52 65536 ----a-w- c:\windows\SysWow64\TSpkg.dll
2014-05-30 07:52 . 2014-07-09 13:52 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2014-05-30 07:52 . 2014-07-09 13:52 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2014-05-30 07:52 . 2014-07-09 13:52 259584 ----a-w- c:\windows\SysWow64\msv1_0.dll
2014-05-30 07:52 . 2014-07-09 13:52 550912 ----a-w- c:\windows\SysWow64\kerberos.dll
2014-05-30 07:52 . 2014-07-09 13:52 17408 ----a-w- c:\windows\SysWow64\credssp.dll
2014-05-30 06:45 . 2014-07-09 13:52 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2014-05-28 22:56 . 2013-01-30 14:14 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2014-05-27 11:03 . 2014-05-25 19:14 130584 ----a-w- c:\windows\system32\drivers\avipbb.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2013-11-20 59720]
"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2013-11-20 59720]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-02-22 292088]
"CTxfiHlp"="CTXFIHLP.EXE" [2012-12-18 24576]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"iTunesHelper"="d:\program files (x86)\iTunes\iTunesHelper.exe" [2013-11-01 152392]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-08-07 751184]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-04-17 767200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CtxfiReg"="CTXFIREG.exe" [2012-12-18 47104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"DelayedDesktopSwitchTimeout"= 0500000000000000
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R3 AiChargerPlus;AiChargerPlus;SysWow64\drivers\AiChargerPlus.sys;SysWow64\drivers\AiChargerPlus.sys [x]
R3 ALSysIO;ALSysIO;c:\users\LIL'HA~1\AppData\Local\Temp\ALSysIO64.sys;c:\users\LIL'HA~1\AppData\Local\Temp\ALSysIO64.sys [x]
R3 ASUSFILTER;ASUSFILTER;SysWow64\drivers\ASUSFILTER.sys;SysWow64\drivers\ASUSFILTER.sys [x]
R3 atillk64;atillk64;c:\users\Lil' Hagbrain\Desktop\ATIWINFLASH\atillk64.sys;c:\users\Lil' Hagbrain\Desktop\ATIWINFLASH\atillk64.sys [x]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
R3 BcmVWL;Broadcom Virtual Wireless;c:\windows\system32\DRIVERS\bcmvwl64.sys;c:\windows\SYSNATIVE\DRIVERS\bcmvwl64.sys [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
R3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys;c:\windows\SYSNATIVE\DRIVERS\btwdpan.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 cpuz135;cpuz135;c:\users\LIL'HA~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys;c:\users\LIL'HA~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [x]
R3 cpuz137;cpuz137;c:\windows\TEMP\cpuz137\cpuz137_x64.sys;c:\windows\TEMP\cpuz137\cpuz137_x64.sys [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.SYS;c:\windows\SYSNATIVE\drivers\CT20XUT.SYS [x]
R3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.SYS;c:\windows\SYSNATIVE\drivers\CTEXFIFX.SYS [x]
R3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.SYS;c:\windows\SYSNATIVE\drivers\CTHWIUT.SYS [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\SystemInfo\FMSISvc.exe [x]
R3 GPUZ;GPUZ;c:\windows\TEMP\GPUZ.sys;c:\windows\TEMP\GPUZ.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys;c:\windows\SYSNATIVE\DRIVERS\netaapl64.sys [x]
R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R4 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R4 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [x]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 mv91cons;Marvell 91xx Config Device Driver;c:\windows\system32\DRIVERS\mv91cons.sys;c:\windows\SYSNATIVE\DRIVERS\mv91cons.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 amdacpksd;ACP Kernel Service Driver;c:\windows\system32\drivers\amdacpksd.sys;c:\windows\SYSNATIVE\drivers\amdacpksd.sys [x]
S2 amdacpusrsvc;ACP User Service;c:\amd\amdacpusrsvc.exe;c:\amd\amdacpusrsvc.exe [x]
S2 AntiVirMailService;Avira Email-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avmailc7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc7.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [x]
S2 AsusFanControlService;AsusFanControlService;c:\program files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe;c:\program files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe [x]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]
S2 DTSAudioSvc;DTSAudioSvc;c:\program files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe;c:\program files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe;c:\windows\SYSNATIVE\IProsetMonitor.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\ malwarebytes anti-malware \mbamscheduler.exe;c:\ malwarebytes anti-malware \mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\ malwarebytes anti-malware \mbamservice.exe;c:\ malwarebytes anti-malware \mbamservice.exe [x]
S2 SamsungAllShareV2.0;Samsung AllShare PC;c:\program files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe;c:\program files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [x]
S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;c:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64;c:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\System32\drivers\CT20XUT.SYS;c:\windows\SYSNATIVE\drivers\CT20XUT.SYS [x]
S3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\System32\drivers\CTEXFIFX.SYS;c:\windows\SYSNATIVE\drivers\CTEXFIFX.SYS [x]
S3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\System32\drivers\CTHWIUT.SYS;c:\windows\SYSNATIVE\drivers\CTHWIUT.SYS [x]
S3 ha20x22k;Creative 20X2 HAL Driver;c:\windows\system32\drivers\ha20x22k.sys;c:\windows\SYSNATIVE\drivers\ha20x22k.sys [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGPBTDD;LGPBTDD.sys Display Driver;c:\windows\system32\Drivers\LGPBTDD.sys;c:\windows\SYSNATIVE\Drivers\LGPBTDD.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
S3 TRIXX;TRIXX;c:\users\LIL'HA~1\AppData\Local\Temp\TRIXX.sys;c:\users\LIL'HA~1\AppData\Local\Temp\TRIXX.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - MBAMSWISSARMY
.
Inhalt des "geplante Tasks" Ordners
.
2014-08-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-15 12:36]
.
2014-08-15 c:\windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2014-05-03 23:20]
.
2014-08-15 c:\windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2014-05-03 23:20]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2014-04-15 10396440]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uInternet Settings,ProxyOverride = *.local;localhost
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-BattlEye for A2 - d:\steam\steamapps\common\Arma 2BattlEye\UnInstallBE.exe
AddRemove-PunkBusterSvc - c:\program files (x86)\Origin Games\Battlefield 4\pbsvc.exe
AddRemove-Rockstar Games Social Club - c:\program files (x86)\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\AIDA64Driver]
"ImagePath"="\??\c:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-729600091-3301723442-1201444741-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-729600091-3301723442-1201444741-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_USERS\S-1-5-21-729600091-3301723442-1201444741-1000\Software\SecuROM\License information*]
"datasecu"=hex:4d,4e,ef,84,d1,e6,37,4f,a9,a8,bf,05,4e,47,f0,e5,59,67,d1,76,3d,
50,af,ed,b6,88,76,6d,ef,9c,28,f3,46,4e,46,42,78,b8,1d,52,fa,65,0a,55,dd,6f,\
"rkeysecu"=hex:45,45,ed,70,23,41,73,ac,49,88,b7,d6,28,12,de,4f
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\ malwarebytes anti-malware \mbam.exe
c:\sapphire trixx\TRIXX.exe
c:\fraps\fraps.exe
c:\program files (x86)\FinalWire\AIDA64 Extreme\aida64.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-08-15 15:34:44 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2014-08-15 13:34
.
Vor Suchlauf: 18 Verzeichnis(se), 152.695.848.960 Bytes frei
Nach Suchlauf: 22 Verzeichnis(se), 152.365.764.608 Bytes frei
.
- - End Of File - - 437FFB8F036CD37E26A186FC172FEE67
A36C5E4F47E84449FF07ED3517B43A31
|
|
15.08.2014, 22:44
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Combofix-Skript
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.08.2014, 08:37
| #10 | |
| | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Heute startet MBAM wieder nicht mehr. Und nur zu info, TriXX ist von Saphhire das hauseigene OverClocking tool das meiner graka bei lag. Code:
ATTFilter ComboFix 14-08-15.01 - Lil' Hagbrain 16.08.2014 9:31.2.8 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.49.1031.18.16323.14022 [GMT 2:00]
ausgeführt von:: c:\users\Lil' Hagbrain\Downloads\ComboFix.exe
Benutzte Befehlsschalter :: c:\users\Lil' Hagbrain\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\users\LIL'HA~1\AppData\Local\Temp\TRIXX.sys"
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_TRIXX
-------\Service_TRIXX
.
.
((((((((((((((((((((((( Dateien erstellt von 2014-07-16 bis 2014-08-16 ))))))))))))))))))))))))))))))
.
.
2014-08-16 07:34 . 2014-08-16 07:34 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-08-14 18:30 . 2014-08-14 18:34 -------- d-----w- C:\AdwCleaner
2014-08-14 14:28 . 2014-08-15 13:21 -------- d-----w- C:\FRST
2014-08-13 18:03 . 2014-08-15 17:45 122584 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-13 18:03 . 2014-08-15 11:53 -------- d-----w- C:\ Malwarebytes Anti-Malware
2014-08-13 18:03 . 2014-08-13 18:03 -------- d-----w- c:\programdata\Malwarebytes
2014-08-13 18:03 . 2014-05-12 05:26 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-08-13 18:03 . 2014-05-12 05:26 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-08-13 18:03 . 2014-05-12 05:25 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-08-13 15:11 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2014-08-13 15:11 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2014-08-13 15:11 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2014-08-13 15:11 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2014-08-13 15:11 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2014-08-13 15:11 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2014-08-13 15:11 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2014-08-13 15:11 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-08-13 13:59 . 2014-07-24 12:09 19279872 ----a-w- c:\windows\system32\mshtml.dll
2014-08-11 16:22 . 2014-08-11 16:22 -------- d-----w- c:\programdata\ATI
2014-08-11 16:22 . 2014-08-11 16:22 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2014-08-11 16:22 . 2014-08-11 16:22 -------- d-----w- c:\program files (x86)\AMD AVT
2014-08-11 16:22 . 2014-08-11 16:22 -------- d-----w- c:\program files (x86)\ATI Technologies
2014-08-11 16:21 . 2014-08-11 16:21 -------- d-----w- c:\program files\ATI
2014-08-11 16:21 . 2014-08-11 16:22 -------- d-----w- c:\program files\ATI Technologies
2014-08-08 15:29 . 2014-08-08 15:29 -------- d-----w- c:\program files\Futuremark
2014-07-31 16:46 . 2014-07-31 16:46 -------- d-----w- c:\programdata\SystemRequirementsLab
2014-07-27 20:14 . 2014-07-27 20:14 -------- d-----w- c:\program files (x86)\FinalWire
2014-07-27 09:59 . 2014-08-06 14:11 -------- d-----w- c:\program files\MSI Kombustor 3.0
2014-07-18 13:59 . 2014-07-18 13:59 -------- d-----w- c:\program files (x86)\Futuremark
2014-07-18 13:58 . 2014-08-08 18:26 -------- d-----w- c:\users\Lil' Hagbrain\AppData\Local\Futuremark
2014-07-18 13:58 . 2014-07-18 13:58 -------- d-----w- c:\users\Lil' Hagbrain\AppData\Local\IsolatedStorage
2014-07-18 13:15 . 2014-07-18 13:15 -------- d-----w- C:\Sapphire TRIXX
2014-07-18 12:09 . 2014-08-16 07:34 65536 ----a-w- c:\windows\system32\spu_storage.bin
2014-07-18 10:52 . 2014-07-18 10:52 -------- d-----w- c:\program files\AMD
2014-07-17 17:22 . 2014-07-17 17:33 -------- d-----w- c:\users\Lil' Hagbrain\Heaven
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-13 15:13 . 2012-05-15 18:18 99218768 ----a-w- c:\windows\system32\MRT.exe
2014-07-20 12:36 . 2012-05-15 18:09 699056 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-07-20 12:36 . 2012-05-15 18:09 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-07-15 14:27 . 2014-05-25 19:14 42040 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2014-07-11 12:22 . 2011-03-28 16:36 23264 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-07-09 15:35 . 2014-07-09 15:35 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe
2014-07-09 15:35 . 2014-07-09 15:35 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe
2014-07-09 15:35 . 2014-07-09 15:35 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe
2014-07-09 15:35 . 2014-07-09 15:35 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe
2014-07-03 14:21 . 2014-05-25 19:14 117712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2014-06-18 02:18 . 2014-07-09 13:52 692736 ----a-w- c:\windows\system32\osk.exe
2014-06-18 01:51 . 2014-07-09 13:52 646144 ----a-w- c:\windows\SysWow64\osk.exe
2014-06-06 10:10 . 2014-07-09 13:52 624128 ----a-w- c:\windows\system32\qedit.dll
2014-06-06 09:44 . 2014-07-09 13:52 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-06-05 17:59 . 2014-06-05 15:43 1048576 ----a-w- c:\windows\PE_Rom.dll
2014-06-05 14:45 . 2014-07-09 13:52 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-06-05 14:26 . 2014-07-09 13:52 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-06-05 14:25 . 2014-07-09 13:52 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-05-30 08:08 . 2014-07-09 13:52 210944 ----a-w- c:\windows\system32\wdigest.dll
2014-05-30 08:08 . 2014-07-09 13:52 86528 ----a-w- c:\windows\system32\TSpkg.dll
2014-05-30 08:08 . 2014-07-09 13:52 340992 ----a-w- c:\windows\system32\schannel.dll
2014-05-30 08:08 . 2014-07-09 13:52 314880 ----a-w- c:\windows\system32\msv1_0.dll
2014-05-30 08:08 . 2014-07-09 13:52 307200 ----a-w- c:\windows\system32\ncrypt.dll
2014-05-30 08:08 . 2014-07-09 13:52 728064 ----a-w- c:\windows\system32\kerberos.dll
2014-05-30 08:08 . 2014-07-09 13:52 22016 ----a-w- c:\windows\system32\credssp.dll
2014-05-30 07:52 . 2014-07-09 13:52 172032 ----a-w- c:\windows\SysWow64\wdigest.dll
2014-05-30 07:52 . 2014-07-09 13:52 65536 ----a-w- c:\windows\SysWow64\TSpkg.dll
2014-05-30 07:52 . 2014-07-09 13:52 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2014-05-30 07:52 . 2014-07-09 13:52 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2014-05-30 07:52 . 2014-07-09 13:52 259584 ----a-w- c:\windows\SysWow64\msv1_0.dll
2014-05-30 07:52 . 2014-07-09 13:52 550912 ----a-w- c:\windows\SysWow64\kerberos.dll
2014-05-30 07:52 . 2014-07-09 13:52 17408 ----a-w- c:\windows\SysWow64\credssp.dll
2014-05-30 06:45 . 2014-07-09 13:52 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2014-05-28 22:56 . 2013-01-30 14:14 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2014-05-27 11:03 . 2014-05-25 19:14 130584 ----a-w- c:\windows\system32\drivers\avipbb.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2013-11-20 59720]
"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2013-11-20 59720]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-02-22 292088]
"CTxfiHlp"="CTXFIHLP.EXE" [2012-12-18 24576]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"iTunesHelper"="d:\program files (x86)\iTunes\iTunesHelper.exe" [2013-11-01 152392]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-08-07 751184]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-04-17 767200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CtxfiReg"="CTXFIREG.exe" [2012-12-18 47104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"DelayedDesktopSwitchTimeout"= 0500000000000000
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\ malwarebytes anti-malware \mbamscheduler.exe;c:\ malwarebytes anti-malware \mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\ malwarebytes anti-malware \mbamservice.exe;c:\ malwarebytes anti-malware \mbamservice.exe [x]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R3 AiChargerPlus;AiChargerPlus;SysWow64\drivers\AiChargerPlus.sys;SysWow64\drivers\AiChargerPlus.sys [x]
R3 ALSysIO;ALSysIO;c:\users\LIL'HA~1\AppData\Local\Temp\ALSysIO64.sys;c:\users\LIL'HA~1\AppData\Local\Temp\ALSysIO64.sys [x]
R3 ASUSFILTER;ASUSFILTER;SysWow64\drivers\ASUSFILTER.sys;SysWow64\drivers\ASUSFILTER.sys [x]
R3 atillk64;atillk64;c:\users\Lil' Hagbrain\Desktop\ATIWINFLASH\atillk64.sys;c:\users\Lil' Hagbrain\Desktop\ATIWINFLASH\atillk64.sys [x]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
R3 BcmVWL;Broadcom Virtual Wireless;c:\windows\system32\DRIVERS\bcmvwl64.sys;c:\windows\SYSNATIVE\DRIVERS\bcmvwl64.sys [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
R3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys;c:\windows\SYSNATIVE\DRIVERS\btwdpan.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 cpuz135;cpuz135;c:\users\LIL'HA~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys;c:\users\LIL'HA~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [x]
R3 cpuz137;cpuz137;c:\windows\TEMP\cpuz137\cpuz137_x64.sys;c:\windows\TEMP\cpuz137\cpuz137_x64.sys [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.SYS;c:\windows\SYSNATIVE\drivers\CT20XUT.SYS [x]
R3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.SYS;c:\windows\SYSNATIVE\drivers\CTEXFIFX.SYS [x]
R3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.SYS;c:\windows\SYSNATIVE\drivers\CTHWIUT.SYS [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\SystemInfo\FMSISvc.exe [x]
R3 GPUZ;GPUZ;c:\windows\TEMP\GPUZ.sys;c:\windows\TEMP\GPUZ.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys;c:\windows\SYSNATIVE\DRIVERS\netaapl64.sys [x]
R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R4 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R4 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [x]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 mv91cons;Marvell 91xx Config Device Driver;c:\windows\system32\DRIVERS\mv91cons.sys;c:\windows\SYSNATIVE\DRIVERS\mv91cons.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 amdacpksd;ACP Kernel Service Driver;c:\windows\system32\drivers\amdacpksd.sys;c:\windows\SYSNATIVE\drivers\amdacpksd.sys [x]
S2 amdacpusrsvc;ACP User Service;c:\amd\amdacpusrsvc.exe;c:\amd\amdacpusrsvc.exe [x]
S2 AntiVirMailService;Avira Email-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avmailc7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc7.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [x]
S2 AsusFanControlService;AsusFanControlService;c:\program files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe;c:\program files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe [x]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]
S2 DTSAudioSvc;DTSAudioSvc;c:\program files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe;c:\program files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe;c:\windows\SYSNATIVE\IProsetMonitor.exe [x]
S2 SamsungAllShareV2.0;Samsung AllShare PC;c:\program files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe;c:\program files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [x]
S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;c:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64;c:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\System32\drivers\CT20XUT.SYS;c:\windows\SYSNATIVE\drivers\CT20XUT.SYS [x]
S3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\System32\drivers\CTEXFIFX.SYS;c:\windows\SYSNATIVE\drivers\CTEXFIFX.SYS [x]
S3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\System32\drivers\CTHWIUT.SYS;c:\windows\SYSNATIVE\drivers\CTHWIUT.SYS [x]
S3 ha20x22k;Creative 20X2 HAL Driver;c:\windows\system32\drivers\ha20x22k.sys;c:\windows\SYSNATIVE\drivers\ha20x22k.sys [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGPBTDD;LGPBTDD.sys Display Driver;c:\windows\system32\Drivers\LGPBTDD.sys;c:\windows\SYSNATIVE\Drivers\LGPBTDD.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 TRIXX;TRIXX;c:\users\LIL'HA~1\AppData\Local\Temp\TRIXX.sys;c:\users\LIL'HA~1\AppData\Local\Temp\TRIXX.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - TRIXX
.
Inhalt des "geplante Tasks" Ordners
.
2014-08-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-15 12:36]
.
2014-08-16 c:\windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2014-05-03 23:20]
.
2014-08-16 c:\windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2014-05-03 23:20]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2014-04-15 10396440]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uInternet Settings,ProxyOverride = *.local;localhost
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-BattlEye for A2 - d:\steam\steamapps\common\Arma 2BattlEye\UnInstallBE.exe
AddRemove-PunkBusterSvc - c:\program files (x86)\Origin Games\Battlefield 4\pbsvc.exe
AddRemove-Rockstar Games Social Club - c:\program files (x86)\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\AIDA64Driver]
"ImagePath"="\??\c:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-729600091-3301723442-1201444741-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-729600091-3301723442-1201444741-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_USERS\S-1-5-21-729600091-3301723442-1201444741-1000\Software\SecuROM\License information*]
"datasecu"=hex:4d,4e,ef,84,d1,e6,37,4f,a9,a8,bf,05,4e,47,f0,e5,59,67,d1,76,3d,
50,af,ed,b6,88,76,6d,ef,9c,28,f3,46,4e,46,42,78,b8,1d,52,fa,65,0a,55,dd,6f,\
"rkeysecu"=hex:45,45,ed,70,23,41,73,ac,49,88,b7,d6,28,12,de,4f
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\fraps\fraps.exe
c:\sapphire trixx\TRIXX.exe
c:\program files (x86)\FinalWire\AIDA64 Extreme\aida64.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-08-16 09:35:46 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2014-08-16 07:35
ComboFix2.txt 2014-08-15 13:34
.
Vor Suchlauf: 21 Verzeichnis(se), 152.429.387.776 Bytes frei
Nach Suchlauf: 22 Verzeichnis(se), 152.113.999.872 Bytes frei
.
