|
Log-Analyse und Auswertung: Win 8, Chrome extrem langsam und about:blank wird geöffnetWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
27.08.2014, 15:42 | #1 |
| Win 8, Chrome extrem langsam und about:blank wird geöffnet Hallo Liebe Gemeinde, ich habe jetzt schon oft von diesem Forum hier gelesen und hoffe auf erfolgreiche Hilfe Ich habe folgendes Notebook: ASUS G750JS-T4022H I7 4200QM GTX870M 250GB SSD Samsung EVO 1000GB HDD 8 GB DDR3 Nun zu meinem Problem, wenn ich Chrome öffne dann dauert es schon extrem lange bis die Startseite angezeigt wird und wenn ich dann eine suche eingebe oder ein Lesezeichen öffne, dann dauert es ca 5- 10 Sek bis die Seite vollständig geladen ist und das bei einer 10 Mbps Leitung. Dachte das Chrome spinnt und habe es deinstalliert und neu installiert, aber brachte kein Erfolg. Dann hab ich IE genutzt under dieser lädt zwar schneller aber wenn ich auf Startseite klicke dann öffnet immer die about:blank Seite ohne Inhalt. Anschließen habe ich mich etwas schlau gemacht und habe Malewarebytes durchlaufen lassen. Die Logdatei häng ich hier gleich an: <?xml version="1.0" encoding="UTF-8"?> -<logs> <record subtype="Malware Protection" result="Starting" last_modified_tag="54b98bab-820d-41b4-9102-0d0cd5c414bb" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:23.871338+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="9992e8ef-64fe-4ad0-9402-fe1a0ddeb8b4" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:23.882346+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="5f1a9545-12ed-409b-bde6-2364559834c0" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:23.938364+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="9a775e16-5268-44f2-883e-e262a7830c9d" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:24.484767+02:00" LoggingEventType="2" severity="debug"/> <record last_modified_tag="e231072f-933c-4c10-9ffa-4f5dfb6be072" systemname="DOMINIC-ROG" username="SYSTEM" type="Update" source="Manual" datetime="2014-08-27T14:39:29.811773+02:00" LoggingEventType="1" severity="debug" toVersion="2014.8.21.1" name="Rootkit Database" fromVersion="2014.2.20.1"/> <record last_modified_tag="0eadca5d-9a06-46f4-89b8-6941618d192e" systemname="DOMINIC-ROG" username="SYSTEM" type="Update" source="Manual" datetime="2014-08-27T14:39:41.692030+02:00" LoggingEventType="1" severity="debug" toVersion="2014.8.27.2" name="Malware Database" fromVersion="2014.3.4.9"/> <record subtype="Refresh" result="Starting" last_modified_tag="5c92a5ba-101d-436e-a999-212e5604bd41" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:42.967751+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Stopping" last_modified_tag="d6058657-6e7a-414d-bf7b-a070da46b36a" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:42.978787+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Stopped" last_modified_tag="fc738035-1509-4159-a773-189b9d365281" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:43.132875+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Refresh" result="Success" last_modified_tag="ab39ccfb-2379-4cee-8055-e80d258c2a9a" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:50.452066+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="0ca773e1-5e1a-45d1-9750-e4f268c534d7" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:50.480085+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="a901ca3e-e83e-4885-8b4a-f6dedf21e23e" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:50.973409+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Starting" last_modified_tag="925b1a15-60bf-4775-b50f-e25830effe42" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:45:35.889338+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="336ec045-4b93-46de-b8eb-da2083fc919d" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:45:35.892856+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="90064d70-4f8a-4233-8c5e-bb9ef37219d5" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:45:35.924954+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="6a17bbb5-ee92-4dcd-81fa-ab198264e623" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:45:36.316599+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Starting" last_modified_tag="420ee507-5681-4b92-843d-cedca5a54778" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:54:03.560950+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="e8ef2029-44f9-4b12-a4f8-4958fd66487e" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:54:03.576575+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="18c319bf-b28e-415e-a79e-8436bea2a23d" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:54:03.623452+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="3c60448e-2790-44ae-98d9-90080caac77f" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:54:04.014079+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Starting" last_modified_tag="c92a9d7b-d680-426e-84d2-cee91c21d86a" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:55:11.646339+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="183d7f50-fca3-49de-8fba-4768fc3e7aaa" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:55:11.646339+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="043f46ae-5ed1-484b-b83f-2b3d00dfe9fd" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:55:11.661962+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="4c9b6b3f-c9b4-4f52-89e4-7d9b79b182cf" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:55:11.818217+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Starting" last_modified_tag="554eb9f5-c62e-479f-87be-41ee35e0d136" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:58:22.278647+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="0fd96a6d-2fde-4ee8-aa15-ac61c34045cc" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:58:22.278647+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="f34f665f-0c4b-40b6-8f9d-7ee48db742c1" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:58:22.341152+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="b04e3160-c355-4d89-88cf-5a1a11f5c599" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:58:22.763027+02:00" LoggingEventType="2" severity="debug"/> </logs> unter FRST kam folgendes heraus: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-08-2014 Ran by Dominic (administrator) on DOMINIC-ROG on 27-08-2014 16:08:49 Running from C:\Users\Dominic\AppData\Local\Microsoft\Windows\INetCache\IE\NUQ1RW7D Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe () C:\Program Files (x86)\Connectify\ConnectifyService.exe (Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe ( ) C:\Autodesk2013\Inventor 2013\Moldflow\bin\mitsijm.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (3Dconnexion, INC) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe (Akamai Technologies, Inc.) C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (Dropbox, Inc.) C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3dxpiemenus.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwtxapps.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Autodesk Inc.) C:\Users\Dominic\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe (ASUS) C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe () C:\Users\Dominic\AppData\Local\Microsoft\Windows\INetCache\IE\A7A71YYO\Defogger.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2893576 2014-07-12] (ELAN Microelectronics Corp.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation) HKLM\...\Run: [3DxWare Service] => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe [2157952 2014-08-12] (3Dconnexion, INC) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1580360 2014-08-27] (Bitdefender) HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] () HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.) HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [110144 2013-03-06] (CyberLink) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [224128 2014-03-18] (Oracle Corporation) HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-06-21] (Autodesk Inc.) HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.) HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795672 2014-04-28] (CyberLink Corp.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Power2GoExpress] => NA HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Connectify] => C:\Program Files (x86)\Connectify\Connectify.exe [4013928 2012-11-09] (Connectify) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [815088 2014-08-27] (Bitdefender) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\MountPoints2: {19267988-11c9-11e4-826a-54271e912190} - "F:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\MountPoints2: {3e1ef5a4-0c46-11e4-825c-54271e912190} - "G:\start.exe" Startup: C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt1" -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt2" -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt3" -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt4" -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt5" -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt6" -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt7" -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt8" -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.) ShellIconOverlayIdentifiers: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) ShellIconOverlayIdentifiers-x32: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDC8E8B31C9C1CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft) BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll () FF Plugin: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-08-21] FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-08-21] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-07-22] Chrome: ======= CHR HomePage: Default -> hxxp://www.chromefans.org/ CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3320326&octid=EB_ORIGINAL_CTID&ISID=M234FF8CB-B6D6-4CE5-9227-3D9F30027F24&SearchSource=55&CUI=&UM=6&UP=SP155A4552-9217-414F-842E-5609BFB8E78E&SSPV=", "hxxp://www.google.de/", "hxxp://www.sweet-page.com/?type=hp&ts=1404845472&from=cor&uid=HitachiXHTS543232L9A300_090107FB2400LED1H44AX" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google :inputType}{google:cursorPosition}{google:currentPageUrl}{googleageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestA PIKeyParameter} CHR Profile: C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-08-27] CHR Extension: (TooManyTabs für Chrome) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2014-08-27] CHR Extension: (Google Docs) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-27] CHR Extension: (Google Drive) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-27] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-27] CHR Extension: (YouTube) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-27] CHR Extension: (Adblock Plus) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-08-27] CHR Extension: (Google-Suche) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-27] CHR Extension: (PanicButton) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2014-08-27] CHR Extension: (Google Tabellen) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-08-27] CHR Extension: (CHIP Online) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd [2014-08-27] CHR Extension: (LastPass: Free Password Manager) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-08-27] CHR Extension: (Dropbox) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2014-08-27] CHR Extension: (Andrew@ChromeFans) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\jollpecbpialleljionejgkdgjfgamma [2014-08-27] CHR Extension: (Quick Earth) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\khodocggeplgfhppgagfdpbjkniadmdh [2014-08-27] CHR Extension: (Google Play) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-08-27] CHR Extension: (Google Maps) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-08-27] CHR Extension: (Google Wallet) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-27] CHR Extension: (The Tracktor - Price History Tracker) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\onajjgekdldckfgodnmoallcmdmfcfom [2014-08-27] CHR Extension: (Google Mail) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-27] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [596360 2014-06-21] (Autodesk Inc.) R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS) S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.) S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [77632 2014-08-27] (Bitdefender) R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [65536 2012-11-09] () [File not signed] R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100104 2014-07-12] (ELAN Microelectronics Corp.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [File not signed] R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) R2 Mgl3DCtlrRPCService; C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe [30208 2014-08-12] (3Dconnexion) [File not signed] R2 mitsijm2013; C:\Autodesk2013\Inventor 2013\Moldflow\bin\mitsijm.exe [339776 2012-01-31] ( ) R2 mitsijm2015; C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [968480 2013-10-12] (Autodesk, Inc.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-08-27] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1513952 2014-08-27] (Bitdefender) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 3dxhid; C:\Windows\System32\drivers\3dxhid.sys [38672 2014-06-12] (3Dconnexion SAM) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1260120 2014-08-27] (BitDefender) R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2013-07-17] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-08-27] (BitDefender) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7488176 2014-07-15] (Broadcom Corporation) S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender) R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-11-19] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC) S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) R1 cnnctfy2; C:\Windows\system32\DRIVERS\cnnctfy2.sys [31344 2014-08-03] (Connectify) U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [100072 2014-07-12] (GenesysLogic) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2014-07-12] ( ) R3 KMJHidMini; C:\Windows\System32\drivers\3dxkmj.sys [18944 2014-05-12] (3Dconnextion Inc.) R3 KMJShim; C:\Windows\System32\drivers\3dxshim.sys [7168 2014-05-12] (3Dconnextion Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-27] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [419616 2014-08-27] (BitDefender S.R.L.) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [32456 2014-04-28] (CyberLink Corp.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-27 16:08 - 2014-08-27 16:08 - 00000000 ____D () C:\FRST 2014-08-27 16:07 - 2014-08-27 16:07 - 00000476 _____ () C:\Users\Dominic\Desktop\defogger_disable.log 2014-08-27 16:07 - 2014-08-27 16:07 - 00000000 _____ () C:\Users\Dominic\defogger_reenable 2014-08-27 15:50 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-08-27 15:49 - 2014-08-27 15:57 - 00000000 ____D () C:\AdwCleaner 2014-08-27 15:49 - 2014-08-27 15:49 - 01364531 _____ () C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe 2014-08-27 15:47 - 2014-08-27 15:47 - 00816064 _____ ( ) C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager.exe 2014-08-27 15:40 - 2014-08-27 15:58 - 00002564 _____ () C:\Windows\PFRO.log 2014-08-27 15:01 - 2014-08-27 15:01 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-08-27 15:00 - 2014-08-27 15:00 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-08-27 14:39 - 2014-08-27 15:58 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-27 14:39 - 2014-08-27 14:39 - 00001124 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-08-27 14:39 - 2014-08-27 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:39 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 14:38 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-08-27 14:38 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-08-27 14:38 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-08-27 14:30 - 2014-08-27 14:30 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung 2014-08-27 10:50 - 2014-08-27 16:00 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-27 10:50 - 2014-08-27 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-27 10:49 - 2014-08-27 15:58 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-27 10:49 - 2014-08-27 15:54 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-27 10:49 - 2014-08-27 10:49 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-08-27 10:49 - 2014-08-27 10:49 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Deployment 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Apps\2.0 2014-08-27 09:56 - 2014-08-27 09:56 - 00007612 _____ () C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg 2014-08-25 10:38 - 2014-08-25 10:38 - 00000146 _____ () C:\Users\Dominic\Desktop\Sound - Verknüpfung.lnk 2014-08-25 10:29 - 2014-08-25 10:29 - 00000729 _____ () C:\Users\Dominic\Downloads\vcard-Nicole-Karagoel.vcf 2014-08-24 18:56 - 2014-08-26 09:26 - 00011506 _____ () C:\Users\Dominic\Desktop\Mappe2.xlsx 2014-08-24 12:52 - 2014-08-24 12:53 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung Krumbach 2014-08-24 12:49 - 2014-08-24 12:49 - 03561351 _____ () C:\Users\Dominic\Downloads\Anhänge_2014824.zip 2014-08-24 11:29 - 2014-08-25 10:33 - 00013340 _____ () C:\Users\Dominic\Desktop\Anrufsliste.xlsx 2014-08-23 18:36 - 2014-08-23 18:36 - 00000000 ____D () C:\Users\Dominic\.android 2014-08-23 18:31 - 2014-08-23 18:32 - 07319280 _____ () C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe 2014-08-23 15:21 - 2014-08-23 15:21 - 00534787 _____ () C:\Users\Dominic\Downloads\Filme_RoboCop 2014 German BDRip AC3 XviD-SMY.nzb 2014-08-23 15:20 - 2014-08-23 15:20 - 00532504 _____ () C:\Users\Dominic\Downloads\Filme_The.Expendables.3.2014.German.AC3D.DVDScreener.XviD-HCS.nzb 2014-08-23 13:23 - 2014-08-23 13:23 - 03877424 _____ (SEIKO EPSON CORPORATION) C:\Users\Dominic\Downloads\epson327357eu.EXE 2014-08-23 11:55 - 2014-08-23 13:14 - 00000000 ____D () C:\Program Files (x86)\epson 2014-08-23 11:12 - 2014-08-23 11:12 - 05323226 _____ () C:\Users\Dominic\Downloads\2014_Frühjahr.rar 2014-08-22 09:41 - 2014-08-22 09:41 - 09261687 _____ () C:\Users\Dominic\Downloads\oberflchen.zip 2014-08-22 09:41 - 2014-08-22 09:41 - 00020441 _____ () C:\Users\Dominic\Downloads\bewrsbdrtz.zip 2014-08-22 08:32 - 2014-08-22 08:32 - 00000385 _____ () C:\Users\Dominic\AppData\Roaminguser_gensett.xml 2014-08-22 08:31 - 2014-08-22 08:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-08-21 20:52 - 2014-08-21 20:52 - 00590437 _____ () C:\ProgramData\1408645228.bdinstall.bin 2014-08-21 20:45 - 2014-08-24 08:59 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml 2014-08-21 20:30 - 2014-08-27 14:59 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\BDLogging 2014-08-21 20:30 - 2013-11-19 15:44 - 00098768 _____ (BitDefender LLC) C:\Windows\system32\Drivers\bdfndisf6.sys 2014-08-21 20:30 - 2013-11-04 16:47 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-08-21 20:30 - 2013-11-04 16:47 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll 2014-08-21 20:30 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys 2014-08-21 20:30 - 2013-07-17 19:31 - 00261496 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-08-21 20:30 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll 2014-08-21 20:29 - 2014-08-21 20:36 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Bitdefender 2014-08-21 20:20 - 2014-08-27 14:59 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-08-21 20:20 - 2014-08-27 14:59 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2014-08-21 20:20 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\QuickScan 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Bitdefender 2014-08-21 20:20 - 2013-11-04 16:47 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll 2014-08-21 20:20 - 2013-11-04 16:46 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll 2014-08-21 20:20 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-08-21 20:19 - 2014-08-21 20:19 - 07040424 _____ () C:\Users\Dominic\Downloads\bitdefender_isecurity_2015.exe 2014-08-21 20:09 - 2014-08-21 20:09 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-21 20:08 - 2014-08-27 15:58 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Dropbox 2014-08-21 20:08 - 2014-08-21 20:08 - 00323600 _____ (Dropbox, Inc.) C:\Users\Dominic\Downloads\DropboxInstaller.exe 2014-08-21 12:34 - 2014-08-21 22:08 - 00010637 _____ () C:\Users\Dominic\Desktop\Mappe1.xlsx 2014-08-20 21:15 - 2014-08-20 21:15 - 01236176 _____ () C:\Users\Dominic\Downloads\Software_Autodesk AutoCAD Mechanical v2015 GERMAN-CYGiSO.nzb 2014-08-20 19:31 - 2014-08-20 19:31 - 00985925 _____ () C:\Users\Dominic\Downloads\Anhänge_2014820 (1).zip 2014-08-20 19:31 - 2014-08-20 18:31 - 00558592 _____ () C:\Users\Dominic\Downloads\SN-0-000-003.idw 2014-08-20 19:31 - 2014-08-20 18:30 - 00512512 _____ () C:\Users\Dominic\Downloads\SN-0-000-002.idw 2014-08-20 12:44 - 2014-08-20 12:44 - 16849408 _____ () C:\Users\Dominic\Downloads\epson374893eu.exe 2014-08-20 12:44 - 2014-08-20 12:44 - 00000000 ____D () C:\ProgramData\EPSON 2014-08-18 19:23 - 2014-08-18 19:23 - 00494080 _____ () C:\Users\Dominic\Downloads\SN-0-000-001.idw 2014-08-18 18:49 - 2014-08-18 18:49 - 00000000 ____D () C:\Users\Public\Documents\CyberLink 2014-08-18 18:48 - 2014-08-18 18:48 - 00002221 _____ () C:\Users\Public\Desktop\CyberLink PowerDVD 14.lnk 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\PDVD 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-08-18 18:47 - 2014-08-18 18:47 - 00000000 ____D () C:\ProgramData\SUPPORTDIR 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieUserList 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieSiteList 2014-08-14 19:22 - 2014-08-14 19:23 - 00000000 ___RD () C:\Users\Dominic\Desktop\Spiele 2014-08-14 19:07 - 2014-08-22 13:45 - 00000000 ____D () C:\Users\Dominic\AppData\Local\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00003218 _____ () C:\Windows\System32\Tasks\3DconnexionCreateProcess_3DxService.exe 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\SketchUp 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:04 - 00002260 _____ () C:\Users\Public\Desktop\3D Mouse Home.lnk 2014-08-14 19:04 - 2014-08-14 19:04 - 00000000 ____D () C:\Program Files\3Dconnexion 2014-08-14 18:54 - 2014-08-14 19:00 - 329314976 _____ () C:\Users\Dominic\Downloads\Projekte von Schule.zip 2014-08-12 20:29 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-12 20:29 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-08-12 20:29 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-08-12 20:29 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-12 20:29 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-08-12 20:29 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-08-12 20:29 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-12 20:29 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-08-12 20:29 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-08-12 20:29 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-12 20:29 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-08-12 20:29 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-08-12 20:29 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-12 20:29 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-12 20:29 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-08-12 20:29 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-08-12 20:29 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-08-12 20:29 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-12 20:29 - 2014-07-25 13:43 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-08-12 20:29 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-08-12 20:29 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-08-12 20:29 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-12 20:29 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-08-12 20:29 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-08-12 20:29 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-12 20:29 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-08-12 20:29 - 2014-07-25 13:09 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-08-12 20:29 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-08-12 20:29 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-08-12 20:29 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-12 20:29 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-12 20:29 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-08-12 20:29 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-08-12 20:29 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-08-12 20:29 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-08-12 20:29 - 2014-06-20 03:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-12 20:29 - 2014-06-20 01:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2014-08-12 20:28 - 2014-08-07 04:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-12 20:28 - 2014-08-07 00:39 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-12 20:28 - 2014-08-07 00:38 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-12 20:28 - 2014-08-02 07:44 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-12 20:28 - 2014-08-02 05:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-12 20:28 - 2014-08-02 05:11 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2014-08-12 20:28 - 2014-07-15 20:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe 2014-08-12 20:28 - 2014-07-15 10:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2014-08-12 20:28 - 2014-07-15 10:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll 2014-08-12 20:28 - 2014-07-15 10:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll 2014-08-12 20:28 - 2014-07-12 06:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe 2014-08-12 20:28 - 2014-07-10 06:16 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-08-12 20:28 - 2014-07-10 06:03 - 04756992 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-08-12 20:28 - 2014-07-10 05:33 - 01120256 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-08-12 20:28 - 2014-06-13 03:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2014-08-12 20:28 - 2014-06-13 03:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-12 20:28 - 2014-06-13 02:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2014-08-12 20:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2014-08-12 20:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-12 20:28 - 2014-06-06 13:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2014-08-12 20:28 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll 2014-08-12 20:28 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll 2014-08-12 20:28 - 2014-06-04 11:27 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-12 20:28 - 2014-06-04 07:31 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-12 20:28 - 2014-06-04 07:22 - 02790912 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-12 20:28 - 2014-06-04 06:43 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-08-12 20:28 - 2014-06-04 06:38 - 03304448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-08-12 20:28 - 2014-06-04 04:15 - 02642944 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-12 20:28 - 2014-06-04 04:14 - 02318336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-08-12 20:28 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2014-08-12 20:28 - 2014-05-31 12:07 - 00467800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2014-08-12 20:28 - 2014-05-31 12:07 - 00440664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00419672 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00089944 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00027480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-08-12 20:28 - 2014-05-31 08:30 - 00037376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-08-12 20:28 - 2014-05-31 08:27 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-08-12 20:28 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2014-08-12 20:28 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2014-08-12 20:28 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2014-08-12 20:28 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2014-08-12 20:28 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2014-08-12 20:28 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-08-12 20:28 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll 2014-08-12 20:28 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll 2014-08-12 20:28 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-08-12 20:28 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-08-12 20:28 - 2014-05-13 09:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe 2014-08-12 20:28 - 2014-05-13 07:07 - 02844160 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2014-08-12 20:28 - 2014-05-13 06:41 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll 2014-08-12 20:28 - 2014-05-13 06:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll 2014-08-12 20:28 - 2014-05-13 05:59 - 01035264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2014-08-12 20:28 - 2014-05-13 05:31 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll 2014-08-12 20:28 - 2014-05-03 13:29 - 01726224 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2014-08-12 20:28 - 2014-05-03 11:20 - 01473080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2014-08-12 20:28 - 2014-05-03 07:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2014-08-12 20:28 - 2014-05-03 07:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll 2014-08-12 20:28 - 2014-05-03 07:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll 2014-08-12 20:28 - 2014-05-03 07:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll 2014-08-12 20:28 - 2014-05-03 06:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll 2014-08-12 20:28 - 2014-05-03 06:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll 2014-08-12 20:28 - 2014-05-03 06:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll 2014-08-12 20:28 - 2014-05-03 01:26 - 00050745 _____ () C:\Windows\system32\srms.dat 2014-08-12 20:28 - 2014-05-01 07:44 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-08-12 20:28 - 2014-04-30 08:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys 2014-08-12 20:28 - 2014-04-30 07:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe 2014-08-12 20:28 - 2014-04-30 06:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe 2014-08-12 20:28 - 2014-04-30 06:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll 2014-08-12 20:28 - 2014-04-30 06:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2014-08-12 20:28 - 2014-04-30 05:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2014-08-12 20:28 - 2014-04-30 05:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll 2014-08-12 20:28 - 2014-04-30 05:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll 2014-08-12 20:28 - 2014-04-30 05:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll 2014-08-12 20:28 - 2014-04-30 05:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll 2014-08-12 20:28 - 2014-04-30 05:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2014-08-12 20:28 - 2014-04-29 00:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2014-08-12 20:28 - 2014-04-27 00:03 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-08-12 20:28 - 2014-04-26 22:14 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2014-08-12 20:28 - 2014-04-26 18:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll 2014-08-12 20:28 - 2014-04-14 11:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-08-12 20:28 - 2014-04-14 10:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2014-08-12 20:28 - 2014-04-14 07:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2014-08-12 20:28 - 2014-04-09 08:11 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2014-08-12 20:28 - 2014-04-09 07:20 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00721288 _____ (3Dconnexion, Inc) C:\Windows\system32\siappdll.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00575880 _____ (3Dconnexion, Inc) C:\Windows\SysWOW64\siappdll.dll 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\system32\spwini.dll 2014-08-12 15:27 - 2014-08-12 15:27 - 00038912 _____ () C:\Windows\SysWOW64\spwini.