|
Plagegeister aller Art und deren Bekämpfung: Windows 7: Avast meldet URL:MalWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
24.09.2014, 22:43 | #16 |
| Windows 7: Avast meldet URL:Mal Beim ersten start ist das Programm einmal abgeschmiert, beim zweiten mal konnte ich dann den log erstellen. Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-09-2014 Ran by freddykrueger at 2014-09-24 23:35:24 Run:2 Running from C:\Users\freddykrueger\Desktop Boot Mode: Normal ============================================== Content of fixlist: ***************** ProxyServer: http=127.0.0.1:8555;https=127.0.0.1:8555 CHR Extension: (?? ??????) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfeebemepipakkhapnhljbcdkagkloh [2014-09-18] CHR Extension: (No Name) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim [2014-09-24] Task: {158B6C6C-8FCA-471C-A1F8-34AC90C3AC3C} - System32\Tasks\{78B2010B-B8B9-4D5B-8C0B-C91C9742C2A5} => D:\Spiele\FMS\FMS.exe Task: {2099AC4E-A3F0-4123-A0BC-670E1FE495BD} - \Plus-HD-2.2-updater No Task File <==== ATTENTION Task: {3E4048ED-A7B0-4E01-A8D4-037DEE7C49ED} - \Plus-HD-2.2-codedownloader No Task File <==== ATTENTION Task: {524E989A-BB30-471F-8C12-4643D837ED45} - System32\Tasks\{0E9D95E0-F2F0-46D1-82BA-BF10DB2901D1} => D:\Spiele\FMS\FMS.exe Task: {A15993AD-34C3-4A17-9FFC-F36C44B9B9C8} - \Plus-HD-2.2-chromeinstaller No Task File <==== ATTENTION Task: {ED365867-84A3-469E-B787-9D00343BB5B0} - \Plus-HD-2.2-enabler No Task File <==== ATTENTION Hosts: EmptyTemp: ***************** HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => Value not found. C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfeebemepipakkhapnhljbcdkagkloh directory not found. C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim directory not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{158B6C6C-8FCA-471C-A1F8-34AC90C3AC3C}" => Key not found. C:\Windows\System32\Tasks\{78B2010B-B8B9-4D5B-8C0B-C91C9742C2A5} not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{78B2010B-B8B9-4D5B-8C0B-C91C9742C2A5}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2099AC4E-A3F0-4123-A0BC-670E1FE495BD}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-2.2-updater" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E4048ED-A7B0-4E01-A8D4-037DEE7C49ED}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-2.2-codedownloader" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{524E989A-BB30-471F-8C12-4643D837ED45}" => Key not found. C:\Windows\System32\Tasks\{0E9D95E0-F2F0-46D1-82BA-BF10DB2901D1} not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0E9D95E0-F2F0-46D1-82BA-BF10DB2901D1}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A15993AD-34C3-4A17-9FFC-F36C44B9B9C8}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-2.2-chromeinstaller" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED365867-84A3-469E-B787-9D00343BB5B0}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-2.2-enabler" => Key not found. C:\Windows\System32\Drivers\etc\hosts => Moved successfully. Hosts was reset successfully. EmptyTemp: => Removed 918.2 MB temporary data. The system needed a reboot. ==== End of Fixlog ==== |
24.09.2014, 23:03 | #17 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7: Avast meldet URL:Mal Okay, dann Kontrollscans mit MBAM und ESET bitte:
__________________Downloade Dir bitte Malwarebytes Anti-Malware
ESET Online Scanner
__________________ |
25.09.2014, 05:49 | #18 |