- - End Of File - - BDAC0D0D785E109ABE5948B46927095A
A36C5E4F47E84449FF07ED3517B43A31
Zitat:
Geändert von Hagbrain (16.08.2014 um 08:58 Uhr) |
|
16.08.2014, 19:28
| #11 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nichtZitat:
 naja wie auch immer  Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.08.2014, 22:20
| #12 |
| | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht erledigt. Code:
ATTFilter 23:18:30.0483 0x1b40 TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
23:18:34.0223 0x1b40 ============================================================
23:18:34.0223 0x1b40 Current date / time: 2014/08/16 23:18:34.0223
23:18:34.0223 0x1b40 SystemInfo:
23:18:34.0223 0x1b40
23:18:34.0223 0x1b40 OS Version: 6.1.7601 ServicePack: 1.0
23:18:34.0223 0x1b40 Product type: Workstation
23:18:34.0223 0x1b40 ComputerName: INTEL3770K-PC
23:18:34.0223 0x1b40 UserName: Lil' Hagbrain
23:18:34.0223 0x1b40 Windows directory: C:\Windows
23:18:34.0223 0x1b40 System windows directory: C:\Windows
23:18:34.0223 0x1b40 Running under WOW64
23:18:34.0223 0x1b40 Processor architecture: Intel x64
23:18:34.0223 0x1b40 Number of processors: 8
23:18:34.0223 0x1b40 Page size: 0x1000
23:18:34.0223 0x1b40 Boot type: Normal boot
23:18:34.0223 0x1b40 ============================================================
23:18:34.0391 0x1b40 KLMD registered as C:\Windows\system32\drivers\08356756.sys
23:18:34.0453 0x1b40 System UUID: {9F3C9334-011D-4F4E-9B6C-B4C022555DC7}
23:18:34.0677 0x1b40 Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:18:34.0681 0x1b40 Drive \Device\Harddisk1\DR1 - Size: 0x15D50F66000 ( 1397.27 Gb ), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:18:34.0685 0x1b40 ============================================================
23:18:34.0685 0x1b40 \Device\Harddisk0\DR0:
23:18:34.0685 0x1b40 MBR partitions:
23:18:34.0685 0x1b40 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:18:34.0685 0x1b40 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1DCC0000
23:18:34.0685 0x1b40 \Device\Harddisk1\DR1:
23:18:34.0685 0x1b40 MBR partitions:
23:18:34.0685 0x1b40 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAEA86800
23:18:34.0685 0x1b40 ============================================================
23:18:34.0686 0x1b40 C: <-> \Device\Harddisk0\DR0\Partition2
23:18:34.0725 0x1b40 D: <-> \Device\Harddisk1\DR1\Partition1
23:18:34.0725 0x1b40 ============================================================
23:18:34.0725 0x1b40 Initialize success
23:18:34.0725 0x1b40 ============================================================
23:19:17.0047 0x1a70 ============================================================
23:19:17.0047 0x1a70 Scan started
23:19:17.0047 0x1a70 Mode: Manual; SigCheck; TDLFS;
23:19:17.0047 0x1a70 ============================================================
23:19:17.0047 0x1a70 KSN ping started
23:19:19.0435 0x1a70 KSN ping finished: true
23:19:19.0736 0x1a70 ================ Scan system memory ========================
23:19:19.0736 0x1a70 System memory - ok
23:19:19.0736 0x1a70 ================ Scan services =============================
23:19:19.0767 0x1a70 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:19:19.0810 0x1a70 1394ohci - ok
23:19:19.0819 0x1a70 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:19:19.0831 0x1a70 ACPI - ok
23:19:19.0834 0x1a70 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:19:19.0851 0x1a70 AcpiPmi - ok
23:19:19.0858 0x1a70 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:19:19.0867 0x1a70 AdobeARMservice - ok
23:19:19.0890 0x1a70 [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:19:19.0897 0x1a70 AdobeFlashPlayerUpdateSvc - ok
23:19:19.0905 0x1a70 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:19:19.0921 0x1a70 adp94xx - ok
23:19:19.0928 0x1a70 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:19:19.0941 0x1a70 adpahci - ok
23:19:19.0945 0x1a70 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:19:19.0955 0x1a70 adpu320 - ok
23:19:19.0959 0x1a70 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:19:19.0990 0x1a70 AeLookupSvc - ok
23:19:19.0998 0x1a70 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
23:19:20.0015 0x1a70 AFD - ok
23:19:20.0018 0x1a70 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:19:20.0026 0x1a70 agp440 - ok
23:19:20.0029 0x1a70 [ 4BFB41025FA1C37205EDEEFDE36F7771, EA171520C0C8DAFA3D656EC4815393F77096C1E22EC9F39756B52D1565483102 ] AiChargerPlus C:\Windows\syswow64\drivers\AiChargerPlus.sys
23:19:20.0041 0x1a70 AiChargerPlus - ok
23:19:20.0045 0x1a70 [ 64D59ADC91CD63C43C3820383EDB82E3, CDA9A64BE1006C6E89564DEA75C7CA19EF4BA29EC50B847B2BFE480F2F821EC5 ] AIDA64Driver C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64
23:19:20.0049 0x1a70 AIDA64Driver - ok
23:19:20.0052 0x1a70 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:19:20.0062 0x1a70 ALG - ok
23:19:20.0065 0x1a70 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:19:20.0071 0x1a70 aliide - ok
23:19:20.0081 0x1a70 ALSysIO - ok
23:19:20.0086 0x1a70 [ E7BDC2E7D885A65031C6B93D5A80B019, B37B05CA81A200A0C303946A21901ED382468761AB8BB8F7F310700A060E813F ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:19:20.0105 0x1a70 AMD External Events Utility - ok
23:19:20.0111 0x1a70 [ 31424EA67E83EAAF76ED3473F2F8F758, CBB8B604A6A18239F079BC6AABC97ED0DC851B08C0659D24BA576F084770E7C4 ] amdacpksd C:\Windows\system32\drivers\amdacpksd.sys
23:19:20.0121 0x1a70 amdacpksd - ok
23:19:20.0124 0x1a70 [ E696F48E288CC3FFDB9AEBF6AFDB791C, 78532672634EA9AE1E6C823528136DF74407CCF5518B4919CC074498B1D321B6 ] amdacpusrsvc C:\AMD\amdacpusrsvc.exe
23:19:20.0130 0x1a70 amdacpusrsvc - detected UnsignedFile.Multi.Generic ( 1 )
23:19:22.0534 0x1a70 Detect skipped due to KSN trusted
23:19:22.0534 0x1a70 amdacpusrsvc - ok
23:19:22.0537 0x1a70 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:19:22.0544 0x1a70 amdide - ok
23:19:22.0546 0x1a70 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:19:22.0557 0x1a70 AmdK8 - ok
23:19:22.0745 0x1a70 [ 342156AF1FED5ED3A5D3FBB3D87F48E8, 119C85492EDCA82731E23A261DE39A72783713B01B89D8FA2F47400EB03C7C57 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:19:23.0005 0x1a70 amdkmdag - ok
23:19:23.0024 0x1a70 [ 9DCA2AFEABF1D109FB2C229491C9F293, F020F4FDD29897C656287A2D01D51B4AE45AA604E4291BCE05FB7D994242EC04 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
23:19:23.0046 0x1a70 amdkmdap - ok
23:19:23.0049 0x1a70 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:19:23.0059 0x1a70 AmdPPM - ok
23:19:23.0062 0x1a70 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:19:23.0072 0x1a70 amdsata - ok
23:19:23.0076 0x1a70 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:19:23.0087 0x1a70 amdsbs - ok
23:19:23.0089 0x1a70 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:19:23.0096 0x1a70 amdxata - ok
23:19:23.0117 0x1a70 [ CFF963024EABC01B818C8019094CA4D8, 1B0C3B8D9616E00AEBDC90ADCCA1C4DC7149A2588772DFAA9C84FBD303CA0505 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
23:19:23.0130 0x1a70 AntiVirMailService - ok
23:19:23.0138 0x1a70 [ 0327A6CE0934C324E3E82920E9EC0EE4, B4A1E6A77032F7DF97FED3C01E76E2BD3270A3FFC500C7C9A118C0E2EB675D75 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
23:19:23.0150 0x1a70 AntiVirSchedulerService - ok
23:19:23.0157 0x1a70 [ 0327A6CE0934C324E3E82920E9EC0EE4, B4A1E6A77032F7DF97FED3C01E76E2BD3270A3FFC500C7C9A118C0E2EB675D75 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
23:19:23.0168 0x1a70 AntiVirService - ok
23:19:23.0183 0x1a70 [ CA9E51B4456B64A92FE60A592EE7DE61, 358B95623C8577A158D789FB03910ECB86EE746031C78EC97A6A8EE9A5B0086B ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
23:19:23.0197 0x1a70 AntiVirWebService - ok
23:19:23.0201 0x1a70 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
23:19:23.0241 0x1a70 AppID - ok
23:19:23.0244 0x1a70 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:19:23.0264 0x1a70 AppIDSvc - ok
23:19:23.0267 0x1a70 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
23:19:23.0277 0x1a70 Appinfo - ok
23:19:23.0282 0x1a70 [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:19:23.0289 0x1a70 Apple Mobile Device - ok
23:19:23.0295 0x1a70 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
23:19:23.0307 0x1a70 AppMgmt - ok
23:19:23.0310 0x1a70 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:19:23.0318 0x1a70 arc - ok
23:19:23.0322 0x1a70 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:19:23.0330 0x1a70 arcsas - ok
23:19:23.0333 0x1a70 [ AA1A87CF0B150A765B55A671A32F992B, 5199FFCE84372B533AAA6841D5385F86415163AB8FB123DEFCCD915198895586 ] asahci64 C:\Windows\system32\DRIVERS\asahci64.sys
23:19:23.0342 0x1a70 asahci64 - ok
23:19:23.0357 0x1a70 [ BBF8F831C7720DD5135D8C4C8325187A, 2630C68200D7BD49A5772830D6B369C0EC337C2558A9562DD564DF042249ECC0 ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
23:19:23.0380 0x1a70 asComSvc - ok
23:19:23.0394 0x1a70 [ 03BAC13465BEFA17BFD26DE8EA79301D, C6B443EDE2B22A1273FF815380D5C0D04E00ED5261F1D7117977A1C9B7DA684F ] asHmComSvc C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
23:19:23.0417 0x1a70 asHmComSvc - detected UnsignedFile.Multi.Generic ( 1 )
23:19:25.0821 0x1a70 Detect skipped due to KSN trusted
23:19:25.0821 0x1a70 asHmComSvc - ok
23:19:25.0823 0x1a70 [ 798DE15F187C1F013095BBBEB6FB6197, 436CCAB6F62FA2D29827916E054ADE7ACAE485B3DE1D3E5C6C62D3DEBF1480E7 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
23:19:25.0830 0x1a70 AsIO - ok
23:19:25.0834 0x1a70 [ 236023DAC93037A8DDE9539F36D7F3EE, DA689EA3FD5A886D19003B71114DC2F5ABE9F0D9B2F501881BB6AD1641E8BA14 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
23:19:25.0843 0x1a70 asmthub3 - ok
23:19:25.0851 0x1a70 [ 1390ABD16ADE1F2443B5749D06C4C8F2, 3F5BE10CC1D6459B7062206FA4981BF81956B3CBC92D3B596B7B7A383DA4C106 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
23:19:25.0865 0x1a70 asmtxhci - ok
23:19:25.0874 0x1a70 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:19:25.0883 0x1a70 aspnet_state - ok
23:19:25.0887 0x1a70 [ AD8947D621FDCA48F1F39F4624B60AA1, D685CD1A378FA411EA11C18615A1EC5D66CEC2F990DB0D4181EE3140B9DF3E8B ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
23:19:25.0897 0x1a70 AsSysCtrlService - ok
23:19:25.0899 0x1a70 [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO C:\Windows\syswow64\drivers\AsUpIO.sys
23:19:25.0905 0x1a70 AsUpIO - ok
23:19:25.0928 0x1a70 [ 3BCE35761CD54396BEFDE490C39E7EEF, 5EB1EAB7F86F7C8E1B053C1B86307F82A543CE8715EA8EC483840DB0C4B1BD45 ] AsusFanControlService C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe
23:19:25.0962 0x1a70 AsusFanControlService - detected UnsignedFile.Multi.Generic ( 1 )
23:19:28.0263 0x1a70 Detect skipped due to KSN trusted
23:19:28.0263 0x1a70 AsusFanControlService - ok
23:19:28.0266 0x1a70 [ A5E4CDB420540095D1293C874B5F89AA, EBC082FF94872537649F00D91AF22E0AFB4D538ACDB4731C9A95D209C7B144FD ] ASUSFILTER C:\Windows\syswow64\drivers\ASUSFILTER.sys
23:19:28.0274 0x1a70 ASUSFILTER - ok
23:19:28.0276 0x1a70 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:19:28.0296 0x1a70 AsyncMac - ok
23:19:28.0298 0x1a70 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:19:28.0303 0x1a70 atapi - ok
23:19:28.0307 0x1a70 [ C22D4905DDDF73EB0349D3B0604234A2, F86220290663FA95F3D8181D41F9D105634A62D50856BCEB174B9675F8DD7669 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
23:19:28.0317 0x1a70 AtiHDAudioService - ok
23:19:28.0321 0x1a70 [ 26D973D6D9A0D133DFDA7D8C1ADC04B7, AD40E6D0F77C0E579FB87C5106BF6DE3D1A9F30EE2FBF8C9C011F377FA05F173 ] atillk64 C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH\atillk64.sys
23:19:28.0327 0x1a70 atillk64 - ok
23:19:28.0337 0x1a70 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:19:28.0370 0x1a70 AudioEndpointBuilder - ok
23:19:28.0380 0x1a70 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:19:28.0404 0x1a70 AudioSrv - ok
23:19:28.0408 0x1a70 [ 4663C5AD76FE8E19592DE808156FA07D, 605827B4A9D6930BC752D124BF75D55D4927B0ABEF881CDE66F3C5CC1DB215FE ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
23:19:28.0417 0x1a70 avgntflt - ok
23:19:28.0421 0x1a70 [ 8902AEC2382A37E9E99A4E0D52DBD42B, 138F2D7E7430132B2C527D413BC845CC467F084F39C232EC3A17DD2A74EE401E ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
23:19:28.0430 0x1a70 avipbb - ok
23:19:28.0432 0x1a70 [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
23:19:28.0439 0x1a70 avkmgr - ok
23:19:28.0442 0x1a70 [ 09036D9F85BE6B659D375D2F0BAD0AD2, CCF4D28F60CF8E2B0F781D41F9E9FA84739AC6F948C09203D2498D64222CF990 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
23:19:28.0448 0x1a70 avnetflt - ok
23:19:28.0451 0x1a70 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:19:28.0469 0x1a70 AxInstSV - ok
23:19:28.0477 0x1a70 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:19:28.0494 0x1a70 b06bdrv - ok
23:19:28.0500 0x1a70 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:19:28.0514 0x1a70 b57nd60a - ok
23:19:28.0518 0x1a70 [ F01759FA97126CC69DFA85CEDA0717A1, 5B23B61562349D13311B7FCF783BDC9439698DACA5724B83B3568121497C7FC8 ] bcbtums C:\Windows\system32\drivers\bcbtums.sys
23:19:28.0528 0x1a70 bcbtums - ok
23:19:28.0587 0x1a70 [ 1F9B46C475E9DD32402B960D974BF69C, 0A0F61819767236E8AB1068116300228BBAE67828968B22CF4772C2CE948FAD9 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
23:19:28.0663 0x1a70 BCM43XX - ok
23:19:28.0669 0x1a70 [ B6FA52DE682784889E700B9B467F4D7A, 1D87AC22F42C5F5445AC59CF983CD1D0CEAB48C67DB8EFB6FD288FE2482C6420 ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
23:19:28.0675 0x1a70 BcmVWL - ok
23:19:28.0679 0x1a70 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:19:28.0690 0x1a70 BDESVC - ok
23:19:28.0692 0x1a70 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:19:28.0709 0x1a70 Beep - ok
23:19:28.0712 0x1a70 [ B1359701847FF1FF415FA083F1610F48, 991F995B9CF614549F5F7EB5C5B2D47F34EFF0F47B35C4BF4CE716666B9DA1D3 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
23:19:28.0715 0x1a70 BEService - detected UnsignedFile.Multi.Generic ( 1 )
23:19:31.0018 0x1a70 Detect skipped due to KSN trusted
23:19:31.0018 0x1a70 BEService - ok
23:19:31.0030 0x1a70 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:19:31.0053 0x1a70 BFE - ok
23:19:31.0066 0x1a70 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
23:19:31.0100 0x1a70 BITS - ok
23:19:31.0103 0x1a70 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:19:31.0112 0x1a70 blbdrive - ok
23:19:31.0120 0x1a70 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:19:31.0132 0x1a70 Bonjour Service - ok
23:19:31.0135 0x1a70 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:19:31.0145 0x1a70 bowser - ok
23:19:31.0147 0x1a70 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:19:31.0155 0x1a70 BrFiltLo - ok
23:19:31.0157 0x1a70 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:19:31.0165 0x1a70 BrFiltUp - ok
23:19:31.0168 0x1a70 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
23:19:31.0187 0x1a70 BridgeMP - ok
23:19:31.0191 0x1a70 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:19:31.0202 0x1a70 Browser - ok
23:19:31.0207 0x1a70 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:19:31.0221 0x1a70 Brserid - ok
23:19:31.0224 0x1a70 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:19:31.0233 0x1a70 BrSerWdm - ok
23:19:31.0235 0x1a70 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:19:31.0243 0x1a70 BrUsbMdm - ok
23:19:31.0245 0x1a70 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:19:31.0253 0x1a70 BrUsbSer - ok
23:19:31.0255 0x1a70 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
23:19:31.0263 0x1a70 BthEnum - ok
23:19:31.0266 0x1a70 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:19:31.0299 0x1a70 BTHMODEM - ok
23:19:31.0302 0x1a70 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:19:31.0313 0x1a70 BthPan - ok
23:19:31.0322 0x1a70 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
23:19:31.0341 0x1a70 BTHPORT - ok
23:19:31.0344 0x1a70 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:19:31.0366 0x1a70 bthserv - ok
23:19:31.0369 0x1a70 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
23:19:31.0378 0x1a70 BTHUSB - ok
23:19:31.0388 0x1a70 [ 0E78584D5FACA0509DFA97BD8B635075, 5362BF3A7237361C4ACA64946BBA61F7C79737FFC35CC8E042A45CB9BE15132F ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
23:19:31.0405 0x1a70 btwampfl - ok
23:19:31.0409 0x1a70 [ 409C4117E6027672EF41E68ACE1468AD, 8FB0A11E5147EEB245527E68FCD8FEC4BF5DC820BA1F99F983CDA10829DB4F5D ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
23:19:31.0418 0x1a70 btwaudio - ok
23:19:31.0422 0x1a70 [ 8CA7CABD13316ABACE386D9F380B4CF3, 6BB8142760E3440543991A6C2A2B5CB7450E7936C9A9F9038622AAC0D79C7667 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
23:19:31.0432 0x1a70 btwavdt - ok
23:19:31.0449 0x1a70 [ CF077B1C29B1EE9C699723689045FF3E, 9D62D86C5EE67CEAC014A316B859538FB9884475CA4539215D032C801A0DFA81 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
23:19:31.0470 0x1a70 btwdins - ok
23:19:31.0473 0x1a70 [ AC602E3B6940B48E454D90545D85E8C3, EA178018C7EF6B99D7F1E68314DD9E54EFBDEADD9EF649E46975E546956232A9 ] BTWDPAN C:\Windows\system32\DRIVERS\btwdpan.sys
23:19:31.0481 0x1a70 BTWDPAN - ok
23:19:31.0483 0x1a70 [ B9354F9F111C64F2495B60F1E24CB453, 67B3F5867B00F84832EF5AD649D817D27B3F200351C7C53579A63D30F8E2BFDD ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
23:19:31.0490 0x1a70 btwl2cap - ok
23:19:31.0492 0x1a70 [ 71A04F2D9DEB21B162561EB574D7D629, C4E477F38CA3C76A966DA9145ABA55EE316BDEC84FE647DB06BCB1604EFE1A94 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
23:19:31.0498 0x1a70 btwrchid - ok
23:19:31.0501 0x1a70 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:19:31.0520 0x1a70 cdfs - ok
23:19:31.0524 0x1a70 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:19:31.0534 0x1a70 cdrom - ok
23:19:31.0537 0x1a70 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:19:31.0558 0x1a70 CertPropSvc - ok
23:19:31.0561 0x1a70 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:19:31.0570 0x1a70 circlass - ok
23:19:31.0577 0x1a70 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
23:19:31.0589 0x1a70 CLFS - ok
23:19:31.0595 0x1a70 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:19:31.0604 0x1a70 clr_optimization_v2.0.50727_32 - ok
23:19:31.0610 0x1a70 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:19:31.0619 0x1a70 clr_optimization_v2.0.50727_64 - ok
23:19:31.0626 0x1a70 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:19:31.0636 0x1a70 clr_optimization_v4.0.30319_32 - ok
23:19:31.0644 0x1a70 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:19:31.0654 0x1a70 clr_optimization_v4.0.30319_64 - ok
23:19:31.0657 0x1a70 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:19:31.0664 0x1a70 CmBatt - ok
23:19:31.0667 0x1a70 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:19:31.0673 0x1a70 cmdide - ok
23:19:31.0681 0x1a70 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
23:19:31.0700 0x1a70 CNG - ok
23:19:31.0703 0x1a70 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:19:31.0710 0x1a70 Compbatt - ok
23:19:31.0712 0x1a70 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:19:31.0723 0x1a70 CompositeBus - ok
23:19:31.0725 0x1a70 COMSysApp - ok
23:19:31.0734 0x1a70 cpuz135 - ok
23:19:31.0735 0x1a70 cpuz137 - ok
23:19:31.0737 0x1a70 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:19:31.0744 0x1a70 crcdisk - ok
23:19:31.0748 0x1a70 [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
23:19:31.0757 0x1a70 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
23:19:34.0060 0x1a70 Detect skipped due to KSN trusted
23:19:34.0060 0x1a70 Creative Audio Engine Licensing Service - ok
23:19:34.0065 0x1a70 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:19:34.0078 0x1a70 CryptSvc - ok
23:19:34.0087 0x1a70 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
23:19:34.0105 0x1a70 CSC - ok
23:19:34.0116 0x1a70 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
23:19:34.0132 0x1a70 CscService - ok
23:19:34.0138 0x1a70 [ 7C62EF8F845C7595275BD140BC613AB9, 28EE55FD785E95F7FD594A659241BE99EB4431C4CFC2F6E0DD969523C6EFEFA8 ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
23:19:34.0150 0x1a70 CT20XUT - ok
23:19:34.0155 0x1a70 [ 7C62EF8F845C7595275BD140BC613AB9, 28EE55FD785E95F7FD594A659241BE99EB4431C4CFC2F6E0DD969523C6EFEFA8 ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
23:19:34.0162 0x1a70 CT20XUT.SYS - ok
23:19:34.0171 0x1a70 [ CBB7D529BEF84ACBEFF4383D2E641429, 2F010B0910F0A0101EB46A62FA7937833105044B1F2D835FE90F2B6A22A540DA ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
23:19:34.0189 0x1a70 ctac32k - ok
23:19:34.0200 0x1a70 [ D48821CEA87EE02E61C8087931E65214, EFEE9E7ED0EC460C53AFE7305FF9548FE3AEFCA38D232E606A4A2AED83DD8D9C ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
23:19:34.0221 0x1a70 ctaud2k - ok
23:19:34.0229 0x1a70 [ 5CE3D0E1D1B3832EE052CFC442EEE0FA, 6B9DB2C350140ED547C7A96DB0EAD812E8987176B312C79AF52FC9B23EEEB8C4 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
23:19:34.0239 0x1a70 CTAudSvcService - detected UnsignedFile.Multi.Generic ( 1 )
23:19:36.0643 0x1a70 Detect skipped due to KSN trusted
23:19:36.0643 0x1a70 CTAudSvcService - ok
23:19:36.0664 0x1a70 [ 96BE487253F4B5A0B5851A4884C2AD83, 29C75142CB20AB6F3E2670A10C54BF8F30D6F743D763D5608C1C670897F2C6CC ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
23:19:36.0695 0x1a70 CTEXFIFX - ok