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-08-08 19:55 - 2014-08-08 20:06 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2014-08-08 19:41 - 2014-08-08 19:41 - 00000021 _____ () C:\Users\Dominic\AppData\Roaming\my_intel.sys 2014-08-08 19:33 - 2014-08-08 19:33 - 00000000 ____D () C:\Users\Dominic\Documents\Autodesk 2014-08-08 19:31 - 2014-08-08 19:38 - 00000000 ____D () C:\Autodesk2013 2014-08-08 19:29 - 2014-08-08 19:29 - 00000000 ____D () C:\Program Files (x86)\DWG TrueView 2013 2014-08-08 19:27 - 2014-08-27 09:46 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2013 2014-08-08 15:56 - 2014-08-08 15:56 - 00000000 ____D () C:\ProgramData\Applications 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-06 20:48 - 2014-08-08 19:28 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-08-06 20:48 - 2014-08-06 20:51 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 __RHD () C:\MSOCache 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services 2014-08-06 07:27 - 2014-08-27 16:05 - 02063599 _____ () C:\Windows\WindowsUpdate.log 2014-08-05 20:16 - 2014-08-05 20:16 - 00001194 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk 2014-08-05 20:16 - 2014-08-05 20:16 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-08-05 20:04 - 2014-08-05 20:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-08-05 18:52 - 2014-08-13 19:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Skype 2014-08-05 18:52 - 2014-08-05 19:55 - 00000000 ____D () C:\ProgramData\Skype 2014-08-05 18:52 - 2014-08-05 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Skype 2014-08-05 16:33 - 2014-08-05 16:33 - 00000000 ___HD () C:\$SysReset 2014-08-05 10:28 - 2014-08-05 10:28 - 00000000 ____D () C:\Users\Dominic\Desktop\Musik 2014-08-03 19:56 - 2014-08-03 19:56 - 00031344 _____ (Connectify) C:\Windows\system32\Drivers\cnnctfy2.sys 2014-08-03 19:56 - 2014-08-03 19:56 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connectify Hotspot 2014-08-02 20:27 - 2014-08-18 21:18 - 00000000 ____D () C:\Users\Dominic\AppData\Local\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Program Files (x86)\QuickPar ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-27 16:08 - 2014-08-27 16:08 - 00000000 ____D () C:\FRST 2014-08-27 16:07 - 2014-08-27 16:07 - 00000476 _____ () C:\Users\Dominic\Desktop\defogger_disable.log 2014-08-27 16:07 - 2014-08-27 16:07 - 00000000 _____ () C:\Users\Dominic\defogger_reenable 2014-08-27 16:07 - 2014-07-15 16:39 - 00000000 ____D () C:\Users\Dominic 2014-08-27 16:05 - 2014-08-06 07:27 - 02063599 _____ () C:\Windows\WindowsUpdate.log 2014-08-27 16:05 - 2014-07-15 16:43 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-27 16:05 - 2013-08-23 01:24 - 00765582 _____ () C:\Windows\system32\perfh007.dat 2014-08-27 16:05 - 2013-08-23 01:24 - 00159366 _____ () C:\Windows\system32\perfc007.dat 2014-08-27 16:03 - 2014-07-15 16:44 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1411990848-2310183263-2524645419-1001 2014-08-27 16:00 - 2014-08-27 10:50 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-27 16:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-08-27 15:59 - 2014-07-15 17:17 - 00000075 _____ () C:\Users\Dominic\AppData\Roaming\sp_data.sys 2014-08-27 15:58 - 2014-08-27 15:40 - 00002564 _____ () C:\Windows\PFRO.log 2014-08-27 15:58 - 2014-08-27 14:39 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-27 15:58 - 2014-08-27 10:49 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-27 15:58 - 2014-08-21 20:08 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Dropbox 2014-08-27 15:58 - 2014-07-15 20:13 - 00000000 ___DO () C:\Users\Dominic\SkyDrive 2014-08-27 15:58 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-08-27 15:57 - 2014-08-27 15:49 - 00000000 ____D () C:\AdwCleaner 2014-08-27 15:57 - 2014-07-15 17:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\ClassicShell 2014-08-27 15:56 - 2013-08-22 16:44 - 00513816 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-27 15:54 - 2014-08-27 10:49 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-27 15:49 - 2014-08-27 15:49 - 01364531 _____ () C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe 2014-08-27 15:47 - 2014-08-27 15:47 - 00816064 _____ ( ) C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager.exe 2014-08-27 15:45 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-08-27 15:39 - 2014-07-18 19:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\UseNeXT 2014-08-27 15:12 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-08-27 15:01 - 2014-08-27 15:01 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-08-27 15:00 - 2014-08-27 15:00 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-08-27 14:59 - 2014-08-21 20:30 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-08-27 14:59 - 2014-08-21 20:20 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-08-27 14:59 - 2014-08-21 20:20 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2014-08-27 14:39 - 2014-08-27 14:39 - 00001124 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-08-27 14:39 - 2014-08-27 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-27 14:39 - 2014-08-27 14:38 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 14:30 - 2014-08-27 14:30 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung 2014-08-27 12:10 - 2014-07-15 22:30 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-08-27 10:50 - 2014-08-27 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-27 10:50 - 2014-07-15 17:24 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Google 2014-08-27 10:50 - 2014-07-15 17:24 - 00000000 ____D () C:\Program Files (x86)\Google 2014-08-27 10:49 - 2014-08-27 10:49 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-08-27 10:49 - 2014-08-27 10:49 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Deployment 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Apps\2.0 2014-08-27 10:48 - 2014-07-15 17:34 - 00000000 ____D () C:\Program Files (x86)\Steam 2014-08-27 09:56 - 2014-08-27 09:56 - 00007612 _____ () C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg 2014-08-27 09:48 - 2014-07-15 16:40 - 00003950 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{57BF43EF-7062-442E-97D8-81FC9F2CA599} 2014-08-27 09:46 - 2014-08-08 19:27 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2013 2014-08-26 09:26 - 2014-08-24 18:56 - 00011506 _____ () C:\Users\Dominic\Desktop\Mappe2.xlsx 2014-08-25 10:38 - 2014-08-25 10:38 - 00000146 _____ () C:\Users\Dominic\Desktop\Sound - Verknüpfung.lnk 2014-08-25 10:33 - 2014-08-24 11:29 - 00013340 _____ () C:\Users\Dominic\Desktop\Anrufsliste.xlsx 2014-08-25 10:29 - 2014-08-25 10:29 - 00000729 _____ () C:\Users\Dominic\Downloads\vcard-Nicole-Karagoel.vcf 2014-08-24 12:53 - 2014-08-24 12:52 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung Krumbach 2014-08-24 12:49 - 2014-08-24 12:49 - 03561351 _____ () C:\Users\Dominic\Downloads\Anhänge_2014824.zip 2014-08-24 08:59 - 2014-08-21 20:45 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml 2014-08-24 08:51 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-08-23 18:36 - 2014-08-23 18:36 - 00000000 ____D () C:\Users\Dominic\.android 2014-08-23 18:32 - 2014-08-23 18:31 - 07319280 _____ () C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe 2014-08-23 15:21 - 2014-08-23 15:21 - 00534787 _____ () C:\Users\Dominic\Downloads\Filme_RoboCop 2014 German BDRip AC3 XviD-SMY.nzb 2014-08-23 15:20 - 2014-08-23 15:20 - 00532504 _____ () C:\Users\Dominic\Downloads\Filme_The.Expendables.3.2014.German.AC3D.DVDScreener.XviD-HCS.nzb 2014-08-23 13:23 - 2014-08-23 13:23 - 03877424 _____ (SEIKO EPSON CORPORATION) C:\Users\Dominic\Downloads\epson327357eu.EXE 2014-08-23 13:14 - 2014-08-23 11:55 - 00000000 ____D () C:\Program Files (x86)\epson 2014-08-23 11:12 - 2014-08-23 11:12 - 05323226 _____ () C:\Users\Dominic\Downloads\2014_Frühjahr.rar 2014-08-23 10:20 - 2014-01-23 19:09 - 00000000 ____D () C:\Users\Dominic\Desktop\Ausblidung 2014-08-22 15:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\LiveKernelReports 2014-08-22 13:45 - 2014-08-14 19:07 - 00000000 ____D () C:\Users\Dominic\AppData\Local\3Dconnexion 2014-08-22 10:42 - 2014-07-15 17:16 - 00000156 _____ () C:\Users\Public\GPUControlSetting.xml 2014-08-22 09:41 - 2014-08-22 09:41 - 09261687 _____ () C:\Users\Dominic\Downloads\oberflchen.zip 2014-08-22 09:41 - 2014-08-22 09:41 - 00020441 _____ () C:\Users\Dominic\Downloads\bewrsbdrtz.zip 2014-08-22 08:32 - 2014-08-22 08:32 - 00000385 _____ () C:\Users\Dominic\AppData\Roaminguser_gensett.xml 2014-08-22 08:31 - 2014-08-22 08:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-08-21 22:08 - 2014-08-21 12:34 - 00010637 _____ () C:\Users\Dominic\Desktop\Mappe1.xlsx 2014-08-21 20:52 - 2014-08-21 20:52 - 00590437 _____ () C:\ProgramData\1408645228.bdinstall.bin 2014-08-21 20:36 - 2014-08-21 20:29 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Bitdefender 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\BDLogging 2014-08-21 20:30 - 2014-08-21 20:20 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\QuickScan 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Bitdefender 2014-08-21 20:19 - 2014-08-21 20:19 - 07040424 _____ () C:\Users\Dominic\Downloads\bitdefender_isecurity_2015.exe 2014-08-21 20:17 - 2014-07-22 19:27 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-08-21 20:09 - 2014-08-21 20:09 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-21 20:08 - 2014-08-21 20:08 - 00323600 _____ (Dropbox, Inc.) C:\Users\Dominic\Downloads\DropboxInstaller.exe 2014-08-20 21:15 - 2014-08-20 21:15 - 01236176 _____ () C:\Users\Dominic\Downloads\Software_Autodesk AutoCAD Mechanical v2015 GERMAN-CYGiSO.nzb 2014-08-20 19:31 - 2014-08-20 19:31 - 00985925 _____ () C:\Users\Dominic\Downloads\Anhänge_2014820 (1).zip 2014-08-20 18:31 - 2014-08-20 19:31 - 00558592 _____ () C:\Users\Dominic\Downloads\SN-0-000-003.idw 2014-08-20 18:30 - 2014-08-20 19:31 - 00512512 _____ () C:\Users\Dominic\Downloads\SN-0-000-002.idw 2014-08-20 12:44 - 2014-08-20 12:44 - 16849408 _____ () C:\Users\Dominic\Downloads\epson374893eu.exe 2014-08-20 12:44 - 2014-08-20 12:44 - 00000000 ____D () C:\ProgramData\EPSON 2014-08-18 21:18 - 2014-08-02 20:27 - 00000000 ____D () C:\Users\Dominic\AppData\Local\QuickPar 2014-08-18 19:23 - 2014-08-18 19:23 - 00494080 _____ () C:\Users\Dominic\Downloads\SN-0-000-001.idw 2014-08-18 18:49 - 2014-08-18 18:49 - 00000000 ____D () C:\Users\Public\Documents\CyberLink 2014-08-18 18:49 - 2014-07-15 22:46 - 00000000 ____D () C:\Users\Dominic\Documents\CyberLink 2014-08-18 18:49 - 2014-07-15 17:15 - 00000000 ____D () C:\ProgramData\CyberLink 2014-08-18 18:48 - 2014-08-18 18:48 - 00002221 _____ () C:\Users\Public\Desktop\CyberLink PowerDVD 14.lnk 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\PDVD 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-08-18 18:48 - 2014-07-15 22:46 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Cyberlink 2014-08-18 18:48 - 2014-07-15 16:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-08-18 18:47 - 2014-08-18 18:47 - 00000000 ____D () C:\ProgramData\SUPPORTDIR 2014-08-18 18:47 - 2014-07-15 17:16 - 00000000 ____D () C:\ProgramData\install_clap 2014-08-18 18:47 - 2014-07-15 17:14 - 00000000 ____D () C:\Program Files (x86)\CyberLink 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieUserList 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieSiteList 2014-08-18 12:17 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache 2014-08-14 19:23 - 2014-08-14 19:22 - 00000000 ___RD () C:\Users\Dominic\Desktop\Spiele 2014-08-14 19:20 - 2014-07-16 22:13 - 00000000 ____D () C:\Users\Dominic\Downloads\Setups 2014-08-14 19:09 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2015 2014-08-14 19:05 - 2014-08-14 19:05 - 00003218 _____ () C:\Windows\System32\Tasks\3DconnexionCreateProcess_3DxService.exe 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\SketchUp 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:04 - 00002260 _____ () C:\Users\Public\Desktop\3D Mouse Home.lnk 2014-08-14 19:04 - 2014-08-14 19:04 - 00000000 ____D () C:\Program Files\3Dconnexion 2014-08-14 19:00 - 2014-08-14 18:54 - 329314976 _____ () C:\Users\Dominic\Downloads\Projekte von Schule.zip 2014-08-13 19:20 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Skype 2014-08-12 22:50 - 2014-07-18 10:24 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-12 22:50 - 2014-07-15 19:03 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\MediaViewer 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\FileManager 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Camera 2014-08-12 22:50 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp 2014-08-12 22:49 - 2014-07-15 19:03 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-08-12 20:28 - 2014-07-15 18:56 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-08-12 20:27 - 2014-07-15 22:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-08-12 20:27 - 2014-07-15 18:56 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-08-12 20:27 - 2013-08-22 13:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-12 20:27 - 2013-08-22 13:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-08-12 20:27 - 2013-08-22 13:22 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-08-12 20:27 - 2013-08-22 13:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-08-12 20:27 - 2013-08-22 13:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-08-12 20:27 - 2013-08-22 13:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-08-12 20:27 - 2013-08-22 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-08-12 20:27 - 2013-08-22 05:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-08-12 20:27 - 2013-08-22 05:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-08-12 20:27 - 2013-08-22 05:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-08-12 20:27 - 2013-08-22 05:40 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-08-12 20:27 - 2013-08-22 05:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-08-12 20:26 - 2014-07-17 00:33 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-08-12 20:26 - 2014-07-15 22:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-12 20:26 - 2013-08-22 12:32 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-08-12 19:08 - 2014-07-18 14:33 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Autodesk 2014-08-12 16:01 - 2014-08-12 16:01 - 00721288 _____ (3Dconnexion, Inc) C:\Windows\system32\siappdll.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00575880 _____ (3Dconnexion, Inc) C:\Windows\SysWOW64\siappdll.dll 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\system32\spwini.dll 2014-08-12 15:27 - 2014-08-12 15:27 - 00038912 _____ () C:\Windows\SysWOW64\spwini.dll 2014-08-11 08:30 - 2014-07-18 15:27 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Autodesk 2014-08-09 12:15 - 2014-07-15 19:13 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-08-08 20:53 - 2014-07-15 19:05 - 00000000 ____D () C:\Program Files\CCleaner 2014-08-08 20:06 - 2014-08-08 19:55 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2014-08-08 20:00 - 2014-07-18 21:18 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Autodesk,_Inc 2014-08-08 19:41 - 2014-08-08 19:41 - 00000021 _____ () C:\Users\Dominic\AppData\Roaming\my_intel.sys 2014-08-08 19:38 - 2014-08-08 19:31 - 00000000 ____D () C:\Autodesk2013 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Users\Public\Documents\Autodesk 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Program Files\Autodesk 2014-08-08 19:38 - 2014-07-18 14:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2014-08-08 19:37 - 2014-07-18 14:33 - 00000000 ____D () C:\ProgramData\Autodesk 2014-08-08 19:33 - 2014-08-08 19:33 - 00000000 ____D () C:\Users\Dominic\Documents\Autodesk 2014-08-08 19:31 - 2014-07-15 17:04 - 00000000 ____D () C:\Temp 2014-08-08 19:29 - 2014-08-08 19:29 - 00000000 ____D () C:\Program Files (x86)\DWG TrueView 2013 2014-08-08 19:28 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-08-08 15:56 - 2014-08-08 15:56 - 00000000 ____D () C:\ProgramData\Applications 2014-08-07 04:12 - 2014-08-12 20:28 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-07 00:39 - 2014-08-12 20:28 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-07 00:38 - 2014-08-12 20:28 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-06 20:51 - 2014-08-06 20:48 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-06 20:49 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-08-06 20:49 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 __RHD () C:\MSOCache 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services 2014-08-06 20:48 - 2013-08-23 01:26 - 00000000 ____D () C:\Windows\ShellNew 2014-08-05 20:31 - 2014-07-22 18:00 - 00000000 ____D () C:\Program Files (x86)\Connectify 2014-08-05 20:30 - 2014-08-05 20:04 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Winamp 2014-08-05 20:16 - 2014-08-05 20:16 - 00001194 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk 2014-08-05 20:16 - 2014-08-05 20:16 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-08-05 19:55 - 2014-08-05 18:52 - 00000000 ____D () C:\ProgramData\Skype 2014-08-05 19:55 - 2014-08-05 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Skype 2014-08-05 16:33 - 2014-08-05 16:33 - 00000000 ___HD () C:\$SysReset 2014-08-05 16:33 - 2014-07-15 16:48 - 00000000 ____D () C:\Windows\Log 2014-08-05 10:28 - 2014-08-05 10:28 - 00000000 ____D () C:\Users\Dominic\Desktop\Musik 2014-08-03 19:56 - 2014-08-03 19:56 - 00031344 _____ (Connectify) C:\Windows\system32\Drivers\cnnctfy2.sys 2014-08-03 19:56 - 2014-08-03 19:56 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connectify Hotspot 2014-08-03 19:47 - 2014-07-22 22:12 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\DVDVideoSoft 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Program Files (x86)\QuickPar 2014-08-02 07:44 - 2014-08-12 20:28 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-02 05:56 - 2014-08-12 20:28 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-02 05:11 - 2014-08-12 20:28 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2014-08-02 02:17 - 2013-08-22 17:38 - 00704480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-08-02 02:17 - 2013-08-22 17:38 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl Some content of TEMP: ==================== C:\Users\Dominic\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnrj9v0.dll C:\Users\Dominic\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-23 08:32 ==================== End Of Log ============================ Bitdefender deaktiviert und GMER ausgeführt aber da kommt folgende Fehlermeldung: "C:\Windows\system32\config\system: Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird." Falls íhr noch etwas braucht einfach schreiben, kann leider nur nicht so schnell Antworten wegen meinem Junior Lg Lucky |
27.08.2014, 16:04 | #2 |
/// the machine /// TB-Ausbilder | Win 8, Chrome extrem langsam und about:blank wird geöffnet hi,
__________________So funktioniert es: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Addition.txt von FRST fehlt noch.
__________________ |
27.08.2014, 19:08 | #3 |
| Win 8, Chrome extrem langsam und about:blank wird geöffnetCode:
ATTFilter <?xml version="1.0" encoding="UTF-8"?> -<logs> <record subtype="Malware Protection" result="Starting" last_modified_tag="54b98bab-820d-41b4-9102-0d0cd5c414bb" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:23.871338+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="9992e8ef-64fe-4ad0-9402-fe1a0ddeb8b4" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:23.882346+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="5f1a9545-12ed-409b-bde6-2364559834c0" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:23.938364+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="9a775e16-5268-44f2-883e-e262a7830c9d" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:24.484767+02:00" LoggingEventType="2" severity="debug"/> <record last_modified_tag="e231072f-933c-4c10-9ffa-4f5dfb6be072" systemname="DOMINIC-ROG" username="SYSTEM" type="Update" source="Manual" datetime="2014-08-27T14:39:29.811773+02:00" LoggingEventType="1" severity="debug" toVersion="2014.8.21.1" name="Rootkit Database" fromVersion="2014.2.20.1"/> <record last_modified_tag="0eadca5d-9a06-46f4-89b8-6941618d192e" systemname="DOMINIC-ROG" username="SYSTEM" type="Update" source="Manual" datetime="2014-08-27T14:39:41.692030+02:00" LoggingEventType="1" severity="debug" toVersion="2014.8.27.2" name="Malware Database" fromVersion="2014.3.4.9"/> <record subtype="Refresh" result="Starting" last_modified_tag="5c92a5ba-101d-436e-a999-212e5604bd41" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:42.967751+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Stopping" last_modified_tag="d6058657-6e7a-414d-bf7b-a070da46b36a" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:42.978787+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Stopped" last_modified_tag="fc738035-1509-4159-a773-189b9d365281" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:43.132875+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Refresh" result="Success" last_modified_tag="ab39ccfb-2379-4cee-8055-e80d258c2a9a" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:50.452066+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="0ca773e1-5e1a-45d1-9750-e4f268c534d7" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:50.480085+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="a901ca3e-e83e-4885-8b4a-f6dedf21e23e" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T14:39:50.973409+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Starting" last_modified_tag="925b1a15-60bf-4775-b50f-e25830effe42" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:45:35.889338+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="336ec045-4b93-46de-b8eb-da2083fc919d" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:45:35.892856+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="90064d70-4f8a-4233-8c5e-bb9ef37219d5" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:45:35.924954+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="6a17bbb5-ee92-4dcd-81fa-ab198264e623" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:45:36.316599+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Starting" last_modified_tag="420ee507-5681-4b92-843d-cedca5a54778" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:54:03.560950+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="e8ef2029-44f9-4b12-a4f8-4958fd66487e" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:54:03.576575+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="18c319bf-b28e-415e-a79e-8436bea2a23d" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:54:03.623452+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="3c60448e-2790-44ae-98d9-90080caac77f" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:54:04.014079+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Starting" last_modified_tag="c92a9d7b-d680-426e-84d2-cee91c21d86a" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:55:11.646339+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="183d7f50-fca3-49de-8fba-4768fc3e7aaa" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:55:11.646339+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="043f46ae-5ed1-484b-b83f-2b3d00dfe9fd" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:55:11.661962+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="4c9b6b3f-c9b4-4f52-89e4-7d9b79b182cf" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:55:11.818217+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Starting" last_modified_tag="554eb9f5-c62e-479f-87be-41ee35e0d136" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:58:22.278647+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malware Protection" result="Started" last_modified_tag="0fd96a6d-2fde-4ee8-aa15-ac61c34045cc" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:58:22.278647+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Starting" last_modified_tag="f34f665f-0c4b-40b6-8f9d-7ee48db742c1" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:58:22.341152+02:00" LoggingEventType="2" severity="debug"/> <record subtype="Malicious Website Protection" result="Started" last_modified_tag="b04e3160-c355-4d89-88cf-5a1a11f5c599" systemname="DOMINIC-ROG" username="SYSTEM" type="Protection" source="Protection" datetime="2014-08-27T15:58:22.763027+02:00" LoggingEventType="2" severity="debug"/> </logs> |
28.08.2014, 08:39 | #4 | |
/// the machine /// TB-Ausbilder | Win 8, Chrome extrem langsam und about:blank wird geöffnetZitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
28.08.2014, 13:47 | #5 |
| Win 8, Chrome extrem langsam und about:blank wird geöffnetFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-08-2014 Ran by Dominic (administrator) on DOMINIC-ROG on 28-08-2014 14:42:17 Running from C:\Users\Dominic\Downloads Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\livecomm.exe (ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe (ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe () C:\Program Files (x86)\Connectify\ConnectifyService.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe ( ) C:\Autodesk2013\Inventor 2013\Moldflow\bin\mitsijm.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (3Dconnexion, INC) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe (Akamai Technologies, Inc.) C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (Dropbox, Inc.) C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwtxapps.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3dxpiemenus.exe (Autodesk Inc.) C:\Users\Dominic\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe (Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (ASUS) C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe () C:\Program Files (x86)\UseNeXT\UseNeXT.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2893576 2014-07-12] (ELAN Microelectronics Corp.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation) HKLM\...\Run: [3DxWare Service] => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe [2157952 2014-08-12] (3Dconnexion, INC) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1580360 2014-08-27] (Bitdefender) HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] () HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.) HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [110144 2013-03-06] (CyberLink) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [224128 2014-03-18] (Oracle Corporation) HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-06-21] (Autodesk Inc.) HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.) HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795672 2014-04-28] (CyberLink Corp.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Power2GoExpress] => NA HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Connectify] => C:\Program Files (x86)\Connectify\Connectify.exe [4013928 2012-11-09] (Connectify) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [815088 2014-08-27] (Bitdefender) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\MountPoints2: {19267988-11c9-11e4-826a-54271e912190} - "F:\HTC_Sync_Manager_PC.exe" Startup: C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt1" -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt2" -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt3" -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt4" -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt5" -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt6" -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt7" -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: "DropboxExt8" -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.) ShellIconOverlayIdentifiers: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) ShellIconOverlayIdentifiers-x32: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDC8E8B31C9C1CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft) BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll () FF Plugin: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-08-21] FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-08-21] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-07-22] Chrome: ======= CHR HomePage: Default -> hxxp://www.chromefans.org/ CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3320326&octid=EB_ORIGINAL_CTID&ISID=M234FF8CB-B6D6-4CE5-9227-3D9F30027F24&SearchSource=55&CUI=&UM=6&UP=SP155A4552-9217-414F-842E-5609BFB8E78E&SSPV=", "hxxp://www.google.de/", "hxxp://www.sweet-page.com/?type=hp&ts=1404845472&from=cor&uid=HitachiXHTS543232L9A300_090107FB2400LED1H44AX" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-08-27] CHR Extension: (TooManyTabs für Chrome) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2014-08-27] CHR Extension: (Google Docs) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-27] CHR Extension: (Google Drive) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-27] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-27] CHR Extension: (YouTube) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-27] CHR Extension: (Adblock Plus) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-08-27] CHR Extension: (Google-Suche) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-27] CHR Extension: (PanicButton) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2014-08-27] CHR Extension: (Google Tabellen) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-08-27] CHR Extension: (CHIP Online) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd [2014-08-27] CHR Extension: (LastPass: Free Password Manager) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-08-27] CHR Extension: (Dropbox) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2014-08-27] CHR Extension: (Andrew@ChromeFans) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\jollpecbpialleljionejgkdgjfgamma [2014-08-27] CHR Extension: (Quick Earth) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\khodocggeplgfhppgagfdpbjkniadmdh [2014-08-27] CHR Extension: (Google Play) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-08-27] CHR Extension: (Google Maps) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-08-27] CHR Extension: (Google Wallet) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-27] CHR Extension: (The Tracktor - Price History Tracker) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\onajjgekdldckfgodnmoallcmdmfcfom [2014-08-27] CHR Extension: (Google Mail) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-27] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [596360 2014-06-21] (Autodesk Inc.) R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS) S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.) S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [77632 2014-08-27] (Bitdefender) R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [65536 2012-11-09] () [File not signed] R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100104 2014-07-12] (ELAN Microelectronics Corp.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [File not signed] R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) R2 Mgl3DCtlrRPCService; C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe [30208 2014-08-12] (3Dconnexion) [File not signed] R2 mitsijm2013; C:\Autodesk2013\Inventor 2013\Moldflow\bin\mitsijm.exe [339776 2012-01-31] ( ) R2 mitsijm2015; C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [968480 2013-10-12] (Autodesk, Inc.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-08-27] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1513952 2014-08-27] (Bitdefender) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 3dxhid; C:\Windows\System32\drivers\3dxhid.sys [38672 2014-06-12] (3Dconnexion SAM) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1260120 2014-08-27] (BitDefender) R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2013-07-17] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-08-27] (BitDefender) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7488176 2014-07-15] (Broadcom Corporation) S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender) R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-11-19] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC) S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) R1 cnnctfy2; C:\Windows\system32\DRIVERS\cnnctfy2.sys [31344 2014-08-03] (Connectify) U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [100072 2014-07-12] (GenesysLogic) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2014-07-12] ( ) R3 KMJHidMini; C:\Windows\System32\drivers\3dxkmj.sys [18944 2014-05-12] (3Dconnextion Inc.) R3 KMJShim; C:\Windows\System32\drivers\3dxshim.sys [7168 2014-05-12] (3Dconnextion Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-28] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [419616 2014-08-27] (BitDefender S.R.L.) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [32456 2014-04-28] (CyberLink Corp.