| Windows 7: Avast meldet URL:MalCode:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 25.09.2014 Suchlauf-Zeit: 00:12:27 Logdatei: mbam.txt Administrator: Ja Version: 2.00.2.1012 Malware Datenbank: v2014.09.24.11 Rootkit Datenbank: v2014.09.19.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Self-protection: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: freddykrueger Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 356901 Verstrichene Zeit: 4 Min, 58 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristics: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 0 (No malicious items detected) Registrierungswerte: 0 (No malicious items detected) Registrierungsdaten: 0 (No malicious items detected) Ordner: 0 (No malicious items detected) Dateien: 2 PUP.Optional.ClientConnect, C:\Users\freddykrueger\Downloads\bsplayer266-1075.exe, In Quarantäne, [5b20e50c5b2045f12b982c84ab5649b7], PUP.Optional.Softonic, C:\Users\freddykrueger\Downloads\SoftonicDownloader_for_everest-ultimate-edition.exe, In Quarantäne, [8eed1bd6f883a492574a8a2ed22fb749], Physische Sektoren: 0 (No malicious items detected) (end) Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7623 # api_version=3.0.2 # EOSSerial=7fd744ca6dcb7447bf8a931b3c3d9c75 # engine=20283 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2014-09-25 04:44:32 # local_time=2014-09-25 06:44:32 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1031 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode_1='avast! Antivirus' # compatibility_mode=783 16777213 100 97 786585 176040762 0 0 # compatibility_mode_1='' # compatibility_mode=5893 16776573 100 94 22424 163250122 0 0 # scanned=1187708 # found=83 # cleaned=0 # scan_time=21612 sh=3D7E8FE73AD46AF27A3A519B1AF123280C1F23A0 ft=1 fh=353453610bf1084e vn="Variante von MSIL/AdvancedSystemProtector.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe.vir" sh=0F0ACE5EAAFF987D027A30217479E6B4248C0C12 ft=1 fh=82ed1fa5b9e91fbf vn="Variante von MSIL/AdvancedSystemProtector.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\AspManager.exe.vir" sh=A97A3378764EA24FC4267EC86252AE3497C05F49 ft=1 fh=105c12aadbd7c3e7 vn="Win32/Systweak.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\Communication.dll.vir" sh=9E886F14D1BF4561775EA9A2A78D8F92715A2712 ft=1 fh=c11390fa1cc2c2ac vn="Variante von MSIL/AdvancedSystemProtector.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\filetypehelper.exe.vir" sh=D103189157FDE6510C9B1569034C0964D67C2D9D ft=1 fh=089fe79882afafcd vn="Variante von MSIL/AdvancedSystemProtector.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\scandll.dll.vir" sh=05BBF923EFFC0CEAC46F97D7A4338AE75A00C02D ft=1 fh=bf0cf04aa4aad68d vn="MSIL/AdvancedSystemProtector.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\Troubleshooter\asp-fixer.com.vir" sh=05BBF923EFFC0CEAC46F97D7A4338AE75A00C02D ft=1 fh=bf0cf04aa4aad68d vn="MSIL/AdvancedSystemProtector.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\Troubleshooter\asp-fixer.exe.vir" sh=05BBF923EFFC0CEAC46F97D7A4338AE75A00C02D ft=1 fh=bf0cf04aa4aad68d vn="MSIL/AdvancedSystemProtector.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\Troubleshooter\asp-fixer.pif.vir" sh=05BBF923EFFC0CEAC46F97D7A4338AE75A00C02D ft=1 fh=bf0cf04aa4aad68d vn="MSIL/AdvancedSystemProtector.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\Troubleshooter\asp-fixer.scr.vir" sh=05BBF923EFFC0CEAC46F97D7A4338AE75A00C02D ft=1 fh=bf0cf04aa4aad68d vn="MSIL/AdvancedSystemProtector.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\Troubleshooter\firefox.com.vir" sh=05BBF923EFFC0CEAC46F97D7A4338AE75A00C02D ft=1 fh=bf0cf04aa4aad68d vn="MSIL/AdvancedSystemProtector.G evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Advanced System Protector\Troubleshooter\iexplore.exe.vir" sh=850E163450A94C2B65CD1A3FA8ACDB30C32FD8A4 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\33036.crx.vir" sh=B5F7448209E81C72DF9573AE6F06942217D20F23 ft=1 fh=a4b349274ba6c7fc vn="Win32/Toolbar.CrossRider.P evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-bg.exe.vir" sh=CF3608C224137808C96B89CB06A02F9228CE68A5 ft=1 