23:19:36.0716 0x1a70 [ 96BE487253F4B5A0B5851A4884C2AD83, 29C75142CB20AB6F3E2670A10C54BF8F30D6F743D763D5608C1C670897F2C6CC ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
23:19:36.0737 0x1a70 CTEXFIFX.SYS - ok
23:19:36.0741 0x1a70 [ 103622BCED20E4F1BB28422AF2713763, 96C414F0B55CA5E0375761DDE5A18C5B9BF58EA727CE2C2CA95016AFECEBE32B ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
23:19:36.0749 0x1a70 CTHWIUT - ok
23:19:36.0752 0x1a70 [ 103622BCED20E4F1BB28422AF2713763, 96C414F0B55CA5E0375761DDE5A18C5B9BF58EA727CE2C2CA95016AFECEBE32B ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
23:19:36.0757 0x1a70 CTHWIUT.SYS - ok
23:19:36.0759 0x1a70 [ BD442E7C6CC3C6B601E5733D70F8DE10, 9B45E03DCD408F5941B684BCD9E920A77A1223A2D91210AB70427CCA5E9D7C29 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
23:19:36.0766 0x1a70 ctprxy2k - ok
23:19:36.0770 0x1a70 [ 42E18F3D1C442137E37F0564D4AF1FE5, B6B86AFC2326163023DF5BC00E7164467A8BFAC9FABCDF65B011A972D9E111D2 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
23:19:36.0780 0x1a70 ctsfm2k - ok
23:19:36.0789 0x1a70 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:19:36.0813 0x1a70 DcomLaunch - ok
23:19:36.0819 0x1a70 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:19:36.0843 0x1a70 defragsvc - ok
23:19:36.0847 0x1a70 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:19:36.0866 0x1a70 DfsC - ok
23:19:36.0872 0x1a70 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:19:36.0885 0x1a70 Dhcp - ok
23:19:36.0888 0x1a70 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:19:36.0906 0x1a70 discache - ok
23:19:36.0910 0x1a70 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:19:36.0918 0x1a70 Disk - ok
23:19:36.0922 0x1a70 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:19:36.0933 0x1a70 Dnscache - ok
23:19:36.0938 0x1a70 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:19:36.0963 0x1a70 dot3svc - ok
23:19:36.0968 0x1a70 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:19:36.0985 0x1a70 DPS - ok
23:19:36.0987 0x1a70 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:19:36.0994 0x1a70 drmkaud - ok
23:19:37.0011 0x1a70 [ 1ED08A6264C5C92099D6D1DAE5E8F530, 4045AE77859B1DBF13972451972EAAF6F3C97BEA423E9E78F1C2F14330CD47CA ] DrvAgent64 C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
23:19:37.0017 0x1a70 DrvAgent64 - ok
23:19:37.0023 0x1a70 [ EE8684BF88C1B74D47647802281ED085, 9CA7803E2544304D3EDC19D2706ED8AC066E97BBF700ACC532C787537CDA99A4 ] DTSAudioSvc C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
23:19:37.0032 0x1a70 DTSAudioSvc - ok
23:19:37.0046 0x1a70 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:19:37.0069 0x1a70 DXGKrnl - ok
23:19:37.0077 0x1a70 [ BA01A130D2B850CA87483CE6AC1A2BBA, DFF760DB1A6F60A856D64F01C67B8FC075ABED9DD80FFA50AA681296FF56FCE0 ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys
23:19:37.0093 0x1a70 e1cexpress - ok
23:19:37.0097 0x1a70 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:19:37.0119 0x1a70 EapHost - ok
23:19:37.0161 0x1a70 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:19:37.0222 0x1a70 ebdrv - ok
23:19:37.0227 0x1a70 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
23:19:37.0235 0x1a70 EFS - ok
23:19:37.0246 0x1a70 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:19:37.0268 0x1a70 ehRecvr - ok
23:19:37.0271 0x1a70 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:19:37.0282 0x1a70 ehSched - ok
23:19:37.0285 0x1a70 [ A3A0790511C8303DEE122917835E2502, F77544A5FD9E25B63AB0880ED6FE8A90EA1EF62383C92F875D391DE94BD63580 ] emupia C:\Windows\system32\drivers\emupia2k.sys
23:19:37.0294 0x1a70 emupia - ok
23:19:37.0298 0x1a70 [ D315FF43E23DF424ECEC2F6C930203E4, 68940EDA34DC4945CDD0D8018D96A0DA8F99F16A930946D14E4FECEE033FCB80 ] EpsonScanSvc C:\Windows\system32\EscSvc64.exe
23:19:37.0307 0x1a70 EpsonScanSvc - ok
23:19:37.0309 0x1a70 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:19:37.0316 0x1a70 ErrDev - ok
23:19:37.0324 0x1a70 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:19:37.0349 0x1a70 EventSystem - ok
23:19:37.0353 0x1a70 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:19:37.0375 0x1a70 exfat - ok
23:19:37.0380 0x1a70 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:19:37.0403 0x1a70 fastfat - ok
23:19:37.0414 0x1a70 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:19:37.0432 0x1a70 Fax - ok
23:19:37.0435 0x1a70 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:19:37.0443 0x1a70 fdc - ok
23:19:37.0445 0x1a70 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:19:37.0463 0x1a70 fdPHost - ok
23:19:37.0465 0x1a70 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:19:37.0485 0x1a70 FDResPub - ok
23:19:37.0488 0x1a70 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:19:37.0496 0x1a70 FileInfo - ok
23:19:37.0498 0x1a70 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:19:37.0516 0x1a70 Filetrace - ok
23:19:37.0518 0x1a70 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:19:37.0526 0x1a70 flpydisk - ok
23:19:37.0531 0x1a70 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:19:37.0544 0x1a70 FltMgr - ok
23:19:37.0561 0x1a70 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
23:19:37.0591 0x1a70 FontCache - ok
23:19:37.0595 0x1a70 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:19:37.0603 0x1a70 FontCache3.0.0.0 - ok
23:19:37.0605 0x1a70 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:19:37.0613 0x1a70 FsDepends - ok
23:19:37.0615 0x1a70 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:19:37.0622 0x1a70 Fs_Rec - ok
23:19:37.0630 0x1a70 [ 6A420537442958B8F470CE60C55EDF2B, 4C41D157E5B1C8F4B1B00C454AD8AAEBB672898837B6C6E403398E5B878D18F2 ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
23:19:37.0644 0x1a70 Futuremark SystemInfo Service - ok
23:19:37.0649 0x1a70 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:19:37.0661 0x1a70 fvevol - ok
23:19:37.0664 0x1a70 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:19:37.0672 0x1a70 gagp30kx - ok
23:19:37.0675 0x1a70 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:19:37.0681 0x1a70 GEARAspiWDM - ok
23:19:37.0693 0x1a70 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
23:19:37.0720 0x1a70 gpsvc - ok
23:19:37.0722 0x1a70 GPUZ - ok
23:19:37.0744 0x1a70 [ 012895BB7AF4B86DE4BBE1212D9CA568, A57EFDFEC572B4F18996C92A0FEC606E82C6DFC5C8B436BDDAEBA69D900DBE07 ] ha20x22k C:\Windows\system32\drivers\ha20x22k.sys
23:19:37.0777 0x1a70 ha20x22k - ok
23:19:37.0799 0x1a70 [ F016406FF3A8B6419D805BFFAC454518, 54DECFE73D5EF539148F8F76009E3A1C41607C901A4848BF73337D8D060B0B87 ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
23:19:37.0832 0x1a70 ha20x2k - ok
23:19:37.0835 0x1a70 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:19:37.0844 0x1a70 hcw85cir - ok
23:19:37.0850 0x1a70 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:19:37.0866 0x1a70 HdAudAddService - ok
23:19:37.0870 0x1a70 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:19:37.0881 0x1a70 HDAudBus - ok
23:19:37.0883 0x1a70 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:19:37.0891 0x1a70 HidBatt - ok
23:19:37.0894 0x1a70 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:19:37.0904 0x1a70 HidBth - ok
23:19:37.0907 0x1a70 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:19:37.0917 0x1a70 HidIr - ok
23:19:37.0919 0x1a70 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
23:19:37.0939 0x1a70 hidserv - ok
23:19:37.0941 0x1a70 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:19:37.0949 0x1a70 HidUsb - ok
23:19:37.0952 0x1a70 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:19:37.0973 0x1a70 hkmsvc - ok
23:19:37.0978 0x1a70 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:19:37.0992 0x1a70 HomeGroupListener - ok
23:19:37.0996 0x1a70 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:19:38.0007 0x1a70 HomeGroupProvider - ok
23:19:38.0010 0x1a70 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:19:38.0018 0x1a70 HpSAMD - ok
23:19:38.0029 0x1a70 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:19:38.0060 0x1a70 HTTP - ok
23:19:38.0063 0x1a70 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:19:38.0069 0x1a70 hwpolicy - ok
23:19:38.0072 0x1a70 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:19:38.0082 0x1a70 i8042prt - ok
23:19:38.0092 0x1a70 [ D1753C06EE17E29352B065EACF3F10D0, 4DD4C991FAA3CCF99DF8DC9F8F5DEEDEECD55977F0C3AA8C404DEFD21E32A62B ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:19:38.0107 0x1a70 iaStor - ok
23:19:38.0110 0x1a70 [ 545462D0DBE24AF379BA869B7C185CCD, 056F9D0D5FD4FEF37665A35A4029722FF60D02A69854E952DC361CC0E5CD26F9 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
23:19:38.0116 0x1a70 IAStorDataMgrSvc - ok
23:19:38.0123 0x1a70 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:19:38.0137 0x1a70 iaStorV - ok
23:19:38.0142 0x1a70 [ D9A9FFC89F61CAD4AD9EF31FBB17E634, F81184889B30DA8947F22A9C9ED5C542295ED70F0A1C27D1C91BAC21F4BCD987 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
23:19:38.0153 0x1a70 ICCS - ok
23:19:38.0156 0x1a70 [ C1010ADD3DDAE1196ED21057AF7B2AAE, 68196851855AD395008D7F29FCEB28BA4BEB1F062B1844A60813E7DD102ACB1C ] ICCWDT C:\Windows\system32\DRIVERS\ICCWDT.sys
23:19:38.0163 0x1a70 ICCWDT - ok
23:19:38.0167 0x1a70 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:19:38.0175 0x1a70 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
23:19:40.0578 0x1a70 Detect skipped due to KSN trusted
23:19:40.0578 0x1a70 IDriverT - ok
23:19:40.0590 0x1a70 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:19:40.0620 0x1a70 idsvc - ok
23:19:40.0799 0x1a70 [ 0638D16029B1C800908D965AC78970C7, C88F026D04B8FD351F397103478E013450F302DA072ACA92C8C822F6654BD0B3 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
23:19:41.0049 0x1a70 igfx - detected UnsignedFile.Multi.Generic ( 1 )
23:19:43.0458 0x1a70 Detect skipped due to KSN trusted
23:19:43.0460 0x1a70 igfx - ok
23:19:43.0464 0x1a70 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:19:43.0472 0x1a70 iirsp - ok
23:19:43.0484 0x1a70 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:19:43.0508 0x1a70 IKEEXT - ok
23:19:43.0554 0x1a70 [ 0DA11C075CAA15A08707FCEF38C1421C, 0949D2D5130437BF89BBC4193B69B739A5E5AFD7E922A2D99F8001F49BFE7570 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:19:43.0615 0x1a70 IntcAzAudAddService - ok
23:19:43.0624 0x1a70 [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
23:19:43.0635 0x1a70 IntcDAud - detected UnsignedFile.Multi.Generic ( 1 )
23:19:45.0955 0x1a70 Detect skipped due to KSN trusted
23:19:45.0955 0x1a70 IntcDAud - ok
23:19:45.0967 0x1a70 [ DDA8E5AD97231AB50B81FED04C28F64C, 5C9E8F7CC45A9AE7FF12A02641562E271D84894DFA7C50218AC2AAA298251B60 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
23:19:45.0984 0x1a70 Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
23:19:48.0283 0x1a70 Detect skipped due to KSN trusted
23:19:48.0284 0x1a70 Intel(R) Capability Licensing Service Interface - ok
23:19:48.0296 0x1a70 [ 86FE509640D77FB0998FC8B1FF5523C6, 13E895DEB9B84379251699D7E52C5E3FD888994425DE01B6C4634F9E959D5584 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
23:19:48.0315 0x1a70 Intel(R) Capability Licensing Service TCP IP Interface - ok
23:19:48.0321 0x1a70 [ CBF7341E55A8348C7AB01A9870C7D948, A5084DF3C6321788C88A9E6B5F43FE5BCFDBB579BDE3A4D5F55558C6D13035A5 ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
23:19:48.0330 0x1a70 Intel(R) PROSet Monitoring Service - ok
23:19:48.0333 0x1a70 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:19:48.0339 0x1a70 intelide - ok
23:19:48.0342 0x1a70 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:19:48.0352 0x1a70 intelppm - ok
23:19:48.0355 0x1a70 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:19:48.0377 0x1a70 IPBusEnum - ok
23:19:48.0380 0x1a70 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:19:48.0399 0x1a70 IpFilterDriver - ok
23:19:48.0408 0x1a70 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:19:48.0428 0x1a70 iphlpsvc - ok
23:19:48.0431 0x1a70 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:19:48.0441 0x1a70 IPMIDRV - ok
23:19:48.0444 0x1a70 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:19:48.0464 0x1a70 IPNAT - ok
23:19:48.0474 0x1a70 [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:19:48.0485 0x1a70 iPod Service - ok
23:19:48.0487 0x1a70 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:19:48.0497 0x1a70 IRENUM - ok
23:19:48.0499 0x1a70 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:19:48.0506 0x1a70 isapnp - ok
23:19:48.0511 0x1a70 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:19:48.0524 0x1a70 iScsiPrt - ok
23:19:48.0526 0x1a70 [ 75779002A6084C1A011E195E421A9C75, 03D84CE7E50EEA1DFB298F4CE3669F478920ECEB33513FE2DC16C8BF90DF3830 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
23:19:48.0533 0x1a70 iusb3hcs - ok
23:19:48.0539 0x1a70 [ F390B641FE6115F536B8B78AA71B8814, 8F26FCEC9B1442224A8DEE3B6459F788DBCEDFB206846BFAA3B26E40B06E2D28 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
23:19:48.0555 0x1a70 iusb3hub - ok
23:19:48.0566 0x1a70 [ 7FAEC13F1ADD619F4B5B2D2CBF841E8E, E7ED64DD26FD4EA04C2C32C33BDA16FB985F3C6F1F8451480A0D24375B7F57AC ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
23:19:48.0588 0x1a70 iusb3xhc - ok
23:19:48.0593 0x1a70 [ 1128B38EEC9DAF1B36373B65E87C00A3, 071E9454B9B442C2C3272FBC1AE5E92911A23CDB99F1C718C34067A70B99F910 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
23:19:48.0598 0x1a70 jhi_service - ok
23:19:48.0601 0x1a70 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:19:48.0609 0x1a70 kbdclass - ok
23:19:48.0611 0x1a70 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:19:48.0619 0x1a70 kbdhid - ok
23:19:48.0621 0x1a70 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
23:19:48.0627 0x1a70 KeyIso - ok
23:19:48.0629 0x1a70 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:19:48.0638 0x1a70 KSecDD - ok
23:19:48.0642 0x1a70 [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:19:48.0651 0x1a70 KSecPkg - ok
23:19:48.0653 0x1a70 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:19:48.0671 0x1a70 ksthunk - ok
23:19:48.0678 0x1a70 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:19:48.0704 0x1a70 KtmRm - ok
23:19:48.0709 0x1a70 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
23:19:48.0731 0x1a70 LanmanServer - ok
23:19:48.0735 0x1a70 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:19:48.0757 0x1a70 LanmanWorkstation - ok
23:19:48.0759 0x1a70 [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
23:19:48.0766 0x1a70 LGBusEnum - ok
23:19:48.0768 0x1a70 [ F705A641C18DF31B48B5DBDA94B425E4, 1F47EE43CAFE5458E56467E127EE99B5FDBFF8B810CF92B232094B475DD42B21 ] LGPBTDD C:\Windows\system32\Drivers\LGPBTDD.sys
23:19:48.0775 0x1a70 LGPBTDD - ok
23:19:48.0778 0x1a70 [ 94AF1384A67B9FCF5651E70BC9D4C526, 9C025F7BBB5BBE9DAF3DEF2F6385CE77C8F413912C4D16930814F6D19B62B367 ] LGSHidFilt C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
23:19:48.0785 0x1a70 LGSHidFilt - ok
23:19:48.0788 0x1a70 [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
23:19:48.0793 0x1a70 LGVirHid - ok
23:19:48.0796 0x1a70 [ E536A1D8502D0CA79B928CAB9EAEB807, B23B461FB1488DC9557946A1C08D1F1B9731F44D80DBC8270A94E21B3742CB06 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
23:19:48.0805 0x1a70 LHidFilt - ok
23:19:48.0807 0x1a70 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:19:48.0826 0x1a70 lltdio - ok
23:19:48.0832 0x1a70 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:19:48.0858 0x1a70 lltdsvc - ok
23:19:48.0860 0x1a70 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:19:48.0878 0x1a70 lmhosts - ok
23:19:48.0881 0x1a70 [ 2E6D0110DACC769AE478ADE6C2572E37, 7135B25486EED41E17E25333E5CED03555F1D473640259E69570115B3BAF92C9 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
23:19:48.0889 0x1a70 LMouFilt - ok
23:19:48.0895 0x1a70 [ 2C24DC448DBE8DB9BE1441B824C57E79, DA2257EEC964A47D03C2BB13317FD788E51D4685E2395B303ED7B2575FEF3B19 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
23:19:48.0901 0x1a70 LMS - ok
23:19:48.0905 0x1a70 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:19:48.0914 0x1a70 LSI_FC - ok
23:19:48.0917 0x1a70 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:19:48.0925 0x1a70 LSI_SAS - ok
23:19:48.0928 0x1a70 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:19:48.0936 0x1a70 LSI_SAS2 - ok
23:19:48.0939 0x1a70 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:19:48.0948 0x1a70 LSI_SCSI - ok
23:19:48.0951 0x1a70 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:19:48.0971 0x1a70 luafv - ok
23:19:48.0974 0x1a70 [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:19:48.0980 0x1a70 MBAMProtector - ok
23:19:49.0004 0x1a70 [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler C:\ Malwarebytes Anti-Malware \mbamscheduler.exe
23:19:49.0034 0x1a70 MBAMScheduler - ok
23:19:49.0046 0x1a70 [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService C:\ Malwarebytes Anti-Malware \mbamservice.exe
23:19:49.0064 0x1a70 MBAMService - ok
23:19:49.0067 0x1a70 [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
23:19:49.0075 0x1a70 MBAMWebAccessControl - ok
23:19:49.0081 0x1a70 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF, 2722E217AF11F928E58F694E5C1CC5776283A56C54E7F84401FECFBD73E91EBA ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
23:19:49.0093 0x1a70 mcdbus - ok
23:19:49.0096 0x1a70 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:19:49.0108 0x1a70 Mcx2Svc - ok
23:19:49.0110 0x1a70 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:19:49.0117 0x1a70 megasas - ok
23:19:49.0123 0x1a70 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:19:49.0134 0x1a70 MegaSR - ok
23:19:49.0137 0x1a70 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
23:19:49.0144 0x1a70 MEIx64 - ok
23:19:49.0147 0x1a70 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:19:49.0167 0x1a70 MMCSS - ok
23:19:49.0169 0x1a70 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:19:49.0186 0x1a70 Modem - ok
23:19:49.0189 0x1a70 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:19:49.0197 0x1a70 monitor - ok
23:19:49.0201 0x1a70 [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
23:19:49.0210 0x1a70 MotioninJoyXFilter - ok
23:19:49.0212 0x1a70 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:19:49.0220 0x1a70 mouclass - ok
23:19:49.0223 0x1a70 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:19:49.0230 0x1a70 mouhid - ok
23:19:49.0233 0x1a70 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:19:49.0241 0x1a70 mountmgr - ok
23:19:49.0244 0x1a70 [ 4E9D8041D352A33332FD6F59A3A78B03, D4E6229B07EF9866993EEE4F6223DC7F1FF1108273FE14A3DC74E65C181DE56A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:19:49.0253 0x1a70 MozillaMaintenance - ok
23:19:49.0257 0x1a70 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:19:49.0267 0x1a70 mpio - ok
23:19:49.0270 0x1a70 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:19:49.0289 0x1a70 mpsdrv - ok
23:19:49.0301 0x1a70 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:19:49.0333 0x1a70 MpsSvc - ok
23:19:49.0338 0x1a70 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:19:49.0349 0x1a70 MRxDAV - ok
23:19:49.0353 0x1a70 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:19:49.0364 0x1a70 mrxsmb - ok
23:19:49.0369 0x1a70 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:19:49.0382 0x1a70 mrxsmb10 - ok
23:19:49.0386 0x1a70 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:19:49.0396 0x1a70 mrxsmb20 - ok
23:19:49.0398 0x1a70 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:19:49.0405 0x1a70 msahci - ok
23:19:49.0408 0x1a70 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:19:49.0418 0x1a70 msdsm - ok
23:19:49.0422 0x1a70 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:19:49.0433 0x1a70 MSDTC - ok
23:19:49.0437 0x1a70 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:19:49.0455 0x1a70 Msfs - ok
23:19:49.0457 0x1a70 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:19:49.0474 0x1a70 mshidkmdf - ok
23:19:49.0476 0x1a70 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:19:49.0482 0x1a70 msisadrv - ok
23:19:49.0486 0x1a70 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:19:49.0509 0x1a70 MSiSCSI - ok
23:19:49.0511 0x1a70 msiserver - ok
23:19:49.0513 0x1a70 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:19:49.0530 0x1a70 MSKSSRV - ok
23:19:49.0532 0x1a70 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:19:49.0550 0x1a70 MSPCLOCK - ok
23:19:49.0552 0x1a70 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:19:49.0570 0x1a70 MSPQM - ok
23:19:49.0576 0x1a70 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:19:49.0589 0x1a70 MsRPC - ok
23:19:49.0592 0x1a70 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:19:49.0599 0x1a70 mssmbios - ok
23:19:49.0601 0x1a70 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:19:49.0618 0x1a70 MSTEE - ok
23:19:49.0620 0x1a70 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:19:49.0627 0x1a70 MTConfig - ok
23:19:49.0630 0x1a70 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:19:49.0637 0x1a70 Mup - ok
23:19:49.0639 0x1a70 [ A56731462518CCE74EB0DB38C2A04986, 0E38662CC1D90E1A2DBE0835B0C23ED81CC48868104CBF637DB1C9881821A9B9 ] mv91cons C:\Windows\system32\DRIVERS\mv91cons.sys
23:19:49.0645 0x1a70 mv91cons - ok