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-28 14:42 - 2014-08-28 14:42 - 00028250 _____ () C:\Users\Dominic\Downloads\FRST.txt 2014-08-28 14:41 - 2014-08-28 14:41 - 02103296 _____ (Farbar) C:\Users\Dominic\Downloads\FRST64.exe 2014-08-27 20:59 - 2014-08-27 20:59 - 00000000 ____D () C:\ProgramData\Codemasters 2014-08-27 20:56 - 2014-08-27 20:56 - 00000527 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRID Autosport.lnk 2014-08-27 16:44 - 2014-08-27 16:44 - 00000255 _____ () C:\Users\Dominic\Desktop\Trojaner-Board, mein Thema.url 2014-08-27 16:12 - 2014-08-27 16:12 - 00380416 _____ () C:\Users\Dominic\Downloads\Gmer-19357.exe 2014-08-27 16:08 - 2014-08-28 14:42 - 00000000 ____D () C:\FRST 2014-08-27 16:07 - 2014-08-27 16:07 - 00000000 _____ () C:\Users\Dominic\defogger_reenable 2014-08-27 15:50 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-08-27 15:49 - 2014-08-27 15:57 - 00000000 ____D () C:\AdwCleaner 2014-08-27 15:49 - 2014-08-27 15:49 - 01364531 _____ () C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe 2014-08-27 15:47 - 2014-08-27 15:47 - 00816064 _____ ( ) C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager.exe 2014-08-27 15:01 - 2014-08-27 15:01 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-08-27 15:00 - 2014-08-27 15:00 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-08-27 14:39 - 2014-08-28 07:15 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-27 14:39 - 2014-08-27 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:39 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 14:38 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-08-27 14:38 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-08-27 14:38 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-08-27 14:30 - 2014-08-27 14:30 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung 2014-08-27 10:50 - 2014-08-28 10:54 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-27 10:50 - 2014-08-27 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-27 10:49 - 2014-08-28 13:54 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-27 10:49 - 2014-08-28 10:54 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-27 10:49 - 2014-08-27 10:49 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-08-27 10:49 - 2014-08-27 10:49 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Deployment 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Apps\2.0 2014-08-27 09:56 - 2014-08-27 09:56 - 00007612 _____ () C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg 2014-08-25 10:38 - 2014-08-25 10:38 - 00000146 _____ () C:\Users\Dominic\Desktop\Sound - Verknüpfung.lnk 2014-08-25 10:29 - 2014-08-25 10:29 - 00000729 _____ () C:\Users\Dominic\Downloads\vcard-Nicole-Karagoel.vcf 2014-08-24 18:56 - 2014-08-27 16:54 - 00011675 _____ () C:\Users\Dominic\Desktop\Mappe2.xlsx 2014-08-24 12:52 - 2014-08-24 12:53 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung Krumbach 2014-08-24 12:49 - 2014-08-24 12:49 - 03561351 _____ () C:\Users\Dominic\Downloads\Anhänge_2014824.zip 2014-08-24 11:29 - 2014-08-25 10:33 - 00013340 _____ () C:\Users\Dominic\Desktop\Anrufsliste.xlsx 2014-08-23 18:36 - 2014-08-23 18:36 - 00000000 ____D () C:\Users\Dominic\.android 2014-08-23 18:31 - 2014-08-23 18:32 - 07319280 _____ () C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe 2014-08-23 15:21 - 2014-08-23 15:21 - 00534787 _____ () C:\Users\Dominic\Downloads\Filme_RoboCop 2014 German BDRip AC3 XviD-SMY.nzb 2014-08-23 15:20 - 2014-08-23 15:20 - 00532504 _____ () C:\Users\Dominic\Downloads\Filme_The.Expendables.3.2014.German.AC3D.DVDScreener.XviD-HCS.nzb 2014-08-23 13:23 - 2014-08-23 13:23 - 03877424 _____ (SEIKO EPSON CORPORATION) C:\Users\Dominic\Downloads\epson327357eu.EXE 2014-08-23 11:55 - 2014-08-23 13:14 - 00000000 ____D () C:\Program Files (x86)\epson 2014-08-23 11:12 - 2014-08-23 11:12 - 05323226 _____ () C:\Users\Dominic\Downloads\2014_Frühjahr.rar 2014-08-22 09:41 - 2014-08-22 09:41 - 09261687 _____ () C:\Users\Dominic\Downloads\oberflchen.zip 2014-08-22 09:41 - 2014-08-22 09:41 - 00020441 _____ () C:\Users\Dominic\Downloads\bewrsbdrtz.zip 2014-08-22 08:32 - 2014-08-22 08:32 - 00000385 _____ () C:\Users\Dominic\AppData\Roaminguser_gensett.xml 2014-08-22 08:31 - 2014-08-22 08:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-08-21 20:52 - 2014-08-21 20:52 - 00590437 _____ () C:\ProgramData\1408645228.bdinstall.bin 2014-08-21 20:45 - 2014-08-24 08:59 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml 2014-08-21 20:30 - 2014-08-27 14:59 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\BDLogging 2014-08-21 20:30 - 2013-11-19 15:44 - 00098768 _____ (BitDefender LLC) C:\Windows\system32\Drivers\bdfndisf6.sys 2014-08-21 20:30 - 2013-11-04 16:47 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-08-21 20:30 - 2013-11-04 16:47 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll 2014-08-21 20:30 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys 2014-08-21 20:30 - 2013-07-17 19:31 - 00261496 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-08-21 20:30 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll 2014-08-21 20:29 - 2014-08-21 20:36 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Bitdefender 2014-08-21 20:20 - 2014-08-27 14:59 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-08-21 20:20 - 2014-08-27 14:59 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2014-08-21 20:20 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\QuickScan 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Bitdefender 2014-08-21 20:20 - 2013-11-04 16:47 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll 2014-08-21 20:20 - 2013-11-04 16:46 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll 2014-08-21 20:20 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-08-21 20:19 - 2014-08-21 20:19 - 07040424 _____ () C:\Users\Dominic\Downloads\bitdefender_isecurity_2015.exe 2014-08-21 20:09 - 2014-08-21 20:09 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-21 20:08 - 2014-08-28 07:15 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Dropbox 2014-08-21 20:08 - 2014-08-21 20:08 - 00323600 _____ (Dropbox, Inc.) C:\Users\Dominic\Downloads\DropboxInstaller.exe 2014-08-21 12:34 - 2014-08-21 22:08 - 00010637 _____ () C:\Users\Dominic\Desktop\Mappe1.xlsx 2014-08-20 21:15 - 2014-08-20 21:15 - 01236176 _____ () C:\Users\Dominic\Downloads\Software_Autodesk AutoCAD Mechanical v2015 GERMAN-CYGiSO.nzb 2014-08-20 19:31 - 2014-08-20 19:31 - 00985925 _____ () C:\Users\Dominic\Downloads\Anhänge_2014820 (1).zip 2014-08-20 19:31 - 2014-08-20 18:31 - 00558592 _____ () C:\Users\Dominic\Downloads\SN-0-000-003.idw 2014-08-20 19:31 - 2014-08-20 18:30 - 00512512 _____ () C:\Users\Dominic\Downloads\SN-0-000-002.idw 2014-08-20 12:44 - 2014-08-20 12:44 - 16849408 _____ () C:\Users\Dominic\Downloads\epson374893eu.exe 2014-08-20 12:44 - 2014-08-20 12:44 - 00000000 ____D () C:\ProgramData\EPSON 2014-08-18 19:23 - 2014-08-18 19:23 - 00494080 _____ () C:\Users\Dominic\Downloads\SN-0-000-001.idw 2014-08-18 18:49 - 2014-08-18 18:49 - 00000000 ____D () C:\Users\Public\Documents\CyberLink 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\PDVD 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-08-18 18:47 - 2014-08-18 18:47 - 00000000 ____D () C:\ProgramData\SUPPORTDIR 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieUserList 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieSiteList 2014-08-14 19:22 - 2014-08-14 19:23 - 00000000 ___RD () C:\Users\Dominic\Desktop\Spiele 2014-08-14 19:07 - 2014-08-22 13:45 - 00000000 ____D () C:\Users\Dominic\AppData\Local\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00003218 _____ () C:\Windows\System32\Tasks\3DconnexionCreateProcess_3DxService.exe 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\SketchUp 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:04 - 00000000 ____D () C:\Program Files\3Dconnexion 2014-08-14 18:54 - 2014-08-14 19:00 - 329314976 _____ () C:\Users\Dominic\Downloads\Projekte von Schule.zip 2014-08-12 20:29 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-12 20:29 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-08-12 20:29 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-08-12 20:29 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-12 20:29 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-08-12 20:29 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-08-12 20:29 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-12 20:29 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-08-12 20:29 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-08-12 20:29 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-12 20:29 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-08-12 20:29 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-08-12 20:29 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-12 20:29 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-12 20:29 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-08-12 20:29 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-08-12 20:29 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-08-12 20:29 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-12 20:29 - 2014-07-25 13:43 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-08-12 20:29 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-08-12 20:29 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-08-12 20:29 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-12 20:29 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-08-12 20:29 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-08-12 20:29 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-12 20:29 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-08-12 20:29 - 2014-07-25 13:09 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-08-12 20:29 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-08-12 20:29 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-08-12 20:29 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-12 20:29 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-12 20:29 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-08-12 20:29 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-08-12 20:29 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-08-12 20:29 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-08-12 20:29 - 2014-06-20 03:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-12 20:29 - 2014-06-20 01:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2014-08-12 20:28 - 2014-08-07 04:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-12 20:28 - 2014-08-07 00:39 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-12 20:28 - 2014-08-07 00:38 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-12 20:28 - 2014-08-02 07:44 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-12 20:28 - 2014-08-02 05:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-12 20:28 - 2014-08-02 05:11 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2014-08-12 20:28 - 2014-07-15 20:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe 2014-08-12 20:28 - 2014-07-15 10:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2014-08-12 20:28 - 2014-07-15 10:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll 2014-08-12 20:28 - 2014-07-15 10:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll 2014-08-12 20:28 - 2014-07-12 06:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe 2014-08-12 20:28 - 2014-07-10 06:16 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-08-12 20:28 - 2014-07-10 06:03 - 04756992 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-08-12 20:28 - 2014-07-10 05:33 - 01120256 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-08-12 20:28 - 2014-06-13 03:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2014-08-12 20:28 - 2014-06-13 03:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-12 20:28 - 2014-06-13 02:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2014-08-12 20:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2014-08-12 20:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-12 20:28 - 2014-06-06 13:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2014-08-12 20:28 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll 2014-08-12 20:28 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll 2014-08-12 20:28 - 2014-06-04 11:27 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-12 20:28 - 2014-06-04 07:31 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-12 20:28 - 2014-06-04 07:22 - 02790912 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-12 20:28 - 2014-06-04 06:43 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-08-12 20:28 - 2014-06-04 06:38 - 03304448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-08-12 20:28 - 2014-06-04 04:15 - 02642944 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-12 20:28 - 2014-06-04 04:14 - 02318336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-08-12 20:28 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2014-08-12 20:28 - 2014-05-31 12:07 - 00467800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2014-08-12 20:28 - 2014-05-31 12:07 - 00440664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00419672 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00089944 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00027480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-08-12 20:28 - 2014-05-31 08:30 - 00037376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-08-12 20:28 - 2014-05-31 08:27 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-08-12 20:28 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2014-08-12 20:28 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2014-08-12 20:28 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2014-08-12 20:28 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2014-08-12 20:28 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2014-08-12 20:28 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-08-12 20:28 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll 2014-08-12 20:28 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll 2014-08-12 20:28 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-08-12 20:28 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-08-12 20:28 - 2014-05-13 09:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe 2014-08-12 20:28 - 2014-05-13 07:07 - 02844160 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2014-08-12 20:28 - 2014-05-13 06:41 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll 2014-08-12 20:28 - 2014-05-13 06:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll 2014-08-12 20:28 - 2014-05-13 05:59 - 01035264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2014-08-12 20:28 - 2014-05-13 05:31 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll 2014-08-12 20:28 - 2014-05-03 13:29 - 01726224 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2014-08-12 20:28 - 2014-05-03 11:20 - 01473080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2014-08-12 20:28 - 2014-05-03 07:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2014-08-12 20:28 - 2014-05-03 07:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll 2014-08-12 20:28 - 2014-05-03 07:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll 2014-08-12 20:28 - 2014-05-03 07:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll 2014-08-12 20:28 - 2014-05-03 06:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll 2014-08-12 20:28 - 2014-05-03 06:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll 2014-08-12 20:28 - 2014-05-03 06:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll 2014-08-12 20:28 - 2014-05-03 01:26 - 00050745 _____ () C:\Windows\system32\srms.dat 2014-08-12 20:28 - 2014-05-01 07:44 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-08-12 20:28 - 2014-04-30 08:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys 2014-08-12 20:28 - 2014-04-30 07:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe 2014-08-12 20:28 - 2014-04-30 06:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe 2014-08-12 20:28 - 2014-04-30 06:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll 2014-08-12 20:28 - 2014-04-30 06:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2014-08-12 20:28 - 2014-04-30 05:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2014-08-12 20:28 - 2014-04-30 05:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll 2014-08-12 20:28 - 2014-04-30 05:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll 2014-08-12 20:28 - 2014-04-30 05:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll 2014-08-12 20:28 - 2014-04-30 05:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll 2014-08-12 20:28 - 2014-04-30 05:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2014-08-12 20:28 - 2014-04-29 00:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2014-08-12 20:28 - 2014-04-27 00:03 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-08-12 20:28 - 2014-04-26 22:14 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2014-08-12 20:28 - 2014-04-26 18:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll 2014-08-12 20:28 - 2014-04-14 11:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-08-12 20:28 - 2014-04-14 10:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2014-08-12 20:28 - 2014-04-14 07:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2014-08-12 20:28 - 2014-04-09 08:11 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2014-08-12 20:28 - 2014-04-09 07:20 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00721288 _____ (3Dconnexion, Inc) C:\Windows\system32\siappdll.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00575880 _____ (3Dconnexion, Inc) C:\Windows\SysWOW64\siappdll.dll 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\system32\spwini.dll 2014-08-12 15:27 - 2014-08-12 15:27 - 00038912 _____ () C:\Windows\SysWOW64\spwini.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-08-08 19:55 - 2014-08-08 20:06 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2014-08-08 19:41 - 2014-08-08 19:41 - 00000021 _____ () C:\Users\Dominic\AppData\Roaming\my_intel.sys 2014-08-08 19:33 - 2014-08-08 19:33 - 00000000 ____D () C:\Users\Dominic\Documents\Autodesk 2014-08-08 19:31 - 2014-08-08 19:38 - 00000000 ____D () C:\Autodesk2013 2014-08-08 19:29 - 2014-08-08 19:29 - 00000000 ____D () C:\Program Files (x86)\DWG TrueView 2013 2014-08-08 19:27 - 2014-08-27 09:46 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2013 2014-08-08 15:56 - 2014-08-08 15:56 - 00000000 ____D () C:\ProgramData\Applications 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-06 20:48 - 2014-08-08 19:28 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-08-06 20:48 - 2014-08-06 20:51 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 __RHD () C:\MSOCache 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services 2014-08-06 07:27 - 2014-08-28 13:36 - 01124988 ____N () C:\Windows\WindowsUpdate.log 2014-08-05 20:16 - 2014-08-05 20:16 - 00001194 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk 2014-08-05 20:16 - 2014-08-05 20:16 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-08-05 20:04 - 2014-08-05 20:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-08-05 18:52 - 2014-08-13 19:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Skype 2014-08-05 18:52 - 2014-08-05 19:55 - 00000000 ____D () C:\ProgramData\Skype 2014-08-05 18:52 - 2014-08-05 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Skype 2014-08-05 16:33 - 2014-08-05 16:33 - 00000000 ___HD () C:\$SysReset 2014-08-05 10:28 - 2014-08-05 10:28 - 00000000 ____D () C:\Users\Dominic\Desktop\Musik 2014-08-03 19:56 - 2014-08-03 19:56 - 00031344 _____ (Connectify) C:\Windows\system32\Drivers\cnnctfy2.sys 2014-08-03 19:56 - 2014-08-03 19:56 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connectify Hotspot 2014-08-02 20:27 - 2014-08-18 21:18 - 00000000 ____D () C:\Users\Dominic\AppData\Local\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Program Files (x86)\QuickPar ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-28 14:42 - 2014-08-28 14:42 - 00028250 _____ () C:\Users\Dominic\Downloads\FRST.txt 2014-08-28 14:42 - 2014-08-27 16:08 - 00000000 ____D () C:\FRST 2014-08-28 14:41 - 2014-08-28 14:41 - 02103296 _____ (Farbar) C:\Users\Dominic\Downloads\FRST64.exe 2014-08-28 14:38 - 2014-07-15 17:34 - 00000000 ____D () C:\Program Files (x86)\Steam 2014-08-28 14:37 - 2014-07-15 17:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\ClassicShell 2014-08-28 14:32 - 2014-07-18 19:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\UseNeXT 2014-08-28 14:12 - 2014-07-15 16:44 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1411990848-2310183263-2524645419-1001 2014-08-28 14:10 - 2014-07-15 22:30 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-08-28 13:54 - 2014-08-27 10:49 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-28 13:36 - 2014-08-06 07:27 - 01124988 ____N () C:\Windows\WindowsUpdate.log 2014-08-28 13:20 - 2014-07-15 16:40 - 00003950 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{57BF43EF-7062-442E-97D8-81FC9F2CA599} 2014-08-28 13:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-08-28 10:54 - 2014-08-27 10:50 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-28 10:54 - 2014-08-27 10:49 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-28 09:52 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp 2014-08-28 07:24 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\LiveKernelReports 2014-08-28 07:21 - 2014-07-15 16:43 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-28 07:21 - 2013-08-23 01:24 - 00765582 _____ () C:\Windows\system32\perfh007.dat 2014-08-28 07:21 - 2013-08-23 01:24 - 00159366 _____ () C:\Windows\system32\perfc007.dat 2014-08-28 07:19 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-08-28 07:16 - 2014-07-15 17:17 - 00000075 _____ () C:\Users\Dominic\AppData\Roaming\sp_data.sys 2014-08-28 07:15 - 2014-08-27 14:39 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-28 07:15 - 2014-08-21 20:08 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Dropbox 2014-08-28 07:15 - 2014-07-15 20:13 - 00000000 ___DO () C:\Users\Dominic\SkyDrive 2014-08-28 07:15 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-08-28 07:15 - 2013-08-22 16:44 - 00513816 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-27 20:59 - 2014-08-27 20:59 - 00000000 ____D () C:\ProgramData\Codemasters 2014-08-27 20:59 - 2014-07-15 20:00 - 00000000 ____D () C:\Users\Dominic\Documents\My Games 2014-08-27 20:56 - 2014-08-27 20:56 - 00000527 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRID Autosport.lnk 2014-08-27 16:54 - 2014-08-24 18:56 - 00011675 _____ () C:\Users\Dominic\Desktop\Mappe2.xlsx 2014-08-27 16:44 - 2014-08-27 16:44 - 00000255 _____ () C:\Users\Dominic\Desktop\Trojaner-Board, mein Thema.url 2014-08-27 16:12 - 2014-08-27 16:12 - 00380416 _____ () C:\Users\Dominic\Downloads\Gmer-19357.exe 2014-08-27 16:07 - 2014-08-27 16:07 - 00000000 _____ () C:\Users\Dominic\defogger_reenable 2014-08-27 16:07 - 2014-07-15 16:39 - 00000000 ____D () C:\Users\Dominic 2014-08-27 15:57 - 2014-08-27 15:49 - 00000000 ____D () C:\AdwCleaner 2014-08-27 15:49 - 2014-08-27 15:49 - 01364531 _____ () C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe 2014-08-27 15:47 - 2014-08-27 15:47 - 00816064 _____ ( ) C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager.exe 2014-08-27 15:45 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-08-27 15:01 - 2014-08-27 15:01 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-08-27 15:00 - 2014-08-27 15:00 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-08-27 14:59 - 2014-08-21 20:30 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-08-27 14:59 - 2014-08-21 20:20 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-08-27 14:59 - 2014-08-21 20:20 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2014-08-27 14:39 - 2014-08-27 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-27 14:39 - 2014-08-27 14:38 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 14:30 - 2014-08-27 14:30 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung 2014-08-27 10:50 - 2014-08-27 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-27 10:50 - 2014-07-15 17:24 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Google 2014-08-27 10:50 - 2014-07-15 17:24 - 00000000 ____D () C:\Program Files (x86)\Google 2014-08-27 10:49 - 2014-08-27 10:49 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-08-27 10:49 - 2014-08-27 10:49 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Deployment 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Apps\2.0 2014-08-27 09:56 - 2014-08-27 09:56 - 00007612 _____ () C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg 2014-08-27 09:46 - 2014-08-08 19:27 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2013 2014-08-25 10:38 - 2014-08-25 10:38 - 00000146 _____ () C:\Users\Dominic\Desktop\Sound - Verknüpfung.lnk 2014-08-25 10:33 - 2014-08-24 11:29 - 00013340 _____ () C:\Users\Dominic\Desktop\Anrufsliste.xlsx 2014-08-25 10:29 - 2014-08-25 10:29 - 00000729 _____ () C:\Users\Dominic\Downloads\vcard-Nicole-Karagoel.vcf 2014-08-24 12:53 - 2014-08-24 12:52 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung Krumbach 2014-08-24 12:49 - 2014-08-24 12:49 - 03561351 _____ () C:\Users\Dominic\Downloads\Anhänge_2014824.zip 2014-08-24 08:59 - 2014-08-21 20:45 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml 2014-08-24 08:51 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-08-23 18:36 - 2014-08-23 18:36 - 00000000 ____D () C:\Users\Dominic\.android 2014-08-23 18:32 - 2014-08-23 18:31 - 07319280 _____ () C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe 2014-08-23 15:21 - 2014-08-23 15:21 - 00534787 _____ () C:\Users\Dominic\Downloads\Filme_RoboCop 2014 German BDRip AC3 XviD-SMY.nzb 2014-08-23 15:20 - 2014-08-23 15:20 - 00532504 _____ () C:\Users\Dominic\Downloads\Filme_The.Expendables.3.2014.German.AC3D.DVDScreener.XviD-HCS.nzb 2014-08-23 13:23 - 2014-08-23 13:23 - 03877424 _____ (SEIKO EPSON CORPORATION) C:\Users\Dominic\Downloads\epson327357eu.EXE 2014-08-23 13:14 - 2014-08-23 11:55 - 00000000 ____D () C:\Program Files (x86)\epson 2014-08-23 11:12 - 2014-08-23 11:12 - 05323226 _____ () C:\Users\Dominic\Downloads\2014_Frühjahr.rar 2014-08-23 10:20 - 2014-01-23 19:09 - 00000000 ____D () C:\Users\Dominic\Desktop\Ausblidung 2014-08-22 13:45 - 2014-08-14 19:07 - 00000000 ____D () C:\Users\Dominic\AppData\Local\3Dconnexion 2014-08-22 10:42 - 2014-07-15 17:16 - 00000156 _____ () C:\Users\Public\GPUControlSetting.xml 2014-08-22 09:41 - 2014-08-22 09:41 - 09261687 _____ () C:\Users\Dominic\Downloads\oberflchen.zip 2014-08-22 09:41 - 2014-08-22 09:41 - 00020441 _____ () C:\Users\Dominic\Downloads\bewrsbdrtz.zip 2014-08-22 08:32 - 2014-08-22 08:32 - 00000385 _____ () C:\Users\Dominic\AppData\Roaminguser_gensett.xml 2014-08-22 08:31 - 2014-08-22 08:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-08-21 22:08 - 2014-08-21 12:34 - 00010637 _____ () C:\Users\Dominic\Desktop\Mappe1.xlsx 2014-08-21 20:52 - 2014-08-21 20:52 - 00590437 _____ () C:\ProgramData\1408645228.bdinstall.bin 2014-08-21 20:36 - 2014-08-21 20:29 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Bitdefender 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\BDLogging 2014-08-21 20:30 - 2014-08-21 20:20 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\QuickScan 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Bitdefender 2014-08-21 20:19 - 2014-08-21 20:19 - 07040424 _____ () C:\Users\Dominic\Downloads\bitdefender_isecurity_2015.exe 2014-08-21 20:17 - 2014-07-22 19:27 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-08-21 20:09 - 2014-08-21 20:09 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-21 20:08 - 2014-08-21 20:08 - 00323600 _____ (Dropbox, Inc.) C:\Users\Dominic\Downloads\DropboxInstaller.exe 2014-08-20 21:15 - 2014-08-20 21:15 - 01236176 _____ () C:\Users\Dominic\Downloads\Software_Autodesk AutoCAD Mechanical v2015 GERMAN-CYGiSO.nzb 2014-08-20 19:31 - 2014-08-20 19:31 - 00985925 _____ () C:\Users\Dominic\Downloads\Anhänge_2014820 (1).zip 2014-08-20 18:31 - 2014-08-20 19:31 - 00558592 _____ () C:\Users\Dominic\Downloads\SN-0-000-003.idw 2014-08-20 18:30 - 2014-08-20 19:31 - 00512512 _____ () C:\Users\Dominic\Downloads\SN-0-000-002.idw 2014-08-20 12:44 - 2014-08-20 12:44 - 16849408 _____ () C:\Users\Dominic\Downloads\epson374893eu.exe 2014-08-20 12:44 - 2014-08-20 12:44 - 00000000 ____D () C:\ProgramData\EPSON 2014-08-18 21:18 - 2014-08-02 20:27 - 00000000 ____D () C:\Users\Dominic\AppData\Local\QuickPar 2014-08-18 19:23 - 2014-08-18 19:23 - 00494080 _____ () C:\Users\Dominic\Downloads\SN-0-000-001.idw 2014-08-18 18:49 - 2014-08-18 18:49 - 00000000 ____D () C:\Users\Public\Documents\CyberLink 2014-08-18 18:49 - 2014-07-15 22:46 - 00000000 ____D () C:\Users\Dominic\Documents\CyberLink 2014-08-18 18:49 - 2014-07-15 17:15 - 00000000 ____D () C:\ProgramData\CyberLink 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\PDVD 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-08-18 18:48 - 2014-07-15 22:46 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Cyberlink 2014-08-18 18:48 - 2014-07-15 16:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-08-18 18:47 - 2014-08-18 18:47 - 00000000 ____D () C:\ProgramData\SUPPORTDIR 2014-08-18 18:47 - 2014-07-15 17:16 - 00000000 ____D () C:\ProgramData\install_clap 2014-08-18 18:47 - 2014-07-15 17:14 - 00000000 ____D () C:\Program Files (x86)\CyberLink 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieUserList 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieSiteList 2014-08-18 12:17 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache 2014-08-14 19:23 - 2014-08-14 19:22 - 00000000 ___RD () C:\Users\Dominic\Desktop\Spiele 2014-08-14 19:20 - 2014-07-16 22:13 - 00000000 ____D () C:\Users\Dominic\Downloads\Setups 2014-08-14 19:09 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2015 2014-08-14 19:05 - 2014-08-14 19:05 - 00003218 _____ () C:\Windows\System32\Tasks\3DconnexionCreateProcess_3DxService.exe 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\SketchUp 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:04 - 00000000 ____D () C:\Program Files\3Dconnexion 2014-08-14 19:00 - 2014-08-14 18:54 - 329314976 _____ () C:\Users\Dominic\Downloads\Projekte von Schule.zip 2014-08-13 19:20 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Skype 2014-08-12 22:50 - 2014-07-18 10:24 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-12 22:50 - 2014-07-15 19:03 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\MediaViewer 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\FileManager 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Camera 2014-08-12 22:49 - 2014-07-15 19:03 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-08-12 20:28 - 2014-07-15 18:56 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-08-12 20:27 - 2014-07-15 22:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-08-12 20:27 - 2014-07-15 18:56 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-08-12 20:27 - 2013-08-22 13:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-12 20:27 - 2013-08-22 13:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-08-12 20:27 - 2013-08-22 13:22 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-08-12 20:27 - 2013-08-22 13:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-08-12 20:27 - 2013-08-22 13:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-08-12 20:27 - 2013-08-22 13:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-08-12 20:27 - 2013-08-22 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-08-12 20:27 - 2013-08-22 05:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-08-12 20:27 - 2013-08-22 05:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-08-12 20:27 - 2013-08-22 05:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-08-12 20:27 - 2013-08-22 05:40 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-08-12 20:27 - 2013-08-22 05:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-08-12 20:26 - 2014-07-17 00:33 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-08-12 20:26 - 2014-07-15 22:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-12 20:26 - 2013-08-22 12:32 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-08-12 19:08 - 2014-07-18 14:33 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Autodesk 2014-08-12 16:01 - 2014-08-12 16:01 - 00721288 _____ (3Dconnexion, Inc) C:\Windows\system32\siappdll.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00575880 _____ (3Dconnexion, Inc) C:\Windows\SysWOW64\siappdll.dll 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\system32\spwini.dll 2014-08-12 15:27 - 2014-08-12 15:27 - 00038912 _____ () C:\Windows\SysWOW64\spwini.dll 2014-08-11 08:30 - 2014-07-18 15:27 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Autodesk 2014-08-09 12:15 - 2014-07-15 19:13 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-08-08 20:53 - 2014-07-15 19:05 - 00000000 ____D () C:\Program Files\CCleaner 2014-08-08 20:06 - 2014-08-08 19:55 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2014-08-08 20:00 - 2014-07-18 21:18 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Autodesk,_Inc 2014-08-08 19:41 - 2014-08-08 19:41 - 00000021 _____ () C:\Users\Dominic\AppData\Roaming\my_intel.sys 2014-08-08 19:38 - 2014-08-08 19:31 - 00000000 ____D () C:\Autodesk2013 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Users\Public\Documents\Autodesk 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Program Files\Autodesk 2014-08-08 19:38 - 2014-07-18 14:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2014-08-08 19:37 - 2014-07-18 14:33 - 00000000 ____D () C:\ProgramData\Autodesk 2014-08-08 19:33 - 2014-08-08 19:33 - 00000000 ____D () C:\Users\Dominic\Documents\Autodesk 2014-08-08 19:31 - 2014-07-15 17:04 - 00000000 ____D () C:\Temp 2014-08-08 19:29 - 2014-08-08 19:29 - 00000000 ____D () C:\Program Files (x86)\DWG TrueView 2013 2014-08-08 19:28 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-08-08 15:56 - 2014-08-08 15:56 - 00000000 ____D () C:\ProgramData\Applications 2014-08-07 04:12 - 2014-08-12 20:28 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-07 00:39 - 2014-08-12 20:28 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-07 00:38 - 2014-08-12 20:28 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-06 20:51 - 2014-08-06 20:48 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-06 20:49 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-08-06 20:49 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 __RHD () C:\MSOCache 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services 2014-08-06 20:48 - 2013-08-23 01:26 - 00000000 ____D () C:\Windows\ShellNew 2014-08-05 20:31 - 2014-07-22 18:00 - 00000000 ____D () C:\Program Files (x86)\Connectify 2014-08-05 20:30 - 2014-08-05 20:04 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Winamp 2014-08-05 20:16 - 2014-08-05 20:16 - 00001194 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk 2014-08-05 20:16 - 2014-08-05 20:16 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-08-05 19:55 - 2014-08-05 18:52 - 00000000 ____D () C:\ProgramData\Skype 2014-08-05 19:55 - 2014-08-05 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Skype 2014-08-05 16:33 - 2014-08-05 16:33 - 00000000 ___HD () C:\$SysReset 2014-08-05 16:33 - 2014-07-15 16:48 - 00000000 ____D () C:\Windows\Log 2014-08-05 10:28 - 2014-08-05 10:28 - 00000000 ____D () C:\Users\Dominic\Desktop\Musik 2014-08-03 19:56 - 2014-08-03 19:56 - 00031344 _____ (Connectify) C:\Windows\system32\Drivers\cnnctfy2.sys 2014-08-03 19:56 - 2014-08-03 19:56 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connectify Hotspot 2014-08-03 19:47 - 2014-07-22 22:12 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\DVDVideoSoft 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Program Files (x86)\QuickPar 2014-08-02 07:44 - 2014-08-12 20:28 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-02 05:56 - 2014-08-12 20:28 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-02 05:11 - 2014-08-12 20:28 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2014-08-02 02:17 - 2013-08-22 17:38 - 00704480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-08-02 02:17 - 2013-08-22 17:38 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl Some content of TEMP: ==================== C:\Users\Dominic\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpkklgl4.dll C:\Users\Dominic\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-23 08:32 ==================== End Of Log ============================ Mehr habe ich nicht, das ist alles was sich nach dem Scan öffnet. Habe auch kein Häckchen entfernt. |
29.08.2014, 08:55 | #6 |
/// the machine /// TB-Ausbilder | Win 8, Chrome extrem langsam und about:blank wird geöffnet Öffne bitte FRST, setz nen Haken bei Addition und scanne, poste nur die Addition.txt.
__________________ --> Win 8, Chrome extrem langsam und about:blank wird geöffnet |
29.08.2014, 11:08 | #7 |
| Win 8, Chrome extrem langsam und about:blank wird geöffnetCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-08-2014 Ran by Dominic at 2014-08-29 10:23:31 Running from C:\Users\Dominic\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 3Dconnexion 3DxWare 10 (64-bit) (HKLM-x32\...\{BAFCA6AC-8B37-405B-B57E-C1D45DE70ACC}) (Version: 10.1.4 - 3Dconnexion) 3Dconnexion Add-In for AutoCAD 2007 - 2010 (Version: 4.6.0 - 3Dconnexion) Hidden 3Dconnexion Add-In for Inventor 11 - 2015 (Version: 2.0.5 - 3Dconnexion) Hidden 3Dconnexion Add-In for Solid Edge V18 - ST7 (Version: 3.1.0 - 3Dconnexion) Hidden 3Dconnexion Add-In for SolidWorks 2005 - 2015 (Version: 3.1.0 - 3Dconnexion) Hidden 3Dconnexion Add-On for XSI v5.0 - 2015 (Version: 3.0.3 - 3Dconnexion) Hidden 3Dconnexion Collage (x32 Version: 1.3.0 - 3Dconnexion) Hidden 3Dconnexion Extension for SketchUp (x32 Version: 4.0.2 - 3Dconnexion) Hidden 3Dconnexion LCD Applets for SpacePilot Pro (x64) (Version: 1.3.2 - 3Dconnexion) Hidden 3Dconnexion Plug-In for 3ds Max v9 - 2015 (Version: 6.0.3 - 3Dconnexion) Hidden 3Dconnexion Plug-in for Acrobat 3D (x32 Version: 1.3.0 - 3Dconnexion) Hidden 3Dconnexion Plug-In for Maya v8.5 - 2015 (Version: 5.0.5 - 3Dconnexion) Hidden 3Dconnexion Plug-In for NX v4.0 - v10.0 (Version: 3.1.0 - 3Dconnexion) Hidden 3Dconnexion Plug-In for Photoshop CS3 - CS6 and CC (Version: 2.4.0 - 3Dconnexion) Hidden 3Dconnexion Plug-In for Pro/ENGINEER Wildfire 3.0 - Creo 3.0 (Version: 2.1.0 - 3Dconnexion) Hidden 3Dconnexion Trainer (x32 Version: 3.2.2 - 3Dconnexion) Hidden 3DxWinCore (x64) (Version: 17.1.4.10702 - 3Dconnexion) Hidden Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated) Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\{755DDD59-9690-4F1A-BE9C-D39BDCFA77C9}) (Version: 12.1.3.153 - Adobe Systems, Inc) Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc) Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.8 - Sereby Corporation) ASUS Backtracker (HKLM-x32\...\{C15C060C-ED1C-49EB-83B3-F7C0FD1CD661}) (Version: 3.0.4 - ASUS) ASUS GPU Tweak (HKLM\...\{7353D4C7-43E9-46A3-A1FF-79DD94A386F2}) (Version: 1.0.6 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.2.7 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.6 - ASUS) ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0021 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.8 - ASUS) ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5712.52 - CyberLink Corp.) ASUSDVD (x32 Version: 10.0.5712.52 - CyberLink Corp.) Hidden AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.311 - ASUSTEK) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0031 - ASUS) Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.1.4.1000 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 3.0.155.0 - Autodesk) Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.) Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden Autodesk Download Manager (HKLM-x32\...\{C897D9EC-13C6-4A22-ABF7-33F2126A7DB6}) (Version: 3.0.8.0 - Autodesk, Inc.) Autodesk DWG TrueView 2015 - English (HKLM\...\DWG TrueView 2015 - English) (Version: 20.0.51.0 - Autodesk) Autodesk Inventor Content Center Libraries 2013 (Desktop Content) (HKLM\...\{B46DECD1-1764-4EF1-0000-22D71E81877C}) (Version: 17.0.13800.0000 - Autodesk) Autodesk Inventor Content Center Libraries 2015 (Desktop Content) (HKLM\...\{B46DECD1-1964-4EF1-0000-22D71E81877C}) (Version: 19.0.15900.0000 - Autodesk) Autodesk Inventor Fusion 2013 (HKLM\...\Autodesk Inventor Fusion 2013) (Version: 2.0.0.206 - Autodesk, Inc.) Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.) Hidden Autodesk Inventor Fusion for Inventor 2013 Add-in (HKLM\...\{08BCFE15-8AA1-4A58-B018-4FEF486BA922}) (Version: 1.0.0.111 - Autodesk) Autodesk Inventor Professional 2013 (Version: 17.2.20000.0000 - Autodesk) Hidden Autodesk Inventor Professional 2013 Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2013) (Version: 17.2.20000.0000 - Autodesk) Autodesk Inventor Professional 2013 Language Pack - Deutsch (German) (Version: 17.0.13800.0000 - Autodesk) Hidden Autodesk Inventor Professional 2013 SP1 (HKLM\...\Autodesk Inventor Professional 2013 SP1) (Version: 17.2.20000.0000 - Autodesk) Autodesk Inventor Professional 2013 SP1.1 (HKLM\...\Autodesk Inventor Professional 2013 SP1.1) (Version: 17.2.20000.0000 - Autodesk) Autodesk Inventor Professional 2013 SP2 (HKLM\...\Autodesk Inventor Professional 2013 SP2) (Version: 17.2.20000.0000 - Autodesk) Autodesk Inventor Professional 2015 - Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2015) (Version: 19.0.15900.0000 - Autodesk) Autodesk Inventor Professional 2015 (Version: 19.0.15900.0000 - Autodesk) Hidden Autodesk Inventor Professional 2015 Language Pack - Deutsch (German) (Version: 19.0.15900.0000 - Autodesk) Hidden Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk) Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk) Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk) Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk) Autodesk Material Library Low Resolution Image Library 2013 (HKLM-x32\...\{27C6C0A2-2EC9-4FEA-BE2B-659EAAC2C68C}) (Version: 3.0.13 - Autodesk) Autodesk Material Library Low Resolution Image Library 2015 (HKLM-x32\...\{4FBC9635-AC56-4378-8FDE-C4D3ED072681}) (Version: 5.2.9.100 - Autodesk) Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.3.1.39 - Autodesk) Autodesk ReCap (Version: 1.3.1.39 - Autodesk) Hidden Autodesk Revit Interoperability for Inventor 2015 (HKLM\...\Autodesk Revit Interoperability for Inventor 2015) (Version: 15.0.107.0 - Autodesk) Autodesk Revit Interoperability for Inventor 2015 (Version: 15.0.107.0 - Autodesk) Hidden Autodesk Vault Basic 2013 (Client) (HKLM-x32\...\Autodesk Vault Basic 2013 (Client)) (Version: 17.0.61.0 - Autodesk) Autodesk Vault Basic 2013 (Client) (Version: 17.0.61.0 - Autodesk) Hidden Autodesk Vault Basic 2013 (Client) German Language Pack (Version: 17.0.61.0 - Autodesk) Hidden Autodesk Vault Basic 2015 (Client) (HKLM\...\Autodesk Vault Basic 2015 (Client)) (Version: 19.0.49.0 - Autodesk) Autodesk Vault Basic 2015 (Client) (Version: 19.0.49.0 - Autodesk) Hidden Autodesk Vault Basic 2015 (Client) German Language Pack (Version: 19.0.49.0 - Autodesk) Hidden Bitdefender Internet Security 2015 (HKLM\...\Bitdefender) (Version: 18.11.0.872 - Bitdefender) Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version: - Infinity Ward) Call of Duty: Modern Warfare 3 (HKLM-x32\...\Steam App 42680) (Version: - Infinity Ward) CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform) Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft) Configurator 360 addin (HKLM-x32\...\{8FE324B0-B934-4D68-BAB5-DE2136036237}) (Version: 19.0.11300.9000 - Autodesk, Inc.) Connectify Hotspot (HKLM\...\Connectify) (Version: 3.7.1.25486 - Connectify) CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0.0.8517 - CyberLink Corp.) CyberLink Media Suite 10 (x32 Version: 10.0.0.8517 - CyberLink Corp.) Hidden CyberLink Power2Go (x32 Version: 7.0.0.4915 - CyberLink Corp.) Hidden CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.4028.58 - CyberLink Corp.) Dropbox (HKCU\...\Dropbox) (Version: 2.10.28 - Dropbox, Inc.) DVS Video Downloader Addon for Google Chrome version 1.3.1.0 (HKLM-x32\...\DVS Video Downloader Addon for Google Chrome_is1) (Version: 1.3.1.0 - DVDVideoSoft Ltd.) DWG TrueView 2013 (HKLM\...\DWG TrueView 2013) (Version: 19.0.55.0 - Autodesk) DWG TrueView 2013 (Version: 19.0.55.0 - Autodesk) Hidden DWG TrueView 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden Eco Materials Adviser for Autodesk Inventor 2013 (HKLM\...\{792A9A32-718A-40D1-9867-A903F76AE2F8}) (Version: 3.9.12.0 - Granta Design Limited) Eco Materials Adviser for Autodesk Inventor 2015 (64-bit) (HKLM\...\{2F7441CB-A646-41F1-B1CB-518AB311138B}) (Version: 5.1.2.0 - Granta Design Limited) ETDWare PS/2-X64 11.5.12.1_WHQL (HKLM\...\Elantech) (Version: 11.5.12.1 - ELAN Microelectronic Corp.) F.E.A.R. 3 (HKLM-x32\...\F.E.A.R. 3_is1) (Version: - ) FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production) Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.6.716 - DVDVideoSoft Ltd.) Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.0.7 - Genesys Logic) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.94 - Google Inc.) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden GRID Autosport (HKLM-x32\...\R1JJREF1dG9zcG9ydA==_is1) (Version: 1 - ) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.6.0.1038 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation) Intel® Trusted Connect Service Client (Version: 1.31.169.1 - Intel Corporation) Hidden Java 8 Update 5 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418005FF}) (Version: 8.0.50 - Oracle Corporation) Java 8 Update 5 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218005FF}) (Version: 8.0.50 - Oracle Corporation) Java Auto Updater (x32 Version: 2.8.05.13 - Oracle, Inc.) Hidden Left 4 Dead (HKLM-x32\...\Steam App 500) (Version: - Valve) Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) Logitech LCD Manager (Version: 3.06.109 - Logitech Inc.) Hidden Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation) Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Groove MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation) Microsoft Visual Basic for Applications 7.1 (x64) (Version: 7.1.00.00 - Microsoft Corporation) Hidden Microsoft Visual Basic for Applications 7.1 (x64) German (Version: 7.1.0.0 - Microsoft Corporation) Hidden Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mockup 360 Addin 2015 (HKLM-x32\...\{E4D4242C-FC14-4B4F-B1D9-6760D8C241D5}) (Version: 1.1.0 - Autodesk) NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation) NVIDIA Grafiktreiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation) NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden NVIDIA Optimus Update 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA ShadowPlay 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden NVIDIA Systemsteuerung 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden NVIDIA Update 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden NVIDIA Update Core (Version: 14.6.22 - NVIDIA Corporation) Hidden NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.) QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7164 - Realtek Semiconductor Corp.) Schnell-Deinstallations-Tool für Autodesk Inventor 2013 (HKLM\...\{D25FF5C1-1764-469A-9794-69309387C193}) (Version: 17.0.13800.0000 - Autodesk) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden SHIELD Streaming (Version: 2.1.214 - NVIDIA Corporation) Hidden Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer) Tomb Raider: Underworld (HKLM-x32\...\Steam App 8140) (Version: - Crystal Dynamics) Update 5 for Inventor 2013 SP2 (See readme for detail) (INV17250) (HKLM\...\Autodesk Inventor Professional 2013_17250) (Version: 1 - Autodesk) UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.) VBA (2627.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden VBA (2701.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.8070 - Broadcom Corporation) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS) WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> C:\Autodesk2013\Inventor 2013\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\RxAppCtrl.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\iDrop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\TI.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> C:\Autodesk2013\Inventor 2013\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> C:\Autodesk2013\Inventor 2013\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2013\en-US\dwgviewrficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\RxAppDocView.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\RxAppDocView.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> C:\Autodesk2013\Inventor 2013\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxTest.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> C:\Autodesk2013\Inventor 2013\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2013\dwgviewr.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\DtCp.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> C:\Autodesk2013\Inventor 2013\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\RxAppCtrl.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\SolidObject.Dll () CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\UCxTextBtn.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\UCxTextBtn.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\SolidObject.Dll () CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\BodyReceiver.dll () CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Autodesk2013\Inventor 2013\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> C:\Autodesk2013\Inventor 2013\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\RxApprenticeServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ColorButton.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ColorButton.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\AcInetUI.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\RxInventorUtilities.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> C:\Autodesk2013\Inventor 2013\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DTInterop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\InvResc.dll (Autodesk) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Autodesk2013\Inventor 2013\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Autodesk2013\Inventor 2013\Bin\InvTXTStack.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DTInterop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-1411990848-2310183263-2524645419-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll No File ==================== Restore Points ========================= 09-08-2014 18:02:42 DirectX wurde installiert 12-08-2014 20:48:16 Windows Update 14-08-2014 17:04:21 Installiert 3Dconnexion 3DxWare 10 22-08-2014 09:20:50 Geplanter Prüfpunkt 28-08-2014 07:51:46 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {0F74CBF8-F0AB-4D09-A0A4-ECDEC7B769F5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-27] (Google Inc.) Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate Task: {2D81FA65-A46C-4B4C-8920-99FE55AEFD35} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation) Task: {3637A630-D008-41FE-B1BD-2D1962D03F42} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86) [2014-08-29] () Task: {366383CD-DBDF-4964-9B03-79196F28ECBF} - System32\Tasks\ASUS GPUTweak => C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe [2014-01-27] (ASUS) Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation) Task: {3ED247E7-92E3-48FF-93FC-45EB414F77A0} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-01-16] (ASUSTek Computer Inc.) Task: {442DC8A2-C741-48D7-9E04-2AACFDEECEBD} - System32\Tasks\3DconnexionCreateProcess_3DxService.exe => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe [2014-08-12] (3Dconnexion, INC) Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance Task: {4CFAE4D0-308A-4DAB-A128-5864F9181E9A} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2013-10-07] (ASUS) Task: {531257E6-9A22-4C04-8E1F-8DDAAF5D3FBB} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics Task: {53FD2D24-4568-4695-8519-080BE88C9BD6} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2013-11-04] () Task: {552BFCBF-71F1-487B-BD8C-F7478C11CB4B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv Task: {574DA79E-E2E6-40CA-9C93-F4D91D5CF667} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd) Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task Task: {6F023883-0E88-41D8-AC7B-ADEB760BA6BB} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask Task: {925303F4-48FC-4175-8A4C-8A564E915C3F} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-10-07] (ASUSTeK Computer Inc.) Task: {93C6D254-EE13-4856-BD83-F909C18313C6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-08-12] (Microsoft Corporation) Task: {9826C1D7-CBBA-44B7-B4E0-6FC766129999} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation) Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work Task: {AC0A05F6-67D2-46AD-806B-EEF3E60B0605} - System32\Tasks\ASUS InstantOn Config => C:\Program Files\ASUS\P4G\InsOnCfg.exe Task: {AF2D7AF0-DA9E-4DE2-AB9E-D09DB0FC86D6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-27] (Google Inc.) Task: {C8A8DE0E-2937-4D95-8473-4FFAF85B0A73} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2013-08-29] (ASUS) Task: {CCC514F2-C40F-442A-8A51-BCA228391C95} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2013-11-27] () Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask Task: {D1D8C190-CCD8-4F37-AB51-826FE3646226} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-15] (Adobe Systems Incorporated) Task: {D5074ABE-4B8F-4F32-B5E6-8A1E8A022EE4} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86) [2014-08-29] () Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization Task: {E1FA15CD-122E-4A7A-A322-A02D13395AAB} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2014-08-27 15:01 - 2014-08-27 15:01 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll 2014-08-21 20:30 - 2014-06-30 13:26 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui 2014-08-21 20:30 - 2012-10-29 15:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll 2014-08-21 20:36 - 2014-08-21 20:36 - 00780592 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00047_002\ashttpbr.mdl 2014-08-21 20:36 - 2014-08-21 20:36 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00047_002\ashttpdsp.mdl 2014-08-21 20:36 - 2014-08-21 20:36 - 02602680 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00047_002\ashttpph.mdl 2014-08-21 20:36 - 2014-08-21 20:36 - 01323408 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00047_002\ashttprbl.mdl 2014-07-15 16:58 - 2014-05-20 03:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2013-10-25 12:05 - 2013-10-25 12:05 - 00049368 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll 2014-08-03 19:56 - 2012-11-09 21:30 - 00065536 _____ () C:\Program Files (x86)\Connectify\ConnectifyService.exe 2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\SYSTEM32\SPWINI.dll 2014-02-19 01:26 - 2014-02-19 01:26 - 00232328 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll 2014-02-19 01:26 - 2014-02-19 01:26 - 00048520 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll 2014-02-19 01:26 - 2014-02-19 01:26 - 00059784 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll 2014-02-19 01:26 - 2014-02-19 01:26 - 00922504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll 2013-08-29 16:01 - 2013-08-29 16:01 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll 2014-01-27 16:41 - 2014-01-27 16:41 - 00011264 _____ () C:\Program Files\ASUS\ASUS GPU Tweak\WMIProc.dll 2014-01-27 16:41 - 2014-01-27 16:41 - 00320000 _____ () C:\Program Files\ASUS\ASUS GPU Tweak\NavpiWrapper.dll 2014-07-18 16:13 - 2014-06-21 08:19 - 00047496 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2014-07-18 16:13 - 2014-06-21 08:19 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2014-08-03 19:56 - 2012-11-09 21:30 - 00090472 _____ () C:\Program Files (x86)\Connectify\NativeLibrary.dll 2014-08-03 19:56 - 2012-11-09 21:30 - 00035176 _____ () C:\Program Files (x86)\Connectify\DriverLib.dll 2014-08-03 19:56 - 2012-11-09 21:30 - 01068904 _____ () C:\Program Files (x86)\Connectify\ConnectifyNAT.dll 2014-08-03 19:56 - 2012-11-09 21:30 - 00185704 _____ () C:\Program Files (x86)\Connectify\LibDispatch.dll 2014-08-03 19:56 - 2012-11-09 21:30 - 00016232 _____ () C:\Program Files (x86)\Connectify\BuildProps.dll 2014-08-03 19:56 - 2012-11-09 21:30 - 00777064 _____ () C:\Program Files (x86)\Connectify\Vendors.dll 2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2013-10-08 20:41 - 2013-10-08 20:41 - 00037968 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2013-09-09 18:23 - 2013-09-09 18:23 - 00162816 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2014-08-29 09:13 - 2014-08-29 09:13 - 00043008 _____ () c:\users\dominic\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp2dtthx.dll 2014-08-21 20:09 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\Dominic\AppData\Roaming\Dropbox\bin\libcef.dll 2014-08-29 09:13 - 2014-06-21 08:19 - 00104328 _____ () C:\Users\Dominic\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll 2014-07-15 16:52 - 2013-10-23 13:44 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Users\Dominic\SkyDrive:ms-properties AlternateDataStreams: C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager.exe:BDU AlternateDataStreams: C:\Users\Dominic\Downloads\epson327357eu.EXE:BDU AlternateDataStreams: C:\Users\Dominic\Downloads\FRST64.exe:BDU AlternateDataStreams: C:\Users\Dominic\Downloads\Gmer-19357.exe:BDU AlternateDataStreams: C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe:BDU ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\Run: => "Connectify Dispatch" HKLM\...\StartupApproved\Run32: => "ROGNB" HKLM\...\StartupApproved\Run32: => "CLMLServer" HKLM\...\StartupApproved\Run32: => "RemoteControl10" HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent" HKCU\...\StartupApproved\Run: => "Connectify" ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/29/2014 10:06:03 AM) (Source: MsiInstaller) (EventID: 1002) (User: DOMINIC-ROG) Description: Nicht erwarteter oder fehlender Wert (Name: "PackageCode", Wert: "GUID") für Schlüssel "HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219". Error: (08/28/2014 03:03:28 PM) (Source: MsiInstaller) (EventID: 1002) (User: DOMINIC-ROG) Description: Nicht erwarteter oder fehlender Wert (Name: "PackageCode", Wert: "GUID") für Schlüssel "HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219". Error: (08/28/2014 07:20:21 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm LiveComm.exe, Version 17.5.9600.20573 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: b14 Startzeit: 01cfc27f07b1a8eb Endzeit: 4294967295 Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\LiveComm.exe Berichts-ID: 00653647-2e73-11e4-827d-54271e912190 Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1 Error: (08/27/2014 04:44:28 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm Gmer-19357.exe, Version 2.1.19357.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 674 Startzeit: 01cfc202e625ec8c Endzeit: 0 Anwendungspfad: C:\Users\Dominic\Downloads\Gmer-19357.exe Berichts-ID: a1e7a9e4-2df8-11e4-827c-54271e912190 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (08/27/2014 04:26:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83 Name des fehlerhaften Moduls: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000011aa ID des fehlerhaften Prozesses: 0x138c Startzeit der fehlerhaften Anwendung: 0xGmer-19357.exe0 Pfad der fehlerhaften Anwendung: Gmer-19357.exe1 Pfad des fehlerhaften Moduls: Gmer-19357.exe2 Berichtskennung: Gmer-19357.exe3 Vollständiger Name des fehlerhaften Pakets: Gmer-19357.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Gmer-19357.exe5 Error: (08/27/2014 04:21:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83 Name des fehlerhaften Moduls: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000011aa ID des fehlerhaften Prozesses: 0x1388 Startzeit der fehlerhaften Anwendung: 0xGmer-19357.exe0 Pfad der fehlerhaften Anwendung: Gmer-19357.exe1 Pfad des fehlerhaften Moduls: Gmer-19357.exe2 Berichtskennung: Gmer-19357.exe3 Vollständiger Name des fehlerhaften Pakets: Gmer-19357.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Gmer-19357.exe5 Error: (08/27/2014 04:20:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: WSCommCntr4.exe, Version: 4.0.3.0, Zeitstempel: 0x52df746e Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.17114, Zeitstempel: 0x53649e73 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000000030489 ID des fehlerhaften Prozesses: 0x1b38 Startzeit der fehlerhaften Anwendung: 0xWSCommCntr4.exe0 Pfad der fehlerhaften Anwendung: WSCommCntr4.exe1 Pfad des fehlerhaften Moduls: WSCommCntr4.exe2 Berichtskennung: WSCommCntr4.exe3 Vollständiger Name des fehlerhaften Pakets: WSCommCntr4.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WSCommCntr4.exe5 Error: (08/27/2014 04:11:17 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83 Name des fehlerhaften Moduls: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000011aa ID des fehlerhaften Prozesses: 0x510 Startzeit der fehlerhaften Anwendung: 0xGmer-19357.exe0 Pfad der fehlerhaften Anwendung: Gmer-19357.exe1 Pfad des fehlerhaften Moduls: Gmer-19357.exe2 Berichtskennung: Gmer-19357.exe3 Vollständiger Name des fehlerhaften Pakets: Gmer-19357.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Gmer-19357.exe5 Error: (08/27/2014 03:54:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DOMINIC-ROG) Description: Bei der Aktivierung der App „Microsoft.Reader_8wekyb3d8bbwe!Microsoft.Reader“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (08/27/2014 10:54:00 AM) (Source: MsiInstaller) (EventID: 1002) (User: NT-AUTORITÄT) Description: Nicht erwarteter oder fehlender Wert (Name: "PackageCode", Wert: "GUID") für Schlüssel "HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219". System errors: ============= Error: (08/28/2014 07:15:03 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 27.08.2014 um 21:13:34 unerwartet heruntergefahren. Error: (08/28/2014 07:14:52 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT) Description: 32212256841128816 Error: (08/27/2014 03:58:01 PM) (Source: DCOM) (EventID: 10005) (User: DOMINIC-ROG) Description: 1084WSearchNicht verfügbar{9E175B68-F52A-11D8-B9A5-505054503030} Error: (08/27/2014 03:58:01 PM) (Source: DCOM) (EventID: 10005) (User: DOMINIC-ROG) Description: 1084ShellHWDetectionNicht verfügbar{DD522ACC-F821-461A-A407-50B198B896DC} Error: (08/27/2014 03:57:43 PM) (Source: DCOM) (EventID: 10005) (User: DOMINIC-ROG) Description: 1084ShellHWDetectionNicht verfügbar{DD522ACC-F821-461A-A407-50B198B896DC} Error: (08/27/2014 03:57:43 PM) (Source: DCOM) (EventID: 10010) (User: DOMINIC-ROG) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (08/27/2014 03:57:18 PM) (Source: DCOM) (EventID: 10005) (User: DOMINIC-ROG) Description: 1084ShellHWDetectionNicht verfügbar{DD522ACC-F821-461A-A407-50B198B896DC} Error: (08/27/2014 03:57:14 PM) (Source: DCOM) (EventID: 10005) (User: DOMINIC-ROG) Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (08/27/2014 03:57:14 PM) (Source: DCOM) (EventID: 10005) (User: DOMINIC-ROG) Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (08/27/2014 03:57:14 PM) (Source: DCOM) (EventID: 10005) (User: DOMINIC-ROG) Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Microsoft Office Sessions: ========================= Error: (08/29/2014 10:06:03 AM) (Source: MsiInstaller) (EventID: 1002) (User: DOMINIC-ROG) Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL) Error: (08/28/2014 03:03:28 PM) (Source: MsiInstaller) (EventID: 1002) (User: DOMINIC-ROG) Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL) Error: (08/28/2014 07:20:21 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: LiveComm.exe17.5.9600.20573b1401cfc27f07b1a8eb4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\LiveComm.exe00653647-2e73-11e4-827d-54271e912190microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1 Error: (08/27/2014 04:44:28 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Gmer-19357.exe2.1.19357.067401cfc202e625ec8c0C:\Users\Dominic\Downloads\Gmer-19357.exea1e7a9e4-2df8-11e4-827c-54271e912190 Error: (08/27/2014 04:26:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Gmer-19357.exe2.1.19357.052e7ea83Gmer-19357.exe2.1.19357.052e7ea83c0000005000011aa138c01cfc202da71c569C:\Users\Dominic\Downloads\Gmer-19357.exeC:\Users\Dominic\Downloads\Gmer-19357.exe1f50863c-2df6-11e4-827c-54271e912190 Error: (08/27/2014 04:21:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Gmer-19357.exe2.1.19357.052e7ea83Gmer-19357.exe2.1.19357.052e7ea83c0000005000011aa138801cfc2023194ffbfC:\Users\Dominic\Downloads\Gmer-19357.exeC:\Users\Dominic\Downloads\Gmer-19357.exe7f0ac1f2-2df5-11e4-827c-54271e912190 Error: (08/27/2014 04:20:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: WSCommCntr4.exe4.0.3.052df746entdll.dll6.3.9600.1711453649e73c000000500000000000304891b3801cfc2020ad78d84C:\Program Files\Common Files\Autodesk Shared\WSCommCntr4\lib\WSCommCntr4.exeC:\Windows\SYSTEM32\ntdll.dll48fb5060-2df5-11e4-827c-54271e912190 Error: (08/27/2014 04:11:17 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Gmer-19357.exe2.1.19357.052e7ea83Gmer-19357.exe2.1.19357.052e7ea83c0000005000011aa51001cfc200b8c4fdf7C:\Users\Dominic\AppData\Local\Microsoft\Windows\INetCache\IE\66NEDYZO\Gmer-19357.exeC:\Users\Dominic\AppData\Local\Microsoft\Windows\INetCache\IE\66NEDYZO\Gmer-19357.exe02a7924f-2df4-11e4-827c-54271e912190 Error: (08/27/2014 03:54:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DOMINIC-ROG) Description: Microsoft.Reader_8wekyb3d8bbwe!Microsoft.Reader-2144927141 Error: (08/27/2014 10:54:00 AM) (Source: MsiInstaller) (EventID: 1002) (User: NT-AUTORITÄT) Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL) CodeIntegrity Errors: =================================== Date: 2014-08-21 20:29:18.704 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.646 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.581 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.514 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.447 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.379 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.321 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.258 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.191 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-08-21 20:29:18.129 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-4700HQ CPU @ 2.40GHz Percentage of memory in use: 32% Total physical RAM: 8074.96 MB Available physical RAM: 5474.26 MB Total Pagefile: 9354.96 MB Available Pagefile: 6276.32 MB Total Virtual: 131072 MB Available Virtual: 131071.83 MB ==================== Drives ================================ Drive c: (System) (Fixed) (Total:232.37 GB) (Free:129.69 GB) NTFS Drive d: (Spiele usw.) (Fixed) (Total:559.88 GB) (Free:498.86 GB) NTFS Drive e: (Daten) (Fixed) (Total:837.26 GB) (Free:616.2 GB) NTFS Drive g: (Prototype 2 - Di) (CDROM) (Total:1.37 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 1397.3 GB) (Disk ID: AAC2D8E4) Partition: GPT Partition Type. ======================================================== Disk: 1 (Size: 232.9 GB) (Disk ID: AAC2D8E4) Partition: GPT Partition Type. ==================== End Of Log ============================ |