23:19:49.0651 0x1a70 [ 9211F9764325CCBD1C9F187257C6F9C8, 9235B05B49E139F74DF9F9539522338CE9D149EAE33F6E05BFFF56ED94762277 ] mvs91xx C:\Windows\system32\DRIVERS\mvs91xx.sys
23:19:49.0664 0x1a70 mvs91xx - ok
23:19:49.0672 0x1a70 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:19:49.0697 0x1a70 napagent - ok
23:19:49.0704 0x1a70 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:19:49.0720 0x1a70 NativeWifiP - ok
23:19:49.0734 0x1a70 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
23:19:49.0757 0x1a70 NDIS - ok
23:19:49.0760 0x1a70 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:19:49.0778 0x1a70 NdisCap - ok
23:19:49.0780 0x1a70 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:19:49.0798 0x1a70 NdisTapi - ok
23:19:49.0801 0x1a70 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:19:49.0819 0x1a70 Ndisuio - ok
23:19:49.0823 0x1a70 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:19:49.0844 0x1a70 NdisWan - ok
23:19:49.0847 0x1a70 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:19:49.0865 0x1a70 NDProxy - ok
23:19:49.0868 0x1a70 [ 6F4607E2333FE21E9E3FF8133A88B35B, F7B7B262D85D03552A8D0F3F91E795B31E3D09020DDA1E3D62A4A3209D916BB6 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
23:19:49.0872 0x1a70 Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
23:19:52.0178 0x1a70 Detect skipped due to KSN trusted
23:19:52.0178 0x1a70 Netaapl - ok
23:19:52.0180 0x1a70 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:19:52.0200 0x1a70 NetBIOS - ok
23:19:52.0205 0x1a70 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:19:52.0228 0x1a70 NetBT - ok
23:19:52.0230 0x1a70 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
23:19:52.0236 0x1a70 Netlogon - ok
23:19:52.0243 0x1a70 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:19:52.0271 0x1a70 Netman - ok
23:19:52.0282 0x1a70 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:19:52.0292 0x1a70 NetMsmqActivator - ok
23:19:52.0296 0x1a70 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:19:52.0302 0x1a70 NetPipeActivator - ok
23:19:52.0309 0x1a70 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:19:52.0336 0x1a70 netprofm - ok
23:19:52.0339 0x1a70 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:19:52.0346 0x1a70 NetTcpActivator - ok
23:19:52.0349 0x1a70 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:19:52.0355 0x1a70 NetTcpPortSharing - ok
23:19:52.0358 0x1a70 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:19:52.0365 0x1a70 nfrd960 - ok
23:19:52.0371 0x1a70 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:19:52.0385 0x1a70 NlaSvc - ok
23:19:52.0388 0x1a70 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:19:52.0406 0x1a70 Npfs - ok
23:19:52.0409 0x1a70 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:19:52.0428 0x1a70 nsi - ok
23:19:52.0430 0x1a70 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:19:52.0448 0x1a70 nsiproxy - ok
23:19:52.0471 0x1a70 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:19:52.0506 0x1a70 Ntfs - ok
23:19:52.0510 0x1a70 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:19:52.0527 0x1a70 Null - ok
23:19:52.0530 0x1a70 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:19:52.0540 0x1a70 nvraid - ok
23:19:52.0544 0x1a70 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:19:52.0554 0x1a70 nvstor - ok
23:19:52.0557 0x1a70 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:19:52.0566 0x1a70 nv_agp - ok
23:19:52.0569 0x1a70 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:19:52.0578 0x1a70 ohci1394 - ok
23:19:52.0582 0x1a70 [ 3395A2F150EC0F9F0A2E1ADDDECB867B, 739807693C1868B4A8645F81D17A4B344D85AD6FB5BC9DEA4174A639F75E87EA ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
23:19:52.0593 0x1a70 ossrv - ok
23:19:52.0596 0x1a70 [ 1AA28D0A4E6BDB50613ACB7175778594, 8B5199502B8789EE31B5BA7FF808E8118AAAAE7A08159A115F0A944CE40FE4C5 ] OverwolfUpdaterService C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
23:19:52.0603 0x1a70 OverwolfUpdaterService - ok
23:19:52.0608 0x1a70 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:19:52.0624 0x1a70 p2pimsvc - ok
23:19:52.0631 0x1a70 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:19:52.0650 0x1a70 p2psvc - ok
23:19:52.0653 0x1a70 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:19:52.0663 0x1a70 Parport - ok
23:19:52.0666 0x1a70 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:19:52.0674 0x1a70 partmgr - ok
23:19:52.0678 0x1a70 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
23:19:52.0692 0x1a70 PcaSvc - ok
23:19:52.0696 0x1a70 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:19:52.0706 0x1a70 pci - ok
23:19:52.0708 0x1a70 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:19:52.0714 0x1a70 pciide - ok
23:19:52.0719 0x1a70 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:19:52.0730 0x1a70 pcmcia - ok
23:19:52.0732 0x1a70 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:19:52.0739 0x1a70 pcw - ok
23:19:52.0749 0x1a70 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:19:52.0780 0x1a70 PEAUTH - ok
23:19:52.0799 0x1a70 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
23:19:52.0834 0x1a70 PeerDistSvc - ok
23:19:52.0852 0x1a70 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:19:52.0861 0x1a70 PerfHost - ok
23:19:52.0881 0x1a70 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:19:52.0924 0x1a70 pla - ok
23:19:52.0932 0x1a70 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:19:52.0949 0x1a70 PlugPlay - ok
23:19:52.0952 0x1a70 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:19:52.0961 0x1a70 PNRPAutoReg - ok
23:19:52.0967 0x1a70 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:19:52.0977 0x1a70 PNRPsvc - ok
23:19:52.0985 0x1a70 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:19:53.0011 0x1a70 PolicyAgent - ok
23:19:53.0016 0x1a70 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:19:53.0038 0x1a70 Power - ok
23:19:53.0042 0x1a70 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:19:53.0062 0x1a70 PptpMiniport - ok
23:19:53.0064 0x1a70 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:19:53.0074 0x1a70 Processor - ok
23:19:53.0078 0x1a70 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
23:19:53.0091 0x1a70 ProfSvc - ok
23:19:53.0093 0x1a70 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:19:53.0099 0x1a70 ProtectedStorage - ok
23:19:53.0103 0x1a70 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:19:53.0122 0x1a70 Psched - ok
23:19:53.0143 0x1a70 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:19:53.0172 0x1a70 ql2300 - ok
23:19:53.0176 0x1a70 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:19:53.0186 0x1a70 ql40xx - ok
23:19:53.0191 0x1a70 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:19:53.0208 0x1a70 QWAVE - ok
23:19:53.0210 0x1a70 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:19:53.0221 0x1a70 QWAVEdrv - ok
23:19:53.0223 0x1a70 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:19:53.0240 0x1a70 RasAcd - ok
23:19:53.0244 0x1a70 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:19:53.0263 0x1a70 RasAgileVpn - ok
23:19:53.0266 0x1a70 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:19:53.0288 0x1a70 RasAuto - ok
23:19:53.0292 0x1a70 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:19:53.0313 0x1a70 Rasl2tp - ok
23:19:53.0319 0x1a70 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:19:53.0346 0x1a70 RasMan - ok
23:19:53.0350 0x1a70 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:19:53.0370 0x1a70 RasPppoe - ok
23:19:53.0373 0x1a70 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:19:53.0394 0x1a70 RasSstp - ok
23:19:53.0400 0x1a70 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:19:53.0424 0x1a70 rdbss - ok
23:19:53.0427 0x1a70 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:19:53.0435 0x1a70 rdpbus - ok
23:19:53.0437 0x1a70 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:19:53.0454 0x1a70 RDPCDD - ok
23:19:53.0459 0x1a70 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
23:19:53.0470 0x1a70 RDPDR - ok
23:19:53.0472 0x1a70 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:19:53.0489 0x1a70 RDPENCDD - ok
23:19:53.0491 0x1a70 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:19:53.0508 0x1a70 RDPREFMP - ok
23:19:53.0512 0x1a70 [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:19:53.0520 0x1a70 RdpVideoMiniport - ok
23:19:53.0525 0x1a70 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:19:53.0538 0x1a70 RDPWD - ok
23:19:53.0543 0x1a70 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:19:53.0554 0x1a70 rdyboost - ok
23:19:53.0558 0x1a70 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:19:53.0579 0x1a70 RemoteAccess - ok
23:19:53.0584 0x1a70 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:19:53.0606 0x1a70 RemoteRegistry - ok
23:19:53.0611 0x1a70 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:19:53.0622 0x1a70 RFCOMM - ok
23:19:53.0625 0x1a70 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:19:53.0645 0x1a70 RpcEptMapper - ok
23:19:53.0647 0x1a70 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:19:53.0655 0x1a70 RpcLocator - ok
23:19:53.0663 0x1a70 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
23:19:53.0685 0x1a70 RpcSs - ok
23:19:53.0689 0x1a70 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:19:53.0708 0x1a70 rspndr - ok
23:19:53.0720 0x1a70 [ 130DD683DCC902F47A4AC35201D07E2F, A1E7082D93C170CF5855007B26F96E8F8183B15126D34A9DB16CBF190BD8EF53 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
23:19:53.0740 0x1a70 RTL8167 - ok
23:19:53.0743 0x1a70 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
23:19:53.0749 0x1a70 s3cap - ok
23:19:53.0752 0x1a70 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
23:19:53.0757 0x1a70 SamSs - ok
23:19:53.0761 0x1a70 [ 328100AF2EFD951EAB657384EC361B6F, 2DECBF74E13511395AA13F931F06F4D557E67654DA3314D0095C332FB758B4D9 ] SamsungAllShareV2.0 C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
23:19:53.0767 0x1a70 SamsungAllShareV2.0 - ok
23:19:53.0770 0x1a70 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:19:53.0779 0x1a70 sbp2port - ok
23:19:53.0783 0x1a70 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:19:53.0807 0x1a70 SCardSvr - ok
23:19:53.0809 0x1a70 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:19:53.0827 0x1a70 scfilter - ok
23:19:53.0842 0x1a70 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
23:19:53.0884 0x1a70 Schedule - ok
23:19:53.0888 0x1a70 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:19:53.0904 0x1a70 SCPolicySvc - ok
23:19:53.0908 0x1a70 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:19:53.0922 0x1a70 SDRSVC - ok
23:19:53.0924 0x1a70 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:19:53.0942 0x1a70 secdrv - ok
23:19:53.0944 0x1a70 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
23:19:53.0963 0x1a70 seclogon - ok
23:19:53.0965 0x1a70 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
23:19:53.0985 0x1a70 SENS - ok
23:19:53.0987 0x1a70 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:19:53.0997 0x1a70 SensrSvc - ok
23:19:54.0000 0x1a70 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:19:54.0007 0x1a70 Serenum - ok
23:19:54.0010 0x1a70 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:19:54.0020 0x1a70 Serial - ok
23:19:54.0022 0x1a70 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:19:54.0030 0x1a70 sermouse - ok
23:19:54.0035 0x1a70 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
23:19:54.0056 0x1a70 SessionEnv - ok
23:19:54.0058 0x1a70 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:19:54.0067 0x1a70 sffdisk - ok
23:19:54.0069 0x1a70 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:19:54.0078 0x1a70 sffp_mmc - ok
23:19:54.0080 0x1a70 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:19:54.0089 0x1a70 sffp_sd - ok
23:19:54.0092 0x1a70 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:19:54.0099 0x1a70 sfloppy - ok
23:19:54.0105 0x1a70 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:19:54.0132 0x1a70 SharedAccess - ok
23:19:54.0139 0x1a70 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:19:54.0165 0x1a70 ShellHWDetection - ok
23:19:54.0168 0x1a70 [ 1980FE1F5A32067DAD1D8776B63C2669, 26B53EAF89CDBBA8FFA154DBB1F1DA348F894FE1F1D0CA4060E32496464DD5D2 ] SimpleSlideShowServer C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
23:19:54.0174 0x1a70 SimpleSlideShowServer - ok
23:19:54.0176 0x1a70 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:19:54.0184 0x1a70 SiSRaid2 - ok
23:19:54.0187 0x1a70 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:19:54.0194 0x1a70 SiSRaid4 - ok
23:19:54.0197 0x1a70 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:19:54.0217 0x1a70 Smb - ok
23:19:54.0220 0x1a70 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:19:54.0229 0x1a70 SNMPTRAP - ok
23:19:54.0231 0x1a70 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
23:19:54.0238 0x1a70 spldr - ok
23:19:54.0247 0x1a70 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
23:19:54.0265 0x1a70 Spooler - ok
23:19:54.0311 0x1a70 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
23:19:54.0386 0x1a70 sppsvc - ok
23:19:54.0392 0x1a70 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:19:54.0413 0x1a70 sppuinotify - ok
23:19:54.0420 0x1a70 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:19:54.0436 0x1a70 srv - ok
23:19:54.0443 0x1a70 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:19:54.0458 0x1a70 srv2 - ok
23:19:54.0463 0x1a70 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:19:54.0473 0x1a70 srvnet - ok
23:19:54.0477 0x1a70 [ 8F8324ED1DE63FFC7B1A02CD2D963C72, E58603F81DEAFF1D45CB83FB6E625E6A13868741B833B1C9E60D672179D18EE0 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
23:19:54.0489 0x1a70 ssadbus - ok
23:19:54.0491 0x1a70 [ 58221EFCB74167B73667F0024C661CE0, D9B67A8897B4DC3E4729187F17ABEB4710CF57440D718E17ED828439198D34DB ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
23:19:54.0499 0x1a70 ssadmdfl - ok
23:19:54.0504 0x1a70 [ 4DA7C71BFAC5AD71255B7E4CAB980163, 4CC0F9C8E96ECEF36EEB021E448A9734B63512D030516DC38B1A2EEAA1043AEC ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
23:19:54.0516 0x1a70 ssadmdm - ok
23:19:54.0520 0x1a70 [ D33D1BD3EC0E766211A234F56A12726D, 53EEAA94865554F8422D111D717B548DF553B5B8647D2A45F3718BF4AEEBEC27 ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
23:19:54.0531 0x1a70 ssadserd - ok
23:19:54.0535 0x1a70 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:19:54.0558 0x1a70 SSDPSRV - ok
23:19:54.0561 0x1a70 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:19:54.0581 0x1a70 SstpSvc - ok
23:19:54.0589 0x1a70 [ 6E1A473DD2A4714EAF7D11E2315DF794, 4460546191072C7DF8B2E5A00577BA8E4FF5A1B2EA399DDF65EBE1AE4A5A5C84 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:19:54.0608 0x1a70 Steam Client Service - ok
23:19:54.0610 0x1a70 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:19:54.0617 0x1a70 stexstor - ok
23:19:54.0626 0x1a70 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
23:19:54.0649 0x1a70 stisvc - ok
23:19:54.0652 0x1a70 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
23:19:54.0659 0x1a70 storflt - ok
23:19:54.0661 0x1a70 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
23:19:54.0668 0x1a70 storvsc - ok
23:19:54.0670 0x1a70 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
23:19:54.0677 0x1a70 swenum - ok
23:19:54.0685 0x1a70 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
23:19:54.0713 0x1a70 swprv - ok
23:19:54.0736 0x1a70 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
23:19:54.0781 0x1a70 SysMain - ok
23:19:54.0785 0x1a70 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:19:54.0799 0x1a70 TabletInputService - ok
23:19:54.0802 0x1a70 [ F9BE29D5E097F03F81D3CD12B794CB66, 5EC208DEAF7C721F4C36512E7DAD4AC66578AB935B9502A5E1E213BC91BE508C ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
23:19:54.0810 0x1a70 tap0901 - ok
23:19:54.0812 0x1a70 [ 3A7CABF7DE8F1325BE8F46685469AEC3, 03B2FDEA5E10B9584EFC4ED22D6C2529322FBEF0DFEC60FE12FCE5C4A2E42F9C ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
23:19:54.0820 0x1a70 taphss6 - ok
23:19:54.0825 0x1a70 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
23:19:54.0850 0x1a70 TapiSrv - ok
23:19:54.0853 0x1a70 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
23:19:54.0874 0x1a70 TBS - ok
23:19:54.0899 0x1a70 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:19:54.0940 0x1a70 Tcpip - ok
23:19:54.0966 0x1a70 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:19:54.0992 0x1a70 TCPIP6 - ok
23:19:54.0997 0x1a70 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:19:55.0005 0x1a70 tcpipreg - ok
23:19:55.0007 0x1a70 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:19:55.0015 0x1a70 TDPIPE - ok
23:19:55.0017 0x1a70 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:19:55.0024 0x1a70 TDTCP - ok
23:19:55.0027 0x1a70 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:19:55.0046 0x1a70 tdx - ok
23:19:55.0049 0x1a70 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
23:19:55.0057 0x1a70 TermDD - ok
23:19:55.0067 0x1a70 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
23:19:55.0095 0x1a70 TermService - ok
23:19:55.0098 0x1a70 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
23:19:55.0111 0x1a70 Themes - ok
23:19:55.0113 0x1a70 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
23:19:55.0130 0x1a70 THREADORDER - ok
23:19:55.0133 0x1a70 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
23:19:55.0155 0x1a70 TrkWks - ok
23:19:55.0159 0x1a70 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:19:55.0181 0x1a70 TrustedInstaller - ok
23:19:55.0184 0x1a70 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:19:55.0193 0x1a70 tssecsrv - ok
23:19:55.0196 0x1a70 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:19:55.0206 0x1a70 TsUsbFlt - ok
23:19:55.0210 0x1a70 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:19:55.0233 0x1a70 tunnel - ok
23:19:55.0236 0x1a70 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:19:55.0244 0x1a70 uagp35 - ok
23:19:55.0250 0x1a70 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:19:55.0275 0x1a70 udfs - ok
23:19:55.0279 0x1a70 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:19:55.0290 0x1a70 UI0Detect - ok
23:19:55.0292 0x1a70 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:19:55.0300 0x1a70 uliagpkx - ok
23:19:55.0303 0x1a70 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:19:55.0313 0x1a70 umbus - ok
23:19:55.0315 0x1a70 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:19:55.0323 0x1a70 UmPass - ok
23:19:55.0328 0x1a70 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
23:19:55.0341 0x1a70 UmRdpService - ok
23:19:55.0349 0x1a70 [ E1A119AD21F5AFE22EB516C549306D3D, 48769D5E7A78B7A2C00F1F6798AC133CF3E0B2C76F71D3719BD741DDD8F2D229 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
23:19:55.0357 0x1a70 UNS - ok
23:19:55.0364 0x1a70 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
23:19:55.0390 0x1a70 upnphost - ok
23:19:55.0393 0x1a70 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
23:19:55.0401 0x1a70 USBAAPL64 - ok
23:19:55.0404 0x1a70 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:19:55.0414 0x1a70 usbccgp - ok
23:19:55.0417 0x1a70 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:19:55.0427 0x1a70 usbcir - ok
23:19:55.0430 0x1a70 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
23:19:55.0438 0x1a70 usbehci - ok
23:19:55.0444 0x1a70 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:19:55.0460 0x1a70 usbhub - ok
23:19:55.0462 0x1a70 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:19:55.0469 0x1a70 usbohci - ok
23:19:55.0472 0x1a70 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:19:55.0481 0x1a70 usbprint - ok
23:19:55.0483 0x1a70 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
23:19:55.0492 0x1a70 usbscan - ok
23:19:55.0494 0x1a70 [ 4ACEE387FA8FD39F83564FCD2FC234F2, 3D62DE27027B8C032D15EB74F97A14B4EC24E67052C1163862740D6312B2569B ] usbser C:\Windows\system32\DRIVERS\usbser.sys
23:19:55.0502 0x1a70 usbser - ok
23:19:55.0505 0x1a70 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:19:55.0515 0x1a70 USBSTOR - ok
23:19:55.0517 0x1a70 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:19:55.0525 0x1a70 usbuhci - ok
23:19:55.0527 0x1a70 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
23:19:55.0547 0x1a70 UxSms - ok
23:19:55.0549 0x1a70 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe
23:19:55.0554 0x1a70 VaultSvc - ok
23:19:55.0556 0x1a70 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:19:55.0563 0x1a70 vdrvroot - ok
23:19:55.0571 0x1a70 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
23:19:55.0599 0x1a70 vds - ok
23:19:55.0602 0x1a70 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:19:55.0610 0x1a70 vga - ok
23:19:55.0613 0x1a70 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:19:55.0631 0x1a70 VgaSave - ok
23:19:55.0635 0x1a70 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:19:55.0647 0x1a70 vhdmp - ok
23:19:55.0649 0x1a70 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
23:19:55.0656 0x1a70 viaide - ok
23:19:55.0660 0x1a70 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
23:19:55.0671 0x1a70 vmbus - ok
23:19:55.0674 0x1a70 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
23:19:55.0681 0x1a70 VMBusHID - ok
23:19:55.0684 0x1a70 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:19:55.0691 0x1a70 volmgr - ok