30.08.2014, 06:54 | #8 |
/// the machine /// TB-Ausbilder | Win 8, Chrome extrem langsam und about:blank wird geöffnet Kann daran liegen, oder einfach am Keyboard. Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
30.08.2014, 12:49 | #9 |
| Win 8, Chrome extrem langsam und about:blank wird geöffnet malewarebytes: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Protection, 27.08.2014 14:39:23, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Starting, Protection, 27.08.2014 14:39:23, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Started, Protection, 27.08.2014 14:39:23, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Starting, Protection, 27.08.2014 14:39:24, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Started, Update, 27.08.2014 14:39:29, SYSTEM, DOMINIC-ROG, Manual, Rootkit Database, 2014.2.20.1, 2014.8.21.1, Update, 27.08.2014 14:39:41, SYSTEM, DOMINIC-ROG, Manual, Malware Database, 2014.3.4.9, 2014.8.27.2, Protection, 27.08.2014 14:39:42, SYSTEM, DOMINIC-ROG, Protection, Refresh, Starting, Protection, 27.08.2014 14:39:42, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Stopping, Protection, 27.08.2014 14:39:43, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Stopped, Protection, 27.08.2014 14:39:50, SYSTEM, DOMINIC-ROG, Protection, Refresh, Success, Protection, 27.08.2014 14:39:50, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Starting, Protection, 27.08.2014 14:39:50, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Started, Protection, 27.08.2014 15:45:35, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Starting, Protection, 27.08.2014 15:45:35, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Started, Protection, 27.08.2014 15:45:35, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Starting, Protection, 27.08.2014 15:45:36, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Started, Protection, 27.08.2014 15:54:03, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Starting, Protection, 27.08.2014 15:54:03, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Started, Protection, 27.08.2014 15:54:03, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Starting, Protection, 27.08.2014 15:54:04, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Started, Protection, 27.08.2014 15:55:11, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Starting, Protection, 27.08.2014 15:55:11, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Started, Protection, 27.08.2014 15:55:11, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Starting, Protection, 27.08.2014 15:55:11, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Started, Protection, 27.08.2014 15:58:22, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Starting, Protection, 27.08.2014 15:58:22, SYSTEM, DOMINIC-ROG, Protection, Malware Protection, Started, Protection, 27.08.2014 15:58:22, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Starting, Protection, 27.08.2014 15:58:22, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Started, Update, 27.08.2014 16:37:25, SYSTEM, DOMINIC-ROG, Scheduler, Malware Database, 2014.8.27.2, 2014.8.27.4, Protection, 27.08.2014 16:37:27, SYSTEM, DOMINIC-ROG, Protection, Refresh, Starting, Protection, 27.08.2014 16:37:27, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Stopping, Protection, 27.08.2014 16:37:27, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Stopped, Protection, 27.08.2014 16:37:37, SYSTEM, DOMINIC-ROG, Protection, Refresh, Success, Protection, 27.08.2014 16:37:37, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Starting, Protection, 27.08.2014 16:37:37, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Started, Update, 27.08.2014 18:19:34, SYSTEM, DOMINIC-ROG, Scheduler, Malware Database, 2014.8.27.4, 2014.8.27.5, Protection, 27.08.2014 18:19:35, SYSTEM, DOMINIC-ROG, Protection, Refresh, Starting, Protection, 27.08.2014 18:19:35, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Stopping, Protection, 27.08.2014 18:19:35, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Stopped, Protection, 27.08.2014 18:19:44, SYSTEM, DOMINIC-ROG, Protection, Refresh, Success, Protection, 27.08.2014 18:19:44, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Starting, Protection, 27.08.2014 18:19:44, SYSTEM, DOMINIC-ROG, Protection, Malicious Website Protection, Started, (end) AdwCleaner: Code:
ATTFilter # AdwCleaner v3.308 - Bericht erstellt am 27/08/2014 um 15:51:59 # Aktualisiert 20/08/2014 von Xplode # Betriebssystem : Windows 8.1 (64 bits) # Benutzername : Dominic - DOMINIC-ROG # Gestartet von : C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe # Option : Löschen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** Ordner Gelöscht : C:\ProgramData\Systweak Ordner Gelöscht : C:\Users\Dominic\AppData\Roaming\Systweak Datei Gelöscht : C:\Windows\System32\roboot64.exe ***** [ Tasks ] ***** ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} Schlüssel Gelöscht : HKCU\Software\OCS ***** [ Browser ] ***** -\\ Internet Explorer v11.0.9600.17239 -\\ Google Chrome v37.0.2062.94 [ Datei : C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\preferences ] Gelöscht [Startup_urls] : hxxp://www.trovi.com/?gd=&ctid=CT3320326&octid=EB_ORIGINAL_CTID&ISID=M234FF8CB-B6D6-4CE5-9227-3D9F30027F24&SearchSource=55&CUI=&UM=6&UP=SP155A4552-9217-414F-842E-5609BFB8E78E&SSPV= Gelöscht [Startup_urls] : hxxp://www.sweet-page.com/?type=hp&ts=1404845472&from=cor&uid=HitachiXHTS543232L9A300_090107FB2400LED1H44AX ************************* AdwCleaner[R0].txt - [2561 octets] - [27/08/2014 15:49:47] AdwCleaner[S0].txt - [2424 octets] - [27/08/2014 15:51:59] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2484 octets] ########## Junkware Removal Tool Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.4 (04.06.2014:1) OS: Windows 8.1 x64 Ran by Dominic on 30.08.2014 at 13:23:07,90 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 30.08.2014 at 13:29:43,04 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Ich habe die ersten zwei Programme schon vor 3 Tagen ausgeführt, direkt als das Problem auftrat. Diese zwei Dokumente hab ich auch hier gepostet. Die älteren bzw. die von heute sind leer oder es steht das gleich drin nur mit dem Datum 27.08 eben. |
30.08.2014, 15:41 | #10 |
/// the machine /// TB-Ausbilder | Win 8, Chrome extrem langsam und about:blank wird geöffnetESET Online Scanner
Downloade Dir bitte SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
01.09.2014, 12:33 | #11 |
| Win 8, Chrome extrem langsam und about:blank wird geöffnetCode:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7623 # api_version=3.0.2 # EOSSerial=939ae52997fbe746a273ada1df80d0a6 # engine=19936 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2014-09-01 10:49:57 # local_time=2014-09-01 12:49:57 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1031 # osver=6.2.9200 NT # compatibility_mode_1='Bitdefender Antivirus' # compatibility_mode=2066 16777213 100 100 9884 113413906 0 0 # compatibility_mode_1='' # compatibility_mode=5893 16776574 100 94 923390 13952118 0 0 # scanned=361001 # found=11 # cleaned=11 # scan_time=6865 sh=91DC006B84C4F51ADCADC1BB498E3376FC40130E ft=1 fh=c3b5952672b90e6f vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Windows\System32\roboot64.exe.vir" sh=972DB9071C719922142BE77CF935C208B66F8DE2 ft=1 fh=c50a95d882970223 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\AppData\Local\Temp\OCS\ocs_v71b.exe" sh=2552432501BB1817A86FB4CD141C2AA1B8E34650 ft=1 fh=d4b3877a3411dcbb vn="Variante von Win32/Speedchecker.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\accee398d56e30b768f190d8ff1eb83e\pcspeedup.exe" sh=1CCD91D77872F5FCD2F595423DE5008665D97084 ft=1 fh=235f9da24e93466a vn="Variante von Win32/Speedchecker.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\Documents\PCSUUpdate.exe" sh=23E3FFEB910EFAD038B41493DD99018EAA7AF1C8 ft=1 fh=7dcb11e9a8fe89e5 vn="Variante von Win32/InstallCore.QH evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager.exe" sh=0014EAECE67F8BA857083C52DECBC3213C60F669 ft=1 fh=16d3e00daec3798a vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\Downloads\Setups\Chrome YouTube Downloader - CHIP-Installer.exe" sh=FD1F5A2E2A8A00E015D54D0C87FC4F440E8E4309 ft=1 fh=2382e3fa9f765081 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\Downloads\Setups\Classic Shell - CHIP-Installer.exe" sh=B81622A5B9BB23083D90FAD77D0D5EEF7B6E6A8A ft=1 fh=295a60c62ef2fe00 vn="Variante von Win32/Systweak evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\Downloads\Setups\dffsetup-xinput1_3.exe" sh=E953BB6B7A5213778D0C741EA6E3067A047DAED7 ft=1 fh=d41e831b22f0e02e vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\Downloads\Setups\GPU Tweak - CHIP-Installer.exe" sh=9E026C25E1D8DC3D7615587DE54A59A0EEE556AF ft=1 fh=8b1db58b5561d3d7 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\Downloads\Setups\Steam - CHIP-Installer.exe" sh=DF6FA392FA4965079C1B2765393D8558C1993F96 ft=1 fh=07d07a5005a1122f vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Dominic\Downloads\Setups\Virtual CloneDrive - CHIP-Installer.exe" Code:
ATTFilter Results of screen317's Security Check version 0.99.87 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Bitdefender Antivirus Windows Defender Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Java 8 Update 5 Java version out of Date! Adobe Flash Player 14.0.0.145 Adobe Reader XI Google Chrome 37.0.2062.102 Google Chrome 37.0.2062.94 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbam.exe Malwarebytes Anti-Malware mbamscheduler.exe Bitdefender Bitdefender 2015 vsserv.exe Bitdefender Bitdefender 2015 updatesrv.exe Bitdefender Bitdefender 2015 bdagent.exe Bitdefender Bitdefender 2015 bdwtxag.exe Bitdefender Bitdefender 2015 Antispam32 bdwtxapps.exe Bitdefender Bitdefender 2015 seccenter.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-08-2014 02 Ran by Dominic (administrator) on DOMINIC-ROG on 01-09-2014 13:32:29 Running from C:\Users\Dominic\Downloads Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe () C:\Program Files (x86)\Connectify\ConnectifyService.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe ( ) C:\Autodesk2013\Inventor 2013\Moldflow\bin\mitsijm.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE () C:\Users\Dominic\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe () C:\Users\Dominic\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\3356edf7a88e475d88eac25e50bcafe7\AddonsHelper.exe () C:\Program Files (x86)\PC Speed Up\PCSUService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (3Dconnexion, INC) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe (3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3dxpiemenus.exe (Akamai Technologies, Inc.) C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwtxapps.exe (Dropbox, Inc.) C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Autodesk Inc.) C:\Users\Dominic\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (ASUS) C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\seccenter.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2893576 2014-07-12] (ELAN Microelectronics Corp.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation) HKLM\...\Run: [3DxWare Service] => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe [2157952 2014-08-12] (3Dconnexion, INC) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1580360 2014-08-27] (Bitdefender) HKLM\...\Run: [Ocs_SM] => C:\Users\Dominic\AppData\Roaming\OCS\SM\SearchAnonymizer.exe [106496 2014-08-30] (OCS) HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] () HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.) HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [110144 2013-03-06] (CyberLink) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [224128 2014-03-18] (Oracle Corporation) HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-06-21] (Autodesk Inc.) HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.) HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795672 2014-04-28] (CyberLink Corp.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Power2GoExpress] => NA HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Connectify] => C:\Program Files (x86)\Connectify\Connectify.exe [4013928 2012-11-09] (Connectify) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [815088 2014-08-27] (Bitdefender) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\MountPoints2: {19267988-11c9-11e4-826a-54271e912190} - "F:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\MountPoints2: {3e1ef5a4-0c46-11e4-825c-54271e912190} - "G:\start.exe" HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Power2GoExpress] => NA HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Akamai NetSession Interface] => C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Connectify] => C:\Program Files (x86)\Connectify\Connectify.exe [4013928 2012-11-09] (Connectify) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [815088 2014-08-27] (Bitdefender) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [PCSpeedUp] => C:\Program Files (x86)\PC Speed Up\PCSUNotifier.exe HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {19267988-11c9-11e4-826a-54271e912190} - "F:\HTC_Sync_Manager_PC.exe" Startup: C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.) ShellIconOverlayIdentifiers: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) ShellIconOverlayIdentifiers-x32: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDC8E8B31C9C1CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM-x32 - DefaultScope {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://www.firetab.org/?type=ds3se&p={searchTerms} SearchScopes: HKLM-x32 - {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://www.firetab.org/?type=ds3se&p={searchTerms} SearchScopes: HKCU - DefaultScope {0997AEDD-ADAD-42EF-9078-0CD2C51FD4CB} URL = hxxp://www.google.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E676F6F676C652E636F6D2F7365617263683F713D7B7365617263685465726D737D26616D703B736F7572636569643D69653726616D703B726C733D636F6D2E6D6963726F736F66743A7B6C616E67756167657D3A7B72656665727265723A736F757263657D26616D703B69653D7B696E707574456E636F64696E673F7D266F653D7B6F7574707574456E636F64696E673F7D&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&k=0 SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E62696E672E636F6D2F7365617263683F713D7B7365617263685465726D737D267372633D49452D536561726368426F7826464F524D3D494538535243&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&k=0 SearchScopes: HKCU - {0997AEDD-ADAD-42EF-9078-0CD2C51FD4CB} URL = hxxp://www.google.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E676F6F676C652E636F6D2F7365617263683F713D7B7365617263685465726D737D26616D703B736F7572636569643D69653726616D703B726C733D636F6D2E6D6963726F736F66743A7B6C616E67756167657D3A7B72656665727265723A736F757263657D26616D703B69653D7B696E707574456E636F64696E673F7D266F653D7B6F7574707574456E636F64696E673F7D&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&k=0 SearchScopes: HKCU - {4BD2C1BC-5C6A-49DE-83BD-8EF7F59F6169} URL = hxxp://www.otto.de.anonymize-me.de/?to=6F74746F2E6465&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&mode=bounce&k=0 SearchScopes: HKCU - {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://www.firetab.org/?type=ds3se&p={searchTerms} SearchScopes: HKCU - {77F17081-CA0A-4A77-AB94-F52007930020} URL = hxxp://www.pricerunner.de.anonymize-me.de/?to=707269636572756E6E65722E6465&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&mode=bounce&k=0 SearchScopes: HKCU - {9E089E82-E5C2-4DDE-B5DF-613406888A42} URL = hxxp://de.wikipedia.org.anonymize-me.de/?to=64652E77696B6970656469612E6F7267&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&mode=bounce&k=0 SearchScopes: HKCU - {ABF5CB1A-C982-4A16-B3CB-FFA57DE31B4C} URL = hxxp://www.myvideo.de.anonymize-me.de/?to=6D79766964656F2E6465&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&mode=bounce&k=0 SearchScopes: HKCU - {B7BD8CDB-4276-4881-85ED-3F6A0E3E99D3} URL = hxxp://search.ebay.de.anonymize-me.de/?to=656261792E6465&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&mode=bounce&k=0 SearchScopes: HKCU - {EECC753E-7D61-4D58-8B0A-53626BF7BCB8} URL = hxxp://www.amazon.de.anonymize-me.de/?to=616D617A6F6E2E6465&st={searchTerms}&clid=865d0922-910a-4a84-86c9-2305631671d1&pid=chipde&mode=bounce&k=0 BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft) BHO-x32: PriceSparrow -> {3F2DC1E7-A56F-49D8-B0CF-DB2300594497} -> C:\Program Files (x86)\PriceSparrow\Internet Explorer\pricesparrow.dll () BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO-x32: DNS Error Helper -> {9B6B03F1-16CF-4491-BBBB-E872802DD717} -> C:\ProgramData\DNSErrorHelper\bho.dll () BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll () FF Plugin: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-08-21] FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-08-21] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-07-22] Chrome: ======= CHR HomePage: Default -> hxxp://www.chromefans.org/ CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-08-27] CHR Extension: (TooManyTabs für Chrome) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2014-08-27] CHR Extension: (Google Docs) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-27] CHR Extension: (Google Drive) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-27] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-27] CHR Extension: (YouTube) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-27] CHR Extension: (Adblock Plus) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-08-27] CHR Extension: (Google-Suche) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-27] CHR Extension: (PanicButton) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2014-08-27] CHR Extension: (Google Tabellen) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-08-27] CHR Extension: (CHIP Online) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd [2014-08-27] CHR Extension: (LastPass: Free Password Manager) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-08-27] CHR Extension: (Dropbox) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2014-08-27] CHR Extension: (Andrew@ChromeFans) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\jollpecbpialleljionejgkdgjfgamma [2014-08-27] CHR Extension: (Quick Earth) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\khodocggeplgfhppgagfdpbjkniadmdh [2014-08-27] CHR Extension: (Google Play) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-08-27] CHR Extension: (Google Maps) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-08-27] CHR Extension: (Google Wallet) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-27] CHR Extension: (The Tracktor - Price History Tracker) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\onajjgekdldckfgodnmoallcmdmfcfom [2014-08-27] CHR Extension: (Google Mail) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-27] CHR HKLM-x32\...\Chrome\Extension: [kljkanaekoongefljnjbghkgjjocmikm] - C:\Program Files (x86)\PriceSparrow\Chrome\pricesparrow-1.4.9.crx [2013-03-11] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [596360 2014-06-21] (Autodesk Inc.) R2 AddonsHelper; C:\Users\Dominic\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\3356edf7a88e475d88eac25e50bcafe7\AddonsHelper.exe [896512 2014-08-30] () [File not signed] R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS) S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.) S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [77632 2014-08-27] (Bitdefender) R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [65536 2012-11-09] () [File not signed] R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100104 2014-07-12] (ELAN Microelectronics Corp.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [File not signed] R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) R2 Mgl3DCtlrRPCService; C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe [30208 2014-08-12] (3Dconnexion) [File not signed] R2 mitsijm2013; C:\Autodesk2013\Inventor 2013\Moldflow\bin\mitsijm.exe [339776 2012-01-31] ( ) R2 mitsijm2015; C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [968480 2013-10-12] (Autodesk, Inc.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation) R4 PCSUService; C:\Program Files (x86)\PC Speed Up\PCSUService.exe [430888 2014-07-21] () R2 SearchAnonymizer; C:\Users\Dominic\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe [40960 2014-08-30] () [File not signed] R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-08-27] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1513952 2014-08-27] (Bitdefender) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 3dxhid; C:\Windows\System32\drivers\3dxhid.sys [38672 2014-06-12] (3Dconnexion SAM) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1260120 2014-08-27] (BitDefender) R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2013-07-17] (BitDefender) S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-08-27] (BitDefender) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7488176 2014-07-15] (Broadcom Corporation) S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender) R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-11-19] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC) S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) R1 cnnctfy2; C:\Windows\system32\DRIVERS\cnnctfy2.sys [31344 2014-08-03] (Connectify) U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [100072 2014-07-12] (GenesysLogic) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2014-07-12] ( ) R3 KMJHidMini; C:\Windows\System32\drivers\3dxkmj.sys [18944 2014-05-12] (3Dconnextion Inc.) R3 KMJShim; C:\Windows\System32\drivers\3dxshim.sys [7168 2014-05-12] (3Dconnextion Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-01] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [419616 2014-08-27] (BitDefender S.R.L.) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [32456 2014-04-28] (CyberLink Corp.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-01 13:32 - 2014-09-01 13:32 - 00000000 ____D () C:\Users\Dominic\Downloads\FRST-OlderVersion 2014-09-01 13:29 - 2014-09-01 13:29 - 00854417 _____ () C:\Users\Dominic\Downloads\SecurityCheck.exe 2014-09-01 10:51 - 2014-09-01 10:51 - 02347384 _____ (ESET) C:\Users\Dominic\Downloads\esetsmartinstaller_deu.exe 2014-09-01 10:51 - 2014-09-01 10:51 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-08-31 10:13 - 2014-08-31 10:13 - 00001111 _____ () C:\Users\Dominic\Desktop\WolfNewOrder_x64.exe - Verknüpfung.lnk 2014-08-30 14:40 - 2014-08-30 14:40 - 00000493 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfenstein The New Order.lnk 2014-08-30 14:14 - 2014-08-30 14:14 - 00000000 ____D () C:\Users\Dominic\Desktop\Privat 2014-08-30 13:41 - 2014-08-30 13:41 - 00057128 _____ () C:\Users\Dominic\Documents\PCSpeedUp-Silent-Update.exe 2014-08-30 13:33 - 2014-09-01 11:04 - 00000374 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job 2014-08-30 13:33 - 2014-08-30 13:42 - 00000000 ____D () C:\Program Files (x86)\PC Speed Up 2014-08-30 13:33 - 2014-08-30 13:41 - 00002736 _____ () C:\Windows\System32\Tasks\PC SpeedUp Service Deactivator 2014-08-30 13:33 - 2014-08-30 13:33 - 00003762 _____ () C:\Windows\System32\Tasks\pricesparrowSWU 2014-08-30 13:33 - 2014-08-30 13:33 - 00000000 ____D () C:\Program Files (x86)\PriceSparrow 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Opera 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\OCS 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\ProgramData\DNSErrorHelper 2014-08-30 13:23 - 2014-08-30 13:23 - 00000000 ____D () C:\Windows\ERUNT 2014-08-30 13:22 - 2014-08-30 13:22 - 01016261 _____ (Thisisu) C:\Users\Dominic\Downloads\JRT.exe 2014-08-30 13:12 - 2014-08-30 13:12 - 00000310 _____ () C:\Windows\PFRO.log 2014-08-30 13:02 - 2014-08-30 13:04 - 00000000 ____D () C:\Users\Dominic\Desktop\Malebytes 2014-08-29 10:23 - 2014-08-29 10:24 - 00080443 _____ () C:\Users\Dominic\Downloads\Addition.txt 2014-08-29 10:12 - 2014-08-29 10:12 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Adobe 2014-08-29 10:06 - 2014-08-29 10:06 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-08-29 10:06 - 2014-08-29 10:06 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-08-29 10:05 - 2014-08-29 10:13 - 00000000 ____D () C:\ProgramData\Adobe 2014-08-28 15:07 - 2014-08-28 15:07 - 00000000 ____D () C:\Users\Dominic\Documents\Activision 2014-08-28 14:42 - 2014-09-01 13:32 - 00032286 _____ () C:\Users\Dominic\Downloads\FRST.txt 2014-08-28 14:41 - 2014-09-01 13:32 - 02104832 _____ (Farbar) C:\Users\Dominic\Downloads\FRST64.exe 2014-08-28 07:21 - 2014-08-23 02:42 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-27 20:59 - 2014-08-27 20:59 - 00000000 ____D () C:\ProgramData\Codemasters 2014-08-27 20:56 - 2014-08-27 20:56 - 00000527 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRID Autosport.lnk 2014-08-27 16:12 - 2014-08-27 16:12 - 00380416 _____ () C:\Users\Dominic\Downloads\Gmer-19357.exe 2014-08-27 16:08 - 2014-09-01 13:32 - 00000000 ____D () C:\FRST 2014-08-27 16:07 - 2014-08-27 16:07 - 00000000 _____ () C:\Users\Dominic\defogger_reenable 2014-08-27 15:50 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-08-27 15:49 - 2014-08-30 13:11 - 00000000 ____D () C:\AdwCleaner 2014-08-27 15:49 - 2014-08-27 15:49 - 01364531 _____ () C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe 2014-08-27 15:01 - 2014-08-27 15:01 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-08-27 15:00 - 2014-08-27 15:00 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-08-27 14:39 - 2014-09-01 09:23 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-27 14:39 - 2014-08-27 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:39 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 14:38 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-08-27 14:38 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-08-27 14:38 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-08-27 14:30 - 2014-08-30 13:26 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung 2014-08-27 10:50 - 2014-08-27 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-27 10:49 - 2014-09-01 11:54 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-27 10:49 - 2014-09-01 10:54 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-27 10:49 - 2014-08-27 10:49 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-08-27 10:49 - 2014-08-27 10:49 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Deployment 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Apps\2.0 2014-08-27 09:56 - 2014-08-27 09:56 - 00007612 _____ () C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg 2014-08-25 10:38 - 2014-08-25 10:38 - 00000146 _____ () C:\Users\Dominic\Desktop\Sound - Verknüpfung.lnk 2014-08-25 10:29 - 2014-08-25 10:29 - 00000729 _____ () C:\Users\Dominic\Downloads\vcard-Nicole-Karagoel.vcf 2014-08-24 12:49 - 2014-08-24 12:49 - 03561351 _____ () C:\Users\Dominic\Downloads\Anhänge_2014824.zip 2014-08-24 11:29 - 2014-08-25 10:33 - 00013340 _____ () C:\Users\Dominic\Desktop\Anrufsliste.xlsx 2014-08-23 18:36 - 2014-08-23 18:36 - 00000000 ____D () C:\Users\Dominic\.android 2014-08-23 18:31 - 2014-08-23 18:32 - 07319280 _____ () C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe 2014-08-23 15:21 - 2014-08-23 15:21 - 00534787 _____ () C:\Users\Dominic\Downloads\Filme_RoboCop 2014 German BDRip AC3 XviD-SMY.nzb 2014-08-23 15:20 - 2014-08-23 15:20 - 00532504 _____ () C:\Users\Dominic\Downloads\Filme_The.Expendables.3.2014.German.AC3D.DVDScreener.XviD-HCS.nzb 2014-08-23 13:23 - 2014-08-23 13:23 - 03877424 _____ (SEIKO EPSON CORPORATION) C:\Users\Dominic\Downloads\epson327357eu.EXE 2014-08-23 11:55 - 2014-08-23 13:14 - 00000000 ____D () C:\Program Files (x86)\epson 2014-08-23 11:12 - 2014-08-23 11:12 - 05323226 _____ () C:\Users\Dominic\Downloads\2014_Frühjahr.rar 2014-08-22 09:41 - 2014-08-22 09:41 - 09261687 _____ () C:\Users\Dominic\Downloads\oberflchen.zip 2014-08-22 09:41 - 2014-08-22 09:41 - 00020441 _____ () C:\Users\Dominic\Downloads\bewrsbdrtz.zip 2014-08-22 08:32 - 2014-08-22 08:32 - 00000385 _____ () C:\Users\Dominic\AppData\Roaminguser_gensett.xml 2014-08-22 08:31 - 2014-08-22 08:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-08-21 20:52 - 2014-08-21 20:52 - 00590437 _____ () C:\ProgramData\1408645228.bdinstall.bin 2014-08-21 20:45 - 2014-08-24 08:59 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml 2014-08-21 20:30 - 2014-08-27 14:59 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\BDLogging 2014-08-21 20:30 - 2013-11-19 15:44 - 00098768 _____ (BitDefender LLC) C:\Windows\system32\Drivers\bdfndisf6.sys 2014-08-21 20:30 - 2013-11-04 16:47 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-08-21 20:30 - 2013-11-04 16:47 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll 2014-08-21 20:30 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys 2014-08-21 20:30 - 2013-07-17 19:31 - 00261496 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-08-21 20:30 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll 2014-08-21 20:29 - 2014-08-21 20:36 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Bitdefender 2014-08-21 20:20 - 2014-08-27 14:59 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-08-21 20:20 - 2014-08-27 14:59 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2014-08-21 20:20 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\QuickScan 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Bitdefender 2014-08-21 20:20 - 2013-11-04 16:47 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll 2014-08-21 20:20 - 2013-11-04 16:46 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll 2014-08-21 20:20 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-08-21 20:19 - 2014-08-21 20:19 - 07040424 _____ () C:\Users\Dominic\Downloads\bitdefender_isecurity_2015.exe 2014-08-21 20:09 - 2014-08-21 20:09 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-21 20:08 - 2014-09-01 08:56 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Dropbox 2014-08-21 20:08 - 2014-08-21 20:08 - 00323600 _____ (Dropbox, Inc.) C:\Users\Dominic\Downloads\DropboxInstaller.exe 2014-08-20 21:15 - 2014-08-20 21:15 - 01236176 _____ () C:\Users\Dominic\Downloads\Software_Autodesk AutoCAD Mechanical v2015 GERMAN-CYGiSO.nzb 2014-08-20 19:31 - 2014-08-20 19:31 - 00985925 _____ () C:\Users\Dominic\Downloads\Anhänge_2014820 (1).zip 2014-08-20 19:31 - 2014-08-20 18:31 - 00558592 _____ () C:\Users\Dominic\Downloads\SN-0-000-003.idw 2014-08-20 19:31 - 2014-08-20 18:30 - 00512512 _____ () C:\Users\Dominic\Downloads\SN-0-000-002.idw 2014-08-20 12:44 - 2014-08-20 12:44 - 16849408 _____ () C:\Users\Dominic\Downloads\epson374893eu.exe 2014-08-20 12:44 - 2014-08-20 12:44 - 00000000 ____D () C:\ProgramData\EPSON 2014-08-18 19:23 - 2014-08-18 19:23 - 00494080 _____ () C:\Users\Dominic\Downloads\SN-0-000-001.idw 2014-08-18 18:49 - 2014-08-18 18:49 - 00000000 ____D () C:\Users\Public\Documents\CyberLink 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\PDVD 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-08-18 18:47 - 2014-08-18 18:47 - 00000000 ____D () C:\ProgramData\SUPPORTDIR 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieUserList 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieSiteList 2014-08-14 19:22 - 2014-08-28 15:16 - 00000000 ___RD () C:\Users\Dominic\Desktop\Spiele 2014-08-14 19:07 - 2014-08-22 13:45 - 00000000 ____D () C:\Users\Dominic\AppData\Local\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00003218 _____ () C:\Windows\System32\Tasks\3DconnexionCreateProcess_3DxService.exe 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\SketchUp 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:04 - 00000000 ____D () C:\Program Files\3Dconnexion 2014-08-14 18:54 - 2014-08-14 19:00 - 329314976 _____ () C:\Users\Dominic\Downloads\Projekte von Schule.zip 2014-08-12 20:29 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-12 20:29 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-08-12 20:29 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-08-12 20:29 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-12 20:29 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-08-12 20:29 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-08-12 20:29 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-12 20:29 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-08-12 20:29 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-08-12 20:29 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-12 20:29 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-08-12 20:29 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-08-12 20:29 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-12 20:29 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-12 20:29 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-08-12 20:29 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-08-12 20:29 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-08-12 20:29 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-12 20:29 - 2014-07-25 13:43 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-08-12 20:29 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-08-12 20:29 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-08-12 20:29 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-12 20:29 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-08-12 20:29 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-08-12 20:29 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-12 20:29 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-08-12 20:29 - 2014-07-25 13:09 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-08-12 20:29 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-08-12 20:29 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-08-12 20:29 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-12 20:29 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-12 20:29 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-08-12 20:29 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-08-12 20:29 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-08-12 20:29 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-08-12 20:29 - 2014-06-20 03:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-12 20:29 - 2014-06-20 01:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2014-08-12 20:28 - 2014-08-07 04:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-12 20:28 - 2014-08-07 00:38 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-12 20:28 - 2014-08-02 07:44 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-12 20:28 - 2014-08-02 05:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-12 20:28 - 2014-08-02 05:11 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2014-08-12 20:28 - 2014-07-15 20:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe 2014-08-12 20:28 - 2014-07-15 10:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2014-08-12 20:28 - 2014-07-15 10:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll 2014-08-12 20:28 - 2014-07-15 10:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll 2014-08-12 20:28 - 2014-07-12 06:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe 2014-08-12 20:28 - 2014-07-10 06:16 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-08-12 20:28 - 2014-07-10 06:03 - 04756992 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-08-12 20:28 - 2014-07-10 05:33 - 01120256 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-08-12 20:28 - 2014-06-13 03:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2014-08-12 20:28 - 2014-06-13 03:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-12 20:28 - 2014-06-13 02:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2014-08-12 20:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2014-08-12 20:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-12 20:28 - 2014-06-06 13:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2014-08-12 20:28 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll 2014-08-12 20:28 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll 2014-08-12 20:28 - 2014-06-04 11:27 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-12 20:28 - 2014-06-04 07:31 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-12 20:28 - 2014-06-04 07:22 - 02790912 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-12 20:28 - 2014-06-04 06:43 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-08-12 20:28 - 2014-06-04 06:38 - 03304448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-08-12 20:28 - 2014-06-04 04:15 - 02642944 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-12 20:28 - 2014-06-04 04:14 - 02318336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-08-12 20:28 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2014-08-12 20:28 - 2014-05-31 12:07 - 00467800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2014-08-12 20:28 - 2014-05-31 12:07 - 00440664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00419672 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00089944 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00027480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-08-12 20:28 - 2014-05-31 08:30 - 00037376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-08-12 20:28 - 2014-05-31 08:27 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-08-12 20:28 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2014-08-12 20:28 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2014-08-12 20:28 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2014-08-12 20:28 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2014-08-12 20:28 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2014-08-12 20:28 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-08-12 20:28 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll 2014-08-12 20:28 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll 2014-08-12 20:28 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-08-12 20:28 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-08-12 20:28 - 2014-05-13 09:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe 2014-08-12 20:28 - 2014-05-13 07:07 - 02844160 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2014-08-12 20:28 - 2014-05-13 06:41 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll 2014-08-12 20:28 - 2014-05-13 06:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll 2014-08-12 20:28 - 2014-05-13 05:59 - 01035264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2014-08-12 20:28 - 2014-05-13 05:31 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll 2014-08-12 20:28 - 2014-05-03 13:29 - 01726224 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2014-08-12 20:28 - 2014-05-03 11:20 - 01473080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2014-08-12 20:28 - 2014-05-03 07:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2014-08-12 20:28 - 2014-05-03 07:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll 2014-08-12 20:28 - 2014-05-03 07:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll 2014-08-12 20:28 - 2014-05-03 07:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll 2014-08-12 20:28 - 2014-05-03 06:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll 2014-08-12 20:28 - 2014-05-03 06:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll 2014-08-12 20:28 - 2014-05-03 06:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll 2014-08-12 20:28 - 2014-05-03 01:26 - 00050745 _____ () C:\Windows\system32\srms.dat 2014-08-12 20:28 - 2014-05-01 07:44 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-08-12 20:28 - 2014-04-30 08:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys 2014-08-12 20:28 - 2014-04-30 07:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe 2014-08-12 20:28 - 2014-04-30 06:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe 2014-08-12 20:28 - 2014-04-30 06:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll 2014-08-12 20:28 - 2014-04-30 06:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2014-08-12 20:28 - 2014-04-30 05:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2014-08-12 20:28 - 2014-04-30 05:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll 2014-08-12 20:28 - 2014-04-30 05:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll 2014-08-12 20:28 - 2014-04-30 05:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll 2014-08-12 20:28 - 2014-04-30 05:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll 2014-08-12 20:28 - 2014-04-30 05:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2014-08-12 20:28 - 2014-04-29 00:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2014-08-12 20:28 - 2014-04-27 00:03 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-08-12 20:28 - 2014-04-26 22:14 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2014-08-12 20:28 - 2014-04-26 18:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll 2014-08-12 20:28 - 2014-04-14 11:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-08-12 20:28 - 2014-04-14 10:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2014-08-12 20:28 - 2014-04-14 07:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2014-08-12 20:28 - 2014-04-09 08:11 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2014-08-12 20:28 - 2014-04-09 07:20 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00721288 _____ (3Dconnexion, Inc) C:\Windows\system32\siappdll.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00575880 _____ (3Dconnexion, Inc) C:\Windows\SysWOW64\siappdll.dll 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\system32\spwini.dll 2014-08-12 15:27 - 2014-08-12 15:27 - 00038912 _____ () C:\Windows\SysWOW64\spwini.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-08-08 19:55 - 2014-08-08 20:06 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2014-08-08 19:41 - 2014-08-08 19:41 - 00000021 _____ () C:\Users\Dominic\AppData\Roaming\my_intel.sys 2014-08-08 19:33 - 2014-08-08 19:33 - 00000000 ____D () C:\Users\Dominic\Documents\Autodesk 2014-08-08 19:31 - 2014-08-08 19:38 - 00000000 ____D () C:\Autodesk2013 2014-08-08 19:29 - 2014-08-08 19:29 - 00000000 ____D () C:\Program Files (x86)\DWG TrueView 2013 2014-08-08 19:27 - 2014-08-27 09:46 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2013 2014-08-08 15:56 - 2014-08-08 15:56 - 00000000 ____D () C:\ProgramData\Applications 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-06 20:48 - 2014-08-08 19:28 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-08-06 20:48 - 2014-08-06 20:51 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 __RHD () C:\MSOCache 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services 2014-08-06 07:27 - 2014-09-01 09:16 - 01500980 _____ () C:\Windows\WindowsUpdate.log 2014-08-05 20:16 - 2014-08-05 20:16 - 00001194 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk 2014-08-05 20:16 - 2014-08-05 20:16 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-08-05 20:04 - 2014-08-05 20:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-08-05 18:52 - 2014-08-13 19:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Skype 2014-08-05 18:52 - 2014-08-05 19:55 - 00000000 ____D () C:\ProgramData\Skype 2014-08-05 18:52 - 2014-08-05 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Skype 2014-08-05 16:33 - 2014-08-05 16:33 - 00000000 ___HD () C:\$SysReset 2014-08-05 10:28 - 2014-08-05 10:28 - 00000000 ____D () C:\Users\Dominic\Desktop\Musik 2014-08-03 19:56 - 2014-08-03 19:56 - 00031344 _____ (Connectify) C:\Windows\system32\Drivers\cnnctfy2.sys 2014-08-03 19:56 - 2014-08-03 19:56 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connectify Hotspot 2014-08-02 20:27 - 2014-08-18 21:18 - 00000000 ____D () C:\Users\Dominic\AppData\Local\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Program Files (x86)\QuickPar ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-01 13:32 - 2014-09-01 13:32 - 00000000 ____D () C:\Users\Dominic\Downloads\FRST-OlderVersion 2014-09-01 13:32 - 2014-08-28 14:42 - 00032286 _____ () C:\Users\Dominic\Downloads\FRST.txt 2014-09-01 13:32 - 2014-08-28 14:41 - 02104832 _____ (Farbar) C:\Users\Dominic\Downloads\FRST64.exe 2014-09-01 13:32 - 2014-08-27 16:08 - 00000000 ____D () C:\FRST 2014-09-01 13:29 - 2014-09-01 13:29 - 00854417 _____ () C:\Users\Dominic\Downloads\SecurityCheck.exe 2014-09-01 13:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-09-01 12:49 - 2014-07-16 22:13 - 00000000 ____D () C:\Users\Dominic\Downloads\Setups 2014-09-01 12:10 - 2014-07-15 22:30 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-09-01 11:54 - 2014-08-27 10:49 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-09-01 11:04 - 2014-08-30 13:33 - 00000374 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job 2014-09-01 10:59 - 2014-07-15 16:44 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1411990848-2310183263-2524645419-1001 2014-09-01 10:54 - 2014-08-27 10:49 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-09-01 10:51 - 2014-09-01 10:51 - 02347384 _____ (ESET) C:\Users\Dominic\Downloads\esetsmartinstaller_deu.exe 2014-09-01 10:51 - 2014-09-01 10:51 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-09-01 09:30 - 2014-07-15 16:40 - 00003950 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{57BF43EF-7062-442E-97D8-81FC9F2CA599} 2014-09-01 09:23 - 2014-08-27 14:39 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-09-01 09:16 - 2014-08-06 07:27 - 01500980 _____ () C:\Windows\WindowsUpdate.log 2014-09-01 09:07 - 2014-01-23 19:09 - 00000000 ____D () C:\Users\Dominic\Desktop\Ausblidung 2014-09-01 08:57 - 2014-07-15 17:17 - 00000075 _____ () C:\Users\Dominic\AppData\Roaming\sp_data.sys 2014-09-01 08:56 - 2014-08-21 20:08 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Dropbox 2014-09-01 08:56 - 2014-07-15 20:13 - 00000000 ___DO () C:\Users\Dominic\SkyDrive 2014-08-31 22:46 - 2014-07-15 17:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\ClassicShell 2014-08-31 19:30 - 2014-07-18 19:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\UseNeXT 2014-08-31 15:57 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-08-31 10:13 - 2014-08-31 10:13 - 00001111 _____ () C:\Users\Dominic\Desktop\WolfNewOrder_x64.exe - Verknüpfung.lnk 2014-08-30 14:56 - 2014-07-15 17:34 - 00000000 ____D () C:\Program Files (x86)\Steam 2014-08-30 14:40 - 2014-08-30 14:40 - 00000493 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfenstein The New Order.lnk 2014-08-30 14:14 - 2014-08-30 14:14 - 00000000 ____D () C:\Users\Dominic\Desktop\Privat 2014-08-30 13:42 - 2014-08-30 13:33 - 00000000 ____D () C:\Program Files (x86)\PC Speed Up 2014-08-30 13:41 - 2014-08-30 13:41 - 00057128 _____ () C:\Users\Dominic\Documents\PCSpeedUp-Silent-Update.exe 2014-08-30 13:41 - 2014-08-30 13:33 - 00002736 _____ () C:\Windows\System32\Tasks\PC SpeedUp Service Deactivator 2014-08-30 13:33 - 2014-08-30 13:33 - 00003762 _____ () C:\Windows\System32\Tasks\pricesparrowSWU 2014-08-30 13:33 - 2014-08-30 13:33 - 00000000 ____D () C:\Program Files (x86)\PriceSparrow 2014-08-30 13:33 - 2014-07-15 17:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell 2014-08-30 13:33 - 2014-07-15 17:28 - 00000000 ____D () C:\Program Files\Classic Shell 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Opera 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\OCS 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\ProgramData\DNSErrorHelper 2014-08-30 13:26 - 2014-08-27 14:30 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung 2014-08-30 13:23 - 2014-08-30 13:23 - 00000000 ____D () C:\Windows\ERUNT 2014-08-30 13:22 - 2014-08-30 13:22 - 01016261 _____ (Thisisu) C:\Users\Dominic\Downloads\JRT.exe 2014-08-30 13:19 - 2014-07-15 16:43 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-30 13:19 - 2013-08-23 01:24 - 00765582 _____ () C:\Windows\system32\perfh007.dat 2014-08-30 13:19 - 2013-08-23 01:24 - 00159366 _____ () C:\Windows\system32\perfc007.dat 2014-08-30 13:12 - 2014-08-30 13:12 - 00000310 _____ () C:\Windows\PFRO.log 2014-08-30 13:12 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-08-30 13:12 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-08-30 13:11 - 2014-08-27 15:49 - 00000000 ____D () C:\AdwCleaner 2014-08-30 13:11 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-08-30 13:04 - 2014-08-30 13:02 - 00000000 ____D () C:\Users\Dominic\Desktop\Malebytes 2014-08-29 17:27 - 2014-07-15 22:27 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-29 17:27 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\Offline Web Pages 2014-08-29 10:24 - 2014-08-29 10:23 - 00080443 _____ () C:\Users\Dominic\Downloads\Addition.txt 2014-08-29 10:13 - 2014-08-29 10:05 - 00000000 ____D () C:\ProgramData\Adobe 2014-08-29 10:12 - 2014-08-29 10:12 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Adobe 2014-08-29 10:12 - 2014-07-15 16:39 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Adobe 2014-08-29 10:06 - 2014-08-29 10:06 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-08-29 10:06 - 2014-08-29 10:06 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-08-29 09:13 - 2013-08-22 16:44 - 00514208 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-28 15:16 - 2014-08-14 19:22 - 00000000 ___RD () C:\Users\Dominic\Desktop\Spiele 2014-08-28 15:07 - 2014-08-28 15:07 - 00000000 ____D () C:\Users\Dominic\Documents\Activision 2014-08-28 09:52 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp 2014-08-28 07:24 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\LiveKernelReports 2014-08-27 20:59 - 2014-08-27 20:59 - 00000000 ____D () C:\ProgramData\Codemasters 2014-08-27 20:59 - 2014-07-15 20:00 - 00000000 ____D () C:\Users\Dominic\Documents\My Games 2014-08-27 20:56 - 2014-08-27 20:56 - 00000527 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRID Autosport.lnk 2014-08-27 16:12 - 2014-08-27 16:12 - 00380416 _____ () C:\Users\Dominic\Downloads\Gmer-19357.exe 2014-08-27 16:07 - 2014-08-27 16:07 - 00000000 _____ () C:\Users\Dominic\defogger_reenable 2014-08-27 16:07 - 2014-07-15 16:39 - 00000000 ____D () C:\Users\Dominic 2014-08-27 15:49 - 2014-08-27 15:49 - 01364531 _____ () C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe 2014-08-27 15:01 - 2014-08-27 15:01 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-08-27 15:00 - 2014-08-27 15:00 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-08-27 14:59 - 2014-08-21 20:30 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-08-27 14:59 - 2014-08-21 20:20 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-08-27 14:59 - 2014-08-21 20:20 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2014-08-27 14:39 - 2014-08-27 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-27 14:39 - 2014-08-27 14:38 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 10:50 - 2014-08-27 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-27 10:50 - 2014-07-15 17:24 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Google 2014-08-27 10:50 - 2014-07-15 17:24 - 00000000 ____D () C:\Program Files (x86)\Google 2014-08-27 10:49 - 2014-08-27 10:49 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-08-27 10:49 - 2014-08-27 10:49 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Deployment 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Apps\2.0 2014-08-27 09:56 - 2014-08-27 09:56 - 00007612 _____ () C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg 2014-08-27 09:46 - 2014-08-08 19:27 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2013 2014-08-25 10:38 - 2014-08-25 10:38 - 00000146 _____ () C:\Users\Dominic\Desktop\Sound - Verknüpfung.lnk 2014-08-25 10:33 - 2014-08-24 11:29 - 00013340 _____ () C:\Users\Dominic\Desktop\Anrufsliste.xlsx 2014-08-25 10:29 - 2014-08-25 10:29 - 00000729 _____ () C:\Users\Dominic\Downloads\vcard-Nicole-Karagoel.vcf 2014-08-24 12:49 - 2014-08-24 12:49 - 03561351 _____ () C:\Users\Dominic\Downloads\Anhänge_2014824.zip 2014-08-24 08:59 - 2014-08-21 20:45 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml 2014-08-23 18:36 - 2014-08-23 18:36 - 00000000 ____D () C:\Users\Dominic\.android 2014-08-23 18:32 - 2014-08-23 18:31 - 07319280 _____ () C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe 2014-08-23 15:21 - 2014-08-23 15:21 - 00534787 _____ () C:\Users\Dominic\Downloads\Filme_RoboCop 2014 German BDRip AC3 XviD-SMY.nzb 2014-08-23 15:20 - 2014-08-23 15:20 - 00532504 _____ () C:\Users\Dominic\Downloads\Filme_The.Expendables.3.2014.German.AC3D.DVDScreener.XviD-HCS.nzb 2014-08-23 13:23 - 2014-08-23 13:23 - 03877424 _____ (SEIKO EPSON CORPORATION) C:\Users\Dominic\Downloads\epson327357eu.EXE 2014-08-23 13:14 - 2014-08-23 11:55 - 00000000 ____D () C:\Program Files (x86)\epson 2014-08-23 11:12 - 2014-08-23 11:12 - 05323226 _____ () C:\Users\Dominic\Downloads\2014_Frühjahr.rar 2014-08-23 02:42 - 2014-08-28 07:21 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-22 13:45 - 2014-08-14 19:07 - 00000000 ____D () C:\Users\Dominic\AppData\Local\3Dconnexion 2014-08-22 10:42 - 2014-07-15 17:16 - 00000156 _____ () C:\Users\Public\GPUControlSetting.xml 2014-08-22 09:41 - 2014-08-22 09:41 - 09261687 _____ () C:\Users\Dominic\Downloads\oberflchen.zip 2014-08-22 09:41 - 2014-08-22 09:41 - 00020441 _____ () C:\Users\Dominic\Downloads\bewrsbdrtz.zip 2014-08-22 08:32 - 2014-08-22 08:32 - 00000385 _____ () C:\Users\Dominic\AppData\Roaminguser_gensett.xml 2014-08-22 08:31 - 2014-08-22 08:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-08-21 20:52 - 2014-08-21 20:52 - 00590437 _____ () C:\ProgramData\1408645228.bdinstall.bin 2014-08-21 20:36 - 2014-08-21 20:29 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Bitdefender 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\BDLogging 2014-08-21 20:30 - 2014-08-21 20:20 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\QuickScan 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Bitdefender 2014-08-21 20:19 - 2014-08-21 20:19 - 07040424 _____ () C:\Users\Dominic\Downloads\bitdefender_isecurity_2015.exe 2014-08-21 20:17 - 2014-07-22 19:27 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-08-21 20:09 - 2014-08-21 20:09 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-21 20:08 - 2014-08-21 20:08 - 00323600 _____ (Dropbox, Inc.) C:\Users\Dominic\Downloads\DropboxInstaller.exe 2014-08-20 21:15 - 2014-08-20 21:15 - 01236176 _____ () C:\Users\Dominic\Downloads\Software_Autodesk AutoCAD Mechanical v2015 GERMAN-CYGiSO.nzb 2014-08-20 19:31 - 2014-08-20 19:31 - 00985925 _____ () C:\Users\Dominic\Downloads\Anhänge_2014820 (1).zip 2014-08-20 18:31 - 2014-08-20 19:31 - 00558592 _____ () C:\Users\Dominic\Downloads\SN-0-000-003.idw 2014-08-20 18:30 - 2014-08-20 19:31 - 00512512 _____ () C:\Users\Dominic\Downloads\SN-0-000-002.idw 2014-08-20 12:44 - 2014-08-20 12:44 - 16849408 _____ () C:\Users\Dominic\Downloads\epson374893eu.exe 2014-08-20 12:44 - 2014-08-20 12:44 - 00000000 ____D () C:\ProgramData\EPSON 2014-08-18 21:18 - 2014-08-02 20:27 - 00000000 ____D () C:\Users\Dominic\AppData\Local\QuickPar 2014-08-18 19:23 - 2014-08-18 19:23 - 00494080 _____ () C:\Users\Dominic\Downloads\SN-0-000-001.idw 2014-08-18 18:49 - 2014-08-18 18:49 - 00000000 ____D () C:\Users\Public\Documents\CyberLink 2014-08-18 18:49 - 2014-07-15 22:46 - 00000000 ____D () C:\Users\Dominic\Documents\CyberLink 2014-08-18 18:49 - 2014-07-15 17:15 - 00000000 ____D () C:\ProgramData\CyberLink 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\PDVD 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-08-18 18:48 - 2014-07-15 22:46 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Cyberlink 2014-08-18 18:48 - 2014-07-15 16:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-08-18 18:47 - 2014-08-18 18:47 - 00000000 ____D () C:\ProgramData\SUPPORTDIR 2014-08-18 18:47 - 2014-07-15 17:16 - 00000000 ____D () C:\ProgramData\install_clap 2014-08-18 18:47 - 2014-07-15 17:14 - 00000000 ____D () C:\Program Files (x86)\CyberLink 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieUserList 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieSiteList 2014-08-18 12:17 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache 2014-08-14 19:09 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2015 2014-08-14 19:05 - 2014-08-14 19:05 - 00003218 _____ () C:\Windows\System32\Tasks\3DconnexionCreateProcess_3DxService.exe 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\SketchUp 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:04 - 00000000 ____D () C:\Program Files\3Dconnexion 2014-08-14 19:00 - 2014-08-14 18:54 - 329314976 _____ () C:\Users\Dominic\Downloads\Projekte von Schule.zip 2014-08-13 19:20 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Skype 2014-08-12 22:50 - 2014-07-18 10:24 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-12 22:50 - 2014-07-15 19:03 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\MediaViewer 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\FileManager 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Camera 2014-08-12 22:49 - 2014-07-15 19:03 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-08-12 20:28 - 2014-07-15 18:56 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-08-12 20:27 - 2014-07-15 22:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-08-12 20:27 - 2014-07-15 18:56 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-08-12 20:27 - 2013-08-22 13:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-12 20:27 - 2013-08-22 13:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-08-12 20:27 - 2013-08-22 13:22 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-08-12 20:27 - 2013-08-22 13:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-08-12 20:27 - 2013-08-22 13:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-08-12 20:27 - 2013-08-22 13:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-08-12 20:27 - 2013-08-22 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-08-12 20:27 - 2013-08-22 05:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-08-12 20:27 - 2013-08-22 05:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-08-12 20:27 - 2013-08-22 05:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-08-12 20:27 - 2013-08-22 05:40 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-08-12 20:27 - 2013-08-22 05:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-08-12 20:26 - 2014-07-17 00:33 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-08-12 20:26 - 2014-07-15 22:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-12 20:26 - 2013-08-22 12:32 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-08-12 19:08 - 2014-07-18 14:33 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Autodesk 2014-08-12 16:01 - 2014-08-12 16:01 - 00721288 _____ (3Dconnexion, Inc) C:\Windows\system32\siappdll.