23:19:55.0698 0x1a70 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:19:55.0711 0x1a70 volmgrx - ok
23:19:55.0716 0x1a70 [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:19:55.0729 0x1a70 volsnap - ok
23:19:55.0734 0x1a70 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:19:55.0743 0x1a70 vsmraid - ok
23:19:55.0765 0x1a70 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
23:19:55.0808 0x1a70 VSS - ok
23:19:55.0811 0x1a70 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:19:55.0821 0x1a70 vwifibus - ok
23:19:55.0823 0x1a70 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:19:55.0834 0x1a70 vwififlt - ok
23:19:55.0841 0x1a70 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
23:19:55.0868 0x1a70 W32Time - ok
23:19:55.0871 0x1a70 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:19:55.0879 0x1a70 WacomPen - ok
23:19:55.0882 0x1a70 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:19:55.0901 0x1a70 WANARP - ok
23:19:55.0904 0x1a70 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:19:55.0920 0x1a70 Wanarpv6 - ok
23:19:55.0940 0x1a70 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
23:19:55.0974 0x1a70 wbengine - ok
23:19:55.0980 0x1a70 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:19:55.0996 0x1a70 WbioSrvc - ok
23:19:56.0002 0x1a70 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:19:56.0019 0x1a70 wcncsvc - ok
23:19:56.0022 0x1a70 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:19:56.0032 0x1a70 WcsPlugInService - ok
23:19:56.0034 0x1a70 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:19:56.0041 0x1a70 Wd - ok
23:19:56.0052 0x1a70 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:19:56.0074 0x1a70 Wdf01000 - ok
23:19:56.0077 0x1a70 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:19:56.0090 0x1a70 WdiServiceHost - ok
23:19:56.0092 0x1a70 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:19:56.0101 0x1a70 WdiSystemHost - ok
23:19:56.0106 0x1a70 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
23:19:56.0120 0x1a70 WebClient - ok
23:19:56.0125 0x1a70 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:19:56.0151 0x1a70 Wecsvc - ok
23:19:56.0154 0x1a70 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:19:56.0174 0x1a70 wercplsupport - ok
23:19:56.0177 0x1a70 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
23:19:56.0198 0x1a70 WerSvc - ok
23:19:56.0200 0x1a70 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:19:56.0217 0x1a70 WfpLwf - ok
23:19:56.0219 0x1a70 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:19:56.0226 0x1a70 WIMMount - ok
23:19:56.0227 0x1a70 WinDefend - ok
23:19:56.0230 0x1a70 WinHttpAutoProxySvc - ok
23:19:56.0238 0x1a70 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:19:56.0262 0x1a70 Winmgmt - ok
23:19:56.0288 0x1a70 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
23:19:56.0343 0x1a70 WinRM - ok
23:19:56.0348 0x1a70 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:19:56.0358 0x1a70 WinUsb - ok
23:19:56.0370 0x1a70 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:19:56.0398 0x1a70 Wlansvc - ok
23:19:56.0430 0x1a70 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:19:56.0460 0x1a70 wlidsvc - ok
23:19:56.0464 0x1a70 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:19:56.0471 0x1a70 WmiAcpi - ok
23:19:56.0476 0x1a70 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:19:56.0488 0x1a70 wmiApSrv - ok
23:19:56.0490 0x1a70 WMPNetworkSvc - ok
23:19:56.0492 0x1a70 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:19:56.0501 0x1a70 WPCSvc - ok
23:19:56.0504 0x1a70 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:19:56.0515 0x1a70 WPDBusEnum - ok
23:19:56.0517 0x1a70 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:19:56.0534 0x1a70 ws2ifsl - ok
23:19:56.0537 0x1a70 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
23:19:56.0549 0x1a70 wscsvc - ok
23:19:56.0551 0x1a70 WSearch - ok
23:19:56.0583 0x1a70 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\Windows\system32\wuaueng.dll
23:19:56.0629 0x1a70 wuauserv - ok
23:19:56.0634 0x1a70 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:19:56.0643 0x1a70 WudfPf - ok
23:19:56.0647 0x1a70 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:19:56.0658 0x1a70 WUDFRd - ok
23:19:56.0662 0x1a70 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:19:56.0672 0x1a70 wudfsvc - ok
23:19:56.0676 0x1a70 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
23:19:56.0691 0x1a70 WwanSvc - ok
23:19:56.0695 0x1a70 [ 9176C0822FAA649E45121875BE32F5D2, B7A7A906A7BB0F760ED241F998C647D728C4DB5D8778AFE585DF38331165803F ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
23:19:56.0703 0x1a70 xusb21 - ok
23:19:56.0707 0x1a70 ================ Scan global ===============================
23:19:56.0709 0x1a70 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
23:19:56.0717 0x1a70 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:19:56.0729 0x1a70 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:19:56.0733 0x1a70 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:19:56.0741 0x1a70 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
23:19:56.0745 0x1a70 [ Global ] - ok
23:19:56.0745 0x1a70 ================ Scan MBR ==================================
23:19:56.0746 0x1a70 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:19:56.0922 0x1a70 \Device\Harddisk0\DR0 - ok
23:19:56.0929 0x1a70 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
23:19:56.0970 0x1a70 \Device\Harddisk1\DR1 - ok
23:19:56.0970 0x1a70 ================ Scan VBR ==================================
23:19:56.0971 0x1a70 [ FE74F62CE5BEEEB4346F90C1639D2FA8 ] \Device\Harddisk0\DR0\Partition1
23:19:56.0972 0x1a70 \Device\Harddisk0\DR0\Partition1 - ok
23:19:56.0973 0x1a70 [ 52A3E067605C35721AF987962F3EBDA5 ] \Device\Harddisk0\DR0\Partition2
23:19:56.0974 0x1a70 \Device\Harddisk0\DR0\Partition2 - ok
23:19:56.0975 0x1a70 [ FDC3EE9930FAC625B41835F068CBF1CF ] \Device\Harddisk1\DR1\Partition1
23:19:57.0010 0x1a70 \Device\Harddisk1\DR1\Partition1 - ok
23:19:57.0010 0x1a70 ================ Scan generic autorun ======================
23:19:57.0161 0x1a70 [ AC6F2EC671CA3CB162901BE770FA31A9, 33E5FB8462ED0E1A68816A581627E62164BDFBCD0119EFD3D613DB420D54058D ] C:\Program Files\Logitech Gaming Software\LCore.exe
23:19:57.0293 0x1a70 Launch LCore - ok
23:19:57.0304 0x1a70 [ 796227FCA947A0B8E3D6A097B27F2363, F14B1F8CF253A27554D4C24228911355FA475AABF086B66A498E825E8E3CBFA5 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
23:19:57.0315 0x1a70 USB3MON - ok
23:19:57.0316 0x1a70 CTxfiHlp - ok
23:19:57.0319 0x1a70 [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
23:19:57.0326 0x1a70 APSDaemon - ok
23:19:57.0372 0x1a70 [ BAF535F843A3E790E04A7613811B55BC, 764608E1BC657FBBBB3E0DC5D36F0701CAA9D28BE15E416DF84AD3EFC7EB85D9 ] D:\Program Files (x86)\iTunes\iTunesHelper.exe
23:19:57.0381 0x1a70 iTunesHelper - ok
23:19:57.0401 0x1a70 [ 2AA5DD75EA1281432C40D22B5FD87D3A, 9868D4176C8F08EB72B0B992D3E2A480C587930CA025B4FDF3212F99B79C3017 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
23:19:57.0417 0x1a70 avgnt - ok
23:19:57.0434 0x1a70 [ 06BB3578BE06B0980AF9917EC94488EC, 4C66DC5C55E7AC80838D21AA04D194ACE62D70FF0D469FAB910FFE05B1C2A4E7 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
23:19:57.0451 0x1a70 StartCCC - ok
23:19:57.0455 0x1a70 [ 48C3EBD6D5E52AFCB1A0FA9B7F9802FA, 4F2E27AA8305FFC94F65C65C5FDB8462C92ED02A7B37627404382C3CAB65AC59 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
23:19:57.0462 0x1a70 iCloudServices - ok
23:19:57.0464 0x1a70 [ 799BCC829F48F19C5689478179060435, 495C6E363982F7BE1785A46C12ED4AC99E0AF98F340F1CE3C55D39EBE6FE33AA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
23:19:57.0471 0x1a70 ApplePhotoStreams - ok
23:19:57.0471 0x1a70 Waiting for KSN requests completion. In queue: 305
23:19:58.0471 0x1a70 Waiting for KSN requests completion. In queue: 305
23:19:59.0471 0x1a70 Waiting for KSN requests completion. In queue: 305
23:20:00.0497 0x1a70 AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.6.548 ), 0x40000 ( disabled : updated )
23:20:00.0503 0x1a70 Win FW state via NFP2: enabled
23:20:02.0857 0x1a70 ============================================================
23:20:02.0857 0x1a70 Scan finished
23:20:02.0857 0x1a70 ============================================================
23:20:02.0863 0x0f9c Detected object count: 0
23:20:02.0863 0x0f9c Actual detected object count: 0
|
|
16.08.2014, 22:45
| #13 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht Adware/Junkware/Toolbars entfernen 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
3. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ Logfiles bitte immer in CODE-Tags posten |
|
17.08.2014, 10:49
| #14 |
| | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht adw: Code:
ATTFilter # AdwCleaner v3.306 - Bericht erstellt am 17/08/2014 um 11:33:57
# Aktualisiert 15/08/2014 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzername : Lil' Hagbrain - INTEL3770K-PC
# Gestartet von : C:\Users\Lil' Hagbrain\Desktop\adwcleaner_3.306.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Tasks ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v0.0.0.0
-\\ Mozilla Firefox v31.0 (x86 de)
[ Datei : C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\prefs.js ]
*************************
AdwCleaner[R2].txt - [1224 octets] - [14/08/2014 20:30:17]
AdwCleaner[R3].txt - [991 octets] - [17/08/2014 11:32:12]
AdwCleaner[S2].txt - [1239 octets] - [14/08/2014 20:34:58]
AdwCleaner[S3].txt - [913 octets] - [17/08/2014 11:33:57]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [972 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Ultimate x64
Ran by Lil' Hagbrain on 17.08.2014 at 11:36:30,03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-729600091-3301723442-1201444741-1000\Software\sweetim
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\Lil' Hagbrain\AppData\Roaming\getrighttogo"
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{0075AC3A-AFA7-4F6F-8F80-A5013C6410FC}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{00CB337C-E0D8-445E-8201-57FE99F0ED3F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{016AC889-513C-4174-91BA-FBDDEA64575D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{01C8F7F5-14D5-4B39-8D96-7162A0F02ADF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{01DC3111-03D5-4BB0-9EC5-CAFB30C68EE8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{021F2F4E-C751-4CA0-8B41-A5DCCA0A6CE1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{028855E7-1AC9-41C0-91FC-BF771F1FFE5D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{02910049-5026-4935-8C26-77D048E20494}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{0379B1C9-E2F7-4E6D-BEF5-28D490129718}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{03CFD7FD-54C1-43DC-9DDE-4153CFD714F6}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{03FF00A5-9DAA-4277-A93B-CA3AF317F5A5}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{05092E8F-EFC4-4080-A61C-F5312A46D5C9}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{05D8EAC7-3170-4F53-BBA3-E1C8130AC1CC}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{06D6FACC-E0D4-405F-B479-94C18E8A1987}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{07070842-7D9A-48E3-B6B7-F4B1638A1578}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{073F6486-58C0-4F59-8C2D-0CC621ADB6C3}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{075145B1-EF69-456F-85A5-2CAB2275C874}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{075F8D9D-09BE-4666-AE04-55A65E81406F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{079AE5F8-BB22-4FF4-A5C7-9C8A727C309C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{08087E6B-77DA-4612-8B69-C0A5BB79D4F1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{084907EB-5BC1-47D8-9F4B-1E64B5855324}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{0AABC3DE-A63E-458A-8CF3-3C36E8FA138C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{0ADA7303-C31F-4D6C-AAE3-31F4148B79B3}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{0C5A2246-5577-4E6C-AEC9-DEAF711E897D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{0E00EA73-23E9-4EEF-8EC2-E3901A15F216}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{0E22FE37-C15C-4A33-8F53-88624F8E1608}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{0FF39F59-CA72-4831-80BD-F91E8DA94E38}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{11428322-502C-460D-8285-A5005FAA324E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{117B123B-5DC4-4946-8877-EE50CADEE3A8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{117DA668-EC33-407C-BA02-5E62841F7F8B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{14401644-BA6D-4D70-8444-C53ACDCA231A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{14D11E9D-C02E-4334-8B57-70294E555534}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{15574ACB-5F61-49D4-80E5-3C7E75B2BB3E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{15D050B2-E893-40B2-897A-A0DBD7843A94}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{165137EC-B5A3-4A28-9A64-4DB04C918E6F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{17D9321A-363E-44B9-986D-D2B0BC22712E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{18293A08-9794-4478-9B2D-5A71FD147762}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{18638F4C-1110-4A7F-91CA-A146EC88155B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{19ABF698-65D9-4A43-8AFC-DB7363ADC477}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{1AE27C9F-74DE-46C0-8B74-DDDD66D33611}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{1BABF1B0-272F-421F-8BCF-FBE63FB16473}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{1C1DECE0-3DBA-4F43-B8D7-10CF3CE50B89}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{1CB79C43-2016-45F1-8761-082C596934CD}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{1E81866E-3785-417E-A922-5CAEA240F26B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{1E82F5E7-C7ED-4E2F-8FC8-7396501BF709}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{1EDD44C1-4467-424B-B189-A001235F79C1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{1FF9E85D-9305-4FF9-8711-EE2ED3377316}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2144410F-C20F-4E10-9932-A9DD67121439}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{218762CB-7311-4EC8-9AD0-92324D5DD098}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{22D794B0-4041-403E-B859-52339A973258}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{23D15F95-9C84-48C5-91EE-CEE46A04ACC1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{267B2376-A669-4875-A563-F498CF83FAE4}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{27982F38-6843-422F-884F-F1D8127C682E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2816EA2C-0D77-4423-95A2-B04299474887}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{291A813F-0E81-4F33-8B80-316F8E7A7E5A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2A172281-12CB-43E4-B1DD-DCA8A1549B99}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2A9B868F-980C-4E20-940E-5FE625E96FC6}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2BA3B15D-34CF-4A2B-975C-E0656316C98D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2BE8FA65-4424-4759-B609-0A9AAE73B41E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2C0AD50A-A423-4583-96E4-BF5B664EB893}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2C79D100-B9D8-4E19-9D8E-F521E61D9ADA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2CEE8D07-D0D2-4D41-80F6-17BBE66200D1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{2F70FE54-BE6E-468B-9FA6-9C81968AFA56}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{300A1635-6DEF-4E7B-9F33-C2CA9E9D23CE}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{309F5F8E-B0DF-49C2-98D9-02B798DB6FC4}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3102EB02-327C-4B83-B215-1E4F4BB30C53}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3291A146-F25F-48F2-93E8-1E21A044179C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{33489E12-3B9F-4054-8E64-089765E8095F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{33AC5E14-13A4-443E-8E08-A3BCC688E90D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{33F6F49F-E822-4EE6-91DF-8741A2CBD657}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{35FC0160-07A3-4CFB-A0C4-5C080DAD3CD8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{378B2EC7-1820-478D-853E-7EF890C4ACDA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3A6FFA1D-A2F8-44E6-BD74-6A92EDA9E515}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3AABAD68-561F-4BD8-9E7E-EF0BFACB7774}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3C601AE9-4E70-459B-A7B0-DDCFCBB6D5BA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3C98B509-CABB-401E-BF71-CC371B46C62B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3C9C3567-6CAC-4024-B9D1-42A19331F765}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3D208C8C-1806-4478-BC7C-6EBC948C65B1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3D88A0C3-98DC-4BA3-A639-157F0E8E2154}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{3EA58B9F-B64A-4A9C-AD6E-B7A006D9AB4F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{40242FDB-9276-4356-AA9E-2AA0675FA421}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{409D2B30-7E67-469F-A95D-0D4892712B19}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{41940B15-9009-4FBA-B2A5-755C3EDADEC7}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{43F03217-9763-49DB-A314-D13675DF43A1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4535F650-0747-46B8-8E24-57D8BD2AE2F7}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{457BC9A8-94A3-41DD-AE46-DBF32B91596C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{459D8809-8378-48B0-9B36-35A9886BA609}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4633D766-10A0-49FB-B002-3BB5CF3F9342}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{46B43124-C593-4498-BAF5-29362166D92E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{46E2E6EA-6E9C-4D0B-ADFA-FD63B6DEC27F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{470FC229-77A4-4C0A-9A70-0C6A7C2C1D2F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{47F36309-1283-4A62-9CFC-D916FECDDCAA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4918A968-03A8-4B87-AE10-2828C5783561}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4963AB4E-05ED-4DDB-8B84-B30206A615F6}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4ABF6764-8C63-42CE-904A-11A442D1B9EF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4AF6D551-5D1D-43D6-A2F6-BF5F28A339AB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4D1BFE38-3C4F-498A-BF22-8DED1AEC36BC}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4F3A50DD-CDBD-438A-85C3-547BC2DBEABB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{4F8E2713-A037-4790-A2B4-4E251E31DE27}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{503BB218-BFF0-46A7-9FA5-B92175586EF6}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{5065D4AA-86A6-4915-914B-83334D004E63}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{523D8092-8C03-4174-89B7-CBC76EA1470B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{52A5E64B-03F5-42DE-ADF3-C33E455B8392}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{52B2BDA8-5237-4AE9-9CAF-1AFA585226BE}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{52CBC731-3AE5-44BC-B8F0-DA76EA9F3503}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{53D71559-87E0-4D11-85A9-92B56BB4C7F9}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{54998150-AC1C-454E-821A-5B141D68CEC3}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{556C24E9-FC80-4209-8383-8E0F7E8EA69C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{55A5F258-49E6-4C73-9445-5F35B08A5E9B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{568CAD2B-3EC2-4E17-A831-D8324D058DBF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{599713C8-3461-440B-AE20-C99AEA8EF90B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{59CB254E-08C0-4926-9FB0-FC18B13A6EF8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{5ACD0885-4728-4CDB-974A-16871FDDC20B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{5AD8FEC9-331F-4B8B-BD1A-F729B5626BDE}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{5B71C09F-B4F4-405C-B1E2-9DCBF9088BA9}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{5CD900E8-144A-4501-ACF1-45A8B41A87BB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6033F6A4-34B9-49C6-85FF-B4930FEE3021}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{60B824C1-C745-4909-B43A-86A26D014AB8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{60D3AE44-B3A4-4B19-8C09-079FF22863BF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6112E04F-617C-40BE-975A-AF78F3A3123A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6389FAB3-0E9C-43AF-AB62-D31AEE7A833B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{648A05CF-DB88-47AD-B5F4-969C7AD72140}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{64FA3AA8-74A5-4FDE-86CD-D46FFA573E14}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{652AEF2F-74CC-442E-B2E6-D99C4A4C4D19}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6665AE55-7CFE-49FD-A985-2B0E74D3BB22}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6684E11D-CE38-4882-BCCA-A2FAFFC28ED8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