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00575880 _____ (3Dconnexion, Inc) C:\Windows\SysWOW64\siappdll.dll 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\system32\spwini.dll 2014-08-12 15:27 - 2014-08-12 15:27 - 00038912 _____ () C:\Windows\SysWOW64\spwini.dll 2014-08-11 08:30 - 2014-07-18 15:27 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Autodesk 2014-08-09 12:15 - 2014-07-15 19:13 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-08-08 20:53 - 2014-07-15 19:05 - 00000000 ____D () C:\Program Files\CCleaner 2014-08-08 20:06 - 2014-08-08 19:55 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2014-08-08 20:00 - 2014-07-18 21:18 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Autodesk,_Inc 2014-08-08 19:41 - 2014-08-08 19:41 - 00000021 _____ () C:\Users\Dominic\AppData\Roaming\my_intel.sys 2014-08-08 19:38 - 2014-08-08 19:31 - 00000000 ____D () C:\Autodesk2013 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Users\Public\Documents\Autodesk 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared 2014-08-08 19:38 - 2014-07-18 15:27 - 00000000 ____D () C:\Program Files\Autodesk 2014-08-08 19:38 - 2014-07-18 14:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2014-08-08 19:37 - 2014-07-18 14:33 - 00000000 ____D () C:\ProgramData\Autodesk 2014-08-08 19:33 - 2014-08-08 19:33 - 00000000 ____D () C:\Users\Dominic\Documents\Autodesk 2014-08-08 19:31 - 2014-07-15 17:04 - 00000000 ____D () C:\Temp 2014-08-08 19:29 - 2014-08-08 19:29 - 00000000 ____D () C:\Program Files (x86)\DWG TrueView 2013 2014-08-08 19:28 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-08-08 15:56 - 2014-08-08 15:56 - 00000000 ____D () C:\ProgramData\Applications 2014-08-07 04:12 - 2014-08-12 20:28 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-07 00:38 - 2014-08-12 20:28 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-06 20:51 - 2014-08-06 20:48 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-06 20:49 - 2014-08-06 20:49 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-06 20:49 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-08-06 20:49 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 __RHD () C:\MSOCache 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Microsoft Help 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-06 20:48 - 2014-08-06 20:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services 2014-08-06 20:48 - 2013-08-23 01:26 - 00000000 ____D () C:\Windows\ShellNew 2014-08-05 20:31 - 2014-07-22 18:00 - 00000000 ____D () C:\Program Files (x86)\Connectify 2014-08-05 20:30 - 2014-08-05 20:04 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Winamp 2014-08-05 20:16 - 2014-08-05 20:16 - 00001194 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk 2014-08-05 20:16 - 2014-08-05 20:16 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2014-08-05 20:04 - 2014-08-05 20:04 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-08-05 19:55 - 2014-08-05 18:52 - 00000000 ____D () C:\ProgramData\Skype 2014-08-05 19:55 - 2014-08-05 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-08-05 18:52 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Skype 2014-08-05 16:33 - 2014-08-05 16:33 - 00000000 ___HD () C:\$SysReset 2014-08-05 16:33 - 2014-07-15 16:48 - 00000000 ____D () C:\Windows\Log 2014-08-05 10:28 - 2014-08-05 10:28 - 00000000 ____D () C:\Users\Dominic\Desktop\Musik 2014-08-03 19:56 - 2014-08-03 19:56 - 00031344 _____ (Connectify) C:\Windows\system32\Drivers\cnnctfy2.sys 2014-08-03 19:56 - 2014-08-03 19:56 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connectify Hotspot 2014-08-03 19:47 - 2014-07-22 22:12 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\DVDVideoSoft 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar 2014-08-02 20:21 - 2014-08-02 20:21 - 00000000 ____D () C:\Program Files (x86)\QuickPar 2014-08-02 07:44 - 2014-08-12 20:28 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-02 05:56 - 2014-08-12 20:28 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-02 05:11 - 2014-08-12 20:28 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2014-08-02 02:17 - 2013-08-22 17:38 - 00704480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-08-02 02:17 - 2013-08-22 17:38 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl Some content of TEMP: ==================== C:\Users\Dominic\AppData\Local\Temp\COMAP.EXE C:\Users\Dominic\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp09dnps.dll C:\Users\Dominic\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-09-01 09:31 ==================== End Of Log ============================ |
02.09.2014, 09:10 | #12 |
/// the machine /// TB-Ausbilder | Win 8, Chrome extrem langsam und about:blank wird geöffnet Java updaten. Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
07.09.2014, 11:48 | #13 |
| Win 8, Chrome extrem langsam und about:blank wird geöffnet Hi Schrauber, sorry das ich so lange nicht geschrieben habe. Das Problem besteht immer noch. Wenn ich etwas suche oder einen neuen Tab öffne (egal ob mit IE oder Chrome) erscheint jetzt immer about blank. |
07.09.2014, 17:50 | #14 |
/// the machine /// TB-Ausbilder | Win 8, Chrome extrem langsam und about:blank wird geöffnet Frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
08.09.2014, 18:53 | #15 |
| Win 8, Chrome extrem langsam und about:blank wird geöffnet Also Malewarebytes zeigt mir jeden Tag das hier an und ich verschiebe es jeden Tag aufs neue in die Quarantäne. Ich häng den log an. Irgendwas mit trovi blablabla kann der auch LASTPASS addon ausspionieren? Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 08.09.2014 Suchlauf-Zeit: 12:57:57 Logdatei: neu Malewarebytes.txt Administrator: Ja Version: 2.00.2.1012 Malware Datenbank: v2014.09.07.07 Rootkit Datenbank: v2014.08.21.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Self-protection: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: Dominic Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 333220 Verstrichene Zeit: 4 Std, 44 Min, 3 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristics: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 0 (No malicious items detected) Registrierungswerte: 0 (No malicious items detected) Registrierungsdaten: 0 (No malicious items detected) Ordner: 0 (No malicious items detected) Dateien: 1 PUP.Optional.Trovi.A, C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Preferences, Gut: (), Schlecht: ( "startup_urls": [ "hxxp://www.trovi.com/?gd=&ctid=CT3320326&octid=EB_ORIGINAL_CTID&ISID=M234FF8CB-B6D6-4CE5-9227-3D9F30027F24&SearchSource=55&CUI=&UM=6&UP=SP155A4552-9217-414F-842E-5609BFB8E78E&SSPV=", "hxxp://www.google.de/", "hxxp://www.sweet-page.com/?type=hp&ts=1404845472&from=cor&uid=HitachiXHTS543232L9A300_090107FB2400LED1H44AX" ],), ,[686bca202b5021151cde50d3f312629e] Physische Sektoren: 0 (No malicious items detected) (end) FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-09-2014 01 Ran by Dominic (administrator) on DOMINIC-ROG on 08-09-2014 17:56:29 Running from C:\Users\Dominic\Downloads Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe () C:\Program Files (x86)\Connectify\ConnectifyService.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe ( ) C:\Autodesk2013\Inventor 2013\Moldflow\bin\mitsijm.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE () C:\Users\Dominic\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\3356edf7a88e475d88eac25e50bcafe7\AddonsHelper.exe () C:\Program Files (x86)\PC Speed Up\PCSUService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (3Dconnexion, INC) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe (Akamai Technologies, Inc.) C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwtxapps.exe (3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3dxpiemenus.exe (Dropbox, Inc.) C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Autodesk Inc.) C:\Users\Dominic\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe (ASUS) C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Connectify) C:\Program Files (x86)\Connectify\Connectify.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\livecomm.exe (Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\Dominic\Downloads\FRST64 (1).exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2893576 2014-07-12] (ELAN Microelectronics Corp.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation) HKLM\...\Run: [3DxWare Service] => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe [2157952 2014-08-12] (3Dconnexion, INC) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1580360 2014-08-27] (Bitdefender) HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] () HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.) HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [110144 2013-03-06] (CyberLink) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [224128 2014-03-18] (Oracle Corporation) HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-06-21] (Autodesk Inc.) HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.) HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795672 2014-04-28] (CyberLink Corp.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Power2GoExpress] => NA HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Connectify] => C:\Program Files (x86)\Connectify\Connectify.exe [4013928 2012-11-09] (Connectify) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [815088 2014-08-27] (Bitdefender) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\Run: [GoogleChromeAutoLaunch_DE37E0D78B01410F30C28EF56111497E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\MountPoints2: {19267988-11c9-11e4-826a-54271e912190} - "F:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-1411990848-2310183263-2524645419-1001\...\MountPoints2: {790fa10a-3036-11e4-827f-54271e912190} - "F:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Power2GoExpress] => NA HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Akamai NetSession Interface] => C:\Users\Dominic\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1208712 2014-05-14] (Autodesk, Inc.) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Connectify] => C:\Program Files (x86)\Connectify\Connectify.exe [4013928 2012-11-09] (Connectify) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [815088 2014-08-27] (Bitdefender) HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [PCSpeedUp] => C:\Program Files (x86)\PC Speed Up\PCSUNotifier.exe HKU\S-1-5-21-1411990848-2310183263-2524645419-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {19267988-11c9-11e4-826a-54271e912190} - "F:\HTC_Sync_Manager_PC.exe" Startup: C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\Dominic\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.) ShellIconOverlayIdentifiers: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) ShellIconOverlayIdentifiers-x32: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDC8E8B31C9C1CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM-x32 - DefaultScope {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://www.firetab.org/?type=ds3se&p={searchTerms} SearchScopes: HKLM-x32 - {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://www.firetab.org/?type=ds3se&p={searchTerms} SearchScopes: HKCU - {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://www.firetab.org/?type=ds3se&p={searchTerms} BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft) BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO-x32: DNS Error Helper -> {9B6B03F1-16CF-4491-BBBB-E872802DD717} -> C:\ProgramData\DNSErrorHelper\bho.dll () BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender) Tcpip\Parameters: [DhcpNameServer] 172.30.3.254 Tcpip\..\Interfaces\{A126085F-EEB8-4B62-A7AF-26452242D649}: [NameServer] 192.168.55.1 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll () FF Plugin: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-08-21] FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-08-21] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-07-22] Chrome: ======= CHR HomePage: Default -> hxxp://www.chromefans.org/ CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3320326&octid=EB_ORIGINAL_CTID&ISID=M234FF8CB-B6D6-4CE5-9227-3D9F30027F24&SearchSource=55&CUI=&UM=6&UP=SP155A4552-9217-414F-842E-5609BFB8E78E&SSPV=", "hxxp://www.google.de/", "hxxp://www.sweet-page.com/?type=hp&ts=1404845472&from=cor&uid=HitachiXHTS543232L9A300_090107FB2400LED1H44AX" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-08-27] CHR Extension: (TooManyTabs für Chrome) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2014-08-27] CHR Extension: (Google Docs) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-27] CHR Extension: (Google Drive) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-27] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-27] CHR Extension: (YouTube) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-27] CHR Extension: (Adblock Plus) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-08-27] CHR Extension: (Google-Suche) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-27] CHR Extension: (PanicButton) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2014-08-27] CHR Extension: (Google Tabellen) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-08-27] CHR Extension: (CHIP Online) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd [2014-08-27] CHR Extension: (LastPass: Free Password Manager) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-08-27] CHR Extension: (Dropbox) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2014-08-27] CHR Extension: (Andrew@ChromeFans) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\jollpecbpialleljionejgkdgjfgamma [2014-08-27] CHR Extension: (Quick Earth) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\khodocggeplgfhppgagfdpbjkniadmdh [2014-08-27] CHR Extension: (Google Play) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-08-27] CHR Extension: (Google Maps) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-08-27] CHR Extension: (Google Wallet) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-27] CHR Extension: (The Tracktor - Price History Tracker) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\onajjgekdldckfgodnmoallcmdmfcfom [2014-08-27] CHR Extension: (Google Mail) - C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-27] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [596360 2014-06-21] (Autodesk Inc.) R2 AddonsHelper; C:\Users\Dominic\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\3356edf7a88e475d88eac25e50bcafe7\AddonsHelper.exe [896512 2014-08-30] () [File not signed] R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS) S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.) S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [77632 2014-08-27] (Bitdefender) R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [65536 2012-11-09] () [File not signed] R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100104 2014-07-12] (ELAN Microelectronics Corp.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [File not signed] R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation) R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation) S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) R2 Mgl3DCtlrRPCService; C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe [30208 2014-08-12] (3Dconnexion) [File not signed] R2 mitsijm2013; C:\Autodesk2013\Inventor 2013\Moldflow\bin\mitsijm.exe [339776 2012-01-31] ( ) R2 mitsijm2015; C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [968480 2013-10-12] (Autodesk, Inc.) S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation) R4 PCSUService; C:\Program Files (x86)\PC Speed Up\PCSUService.exe [430888 2014-07-21] () S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation) S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-08-27] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1513952 2014-08-27] (Bitdefender) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 3dxhid; C:\Windows\System32\drivers\3dxhid.sys [38672 2014-06-12] (3Dconnexion SAM) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1260120 2014-08-27] (BitDefender) R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2013-07-17] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-08-27] (BitDefender) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7488176 2014-07-15] (Broadcom Corporation) S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender) R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-11-19] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC) S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) R1 cnnctfy2; C:\Windows\system32\DRIVERS\cnnctfy2.sys [31344 2014-08-03] (Connectify) U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [100072 2014-07-12] (GenesysLogic) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2014-07-12] ( ) R3 KMJHidMini; C:\Windows\System32\drivers\3dxkmj.sys [18944 2014-05-12] (3Dconnextion Inc.) R3 KMJShim; C:\Windows\System32\drivers\3dxshim.sys [7168 2014-05-12] (3Dconnextion Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-07] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [419616 2014-08-27] (BitDefender S.R.L.) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [32456 2014-04-28] (CyberLink Corp.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-08 17:56 - 2014-09-08 17:56 - 02105344 _____ (Farbar) C:\Users\Dominic\Downloads\FRST64 (1).exe 2014-09-08 17:50 - 2014-09-08 17:50 - 00001637 _____ () C:\Users\Dominic\Desktop\neu Malewarebytes.txt 2014-09-07 17:39 - 2014-09-07 17:39 - 00000882 _____ () C:\Windows\setupact.log 2014-09-07 17:39 - 2014-09-07 17:39 - 00000000 _____ () C:\Windows\setuperr.log 2014-09-02 18:48 - 2014-09-02 18:48 - 00002801 _____ () C:\Users\Dominic\Downloads\Spiele_Watch Dogs Crack only.nzb 2014-09-02 18:45 - 2014-09-02 18:55 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Ubisoft Game Launcher 2014-09-02 14:20 - 2014-09-02 14:20 - 00399881 _____ () C:\Users\Dominic\Downloads\Filme_The Last Days on Mars 2013 German BDRip AC3 XviD SMY.nzb 2014-09-02 14:18 - 2014-09-02 14:18 - 01417527 _____ () C:\Users\Dominic\Downloads\Filme_The Monuments Men German 2014 DL PAL DVDR CRiSP.nzb 2014-09-02 14:17 - 2014-09-02 14:17 - 01519448 _____ () C:\Users\Dominic\Downloads\Filme_The Monuments Men German DL AC3 Dubbed 720p BluRay x264 - PsO.nzb 2014-09-02 14:16 - 2014-09-02 14:16 - 00488362 _____ () C:\Users\Dominic\Downloads\Filme_Die.Schadenfreundinnen.2014.German.BDRiP.AC3.XViD-57r.nzb 2014-09-02 14:15 - 2014-09-02 14:15 - 00549645 _____ () C:\Users\Dominic\Downloads\Filme_Noah.2014.German.AC3.5.1.BDRiP.XviD-icq4711.nzb 2014-09-02 14:13 - 2014-09-02 14:13 - 00309481 _____ () C:\Users\Dominic\Downloads\Filme_Jarhead.2.Zurueck.in.die.Hoelle.2014.German.AC3.DVDRip.x264-HP.nzb 2014-09-01 13:36 - 2014-09-01 13:36 - 00000000 ____D () C:\Windows\system32\IO 2014-09-01 13:32 - 2014-09-01 13:32 - 00000000 ____D () C:\Users\Dominic\Downloads\FRST-OlderVersion 2014-09-01 13:29 - 2014-09-01 13:29 - 00854417 _____ () C:\Users\Dominic\Downloads\SecurityCheck.exe 2014-09-01 10:51 - 2014-09-01 10:51 - 02347384 _____ (ESET) C:\Users\Dominic\Downloads\esetsmartinstaller_deu.exe 2014-08-31 10:13 - 2014-08-31 10:13 - 00001111 _____ () C:\Users\Dominic\Desktop\WolfNewOrder_x64.exe - Verknüpfung.lnk 2014-08-30 14:40 - 2014-08-30 14:40 - 00000493 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfenstein The New Order.lnk 2014-08-30 13:41 - 2014-08-30 13:41 - 00057128 _____ () C:\Users\Dominic\Documents\PCSpeedUp-Silent-Update.exe 2014-08-30 13:33 - 2014-09-01 11:04 - 00000374 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job 2014-08-30 13:33 - 2014-08-30 13:42 - 00000000 ____D () C:\Program Files (x86)\PC Speed Up 2014-08-30 13:33 - 2014-08-30 13:41 - 00002736 _____ () C:\Windows\System32\Tasks\PC SpeedUp Service Deactivator 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Opera 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\OCS 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\ProgramData\DNSErrorHelper 2014-08-30 13:23 - 2014-08-30 13:23 - 00000000 ____D () C:\Windows\ERUNT 2014-08-30 13:22 - 2014-08-30 13:22 - 01016261 _____ (Thisisu) C:\Users\Dominic\Downloads\JRT.exe 2014-08-30 13:02 - 2014-08-30 13:04 - 00000000 ____D () C:\Users\Dominic\Desktop\Malebytes 2014-08-29 10:23 - 2014-08-29 10:24 - 00080443 _____ () C:\Users\Dominic\Downloads\Addition.txt 2014-08-29 10:12 - 2014-08-29 10:12 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Adobe 2014-08-29 10:06 - 2014-08-29 10:06 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-08-29 10:06 - 2014-08-29 10:06 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-08-29 10:05 - 2014-08-29 10:13 - 00000000 ____D () C:\ProgramData\Adobe 2014-08-28 15:07 - 2014-08-28 15:07 - 00000000 ____D () C:\Users\Dominic\Documents\Activision 2014-08-28 14:42 - 2014-09-08 17:56 - 00030871 _____ () C:\Users\Dominic\Downloads\FRST.txt 2014-08-28 14:41 - 2014-09-01 13:32 - 02104832 _____ (Farbar) C:\Users\Dominic\Downloads\FRST64.exe 2014-08-28 07:21 - 2014-08-23 02:42 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-27 20:59 - 2014-08-27 20:59 - 00000000 ____D () C:\ProgramData\Codemasters 2014-08-27 20:56 - 2014-08-27 20:56 - 00000527 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRID Autosport.lnk 2014-08-27 16:12 - 2014-08-27 16:12 - 00380416 _____ () C:\Users\Dominic\Downloads\Gmer-19357.exe 2014-08-27 16:08 - 2014-09-08 17:56 - 00000000 ____D () C:\FRST 2014-08-27 16:07 - 2014-08-27 16:07 - 00000000 _____ () C:\Users\Dominic\defogger_reenable 2014-08-27 15:50 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-08-27 15:49 - 2014-08-30 13:11 - 00000000 ____D () C:\AdwCleaner 2014-08-27 15:49 - 2014-08-27 15:49 - 01364531 _____ () C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe 2014-08-27 15:01 - 2014-08-27 15:01 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-08-27 15:00 - 2014-08-27 15:00 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-08-27 14:39 - 2014-09-07 21:22 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-27 14:39 - 2014-08-27 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:39 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 14:38 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-08-27 14:38 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-08-27 14:38 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-08-27 14:30 - 2014-08-30 13:26 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung 2014-08-27 10:50 - 2014-08-27 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-27 10:49 - 2014-09-01 11:54 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-27 10:49 - 2014-09-01 10:54 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-27 10:49 - 2014-08-27 10:49 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-08-27 10:49 - 2014-08-27 10:49 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Deployment 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Apps\2.0 2014-08-27 09:56 - 2014-08-27 09:56 - 00007612 _____ () C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg 2014-08-25 10:38 - 2014-08-25 10:38 - 00000146 _____ () C:\Users\Dominic\Desktop\Sound - Verknüpfung.lnk 2014-08-25 10:29 - 2014-08-25 10:29 - 00000729 _____ () C:\Users\Dominic\Downloads\vcard-Nicole-Karagoel.vcf 2014-08-24 18:56 - 2014-09-01 13:39 - 00011626 _____ () C:\Users\Dominic\Desktop\monatliche Kosten.xlsx 2014-08-24 12:49 - 2014-08-24 12:49 - 03561351 _____ () C:\Users\Dominic\Downloads\Anhänge_2014824.zip 2014-08-24 11:29 - 2014-08-25 10:33 - 00013340 _____ () C:\Users\Dominic\Desktop\Anrufsliste.xlsx 2014-08-23 18:36 - 2014-08-23 18:36 - 00000000 ____D () C:\Users\Dominic\.android 2014-08-23 18:31 - 2014-08-23 18:32 - 07319280 _____ () C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe 2014-08-23 15:21 - 2014-08-23 15:21 - 00534787 _____ () C:\Users\Dominic\Downloads\Filme_RoboCop 2014 German BDRip AC3 XviD-SMY.nzb 2014-08-23 15:20 - 2014-08-23 15:20 - 00532504 _____ () C:\Users\Dominic\Downloads\Filme_The.Expendables.3.2014.German.AC3D.DVDScreener.XviD-HCS.nzb 2014-08-23 13:23 - 2014-08-23 13:23 - 03877424 _____ (SEIKO EPSON CORPORATION) C:\Users\Dominic\Downloads\epson327357eu.EXE 2014-08-23 11:55 - 2014-08-23 13:14 - 00000000 ____D () C:\Program Files (x86)\epson 2014-08-23 11:12 - 2014-08-23 11:12 - 05323226 _____ () C:\Users\Dominic\Downloads\2014_Frühjahr.rar 2014-08-22 09:41 - 2014-08-22 09:41 - 09261687 _____ () C:\Users\Dominic\Downloads\oberflchen.zip 2014-08-22 09:41 - 2014-08-22 09:41 - 00020441 _____ () C:\Users\Dominic\Downloads\bewrsbdrtz.zip 2014-08-22 08:32 - 2014-08-22 08:32 - 00000385 _____ () C:\Users\Dominic\AppData\Roaminguser_gensett.xml 2014-08-22 08:31 - 2014-08-22 08:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-08-21 20:52 - 2014-08-21 20:52 - 00590437 _____ () C:\ProgramData\1408645228.bdinstall.bin 2014-08-21 20:45 - 2014-08-24 08:59 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml 2014-08-21 20:30 - 2014-08-27 14:59 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\BDLogging 2014-08-21 20:30 - 2013-11-19 15:44 - 00098768 _____ (BitDefender LLC) C:\Windows\system32\Drivers\bdfndisf6.sys 2014-08-21 20:30 - 2013-11-04 16:47 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-08-21 20:30 - 2013-11-04 16:47 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll 2014-08-21 20:30 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys 2014-08-21 20:30 - 2013-07-17 19:31 - 00261496 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-08-21 20:30 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll 2014-08-21 20:29 - 2014-08-21 20:36 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Bitdefender 2014-08-21 20:20 - 2014-08-27 14:59 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-08-21 20:20 - 2014-08-27 14:59 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2014-08-21 20:20 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\QuickScan 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Bitdefender 2014-08-21 20:20 - 2013-11-04 16:47 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll 2014-08-21 20:20 - 2013-11-04 16:46 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll 2014-08-21 20:20 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-08-21 20:19 - 2014-08-21 20:19 - 07040424 _____ () C:\Users\Dominic\Downloads\bitdefender_isecurity_2015.exe 2014-08-21 20:09 - 2014-08-21 20:09 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-21 20:08 - 2014-09-07 21:07 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Dropbox 2014-08-21 20:08 - 2014-08-21 20:08 - 00323600 _____ (Dropbox, Inc.) C:\Users\Dominic\Downloads\DropboxInstaller.exe 2014-08-20 21:15 - 2014-08-20 21:15 - 01236176 _____ () C:\Users\Dominic\Downloads\Software_Autodesk AutoCAD Mechanical v2015 GERMAN-CYGiSO.nzb 2014-08-20 19:31 - 2014-08-20 19:31 - 00985925 _____ () C:\Users\Dominic\Downloads\Anhänge_2014820 (1).zip 2014-08-20 19:31 - 2014-08-20 18:31 - 00558592 _____ () C:\Users\Dominic\Downloads\SN-0-000-003.idw 2014-08-20 19:31 - 2014-08-20 18:30 - 00512512 _____ () C:\Users\Dominic\Downloads\SN-0-000-002.idw 2014-08-20 12:44 - 2014-08-20 12:44 - 16849408 _____ () C:\Users\Dominic\Downloads\epson374893eu.exe 2014-08-20 12:44 - 2014-08-20 12:44 - 00000000 ____D () C:\ProgramData\EPSON 2014-08-18 19:23 - 2014-08-18 19:23 - 00494080 _____ () C:\Users\Dominic\Downloads\SN-0-000-001.idw 2014-08-18 18:49 - 2014-08-18 18:49 - 00000000 ____D () C:\Users\Public\Documents\CyberLink 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\PDVD 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-08-18 18:47 - 2014-08-18 18:47 - 00000000 ____D () C:\ProgramData\SUPPORTDIR 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieUserList 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieSiteList 2014-08-14 19:22 - 2014-08-28 15:16 - 00000000 ___RD () C:\Users\Dominic\Desktop\Spiele 2014-08-14 19:07 - 2014-08-22 13:45 - 00000000 ____D () C:\Users\Dominic\AppData\Local\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00003218 _____ () C:\Windows\System32\Tasks\3DconnexionCreateProcess_3DxService.exe 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\SketchUp 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:04 - 00000000 ____D () C:\Program Files\3Dconnexion 2014-08-14 18:54 - 2014-08-14 19:00 - 329314976 _____ () C:\Users\Dominic\Downloads\Projekte von Schule.zip 2014-08-12 20:29 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-12 20:29 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-08-12 20:29 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-08-12 20:29 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-12 20:29 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-08-12 20:29 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-08-12 20:29 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-12 20:29 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-08-12 20:29 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-08-12 20:29 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-12 20:29 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-08-12 20:29 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-08-12 20:29 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-12 20:29 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-12 20:29 