{66DD8333-374B-42EB-9657-C6E66BB5CF21}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{682B33B8-68B8-4851-A837-2BD758E8B975}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{695284B3-49C5-4479-BFDC-AE637537494A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{695A3797-F9EE-4C0E-BDB0-AA1ADCFA5F30}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6A5DFD10-2F55-4EF8-820D-88C8DAB087CB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6A9A8FBF-4C3B-4898-975B-F066D621B59C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6BB7821A-C66D-405B-B351-E4A17405564E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6D510BA9-EAFF-4B09-A345-BAA0E744E2EB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6DAD3C84-FB33-4D9A-983B-355027819F1B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6DF59A8C-C762-4A22-BBE6-B34FC75A1EB3}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6F9323C0-EB3D-4588-A52C-FA4B8F005E49}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{6FAB3EC3-64B2-4D05-8154-8CAB7EDD23EF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{706F4E7D-EBDD-4498-A0BB-D1002666A2C1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{70BE7565-C420-496B-B1BB-B7D4C95D4114}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{712302A4-B148-4FAA-916F-41E4D29914F2}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{71EBF1AB-E3AC-4171-89AC-F13D1DB87095}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{733C2A6C-90CE-4E53-A595-283CF8288B3D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{73A84058-7FE3-49D6-84D3-45C82C6D56F7}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{73D4ADD2-084D-4895-A207-AABBDC43A564}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{74D3685B-5AAF-47B6-9035-F714D14C0205}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{754E792E-5890-48C6-9C45-BB59DC02C72C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{75B91621-8C7D-42A4-80C7-819624ADDD34}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{75FB7860-5CD5-46C4-B2A4-25531C53B4AD}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{7603FAF1-6E86-45DC-8E33-A63CA3772A27}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{77F02C27-A6AE-4384-B165-C195A732A937}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{78011DAD-9B25-4A19-A429-BEECE24D98B8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{78665DA9-AF95-404F-ABF1-47999DE1ECD9}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{78D40075-924C-4AE2-B12E-60F9D3D38CA8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{78DF87DC-A222-40E3-A016-523CC121D137}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{7987225F-1116-4A06-B44D-DB48A5299A61}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{7AB00DC1-5B67-48D1-82DC-76D4DF5867D5}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{7BD212F2-B525-4849-89D2-C34AD38A0773}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{7C92C08D-D83B-4ED6-96DA-F8191B3FF932}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{7F38180C-E8C0-413F-BCAD-06065DFEF018}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{7F48E67B-E29C-4B72-95A5-FA4037830D02}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8172165D-D928-4F10-BF08-307056267AD1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8196A86A-5E50-4613-BCDF-CD47D2372052}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{87174906-E4D9-45E5-A24D-FB0A2F351F87}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{884FFF5A-52EE-4601-95A3-1EB0D1C335E5}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{894CBA4B-DE58-4AB9-9F51-3C6DE2B67EB1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8AF9F185-23D5-41F5-BF6B-0FFFC0A2CA5D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8BFA9985-6ADB-4CC2-9150-B503172C89F2}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8D19FE24-DBB9-4484-B8F0-4F6FABC067FB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8EBF0B75-619C-4AF0-90D7-7844BA80EC95}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8F036F6E-B48B-40BC-9198-70AB3BC50504}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8F4EE0FD-A5E3-4352-A99C-6F5BD15AFF2F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8F5DBC1C-460C-42E0-8EA0-2B84842B1B24}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8F6E9643-1097-428F-85C7-FFB916AD9BDB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8F80E856-FE5B-4AA6-8ADF-6DF546D45C4B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{8FDA0369-8371-4FE2-9514-C7966F9865BD}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{90C03BAD-3A09-4069-9366-743CC5A925E8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{90D0B0FB-FD48-428C-8029-DFD341E9D48A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{923AFD7E-1617-45FC-B904-35334385AC43}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{9243589D-AED8-42D5-A057-D4DB8CE3DE06}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{92B88A7E-3E31-4AAD-BB94-B96C4EAB2572}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{955703E8-FE7F-47C8-ADC1-C6A35218C28A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{99139B9B-9952-469E-88B7-433AD3393356}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{992F22F2-3DF8-49B4-8FC4-1AFC1FCB96D7}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{9AA463DB-53C6-4F92-AC01-1E1B906E4E55}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{9E00D190-9A8F-4446-BBB6-2EB3FFFDCE0F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{9E20B4D9-5612-4ECA-8A83-1F45531549DC}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{9F924A37-3147-4CCD-A494-32E22444415F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{9F949977-60B3-4AFB-A47B-6F7A42840333}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A045E5FE-E798-47A9-9C14-436AE1396CC3}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A0B05F2B-2EFC-41EB-A57E-D046A248E160}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A0EF1457-B13D-43CD-B5C3-D866CA8646E5}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A202B342-73A9-4311-8F13-CC3618513C3B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A222A3B6-8A22-43A6-B7A8-36D1BA0B1CFA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A28A1F80-8BBE-411C-B556-A7F3A4DE3763}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A399DEA9-6C0A-4802-B468-BC415F6BA2A8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A3CF847A-2B10-410C-8A4E-0E4BE182C260}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A4AF8075-AA0C-4807-892A-1710429957BA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A4E3B0C8-0EEC-4FB1-B066-BF4FA0D50EEC}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A5293B5E-2B20-4B2A-9E4D-7F55F22442D2}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A5B49A42-A87F-4F33-8E07-09F4126BAE53}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A671F79B-5F90-4138-971A-2C9019489977}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A67EC851-0A3F-4FDD-91E3-CD0E881BD11B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A7A07BDF-28ED-45EC-932D-A4C99A8EFFBB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A8009424-1F99-436F-BD26-05B5C8106EAD}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A8830AED-E247-4F7E-BC04-F63068C2A9B0}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{A926ACEE-A1C7-447F-BE75-FF7C1473AC26}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{AA27D9B9-46B3-4FC4-B768-DE51B53F5711}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{AC30B506-92B4-4E10-B1A6-6FBBFF837435}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{AC61164C-8AEB-4CA5-9001-3C18E0A87E5E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{AF3F15AC-E8F4-4E30-8E99-CBBEDFA661A0}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{AF5F606C-9806-470F-8AD3-BAC5906A7781}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{AFFD971F-CC2F-4A82-9715-599B7E4B8E30}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{B0729882-7D64-481F-B3A4-F7CDFFE2EDD0}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{B16D85E1-E7DE-4749-A808-B69C1CFB3599}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{B1E8A546-D69E-4691-BBB9-1D9900811004}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{B3234EE9-5C7E-4799-9E23-895A5739650C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{B49C433E-E134-43D6-AEAC-46DA65D3577A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{B62C3BB1-9CE3-4148-B7CA-C2E1B2B3D991}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{B9BDDF82-7239-4C1C-9C83-44C8B5A5905D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{B9E131EC-3465-4FC2-94E6-13A0CA1877D6}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{BA2970CA-599B-41EA-9BF7-1EE2B3D3CC07}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{BADE1D55-1C6B-456E-B59A-A284B30F12BE}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{BAFEBB9C-D209-40EE-BA17-F45C57F0B0B8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{BBF4AABF-6BAC-45A1-9096-D8BF668732FE}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{BD7507B8-728C-455E-AD8A-FD274A086C71}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{BE78251E-1599-41FB-A063-086188488485}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C05EA014-4198-4EFA-8CD1-794B316B7E73}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C09C9B7B-B049-4365-9B5B-931D1068E755}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C13E161A-E06B-48F2-85F1-D93FAAC87631}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C21785D9-5BD3-4A16-BE7B-D85DA8AC580C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C234ACCE-F89B-45AB-9041-A120CAC35798}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C32691E9-5373-464F-B658-2F1AABE8020A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C40A1708-F9A1-4A7E-9C96-BD3C310D2977}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C57D6A75-1C15-4A21-A417-3C82C896A0CC}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C5CD73F2-A9AA-4D0A-AC4E-881CB9069CB7}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C5E2F4A3-0448-4559-8AC1-F28251E980CA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C8E99C84-DB40-4FDD-866E-E6F2FFA0D3D4}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{C9424136-3BC2-4566-9695-44EFB949258A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{CA506B22-EAC3-43FA-AEC3-D58D3EE082DA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{CAFADC68-C426-4D97-8346-1F419EB43FE8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{CBE7690F-B200-4610-BDED-DBBB10248AEF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{CE89B10D-D10E-4B8E-AB2D-9E588A2FC366}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{CF3FC4BA-6AD1-4283-B0EA-E024BA4B7BE4}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{CF93D9BD-F366-4F14-BA4B-76CB75A6389F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{CFE11283-65C3-4EE8-95A6-5B0D044653BB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D01001E2-12ED-43F0-B328-40A2D2CBC5F4}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D040AA16-6B40-44EA-98F6-EE967A9D639C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D04C2752-65CD-42E6-86D9-23D627B30828}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D06D9F4C-6E12-4E5E-82B5-B00AE639508C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D0807BFA-6A96-4CE6-A269-04855DCD0750}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D091296F-CEBA-41AA-87D5-551304A1FEFF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D14BE085-DB4D-41F7-B79C-AC9F1A069680}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D1A4410D-E93D-4FA2-8BF7-EF43FA811A0B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D1C9DEDF-369A-42A0-8F19-E2391AB2C6D5}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D22788B4-DBB6-4EBD-A4EF-EF7C09B89395}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D3C2B1FF-AAF0-4C43-AEBB-BA36D2C67A73}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D424B599-5195-4B9D-9519-BFBA53B2DD37}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D578119F-AC8E-4436-89C7-4C74C59B92C8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D5B6EBCE-C315-4601-B5F8-E5622A16E51F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D660B010-DDF8-41E7-9A99-2BB1F4566F8E}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D7C6F8CA-21B6-4DAE-A2C6-C007B650F532}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{D8EC4E13-60CD-485A-BC0B-42599B89DB16}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{DAC16293-895A-45B1-BB0C-246E58F9F3B7}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{DBA73FD5-74DD-4BB8-80A1-B0233D561D71}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{DCAC6875-7500-4030-9D07-B9E0EF3D67BD}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{DCEA6771-5D67-46C5-8A64-CE577A699FFA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{DE736752-5F30-4787-81C5-624B7EE8648C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{DE75B42B-CA66-443B-AE02-4BB19EA5B0DC}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{DF000683-CECA-484D-AEBB-025540D4F7C2}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{DF4F327B-71D9-4D45-B112-E01D53B7C929}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E00579D5-E546-407F-AFE7-B606BAF9295D}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E0952B3A-60EA-4B05-BE7F-E078CF5F83D1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E16622B1-CAFC-49B3-B93C-B97EF9A6E2B8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E16F3A48-BFF0-4787-9BB7-D122F75029C4}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E1974D91-EAEC-4BB4-95EC-C9FD289539B8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E3C23C47-5E5E-4967-BAAB-303469C9CB77}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E3FDF85C-0BE3-47F9-94B4-9FF913A89A24}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E568CCD2-C4D0-4957-9E5C-281268C8AE88}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E6F1F411-AB01-4E5B-9FE1-A3E868A5CF50}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E7386817-4A69-418C-9801-EF80ACCC9B80}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E7443FCC-B740-424D-8BF0-52FA52FE9576}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E8483CA5-B640-44FB-84E6-3AD7770AAB26}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E8511EA8-ABE1-44D8-8C75-630B3F020AD1}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E89E368A-2980-4B43-AECA-1B66FF8315EC}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{E9CAE758-4A83-4C28-9C04-AE3716160ACF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EA9C131F-53EF-4F52-AC8A-91A0B108BA68}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EB6EB5A6-B43B-450E-978E-1FC941FA50C0}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EB7AA6A1-57AB-4805-9B73-BE9D43144360}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EC15CB6D-9D46-481E-B76B-D9487947E3E8}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EC600916-BC49-4AF1-907C-BA4591AADF16}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{ECC60C8F-9DCD-4374-B61F-3D9988F6F302}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EE6739D4-9537-455C-BB3F-4AC4CA0EB78F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EEDCD8FA-FF4A-4B2B-B11F-67024EF54A03}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EF0D2528-5B39-4105-A1D9-BFBAE89FF77F}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{EF2DF675-25CA-41DD-BAB8-285874F8D9AB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F0B140CD-F84C-45E1-9612-B91C304B3140}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F27D7118-4694-4F66-BD9B-55A95B5119EA}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F2E3727C-8ED1-467B-9258-6A1BF21C9622}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F4572BCD-0B4D-42D7-8BC2-CD3CD0F48894}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F493E084-1953-4CF5-B2C5-BC9A7CE5DAD3}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F57D460F-D750-47A6-A6D3-DAE88EFCDE82}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F587F9CD-BF10-49CA-8AF2-074AE29377AE}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F5C9EE16-3076-4F3F-9C27-1B022A358B2A}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F5F1E8C2-7B15-4587-927C-DF381FD7CA8B}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F7F783BD-FBFF-464A-ACCE-35AB04A4C9BF}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F8124626-C07E-4FAC-BD51-95A8F8543CEE}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F839A9EC-12CB-4B2A-BEFB-CF467EA3CABB}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F8A7C31C-5D40-4048-A16C-84E018A8B92C}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{F8AAF4C5-D802-4E49-944B-96675ED953A0}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{FDBB33D5-13C0-4B5F-9230-27BF623178B6}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{FE13122A-8230-4A00-9C10-21029F00F3A2}
Successfully deleted: [Empty Folder] C:\Users\Lil' Hagbrain\appdata\local\{FEC58128-C051-49FE-B643-A32E640CE843}
~~~ FireFox
Emptied folder: C:\Users\Lil' Hagbrain\AppData\Roaming\mozilla\firefox\profiles\mri478wi.default-1407223672330\minidumps [29 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.08.2014 at 11:39:33,09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
17.08.2014, 10:49
| #15 |
| | Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht FRST: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-08-2014 04
Ran by Lil' Hagbrain (administrator) on INTEL3770K-PC on 17-08-2014 11:40:56
Running from C:\Users\Lil' Hagbrain\Desktop
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\AMD\amdacpusrsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Beepa P/L) C:\Fraps\fraps.exe
() C:\Sapphire TRIXX\TRIXX.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Simon Steele (Echo Software)) C:\Program Files (x86)\Programmer's Notepad\pn.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Apple Inc.) D:\Program Files (x86)\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(FinalWire Ltd.) C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe
(Beepa P/L) C:\Fraps\fraps64.dat
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Thisisu) C:\Users\Lil' Hagbrain\Desktop\JRT.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation)
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => D:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-07] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoWelcomeScreen] 1
HKU\.DEFAULT\...\Run: [CtxfiReg] => CTXFIREG.exe /FAIL1
HKU\S-1-5-21-729600091-3301723442-1201444741-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-729600091-3301723442-1201444741-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB3CE59F40B31CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.4.1 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.4.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
FF Plugin-x32: @videolan.org/vlc,version=0.9.9 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: BlackFox V2 - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\zigboom@hotmail.com [2014-08-05]
FF Extension: FT DeepDark - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2014-08-05]
FF Extension: MEGA - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\firefox@mega.co.nz.xpi [2014-08-05]
FF Extension: leethax.net extension - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\leethax@leethax.net.xpi [2014-08-05]
FF Extension: YouTube High Definition - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-08-05]
FF Extension: Adblock Plus - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-05]
FF Extension: DownThemAll! - C:\Users\Lil' Hagbrain\AppData\Roaming\Mozilla\Firefox\Profiles\mri478wi.default-1407223672330\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-08-05]
Chrome:
=======
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 amdacpusrsvc; C:\AMD\amdacpusrsvc.exe [82432 2014-04-17] () [File not signed]
R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [804944 2014-08-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1021520 2014-08-07] (Avira Operations GmbH & Co. KG)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-06-04] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [945664 2013-06-13] (ASUSTeK Computer Inc.) [File not signed]
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.25\AsusFanControlService.exe [1643008 2013-06-13] (ASUSTeK Computer Inc.) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-07-16] () [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2013-08-25] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240584 2012-10-02] (DTS, Inc)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [528096 2014-06-08] (Futuremark)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-09] (Intel Corporation)
S2 MBAMScheduler; C:\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-08-22] (Overwolf Ltd)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [34136 2014-07-29] ()
R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [274656 2014-04-18] (Advanced Micro Devices)
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [47512 2013-01-10] (Asmedia Technology)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-06-04] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-09-14] ()
S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
S3 atillk64; C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [42040 2014-07-15] (Avira Operations GmbH & Co. KG)
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [163368 2012-04-01] (Broadcom Corporation.)
S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-09-17] (Broadcom Corporation.)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [14646560 2011-12-15] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [331264 2011-12-05] (Intel(R) Corporation) [File not signed]
R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2011-08-02] (Apple Inc.) [File not signed]
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 ALSysIO; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\ALSysIO64.sys [X]
S3 cpuz135; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]
S3 cpuz137; \??\C:\Windows\TEMP\cpuz137\cpuz137_x64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
R3 TRIXX; \??\C:\Users\LIL'HA~1\AppData\Local\Temp\TRIXX.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-17 11:40 - 2014-08-17 11:41 - 00019167 _____ () C:\Users\Lil' Hagbrain\Desktop\FRST.txt
2014-08-17 11:40 - 2014-08-17 11:40 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\FRST-OlderVersion
2014-08-17 11:39 - 2014-08-17 11:39 - 00036876 _____ () C:\Users\Lil' Hagbrain\Desktop\JRT.txt
2014-08-17 11:36 - 2014-08-17 11:36 - 00000000 ____D () C:\Windows\ERUNT
2014-08-17 11:35 - 2014-08-17 11:35 - 01016261 _____ (Thisisu) C:\Users\Lil' Hagbrain\Desktop\JRT.exe
2014-08-17 11:31 - 2014-08-17 11:31 - 01361203 _____ () C:\Users\Lil' Hagbrain\Desktop\adwcleaner_3.306.exe
2014-08-16 23:17 - 2014-08-16 23:17 - 04161313 _____ () C:\Users\Lil' Hagbrain\Downloads\tdsskiller.zip
2014-08-16 23:17 - 2014-07-10 12:38 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Lil' Hagbrain\Desktop\TDSSKiller.exe
2014-08-16 09:35 - 2014-08-16 09:35 - 00029635 _____ () C:\ComboFix.txt
2014-08-16 09:31 - 2014-08-16 09:31 - 00001227 _____ () C:\Users\Lil' Hagbrain\Desktop\ComboFix.exe - Verknüpfung.lnk
2014-08-15 15:30 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-08-15 15:30 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-08-15 15:30 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-08-15 15:30 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-08-15 15:30 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-08-15 15:30 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-08-15 15:30 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-08-15 15:30 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-08-15 15:29 - 2014-08-16 09:35 - 00000000 ____D () C:\Qoobox
2014-08-15 15:29 - 2014-08-16 09:34 - 00000000 ____D () C:\Windows\erdnt
2014-08-15 15:28 - 2014-08-15 15:28 - 05571320 ____R (Swearware) C:\Users\Lil' Hagbrain\Downloads\ComboFix.exe
2014-08-15 14:52 - 2014-08-17 11:40 - 02101760 _____ (Farbar) C:\Users\Lil' Hagbrain\Desktop\FRST64.exe
2014-08-14 20:30 - 2014-08-17 11:33 - 00000000 ____D () C:\AdwCleaner
2014-08-14 20:30 - 2014-08-14 20:30 - 01356107 _____ () C:\Users\Lil' Hagbrain\Downloads\adwcleaner_3.305.exe
2014-08-14 17:08 - 2014-08-14 17:08 - 00005484 _____ () C:\Users\Lil' Hagbrain\Desktop\GMER.log
2014-08-14 17:04 - 2014-08-14 17:04 - 00380416 _____ () C:\Users\Lil' Hagbrain\Desktop\rfgu3912.exe
2014-08-14 16:44 - 2014-08-15 15:21 - 00065411 _____ () C:\Users\Lil' Hagbrain\Downloads\FRST.txt
2014-08-14 16:44 - 2014-08-15 15:21 - 00054253 _____ () C:\Users\Lil' Hagbrain\Downloads\Addition.txt
2014-08-14 16:28 - 2014-08-17 11:40 - 00000000 ____D () C:\FRST
2014-08-14 16:28 - 2014-08-14 16:28 - 02100224 _____ (Farbar) C:\Users\Lil' Hagbrain\Downloads\FRST64.exe
2014-08-14 16:03 - 2014-08-15 13:54 - 00000830 _____ () C:\Users\Lil' Hagbrain\Desktop\ Malwarebytes Anti-Malware .lnk
2014-08-14 15:54 - 2014-08-14 15:54 - 00003230 _____ () C:\Windows\System32\Tasks\{EBB8A93E-F56B-44BA-ACDB-B902A59DE51F}
2014-08-14 15:53 - 2014-08-14 15:53 - 00232608 _____ () C:\Users\Lil' Hagbrain\Downloads\gfgffsg.exe
2014-08-13 20:03 - 2014-08-16 09:56 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-13 20:03 - 2014-08-15 19:45 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-13 20:03 - 2014-08-15 13:53 - 00000000 ____D () C:\ Malwarebytes Anti-Malware
2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-13 20:03 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-13 20:03 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-13 20:00 - 2014-08-13 20:00 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lil' Hagbrain\Downloads\mbam-clean-2.1.1.1001.exe
2014-08-13 19:52 - 2014-08-13 19:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lil' Hagbrain\Downloads\ixplor1.exe
2014-08-13 19:40 - 2014-08-16 09:56 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Windows
2014-08-13 19:40 - 2014-08-13 19:40 - 04872677 _____ () C:\Users\Lil' Hagbrain\Downloads\mbam-chameleon-3.1.4.0.zip
2014-08-13 19:33 - 2014-08-13 19:33 - 00350716 _____ () C:\Users\Lil' Hagbrain\Documents\ts3_clientui-win64-1407159763-2014-08-13 19_33_21.879914.dmp
2014-08-13 17:11 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-13 17:11 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-13 17:11 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-13 17:11 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-13 17:11 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-13 17:11 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 17:11 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-13 17:11 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-13 17:09 - 2014-08-13 17:09 - 00003306 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-08-13 16:00 - 2014-07-24 14:11 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 16:00 - 2014-07-24 14:10 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 16:00 - 2014-07-24 14:10 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 16:00 - 2014-07-24 14:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 16:00 - 2014-07-24 14:09 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 16:00 - 2014-07-24 12:52 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-13 16:00 - 2014-07-24 12:52 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-13 16:00 - 2014-07-24 12:51 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-13 16:00 - 2014-07-24 12:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-13 16:00 - 2014-07-24 12:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 16:00 - 2014-07-24 12:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-13 15:59 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 15:59 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-13 15:59 - 2014-07-24 14:09 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 15:59 - 2014-07-24 14:09 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 15:59 - 2014-07-24 14:09 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-13 15:59 - 2014-07-24 14:09 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 15:59 - 2014-07-24 14:09 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-13 15:59 - 2014-07-24 14:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 15:59 - 2014-07-24 12:51 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-13 15:59 - 2014-07-24 12:51 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-13 15:59 - 2014-07-24 12:51 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-13 15:59 - 2014-07-24 12:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-13 15:59 - 2014-07-24 12:51 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-13 15:59 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-13 15:59 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 15:59 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-13 15:59 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-13 15:59 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-13 15:59 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 15:59 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 15:59 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 15:59 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 15:59 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-13 15:59 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-13 15:59 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-13 15:59 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 15:59 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-13 15:59 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 15:59 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-13 15:59 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 15:59 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 15:59 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 15:59 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-13 15:59 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 15:59 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-13 15:59 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-13 15:59 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-12 21:46 - 2014-08-12 21:46 - 00000441 _____ () C:\Users\Lil' Hagbrain\Desktop\report.txt
2014-08-12 21:45 - 2014-08-12 21:45 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaii.bin
2014-08-11 22:23 - 2014-08-11 22:23 - 00277648 _____ () C:\Windows\Minidump\081114-11996-01.dmp
2014-08-11 18:22 - 2014-08-11 18:22 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201408111822375768.log
2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\ATI
2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-11 18:21 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-11 18:21 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI
2014-08-11 18:20 - 2014-08-11 18:20 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201408111820028054.log
2014-08-11 18:18 - 2014-08-11 18:18 - 06422528 _____ (Advanced Micro Devices) C:\Users\Lil' Hagbrain\Downloads\amdcleanuputility-1.4.0.0.exe
2014-08-11 17:56 - 2013-10-25 17:39 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\MemoryInfo 1005
2014-08-10 13:48 - 2014-08-10 13:48 - 00002840 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140810_1348.html
2014-08-10 12:48 - 2014-08-10 12:48 - 00672192 _____ () C:\Users\Lil' Hagbrain\Downloads\RBE_128.exe
2014-08-10 12:17 - 2014-08-10 12:17 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner (2)
2014-08-10 12:16 - 2008-07-11 15:27 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Desktop\HPUSBFW.exe
2014-08-10 12:15 - 2014-08-10 12:15 - 00237695 _____ () C:\Users\Lil' Hagbrain\Downloads\Boot_Diskette.rar
2014-08-10 12:15 - 2014-08-10 12:15 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Downloads\hpusbfwv2.2.3.exe
2014-08-10 12:14 - 2014-08-10 12:14 - 00503615 _____ () C:\Users\Lil' Hagbrain\Downloads\file.zip
2014-08-10 12:09 - 2014-08-10 14:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner
2014-08-10 12:08 - 2014-08-10 12:08 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaiioc.rom
2014-08-10 11:57 - 2014-08-10 11:57 - 00242003 _____ () C:\Users\Lil' Hagbrain\Downloads\atiflash_417.zip
2014-08-10 11:57 - 2013-10-09 11:38 - 00665600 _____ () C:\Users\Lil' Hagbrain\Desktop\flash.exe
2014-08-10 11:29 - 2014-08-10 11:29 - 269338400 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-08-09 14:11 - 2014-08-09 14:11 - 25347999 _____ () C:\Users\Lil' Hagbrain\Downloads\GPUTweak_2_5_2.zip
2014-08-09 14:07 - 2014-08-09 14:07 - 01538989 _____ () C:\Users\Lil' Hagbrain\Downloads\ati_winflash_2.3.0.zip
2014-08-09 14:07 - 2014-08-09 14:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH
2014-08-08 21:05 - 2014-08-10 13:10 - 00003240 _____ () C:\Windows\System32\Tasks\Sapphire TRIXX
2014-08-08 20:41 - 2014-08-08 20:41 - 320787824 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\amd-catalyst-14.7-rc1-windows-july9.exe
2014-08-08 20:08 - 2014-08-08 20:08 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\PCMark 8
2014-08-08 17:29 - 2014-08-08 17:29 - 00000000 ____D () C:\Program Files\Futuremark
2014-08-07 16:38 - 2014-08-15 19:49 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark
2014-08-07 16:17 - 2014-08-07 16:17 - 00002845 _____ () C:\Users\Lil' Hagbrain\Desktop\Unigine_Heaven_Benchmark_4.0_20140807_1617.html
2014-08-05 17:30 - 2014-08-05 17:30 - 00277648 _____ () C:\Windows\Minidump\080514-10171-01.dmp
2014-08-05 09:27 - 2014-08-05 09:27 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Alte Firefox-Daten
2014-08-02 12:45 - 2014-08-03 15:40 - 00154241 _____ () C:\Users\Lil' Hagbrain\Desktop\ROPAMD DISPLAY.lglcd
2014-08-01 15:07 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-01 15:07 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-01 15:07 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-01 15:07 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-01 15:07 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-01 15:07 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-01 15:07 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-01 15:07 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-01 15:07 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-01 15:07 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-01 15:07 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-01 15:07 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-01 15:07 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-01 15:07 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-07-31 19:14 - 2014-07-31 19:14 - 00277648 _____ () C:\Windows\Minidump\073114-10389-01.dmp
2014-07-31 18:46 - 2014-07-31 18:46 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-07-31 17:55 - 2014-07-31 17:55 - 00001196 _____ () C:\Users\Lil' Hagbrain\Desktop\AIDA64 Extreme.lnk
2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-29 20:54 - 2014-07-29 20:54 - 00000541 _____ () C:\Users\Lil' Hagbrain\Desktop\Steam.lnk
2014-07-27 22:41 - 2014-08-17 11:35 - 00003262 _____ () C:\Windows\System32\Tasks\AIDA64 AutoStart
2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\Program Files (x86)\FinalWire
2014-07-27 11:59 - 2014-08-06 16:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3.0
2014-07-27 11:59 - 2014-08-06 16:11 - 00000000 ____D () C:\Program Files\MSI Kombustor 3.0
2014-07-24 17:18 - 2014-07-24 19:06 - 00000000 ____D () C:\Users\Lil' Hagbrain\Downloads\Neuer Ordner
2014-07-20 12:26 - 2014-07-20 12:26 - 00056720 _____ () C:\Windows\SysWOW64\CCCInstall_201407201226596362.log
2014-07-19 14:30 - 2014-07-19 14:30 - 00001064 _____ () C:\Users\Lil' Hagbrain\Desktop\NFS14.lnk
2014-07-19 14:17 - 2014-07-19 14:29 - 00001274 _____ () C:\Users\Lil' Hagbrain\Desktop\Need For Speed The Run.lnk
2014-07-18 16:02 - 2014-08-15 19:49 - 00000022 _____ () C:\Windows\GPU-Z.INI
2014-07-18 15:59 - 2014-07-18 15:59 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2014-07-18 15:58 - 2014-08-08 20:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Futuremark
2014-07-18 15:58 - 2014-07-18 16:02 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 11
2014-07-18 15:58 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\IsolatedStorage
2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sapphire TRIXX
2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Sapphire TRIXX
2014-07-18 15:10 - 2014-07-18 15:10 - 00002841 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140718_1510.html
2014-07-18 14:26 - 2014-07-18 14:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-07-18 14:12 - 2014-07-18 14:12 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201407181412381851.log
2014-07-18 14:09 - 2014-08-17 11:34 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-07-18 12:52 - 2014-07-18 12:52 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201407181252560169.log
2014-07-18 12:52 - 2014-07-18 12:52 - 00000000 ____D () C:\Program Files\AMD
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-17 11:41 - 2014-08-17 11:40 - 00019167 _____ () C:\Users\Lil' Hagbrain\Desktop\FRST.txt
2014-08-17 11:40 - 2014-08-17 11:40 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\FRST-OlderVersion
2014-08-17 11:40 - 2014-08-15 14:52 - 02101760 _____ (Farbar) C:\Users\Lil' Hagbrain\Desktop\FRST64.exe
2014-08-17 11:40 - 2014-08-14 16:28 - 00000000 ____D () C:\FRST
2014-08-17 11:40 - 2009-07-14 19:58 - 00699432 _____ () C:\Windows\system32\perfh007.dat
2014-08-17 11:40 - 2009-07-14 19:58 - 00149572 _____ () C:\Windows\system32\perfc007.dat
2014-08-17 11:40 - 2009-07-14 07:13 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-17 11:39 - 2014-08-17 11:39 - 00036876 _____ () C:\Users\Lil' Hagbrain\Desktop\JRT.txt
2014-08-17 11:39 - 2013-04-16 14:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-17 11:38 - 2012-05-15 18:09 - 01299527 _____ () C:\Windows\WindowsUpdate.log
2014-08-17 11:36 - 2014-08-17 11:36 - 00000000 ____D () C:\Windows\ERUNT
2014-08-17 11:35 - 2014-08-17 11:35 - 01016261 _____ (Thisisu) C:\Users\Lil' Hagbrain\Desktop\JRT.exe
2014-08-17 11:35 - 2014-07-27 22:41 - 00003262 _____ () C:\Windows\System32\Tasks\AIDA64 AutoStart
2014-08-17 11:35 - 2012-05-22 20:26 - 00000000 ____D () C:\Fraps
2014-08-17 11:35 - 2012-05-14 22:33 - 00003164 _____ () C:\Windows\System32\Tasks\FRAPS
2014-08-17 11:34 - 2014-07-18 14:09 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-08-17 11:34 - 2014-05-27 09:27 - 00018280 _____ () C:\Windows\setupact.log
2014-08-17 11:34 - 2012-05-15 18:18 - 01347214 _____ () C:\Windows\PFRO.log
2014-08-17 11:34 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-17 11:34 - 2009-07-14 06:45 - 04858024 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-17 11:34 - 2009-07-14 06:45 - 00020480 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-17 11:34 - 2009-07-14 06:45 - 00020480 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-17 11:33 - 2014-08-14 20:30 - 00000000 ____D () C:\AdwCleaner
2014-08-17 11:31 - 2014-08-17 11:31 - 01361203 _____ () C:\Users\Lil' Hagbrain\Desktop\adwcleaner_3.306.exe
2014-08-17 11:31 - 2014-05-03 16:31 - 00000911 _____ () C:\Windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job
2014-08-17 11:31 - 2014-05-03 16:31 - 00000725 _____ () C:\Windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job
2014-08-16 23:17 - 2014-08-16 23:17 - 04161313 _____ () C:\Users\Lil' Hagbrain\Downloads\tdsskiller.zip
2014-08-16 23:16 - 2012-05-17 16:05 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\UseNeXT
2014-08-16 23:16 - 2012-05-15 19:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\TS3Client
2014-08-16 19:00 - 2013-12-22 19:51 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\DayZ
2014-08-16 19:00 - 2012-05-15 19:06 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\CrashDumps
2014-08-16 13:02 - 2012-05-15 19:47 - 00000000 ____D () C:\ProgramData\Origin
2014-08-16 13:01 - 2012-05-15 19:47 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-08-16 09:56 - 2014-08-13 20:03 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-16 09:56 - 2014-08-13 19:40 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Windows
2014-08-16 09:35 - 2014-08-16 09:35 - 00029635 _____ () C:\ComboFix.txt
2014-08-16 09:35 - 2014-08-15 15:29 - 00000000 ____D () C:\Qoobox
2014-08-16 09:34 - 2014-08-15 15:29 - 00000000 ____D () C:\Windows\erdnt
2014-08-16 09:34 - 2009-07-14 04:34 - 75235328 _____ () C:\Windows\system32\config\software.bak
2014-08-16 09:34 - 2009-07-14 04:34 - 28049408 _____ () C:\Windows\system32\config\system.bak
2014-08-16 09:34 - 2009-07-14 04:34 - 00524288 _____ () C:\Windows\system32\config\default.bak
2014-08-16 09:34 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\security.bak
2014-08-16 09:34 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\sam.bak
2014-08-16 09:34 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-08-16 09:31 - 2014-08-16 09:31 - 00001227 _____ () C:\Users\Lil' Hagbrain\Desktop\ComboFix.exe - Verknüpfung.lnk
2014-08-15 19:49 - 2014-08-07 16:38 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark
2014-08-15 19:49 - 2014-07-18 16:02 - 00000022 _____ () C:\Windows\GPU-Z.INI
2014-08-15 19:45 - 2014-08-13 20:03 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-15 15:34 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-08-15 15:28 - 2014-08-15 15:28 - 05571320 ____R (Swearware) C:\Users\Lil' Hagbrain\Downloads\ComboFix.exe
2014-08-15 15:21 - 2014-08-14 16:44 - 00065411 _____ () C:\Users\Lil' Hagbrain\Downloads\FRST.txt
2014-08-15 15:21 - 2014-08-14 16:44 - 00054253 _____ () C:\Users\Lil' Hagbrain\Downloads\Addition.txt
2014-08-15 15:18 - 2012-05-15 22:39 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-15 15:17 - 2012-06-14 14:55 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-08-15 15:17 - 2012-06-14 14:55 - 00000000 ____D () C:\Program Files\Adobe
2014-08-15 15:17 - 2012-05-15 22:39 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-15 15:10 - 2012-05-15 22:40 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Adobe
2014-08-15 15:10 - 2012-05-15 20:10 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Adobe
2014-08-15 15:02 - 2014-06-07 22:12 - 00433152 ___SH () C:\Users\Lil' Hagbrain\Desktop\Thumbs.db
2014-08-15 13:54 - 2014-08-14 16:03 - 00000830 _____ () C:\Users\Lil' Hagbrain\Desktop\ Malwarebytes Anti-Malware .lnk
2014-08-15 13:53 - 2014-08-13 20:03 - 00000000 ____D () C:\ Malwarebytes Anti-Malware
2014-08-14 20:30 - 2014-08-14 20:30 - 01356107 _____ () C:\Users\Lil' Hagbrain\Downloads\adwcleaner_3.305.exe
2014-08-14 18:36 - 2014-01-25 00:06 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\Fiddler2
2014-08-14 18:30 - 2014-03-09 22:17 - 00000000 ____D () C:\Program Files (x86)\Bruteforce Save Data
2014-08-14 17:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-08-14 17:08 - 2014-08-14 17:08 - 00005484 _____ () C:\Users\Lil' Hagbrain\Desktop\GMER.log
2014-08-14 17:04 - 2014-08-14 17:04 - 00380416 _____ () C:\Users\Lil' Hagbrain\Desktop\rfgu3912.exe
2014-08-14 16:28 - 2014-08-14 16:28 - 02100224 _____ (Farbar) C:\Users\Lil' Hagbrain\Downloads\FRST64.exe
2014-08-14 15:54 - 2014-08-14 15:54 - 00003230 _____ () C:\Windows\System32\Tasks\{EBB8A93E-F56B-44BA-ACDB-B902A59DE51F}
2014-08-14 15:53 - 2014-08-14 15:53 - 00232608 _____ () C:\Users\Lil' Hagbrain\Downloads\gfgffsg.exe
2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-08-13 20:03 - 2014-08-13 20:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-13 20:00 - 2014-08-13 20:00 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lil' Hagbrain\Downloads\mbam-clean-2.1.1.1001.exe
2014-08-13 19:52 - 2014-08-13 19:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lil' Hagbrain\Downloads\ixplor1.exe
2014-08-13 19:40 - 2014-08-13 19:40 - 04872677 _____ () C:\Users\Lil' Hagbrain\Downloads\mbam-chameleon-3.1.4.0.zip
2014-08-13 19:33 - 2014-08-13 19:33 - 00350716 _____ () C:\Users\Lil' Hagbrain\Documents\ts3_clientui-win64-1407159763-2014-08-13 19_33_21.879914.dmp
2014-08-13 17:14 - 2013-07-23 23:03 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-13 17:13 - 2012-05-15 20:18 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-13 17:11 - 2014-05-06 20:57 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-13 17:09 - 2014-08-13 17:09 - 00003306 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-08-12 21:48 - 2012-10-13 17:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dream Aquarium
2014-08-12 21:46 - 2014-08-12 21:46 - 00000441 _____ () C:\Users\Lil' Hagbrain\Desktop\report.txt
2014-08-12 21:45 - 2014-08-12 21:45 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaii.bin
2014-08-11 22:23 - 2014-08-11 22:23 - 00277648 _____ () C:\Windows\Minidump\081114-11996-01.dmp
2014-08-11 22:23 - 2014-06-05 19:32 - 570760084 _____ () C:\Windows\MEMORY.DMP
2014-08-11 22:23 - 2013-02-03 14:16 - 00000000 ____D () C:\Windows\Minidump
2014-08-11 18:24 - 2014-07-17 19:21 - 01065984 _____ () C:\Users\Lil' Hagbrain\AppData\Local\file__0.localstorage
2014-08-11 18:22 - 2014-08-11 18:22 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201408111822375768.log
2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\ProgramData\ATI
2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-11 18:22 - 2014-08-11 18:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-11 18:22 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-11 18:22 - 2013-09-21 12:35 - 00000000 ____D () C:\AMD
2014-08-11 18:22 - 2012-05-15 18:59 - 00000000 ____D () C:\ProgramData\AMD
2014-08-11 18:22 - 2012-05-15 18:59 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-08-11 18:21 - 2014-08-11 18:21 - 00000000 ____D () C:\Program Files\ATI
2014-08-11 18:20 - 2014-08-11 18:20 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201408111820028054.log
2014-08-11 18:18 - 2014-08-11 18:18 - 06422528 _____ (Advanced Micro Devices) C:\Users\Lil' Hagbrain\Downloads\amdcleanuputility-1.4.0.0.exe
2014-08-10 14:56 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-10 14:02 - 2014-08-10 12:09 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner
2014-08-10 13:48 - 2014-08-10 13:48 - 00002840 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140810_1348.html
2014-08-10 13:48 - 2012-05-15 18:09 - 00000000 ____D () C:\Users\Lil' Hagbrain