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-08-12 20:29 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-08-12 20:29 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-08-12 20:29 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-12 20:29 - 2014-07-25 13:43 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-08-12 20:29 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-08-12 20:29 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-08-12 20:29 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-12 20:29 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-08-12 20:29 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-08-12 20:29 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-12 20:29 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-08-12 20:29 - 2014-07-25 13:09 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-08-12 20:29 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-08-12 20:29 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-08-12 20:29 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-12 20:29 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-12 20:29 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-08-12 20:29 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-08-12 20:29 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-08-12 20:29 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-08-12 20:29 - 2014-06-20 03:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-12 20:29 - 2014-06-20 01:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2014-08-12 20:28 - 2014-08-07 04:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-12 20:28 - 2014-08-07 00:38 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-12 20:28 - 2014-08-02 07:44 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-12 20:28 - 2014-08-02 05:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-12 20:28 - 2014-08-02 05:11 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2014-08-12 20:28 - 2014-07-15 20:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe 2014-08-12 20:28 - 2014-07-15 10:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2014-08-12 20:28 - 2014-07-15 10:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll 2014-08-12 20:28 - 2014-07-15 10:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll 2014-08-12 20:28 - 2014-07-12 06:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe 2014-08-12 20:28 - 2014-07-10 06:16 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-08-12 20:28 - 2014-07-10 06:03 - 04756992 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-08-12 20:28 - 2014-07-10 05:33 - 01120256 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-08-12 20:28 - 2014-06-13 03:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2014-08-12 20:28 - 2014-06-13 03:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-12 20:28 - 2014-06-13 02:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2014-08-12 20:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2014-08-12 20:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-12 20:28 - 2014-06-06 13:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2014-08-12 20:28 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll 2014-08-12 20:28 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll 2014-08-12 20:28 - 2014-06-04 11:27 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-12 20:28 - 2014-06-04 07:31 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-12 20:28 - 2014-06-04 07:22 - 02790912 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-12 20:28 - 2014-06-04 06:43 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-08-12 20:28 - 2014-06-04 06:38 - 03304448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-08-12 20:28 - 2014-06-04 04:15 - 02642944 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-12 20:28 - 2014-06-04 04:14 - 02318336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-08-12 20:28 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2014-08-12 20:28 - 2014-05-31 12:07 - 00467800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2014-08-12 20:28 - 2014-05-31 12:07 - 00440664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00419672 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00089944 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-08-12 20:28 - 2014-05-31 12:07 - 00027480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-08-12 20:28 - 2014-05-31 08:30 - 00037376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-08-12 20:28 - 2014-05-31 08:27 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-08-12 20:28 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2014-08-12 20:28 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2014-08-12 20:28 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2014-08-12 20:28 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2014-08-12 20:28 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2014-08-12 20:28 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-08-12 20:28 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll 2014-08-12 20:28 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll 2014-08-12 20:28 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-08-12 20:28 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-08-12 20:28 - 2014-05-13 09:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe 2014-08-12 20:28 - 2014-05-13 07:07 - 02844160 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2014-08-12 20:28 - 2014-05-13 06:41 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll 2014-08-12 20:28 - 2014-05-13 06:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll 2014-08-12 20:28 - 2014-05-13 05:59 - 01035264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2014-08-12 20:28 - 2014-05-13 05:31 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll 2014-08-12 20:28 - 2014-05-03 13:29 - 01726224 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2014-08-12 20:28 - 2014-05-03 11:20 - 01473080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2014-08-12 20:28 - 2014-05-03 07:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2014-08-12 20:28 - 2014-05-03 07:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll 2014-08-12 20:28 - 2014-05-03 07:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll 2014-08-12 20:28 - 2014-05-03 07:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll 2014-08-12 20:28 - 2014-05-03 06:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll 2014-08-12 20:28 - 2014-05-03 06:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll 2014-08-12 20:28 - 2014-05-03 06:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll 2014-08-12 20:28 - 2014-05-03 01:26 - 00050745 _____ () C:\Windows\system32\srms.dat 2014-08-12 20:28 - 2014-05-01 07:44 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-08-12 20:28 - 2014-04-30 08:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys 2014-08-12 20:28 - 2014-04-30 08:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys 2014-08-12 20:28 - 2014-04-30 07:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe 2014-08-12 20:28 - 2014-04-30 06:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe 2014-08-12 20:28 - 2014-04-30 06:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2014-08-12 20:28 - 2014-04-30 06:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll 2014-08-12 20:28 - 2014-04-30 06:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2014-08-12 20:28 - 2014-04-30 05:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2014-08-12 20:28 - 2014-04-30 05:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll 2014-08-12 20:28 - 2014-04-30 05:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll 2014-08-12 20:28 - 2014-04-30 05:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll 2014-08-12 20:28 - 2014-04-30 05:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll 2014-08-12 20:28 - 2014-04-30 05:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2014-08-12 20:28 - 2014-04-29 00:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2014-08-12 20:28 - 2014-04-27 00:03 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-08-12 20:28 - 2014-04-26 22:14 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2014-08-12 20:28 - 2014-04-26 18:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll 2014-08-12 20:28 - 2014-04-14 11:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-08-12 20:28 - 2014-04-14 10:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2014-08-12 20:28 - 2014-04-14 07:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2014-08-12 20:28 - 2014-04-09 08:11 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2014-08-12 20:28 - 2014-04-09 07:20 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00721288 _____ (3Dconnexion, Inc) C:\Windows\system32\siappdll.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00575880 _____ (3Dconnexion, Inc) C:\Windows\SysWOW64\siappdll.dll 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\system32\spwini.dll 2014-08-12 15:27 - 2014-08-12 15:27 - 00038912 _____ () C:\Windows\SysWOW64\spwini.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-08-09 20:03 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-08 17:56 - 2014-09-08 17:56 - 02105344 _____ (Farbar) C:\Users\Dominic\Downloads\FRST64 (1).exe 2014-09-08 17:56 - 2014-08-28 14:42 - 00030871 _____ () C:\Users\Dominic\Downloads\FRST.txt 2014-09-08 17:56 - 2014-08-27 16:08 - 00000000 ____D () C:\FRST 2014-09-08 17:54 - 2014-08-06 07:27 - 01717670 _____ () C:\Windows\WindowsUpdate.log 2014-09-08 17:51 - 2014-07-15 16:40 - 00003950 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{57BF43EF-7062-442E-97D8-81FC9F2CA599} 2014-09-08 17:50 - 2014-09-08 17:50 - 00001637 _____ () C:\Users\Dominic\Desktop\neu Malewarebytes.txt 2014-09-08 17:48 - 2014-08-05 18:52 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Skype 2014-09-08 17:44 - 2014-07-15 16:44 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1411990848-2310183263-2524645419-1001 2014-09-08 17:38 - 2014-07-15 16:43 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-09-08 17:38 - 2013-08-23 01:24 - 00765582 _____ () C:\Windows\system32\perfh007.dat 2014-09-08 17:38 - 2013-08-23 01:24 - 00159366 _____ () C:\Windows\system32\perfc007.dat 2014-09-08 17:36 - 2014-07-15 17:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\ClassicShell 2014-09-08 17:34 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-09-07 21:22 - 2014-08-27 14:39 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-09-07 21:07 - 2014-08-21 20:08 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Dropbox 2014-09-07 20:59 - 2014-07-15 20:13 - 00000000 __RDO () C:\Users\Dominic\SkyDrive 2014-09-07 17:39 - 2014-09-07 17:39 - 00000882 _____ () C:\Windows\setupact.log 2014-09-07 17:39 - 2014-09-07 17:39 - 00000000 _____ () C:\Windows\setuperr.log 2014-09-07 17:15 - 2014-07-15 17:17 - 00000075 _____ () C:\Users\Dominic\AppData\Roaming\sp_data.sys 2014-09-07 12:19 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-09-03 22:28 - 2014-07-18 19:30 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\UseNeXT 2014-09-02 19:53 - 2014-07-15 17:16 - 00000157 _____ () C:\Users\Public\GPUControlSetting.xml 2014-09-02 18:55 - 2014-09-02 18:45 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Ubisoft Game Launcher 2014-09-02 18:48 - 2014-09-02 18:48 - 00002801 _____ () C:\Users\Dominic\Downloads\Spiele_Watch Dogs Crack only.nzb 2014-09-02 14:20 - 2014-09-02 14:20 - 00399881 _____ () C:\Users\Dominic\Downloads\Filme_The Last Days on Mars 2013 German BDRip AC3 XviD SMY.nzb 2014-09-02 14:18 - 2014-09-02 14:18 - 01417527 _____ () C:\Users\Dominic\Downloads\Filme_The Monuments Men German 2014 DL PAL DVDR CRiSP.nzb 2014-09-02 14:17 - 2014-09-02 14:17 - 01519448 _____ () C:\Users\Dominic\Downloads\Filme_The Monuments Men German DL AC3 Dubbed 720p BluRay x264 - PsO.nzb 2014-09-02 14:16 - 2014-09-02 14:16 - 00488362 _____ () C:\Users\Dominic\Downloads\Filme_Die.Schadenfreundinnen.2014.German.BDRiP.AC3.XViD-57r.nzb 2014-09-02 14:15 - 2014-09-02 14:15 - 00549645 _____ () C:\Users\Dominic\Downloads\Filme_Noah.2014.German.AC3.5.1.BDRiP.XviD-icq4711.nzb 2014-09-02 14:13 - 2014-09-02 14:13 - 00309481 _____ () C:\Users\Dominic\Downloads\Filme_Jarhead.2.Zurueck.in.die.Hoelle.2014.German.AC3.DVDRip.x264-HP.nzb 2014-09-01 13:39 - 2014-08-24 18:56 - 00011626 _____ () C:\Users\Dominic\Desktop\monatliche Kosten.xlsx 2014-09-01 13:37 - 2014-07-15 17:34 - 00000000 ____D () C:\Program Files (x86)\Steam 2014-09-01 13:36 - 2014-09-01 13:36 - 00000000 ____D () C:\Windows\system32\IO 2014-09-01 13:32 - 2014-09-01 13:32 - 00000000 ____D () C:\Users\Dominic\Downloads\FRST-OlderVersion 2014-09-01 13:32 - 2014-08-28 14:41 - 02104832 _____ (Farbar) C:\Users\Dominic\Downloads\FRST64.exe 2014-09-01 13:29 - 2014-09-01 13:29 - 00854417 _____ () C:\Users\Dominic\Downloads\SecurityCheck.exe 2014-09-01 12:49 - 2014-07-16 22:13 - 00000000 ____D () C:\Users\Dominic\Downloads\Setups 2014-09-01 12:10 - 2014-07-15 22:30 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-09-01 11:54 - 2014-08-27 10:49 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-09-01 11:04 - 2014-08-30 13:33 - 00000374 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job 2014-09-01 10:54 - 2014-08-27 10:49 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-09-01 10:51 - 2014-09-01 10:51 - 02347384 _____ (ESET) C:\Users\Dominic\Downloads\esetsmartinstaller_deu.exe 2014-09-01 09:07 - 2014-01-23 19:09 - 00000000 ____D () C:\Users\Dominic\Desktop\Ausblidung 2014-08-31 10:13 - 2014-08-31 10:13 - 00001111 _____ () C:\Users\Dominic\Desktop\WolfNewOrder_x64.exe - Verknüpfung.lnk 2014-08-30 14:40 - 2014-08-30 14:40 - 00000493 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfenstein The New Order.lnk 2014-08-30 13:42 - 2014-08-30 13:33 - 00000000 ____D () C:\Program Files (x86)\PC Speed Up 2014-08-30 13:41 - 2014-08-30 13:41 - 00057128 _____ () C:\Users\Dominic\Documents\PCSpeedUp-Silent-Update.exe 2014-08-30 13:41 - 2014-08-30 13:33 - 00002736 _____ () C:\Windows\System32\Tasks\PC SpeedUp Service Deactivator 2014-08-30 13:33 - 2014-07-15 17:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell 2014-08-30 13:33 - 2014-07-15 17:28 - 00000000 ____D () C:\Program Files\Classic Shell 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Opera 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\OCS 2014-08-30 13:32 - 2014-08-30 13:32 - 00000000 ____D () C:\ProgramData\DNSErrorHelper 2014-08-30 13:26 - 2014-08-27 14:30 - 00000000 ____D () C:\Users\Dominic\Desktop\Wohnung 2014-08-30 13:23 - 2014-08-30 13:23 - 00000000 ____D () C:\Windows\ERUNT 2014-08-30 13:22 - 2014-08-30 13:22 - 01016261 _____ (Thisisu) C:\Users\Dominic\Downloads\JRT.exe 2014-08-30 13:12 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-08-30 13:12 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-08-30 13:11 - 2014-08-27 15:49 - 00000000 ____D () C:\AdwCleaner 2014-08-30 13:11 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-08-30 13:04 - 2014-08-30 13:02 - 00000000 ____D () C:\Users\Dominic\Desktop\Malebytes 2014-08-29 17:27 - 2014-07-15 22:27 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-29 17:27 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\Offline Web Pages 2014-08-29 10:24 - 2014-08-29 10:23 - 00080443 _____ () C:\Users\Dominic\Downloads\Addition.txt 2014-08-29 10:13 - 2014-08-29 10:05 - 00000000 ____D () C:\ProgramData\Adobe 2014-08-29 10:12 - 2014-08-29 10:12 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Adobe 2014-08-29 10:12 - 2014-07-15 16:39 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Adobe 2014-08-29 10:06 - 2014-08-29 10:06 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-08-29 10:06 - 2014-08-29 10:06 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-08-29 09:13 - 2013-08-22 16:44 - 00514208 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-28 15:16 - 2014-08-14 19:22 - 00000000 ___RD () C:\Users\Dominic\Desktop\Spiele 2014-08-28 15:07 - 2014-08-28 15:07 - 00000000 ____D () C:\Users\Dominic\Documents\Activision 2014-08-28 09:52 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp 2014-08-28 07:24 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\LiveKernelReports 2014-08-27 20:59 - 2014-08-27 20:59 - 00000000 ____D () C:\ProgramData\Codemasters 2014-08-27 20:59 - 2014-07-15 20:00 - 00000000 ____D () C:\Users\Dominic\Documents\My Games 2014-08-27 20:56 - 2014-08-27 20:56 - 00000527 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRID Autosport.lnk 2014-08-27 16:12 - 2014-08-27 16:12 - 00380416 _____ () C:\Users\Dominic\Downloads\Gmer-19357.exe 2014-08-27 16:07 - 2014-08-27 16:07 - 00000000 _____ () C:\Users\Dominic\defogger_reenable 2014-08-27 16:07 - 2014-07-15 16:39 - 00000000 ____D () C:\Users\Dominic 2014-08-27 15:49 - 2014-08-27 15:49 - 01364531 _____ () C:\Users\Dominic\Downloads\adwcleaner_3.308_CB-DL-Manager [1].exe 2014-08-27 15:01 - 2014-08-27 15:01 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-08-27 15:00 - 2014-08-27 15:00 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-08-27 14:59 - 2014-08-21 20:30 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-08-27 14:59 - 2014-08-21 20:20 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-08-27 14:59 - 2014-08-21 20:20 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2014-08-27 14:39 - 2014-08-27 14:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-08-27 14:39 - 2014-08-27 14:38 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-08-27 14:38 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 10:50 - 2014-08-27 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-27 10:50 - 2014-07-15 17:24 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Google 2014-08-27 10:50 - 2014-07-15 17:24 - 00000000 ____D () C:\Program Files (x86)\Google 2014-08-27 10:49 - 2014-08-27 10:49 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-08-27 10:49 - 2014-08-27 10:49 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Deployment 2014-08-27 10:49 - 2014-08-27 10:49 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Apps\2.0 2014-08-27 09:56 - 2014-08-27 09:56 - 00007612 _____ () C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg 2014-08-27 09:46 - 2014-08-08 19:27 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2013 2014-08-25 10:38 - 2014-08-25 10:38 - 00000146 _____ () C:\Users\Dominic\Desktop\Sound - Verknüpfung.lnk 2014-08-25 10:33 - 2014-08-24 11:29 - 00013340 _____ () C:\Users\Dominic\Desktop\Anrufsliste.xlsx 2014-08-25 10:29 - 2014-08-25 10:29 - 00000729 _____ () C:\Users\Dominic\Downloads\vcard-Nicole-Karagoel.vcf 2014-08-24 12:49 - 2014-08-24 12:49 - 03561351 _____ () C:\Users\Dominic\Downloads\Anhänge_2014824.zip 2014-08-24 08:59 - 2014-08-21 20:45 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml 2014-08-23 18:36 - 2014-08-23 18:36 - 00000000 ____D () C:\Users\Dominic\.android 2014-08-23 18:32 - 2014-08-23 18:31 - 07319280 _____ () C:\Users\Dominic\Downloads\MyPhoneExplorer_Setup_1.8.6.exe 2014-08-23 15:21 - 2014-08-23 15:21 - 00534787 _____ () C:\Users\Dominic\Downloads\Filme_RoboCop 2014 German BDRip AC3 XviD-SMY.nzb 2014-08-23 15:20 - 2014-08-23 15:20 - 00532504 _____ () C:\Users\Dominic\Downloads\Filme_The.Expendables.3.2014.German.AC3D.DVDScreener.XviD-HCS.nzb 2014-08-23 13:23 - 2014-08-23 13:23 - 03877424 _____ (SEIKO EPSON CORPORATION) C:\Users\Dominic\Downloads\epson327357eu.EXE 2014-08-23 13:14 - 2014-08-23 11:55 - 00000000 ____D () C:\Program Files (x86)\epson 2014-08-23 11:12 - 2014-08-23 11:12 - 05323226 _____ () C:\Users\Dominic\Downloads\2014_Frühjahr.rar 2014-08-23 02:42 - 2014-08-28 07:21 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-22 13:45 - 2014-08-14 19:07 - 00000000 ____D () C:\Users\Dominic\AppData\Local\3Dconnexion 2014-08-22 09:41 - 2014-08-22 09:41 - 09261687 _____ () C:\Users\Dominic\Downloads\oberflchen.zip 2014-08-22 09:41 - 2014-08-22 09:41 - 00020441 _____ () C:\Users\Dominic\Downloads\bewrsbdrtz.zip 2014-08-22 08:32 - 2014-08-22 08:32 - 00000385 _____ () C:\Users\Dominic\AppData\Roaminguser_gensett.xml 2014-08-22 08:31 - 2014-08-22 08:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-08-21 20:52 - 2014-08-21 20:52 - 00590437 _____ () C:\ProgramData\1408645228.bdinstall.bin 2014-08-21 20:36 - 2014-08-21 20:29 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Bitdefender 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2014-08-21 20:30 - 2014-08-21 20:30 - 00000000 ____D () C:\ProgramData\BDLogging 2014-08-21 20:30 - 2014-08-21 20:20 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\QuickScan 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-08-21 20:20 - 2014-08-21 20:20 - 00000000 ____D () C:\Program Files\Bitdefender 2014-08-21 20:19 - 2014-08-21 20:19 - 07040424 _____ () C:\Users\Dominic\Downloads\bitdefender_isecurity_2015.exe 2014-08-21 20:17 - 2014-07-22 19:27 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-08-21 20:09 - 2014-08-21 20:09 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-21 20:08 - 2014-08-21 20:08 - 00323600 _____ (Dropbox, Inc.) C:\Users\Dominic\Downloads\DropboxInstaller.exe 2014-08-20 21:15 - 2014-08-20 21:15 - 01236176 _____ () C:\Users\Dominic\Downloads\Software_Autodesk AutoCAD Mechanical v2015 GERMAN-CYGiSO.nzb 2014-08-20 19:31 - 2014-08-20 19:31 - 00985925 _____ () C:\Users\Dominic\Downloads\Anhänge_2014820 (1).zip 2014-08-20 18:31 - 2014-08-20 19:31 - 00558592 _____ () C:\Users\Dominic\Downloads\SN-0-000-003.idw 2014-08-20 18:30 - 2014-08-20 19:31 - 00512512 _____ () C:\Users\Dominic\Downloads\SN-0-000-002.idw 2014-08-20 12:44 - 2014-08-20 12:44 - 16849408 _____ () C:\Users\Dominic\Downloads\epson374893eu.exe 2014-08-20 12:44 - 2014-08-20 12:44 - 00000000 ____D () C:\ProgramData\EPSON 2014-08-18 21:18 - 2014-08-02 20:27 - 00000000 ____D () C:\Users\Dominic\AppData\Local\QuickPar 2014-08-18 19:23 - 2014-08-18 19:23 - 00494080 _____ () C:\Users\Dominic\Downloads\SN-0-000-001.idw 2014-08-18 18:49 - 2014-08-18 18:49 - 00000000 ____D () C:\Users\Public\Documents\CyberLink 2014-08-18 18:49 - 2014-07-15 22:46 - 00000000 ____D () C:\Users\Dominic\Documents\CyberLink 2014-08-18 18:49 - 2014-07-15 17:15 - 00000000 ____D () C:\ProgramData\CyberLink 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\PDVD 2014-08-18 18:48 - 2014-08-18 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-08-18 18:48 - 2014-07-15 22:46 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Cyberlink 2014-08-18 18:48 - 2014-07-15 16:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-08-18 18:47 - 2014-08-18 18:47 - 00000000 ____D () C:\ProgramData\SUPPORTDIR 2014-08-18 18:47 - 2014-07-15 17:16 - 00000000 ____D () C:\ProgramData\install_clap 2014-08-18 18:47 - 2014-07-15 17:14 - 00000000 ____D () C:\Program Files (x86)\CyberLink 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieUserList 2014-08-18 18:21 - 2014-08-18 18:21 - 00000000 __SHD () C:\Users\Dominic\AppData\Local\EmieSiteList 2014-08-18 12:17 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache 2014-08-14 19:09 - 2014-07-18 15:58 - 00000000 ____D () C:\Users\Dominic\Documents\Inventor 2015 2014-08-14 19:05 - 2014-08-14 19:05 - 00003218 _____ () C:\Windows\System32\Tasks\3DconnexionCreateProcess_3DxService.exe 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\SketchUp 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\ProgramData\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-08-14 19:05 - 2014-08-14 19:05 - 00000000 ____D () C:\Program Files (x86)\3Dconnexion 2014-08-14 19:05 - 2014-08-14 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion 2014-08-14 19:04 - 2014-08-14 19:04 - 00000000 ____D () C:\Program Files\3Dconnexion 2014-08-14 19:00 - 2014-08-14 18:54 - 329314976 _____ () C:\Users\Dominic\Downloads\Projekte von Schule.zip 2014-08-12 22:50 - 2014-07-18 10:24 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-12 22:50 - 2014-07-15 19:03 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\MediaViewer 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\FileManager 2014-08-12 22:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Camera 2014-08-12 22:49 - 2014-07-15 19:03 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-08-12 20:28 - 2014-07-15 18:56 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-08-12 20:27 - 2014-07-15 22:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-08-12 20:27 - 2014-07-15 18:56 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-08-12 20:27 - 2013-08-22 13:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-12 20:27 - 2013-08-22 13:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-08-12 20:27 - 2013-08-22 13:22 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-08-12 20:27 - 2013-08-22 13:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-08-12 20:27 - 2013-08-22 13:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-08-12 20:27 - 2013-08-22 13:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-08-12 20:27 - 2013-08-22 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-08-12 20:27 - 2013-08-22 05:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-08-12 20:27 - 2013-08-22 05:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-08-12 20:27 - 2013-08-22 05:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-08-12 20:27 - 2013-08-22 05:40 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-08-12 20:27 - 2013-08-22 05:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-08-12 20:26 - 2014-07-17 00:33 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-08-12 20:26 - 2014-07-15 22:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-12 20:26 - 2013-08-22 12:32 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-08-12 19:08 - 2014-07-18 14:33 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Autodesk 2014-08-12 16:01 - 2014-08-12 16:01 - 00721288 _____ (3Dconnexion, Inc) C:\Windows\system32\siappdll.dll 2014-08-12 16:01 - 2014-08-12 16:01 - 00575880 _____ (3Dconnexion, Inc) C:\Windows\SysWOW64\siappdll.dll 2014-08-12 15:39 - 2014-08-12 15:39 - 00044544 _____ () C:\Windows\system32\spwini.dll 2014-08-12 15:27 - 2014-08-12 15:27 - 00038912 _____ () C:\Windows\SysWOW64\spwini.dll 2014-08-11 08:30 - 2014-07-18 15:27 - 00000000 ____D () C:\Users\Dominic\AppData\Local\Autodesk 2014-08-09 12:15 - 2014-07-15 19:13 - 00000000 ____D () C:\Users\Dominic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam Some content of TEMP: ==================== C:\Users\Dominic\AppData\Local\Temp\COMAP.EXE C:\Users\Dominic\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp74h_tr.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-09-02 14:25 ==================== End Of Log ============================ --- --- --- --- --- --- --- --- --- hier noch Adwcleaner von gerade eben Code:
ATTFilter # AdwCleaner v3.309 - Bericht erstellt am 08/09/2014 um 18:36:12 # Aktualisiert 02/09/2014 von Xplode # Betriebssystem : Windows 8.1 (64 bits) # Benutzername : Dominic - DOMINIC-ROG # Gestartet von : C:\Users\Dominic\Downloads\adwcleaner_3.309.exe # Option : Löschen ***** [ Dienste ] ***** Dienst Gelöscht : AddonsHelper ***** [ Dateien / Ordner ] ***** Ordner Gelöscht : C:\ProgramData\DNSErrorHelper Ordner Gelöscht : C:\Program Files (x86)\pc speed up Ordner Gelöscht : C:\Users\Dominic\AppData\Local\Temp\OCS Ordner Gelöscht : C:\Users\Dominic\AppData\Roaming\OCS ***** [ Tasks ] ***** ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9B6B03F1-16CF-4491-BBBB-E872802DD717} Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9B6B03F1-16CF-4491-BBBB-E872802DD717} Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9B6B03F1-16CF-4491-BBBB-E872802DD717} Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9B6B03F1-16CF-4491-BBBB-E872802DD717} Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{721061FB-EB79-4568-A03C-3CE26D68DAE9} Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{721061FB-EB79-4568-A03C-3CE26D68DAE9} Schlüssel Gelöscht : HKCU\Software\Ciuvo Schlüssel Gelöscht : HKCU\Software\OCS Schlüssel Gelöscht : HKCU\Software\Speedchecker Limited Schlüssel Gelöscht : HKLM\SOFTWARE\Speedchecker Limited Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Speedchecker Limited ***** [ Browser ] ***** -\\ Internet Explorer v11.0.9600.17239 ************************* AdwCleaner[R0].txt - [2561 octets] - [27/08/2014 15:49:47] AdwCleaner[R1].txt - [952 octets] - [27/08/2014 15:57:20] AdwCleaner[R2].txt - [1072 octets] - [30/08/2014 13:05:11] AdwCleaner[R3].txt - [2704 octets] - [08/09/2014 18:31:18] AdwCleaner[R4].txt - [2764 octets] - [08/09/2014 18:33:16] AdwCleaner[S0].txt - [2576 octets] - [27/08/2014 15:51:59] AdwCleaner[S1].txt - [1012 octets] - [27/08/2014 15:57:51] AdwCleaner[S2].txt - [1134 octets] - [30/08/2014 13:11:28] AdwCleaner[S3].txt - [2323 octets] - [08/09/2014 18:36:12] ########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [2383 octets] ########## Nach der Neuinstalltion von Chrome hat Malewarebytes nichts angezeigt, dann habe ich aber mich mit meiner Mail angemeldet und er hat alle Lesezeichen und Erweiterungen importiert die ich bei Google hinterlegt habe. Und prompt findet Malewarebytes den gennanten Fehler den ich oben gepostet habe. Geändert von LuckyStrike1 (08.09.2014 um 17:38 Uhr) |
Themen zu Win 8, Chrome extrem langsam und about:blank wird geöffnet |
adobe, akamai, bitdefender 2015, browser, defender, fehlercode 0xc0000005, fehlermeldung, flash player, installation, kaspersky, malware, p.optional.trovi.a, problem, refresh, registry, rootkit, services.exe, software, svchost.exe, sweet-page, sweet-page entfernen, system, tracker, win32/downloadsponsor.a, win32/installcore.qh, win32/speedchecker.a, win64/systweak.a, windows, windowsapps |