2014-08-10 13:10 - 2014-08-08 21:05 - 00003240 _____ () C:\Windows\System32\Tasks\Sapphire TRIXX
2014-08-10 12:48 - 2014-08-10 12:48 - 00672192 _____ () C:\Users\Lil' Hagbrain\Downloads\RBE_128.exe
2014-08-10 12:17 - 2014-08-10 12:17 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Neuer Ordner (2)
2014-08-10 12:15 - 2014-08-10 12:15 - 00237695 _____ () C:\Users\Lil' Hagbrain\Downloads\Boot_Diskette.rar
2014-08-10 12:15 - 2014-08-10 12:15 - 00098304 _____ (Hewlett-Packard Company) C:\Users\Lil' Hagbrain\Downloads\hpusbfwv2.2.3.exe
2014-08-10 12:14 - 2014-08-10 12:14 - 00503615 _____ () C:\Users\Lil' Hagbrain\Downloads\file.zip
2014-08-10 12:08 - 2014-08-10 12:08 - 00131072 _____ () C:\Users\Lil' Hagbrain\Desktop\Hawaiioc.rom
2014-08-10 11:57 - 2014-08-10 11:57 - 00242003 _____ () C:\Users\Lil' Hagbrain\Downloads\atiflash_417.zip
2014-08-10 11:29 - 2014-08-10 11:29 - 269338400 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-08-09 15:27 - 2012-05-15 23:23 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-08-09 15:27 - 2012-05-15 18:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-09 14:11 - 2014-08-09 14:11 - 25347999 _____ () C:\Users\Lil' Hagbrain\Downloads\GPUTweak_2_5_2.zip
2014-08-09 14:11 - 2012-09-02 14:11 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-08-09 14:07 - 2014-08-09 14:07 - 01538989 _____ () C:\Users\Lil' Hagbrain\Downloads\ati_winflash_2.3.0.zip
2014-08-09 14:07 - 2014-08-09 14:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\ATIWINFLASH
2014-08-09 13:42 - 2012-05-15 21:25 - 01095157 _____ () C:\Windows\DirectX.log
2014-08-08 21:12 - 2012-05-15 15:36 - 00000000 ____D () C:\System&Analyse
2014-08-08 20:41 - 2014-08-08 20:41 - 320787824 _____ (AMD Inc.) C:\Users\Lil' Hagbrain\Downloads\amd-catalyst-14.7-rc1-windows-july9.exe
2014-08-08 20:26 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\Futuremark
2014-08-08 20:14 - 2013-08-25 18:13 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-08 20:08 - 2014-08-08 20:08 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\PCMark 8
2014-08-08 17:29 - 2014-08-08 17:29 - 00000000 ____D () C:\Program Files\Futuremark
2014-08-07 22:13 - 2012-05-15 19:58 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-08-07 16:17 - 2014-08-07 16:17 - 00002845 _____ () C:\Users\Lil' Hagbrain\Desktop\Unigine_Heaven_Benchmark_4.0_20140807_1617.html
2014-08-07 04:06 - 2014-08-13 15:59 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-13 15:59 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 16:11 - 2014-07-27 11:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3.0
2014-08-06 16:11 - 2014-07-27 11:59 - 00000000 ____D () C:\Program Files\MSI Kombustor 3.0
2014-08-05 17:30 - 2014-08-05 17:30 - 00277648 _____ () C:\Windows\Minidump\080514-10171-01.dmp
2014-08-05 09:27 - 2014-08-05 09:27 - 00000000 ____D () C:\Users\Lil' Hagbrain\Desktop\Alte Firefox-Daten
2014-08-03 18:39 - 2013-12-22 19:51 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\DayZ
2014-08-03 15:44 - 2012-05-15 21:19 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Xfire
2014-08-03 15:41 - 2012-05-15 21:19 - 00000000 ____D () C:\ProgramData\Xfire
2014-08-03 15:40 - 2014-08-02 12:45 - 00154241 _____ () C:\Users\Lil' Hagbrain\Desktop\ROPAMD DISPLAY.lglcd
2014-08-02 12:42 - 2012-06-18 16:03 - 00000132 _____ () C:\Users\Lil' Hagbrain\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-07-31 19:14 - 2014-07-31 19:14 - 00277648 _____ () C:\Windows\Minidump\073114-10389-01.dmp
2014-07-31 18:46 - 2014-07-31 18:46 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-07-31 18:46 - 2013-09-01 14:39 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-07-31 17:55 - 2014-07-31 17:55 - 00001196 _____ () C:\Users\Lil' Hagbrain\Desktop\AIDA64 Extreme.lnk
2014-07-31 17:53 - 2012-05-15 18:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-29 22:20 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\Performance
2014-07-29 20:55 - 2012-05-17 20:57 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-29 20:54 - 2014-07-29 20:54 - 00000541 _____ () C:\Users\Lil' Hagbrain\Desktop\Steam.lnk
2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
2014-07-27 22:14 - 2014-07-27 22:14 - 00000000 ____D () C:\Program Files (x86)\FinalWire
2014-07-27 18:04 - 2014-06-24 22:19 - 00000879 _____ () C:\Users\Public\Desktop\PVZ Garden Warfare.lnk
2014-07-24 19:06 - 2014-07-24 17:18 - 00000000 ____D () C:\Users\Lil' Hagbrain\Downloads\Neuer Ordner
2014-07-24 14:11 - 2014-08-13 16:00 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-24 14:10 - 2014-08-13 16:00 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-24 14:10 - 2014-08-13 16:00 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-24 14:09 - 2014-08-13 16:00 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-24 14:09 - 2014-08-13 16:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-24 14:09 - 2014-08-13 15:59 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-24 14:09 - 2014-08-13 15:59 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-24 14:09 - 2014-08-13 15:59 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-24 14:09 - 2014-08-13 15:59 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-24 14:09 - 2014-08-13 15:59 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-24 14:09 - 2014-08-13 15:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-24 12:52 - 2014-08-13 16:00 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-24 12:52 - 2014-08-13 16:00 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-24 12:51 - 2014-08-13 16:00 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-24 12:51 - 2014-08-13 16:00 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-24 12:51 - 2014-08-13 15:59 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-24 12:51 - 2014-08-13 15:59 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-24 12:51 - 2014-08-13 15:59 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-24 12:51 - 2014-08-13 15:59 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-24 12:51 - 2014-08-13 15:59 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-24 12:33 - 2014-08-13 16:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-24 12:29 - 2014-08-13 16:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-23 22:47 - 2012-06-07 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-07-20 14:36 - 2013-04-16 14:36 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-20 14:36 - 2012-05-15 20:09 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-20 14:36 - 2012-05-15 20:09 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-20 14:34 - 2013-05-17 19:46 - 00008029 _____ () C:\Users\Lil' Hagbrain\Documents\TombRaider.log
2014-07-20 12:31 - 2014-02-16 13:07 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Raptr
2014-07-20 12:31 - 2014-02-16 13:07 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-07-20 12:26 - 2014-07-20 12:26 - 00056720 _____ () C:\Windows\SysWOW64\CCCInstall_201407201226596362.log
2014-07-19 14:30 - 2014-07-19 14:30 - 00001064 _____ () C:\Users\Lil' Hagbrain\Desktop\NFS14.lnk
2014-07-19 14:29 - 2014-07-19 14:17 - 00001274 _____ () C:\Users\Lil' Hagbrain\Desktop\Need For Speed The Run.lnk
2014-07-18 16:02 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\Documents\3DMark 11
2014-07-18 15:59 - 2014-07-18 15:59 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2014-07-18 15:58 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Local\IsolatedStorage
2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sapphire TRIXX
2014-07-18 15:15 - 2014-07-18 15:15 - 00000000 ____D () C:\Sapphire TRIXX
2014-07-18 15:10 - 2014-07-18 15:10 - 00002841 _____ () C:\Users\Lil' Hagbrain\Unigine_Heaven_Benchmark_4.0_20140718_1510.html
2014-07-18 14:26 - 2014-07-18 14:26 - 00000000 ____D () C:\Users\Lil' Hagbrain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-07-18 14:12 - 2014-07-18 14:12 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201407181412381851.log
2014-07-18 12:52 - 2014-07-18 12:52 - 00055860 _____ () C:\Windows\SysWOW64\CCCInstall_201407181252560169.log
2014-07-18 12:52 - 2014-07-18 12:52 - 00000000 ____D () C:\Program Files\AMD
Some content of TEMP:
====================
C:\Users\Lil' Hagbrain\AppData\Local\Temp\avgnt.exe
C:\Users\Lil' Hagbrain\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-08-08 17:57
==================== End Of Log ============================
addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-08-2014 04
Ran by Lil' Hagbrain at 2014-08-17 11:41:12
Running from C:\Users\Lil' Hagbrain\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3DMark (HKLM-x32\...\Steam App 223850) (Version: - Futuremark)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.7.700.224 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.03) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated)
Age of Conan: Unchained (HKLM-x32\...\Age of Conan_is1) (Version: - Funcom)
AIDA64 Extreme v4.60 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.60 - FinalWire Ltd.)
AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0417.2226.38446 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
Antivirus Pro (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.552 - Avira)
AOC UI Installer 3.1.0 (HKLM-x32\...\{87464284-11C8-4F83-88EC-E8013320B789}) (Version: 3.1.0 - VikingWorks)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
Arma 3 Alpha (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
ArtMoney SE v7.40.5 (HKLM-x32\...\ArtMoney SE_is1) (Version: 7.40.5 - System SoftLab)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.4.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
Bad Piggies (HKLM-x32\...\{9524C306-CC16-44A0-82AA-996409D1A059}) (Version: 1.3.0.0 - Rovio Entertainment Ltd.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
BIK Player (HKLM-x32\...\{C755A3D1-0C93-4B0C-94C4-41C178116B64}_is1) (Version: - bikplayer.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Contagion (HKLM-x32\...\Steam App 238430) (Version: - Monochrome LLC)
CopyTrans Control Center deinstallieren (HKCU\...\CopyTrans Suite) (Version: 3.003 - WindSolutions)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version: - )
Counter-Strike: Global Offensive Beta (HKLM-x32\...\Steam App 730) (Version: - )
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
Creative Audio-Systemsteuerung (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
CrystalDiskInfo 5.3.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.3.1 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{42BBD1A5-280D-4457-8567-07175A9FB4FB}) (Version: 0.91.2 - Dotjosh Studios)
Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
Dead Island: Epidemic (HKLM-x32\...\Steam App 222900) (Version: - Stunlock Studios)
DefianceRuntimes (HKLM-x32\...\{79B1FF35-9EA8-48ED-98D6-19ABE004BE89}) (Version: 1.0.2 - Trion Worlds, Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-215 217 Series Printer Uninstall (HKLM\...\EPSON XP-215 217 Series) (Version: - SEIKO EPSON Corporation)
Epson-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.05 - Ubisoft)
FileZilla Client 3.5.3 (HKCU\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)
FormatFactory 2.96 (HKLM-x32\...\FormatFactory) (Version: 2.96 - Free Time)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{4115C9AA-35E0-45D8-9363-47635B8750C7}) (Version: 4.29.438.0 - Futuremark)
Google Update Helper (x32 Version: 1.3.21.135 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
GRID 2 (c) Codemasters version 1 (HKLM-x32\...\R1JJRDI=_is1) (Version: 1 - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
Hitman Absolution (HKLM-x32\...\Hitman Absolution_is1) (Version: - )
Horizon v2.7.8.0 (HKLM-x32\...\d4cfeebc-b821-40b7-9f81-d366b1466f03_is1) (Version: 2.7.8.0 - Daring Development Inc.)
How to Survive (HKLM-x32\...\Steam App 250400) (Version: - )
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iExplorer 3.2.4.2 (HKLM-x32\...\{7FD8B0C1-CDDA-4B4D-A577-B2E3570EA3A3}_is1) (Version: - Macroplant LLC)
Image Resizer Powertoy Clone for Windows (64 bit) (HKLM\...\{C862EC05-1C15-4327-B15D-C7788D6CFF73}) (Version: 2.1.1 - Brice Lambson)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Network Connections 18.5.54.0 (Version: 18.5.54.0 - Intel) Hidden
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 7 Update 4 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217004FF}) (Version: 7.0.40 - Oracle)
JavaFX 2.1.0 (HKLM-x32\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Left 4 Dead (HKLM-x32\...\Steam App 500) (Version: - Valve)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Loadout (HKLM-x32\...\Steam App 208090) (Version: - Edge of Reality)
Logitech Gaming Software (Version: 8.30.86 - Logitech Inc.) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version: - )
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Max Payne (HKLM-x32\...\{39930321-4C58-4B8B-BCBF-342698C9801D}) (Version: - )
Max Payne 2 (HKLM-x32\...\{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}) (Version: 1.01.102 - )
Max Payne 3 (HKLM-x32\...\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}) (Version: 1.0.0.0 - Rockstar Games)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - THQ)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Minion (HKCU\...\{Minion}}_is1) (Version: 2.0 - ZAM Network LLC)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mp3tag v2.51 (HKLM-x32\...\Mp3tag) (Version: v2.51 - Florian Heidenreich)
MSI Kombustor 2.5.2 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD)
MSI Kombustor 3.3.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MultiBit 0.5.18 (HKLM-x32\...\MultiBit 0.5.18) (Version: 0.5.18 - )
Need for Speed Rivals Version 1.0 (HKLM-x32\...\Need for Speed Rivals_is1) (Version: 1.0 - EA Games)
Need for Speed The Run Limited Edition 1.0 (HKLM-x32\...\Need for Speed The Run Limited Edition_is1) (Version: - ea)
Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - )
Nether Launcher (HKLM\...\{94485F33-9350-4920-9CC9-15DAA20FCA89}) (Version: 16.20.0.0 - Nether Productions, LLC.)
Nether Launcher (HKLM\...\{BA92D323-2D01-407D-AA36-285413610376}) (Version: 16.22.0.0 - Nether Productions, LLC.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.46.0 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4 (HKLM-x32\...\{4C552FD3-2CCD-4E00-AC64-0681DBB3F8B5}) (Version: 3.4.9590 - OpenOffice.org)
Origin (HKLM-x32\...\Origin) (Version: 8.5.2.23 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\T3V0bGFzdA==_is1) (Version: 1 - )
Overwolf (HKLM-x32\...\{48615A7B-F026-4F62-A3F1-49001B8E21CB}) (Version: 0.44.256 - Overwolf)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version: - Ndemic Creations)
PokerTH (HKLM-x32\...\PokerTH 0.9.5) (Version: 0.9.5 - www.pokerth.net)
Programmer's Notepad (HKLM-x32\...\{52CF142B-7B0E-41E7-98F5-B834122523E7}_is1) (Version: 2.3.4.2350 - Simon Steele)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.2.0 - Electronic Arts)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
RAGE (HKLM-x32\...\Steam App 9200) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6954 - Realtek Semiconductor Corp.)
RESIDENT EVIL 6 / BIOHAZARD 6 (HKLM-x32\...\Steam App 221040) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.0.9.5 - Rockstar Games)
RollerCoaster Tycoon 3 (HKLM-x32\...\RollerCoaster Tycoon 3_is1) (Version: - Atari)
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.)
Samsung AllShare (x32 Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.) Hidden
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version: - )
Serious Sam 3: BFE (HKLM-x32\...\Steam App 41070) (Version: - Croteam)
Skyrim Online Mod version r3 (HKLM-x32\...\{719B4740-7A1C-42B7-BA78-0CB2486EE714}_is1) (Version: r3 - Skyrim Online)
Software Updater (HKLM-x32\...\{C09D747A-BD47-42A9-915E-CEB6B1BB7C11}) (Version: 4.2.7 - SEIKO EPSON CORPORATION)
Source Filmmaker (HKLM-x32\...\Steam App 1840) (Version: - Valve)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{19B0831B-0C18-4103-86E4-90FCD04CD3B9}) (Version: 6.0.12.5 - Husdawg, LLC)
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8 (HKLM-x32\...\The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8) (Version: 1.9.32.0.8 - .x.X.RIDDICK.X.x.)
The War Z (HKLM-x32\...\Steam App 226700) (Version: - )
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.5.7 - Electronic Arts)
Tom Clancy's Ghost Recon Phantoms - EU (HKLM-x32\...\Steam App 272350) (Version: - Ubisoft Singapore)
Tom Clancy's Splinter Cell Blacklist (HKLM-x32\...\Steam App 235600) (Version: - Ubisoft Toronto)
Tomb Raider (HKLM-x32\...\Tomb Raider_is1) (Version: - )
Tropico 4 (HKLM-x32\...\Steam App 57690) (Version: - Haemimont Games)
Tropico 5 (HKLM-x32\...\Tropico 5_is1) (Version: 1.0 - ADDONiA)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unreal Gold (HKLM-x32\...\Unreal Gold) (Version: - )
Unreal Tournament 3: Black Edition (HKLM-x32\...\Steam App 13210) (Version: - Epic Games, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7C8BBDE-FE98-11E1-87C9-F04DA23A5C58}) (Version: 12.0.367 - Sony)
Vista Shortcut Manager x64 (HKLM\...\{C7311329-C491-427B-8880-133E84869B3A}) (Version: 2.0 - Frameworkx)
VLC media player 0.9.9 (HKLM-x32\...\VLC media player) (Version: 0.9.9 - VideoLAN Team)
VTFEdit 1.2.5 (HKLM-x32\...\VTFEdit_is1) (Version: - Neil Jedrzejewski & Ryan Gregg)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
War Thunder Launcher 1.0.1.361 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
WIDCOMM Bluetooth Software (HKLM\...\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}) (Version: 6.5.0.3200 - Broadcom Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wolfenstein: The New Order (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - )
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Xfire (remove only) (HKLM-x32\...\Xfire) (Version: - )
Zombie Driver (HKLM-x32\...\Steam App 31410) (Version: - EXOR Studios)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-729600091-3301723442-1201444741-1000_Classes\CLSID\{f0d05fbd-2ab5-4529-8178-bbed954324b0}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
==================== Restore Points =========================
08-08-2014 18:14:27 3DMark
08-08-2014 18:43:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
08-08-2014 18:43:21 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
09-08-2014 11:41:55 DirectX wurde installiert
09-08-2014 12:12:00 Installiert ASUS GPU Tweak
09-08-2014 13:27:09 Konfiguriert ASUS GPU Tweak
10-08-2014 09:31:12 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
11-08-2014 16:22:01 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
13-08-2014 15:11:19 Windows Update
15-08-2014 13:30:01 ComboFix created restore point
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-06-14 14:56 - 2014-08-15 14:49 - 00001020 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 anchorfree.net
127.0.0.1 rss2search.com
127.0.0.1 techbrowsing.com
127.0.0.1 box.anchorfree.net
127.0.0.1 www.mefeedia.com
127.0.0.3 www.anchorfree.net
127.0.0.2 www.mefeedia.com
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {08FDA6AE-DF56-4A2B-93F8-421152C7C19B} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: {1A04970A-49AC-44CE-80C3-4320D636B1E6} - System32\Tasks\AIDA64 AutoStart => C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe [2014-07-29] (FinalWire Ltd.)
Task: {3B79E5DF-4E48-4450-9CB8-52D1B01E4086} - System32\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {43C56C3A-004B-4ABB-9638-7087D70A83F1} - System32\Tasks\Games\UpdateCheck_S-1-5-21-729600091-3301723442-1201444741-1000
Task: {54956001-54A5-42FC-9B44-4E1D10B78940} - System32\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {6D19C9E3-48C7-4077-B5D1-467746F6E2B9} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {741D0369-3DED-454A-8647-853B2133E858} - System32\Tasks\Sapphire TRIXX => C:\Sapphire TRIXX\TRIXX.exe [2013-12-19] ()
Task: {912FDAD1-774A-4DA7-8F3E-FD12C69CC2BC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-20] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-215 217 Series Invitation {F293C081-28AA-429E-A81F-BC06028E5F5B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\Windows\Tasks\EPSON XP-215 217 Series Update {F293C081-28AA-429E-A81F-BC06028E5F5B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
==================== Loaded Modules (whitelisted) =============
2014-04-17 21:55 - 2014-04-17 21:55 - 00082432 _____ () C:\AMD\amdacpusrsvc.exe
2014-06-05 17:40 - 2013-06-04 17:41 - 00936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2013-12-19 18:19 - 2013-12-19 18:19 - 05623104 _____ () C:\Sapphire TRIXX\TRIXX.exe
2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2012-05-15 19:23 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2012-02-20 21:29 - 2012-02-20 21:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 21:28 - 2012-02-20 21:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-06-05 17:40 - 2014-08-17 11:34 - 00031232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2014-06-05 17:40 - 2013-06-04 17:41 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 01135616 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00656896 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00105472 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00098816 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00077312 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00520234 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00450560 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 05717504 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00029184 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00147456 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 04671488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00070656 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00686080 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00152064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00027648 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00063488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00366592 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\tag.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00289792 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00023040 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00133120 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00290304 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00399826 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00013824 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00031232 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00054784 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00044032 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\us.dll
2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2012-09-02 14:21 - 2010-12-09 11:16 - 00140288 _____ () C:\Program Files (x86)\Programmer's Notepad\libexpatw.dll
2012-09-02 14:21 - 2011-08-26 22:34 - 00045056 _____ () C:\Program Files (x86)\Programmer's Notepad\customscheme.dll
2012-05-15 20:17 - 2007-09-13 18:05 - 00002560 _____ () C:\Windows\system32\CTXFIGER.DLL
2012-05-15 20:17 - 2009-06-29 10:54 - 00164864 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-06-05 18:28 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-07-30 16:47 - 2014-07-30 16:47 - 03800688 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:A303874F
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: SamsungAllShareV2.0 => 2
MSCONFIG\Services: SimpleSlideShowServer => 3
MSCONFIG\startupfolder: C:^Users^Lil' Hagbrain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip => C:\Windows\pss\CurseClientStartup.ccip.Startup
MSCONFIG\startupfolder: C:^Users^Lil' Hagbrain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AsioReg => REGSVR32 /S CTASIO.DLL
MSCONFIG\startupreg: iTunesHelper => "D:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: OpAgent => "OpAgent.exe" /agent
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RtHDVBg_DTS => "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 18%
Total physical RAM: 16323.37 MB
Available physical RAM: 13249.75 MB
Total Pagefile: 32644.91 MB
Available Pagefile: 29269.53 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (Windows x64 SSD) (Fixed) (Total:238.37 GB) (Free:141.46 GB) NTFS
Drive d: (HDD) (Fixed) (Total:1397.26 GB) (Free:211.83 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 4D40156A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: C4836045)
Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
| Themen zu Windows7x64 Ewiger Wilkommensbildschirm+MBAM startet nicht |
| administrator, antivir, asus, bonjour, browser, explorer, file, firefox, flash player, launch, mozilla, opera, realtek, registry, rootkit, scan, software, starten, svchost.exe, system, taskleiste, teamspeak, temp, usb, windows, winlogon.exe |
WARNUNG an die MITLESER: 
Linear-Darstellung