fh=2e80f89009bc531e vn="Win32/Toolbar.CrossRider.O evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-bho.dll.vir" sh=3BAD6D354BD0BD63832CB617834D0F0B1F596BBA ft=1 fh=39c843bc97ba4801 vn="Variante von Win64/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-bho64.dll.vir" sh=7350183AC1C2B5F5A3F14EDAB1F75F105D7D7EE1 ft=1 fh=ca135fa24f8e0319 vn="Win32/Toolbar.CrossRider.M evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-buttonutil.dll.vir" sh=10B2E57430AADD146E8B422D26DEBD45E9E05F7F ft=1 fh=cae72b4bb7134730 vn="Win32/Toolbar.CrossRider.N evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-buttonutil.exe.vir" sh=35EF37A76C882FDB66E89EC33C0047A5ABF20CB2 ft=1 fh=c97458b0b850002b vn="Variante von Win64/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-buttonutil64.dll.vir" sh=7003E7060574CD584CD303445051541E88EF30D8 ft=1 fh=9cc3304e33c4dfb3 vn="Variante von Win64/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-buttonutil64.exe.vir" sh=3F7CB42BA6511DFAB7F1436797DBAE3D8C6C7FB0 ft=1 fh=ca2e116403c5c82c vn="Variante von Win32/Toolbar.CrossRider.K evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-chromeinstaller.exe.vir" sh=8FDFC21DEAF94CA0B33F0BEBDDB77730E65F1414 ft=1 fh=d03599c06fd4e285 vn="Variante von Win32/Toolbar.CrossRider.K evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-codedownloader.exe.vir" sh=06980D3977A62A5BEBC292418B6000A86FA681CB ft=1 fh=a6239833c5c1f1bc vn="Variante von Win32/Toolbar.CrossRider.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-enabler.exe.vir" sh=447DB0DE96EA2A94C8678B437A9B2717F1C1C0D4 ft=1 fh=ce99bb7dd6821158 vn="Win32/Toolbar.CrossRider.L evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-helper.exe.vir" sh=8C163D517F4A92384DCA1D2906BAC0A8CEC4AA17 ft=1 fh=2fe65a3565f19441 vn="Variante von Win32/Toolbar.CrossRider.K evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-updater.exe.vir" sh=F2B56034B7C94B65E0D83D714E62F157D39D5396 ft=1 fh=0edced23d8f2fd58 vn="Win32/Packed.VMDetector.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.2\utils.exe.vir" sh=29537B5D9E0B9006067890E1D21D0CE6F22E8A99 ft=1 fh=6e7ef67f604e413f vn="Win32/MyPCBackup.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RegClean Pro\Cloud_Backup_Setup.exe.vir" sh=EE0DBC090D6FC9DA0D0A84516D8D34BF1F96E196 ft=1 fh=44b5db033c27eea0 vn="Win32/MyPCBackup.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RegClean Pro\Cloud_Backup_Setup_Intl.exe.vir" sh=143C233CF3B45A8F2F8E0979F62BCCF7CAA7A97A ft=1 fh=fddcb880fc06a067 vn="Variante von Win32/Systweak evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RegClean Pro\RegCleanPro.exe.vir" sh=9896DAB927F232F334AAC794EE39E4741E8560AD ft=1 fh=20cdc242a13dadda vn="MSIL/AdvancedSystemProtector.D evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RegClean Pro\systweakasp.exe.vir" sh=6148DAB05D76E4FCEF4B394B0F60D9ADB2E2AB1E ft=1 fh=c71c0011346812ac vn="Win32/ELEX.AV evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir" sh=C5AB9AC31AEE306055D8D10C56557F40052147BE ft=1 fh=414813d902ba59a6 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\Tbccint\Multi\CT1750559\UninstallerUI.exe.vir" sh=9C6C68EFAE364FC17008C32848E148F86D468C99 ft=1 fh=c71c0011e4b098f3 vn="Variante von Win32/ELEX.AM evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.vir" sh=8E404BAFA9CEAC0628F089B4F1AA879EB5A3404E ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\101_cortica_m.js.vir" sh=957E505E027C2F899F844C27AC8B82EF94AEBB68 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\102_dealply_m.js.vir" sh=17F6E2411B6C3A285257D050832B0890BBEC046F ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\103_intext_5_m.js.vir" sh=EB047CB7862459E0F74832AEF6A7954A3663373F ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\104_jollywallet_m.js.vir" sh=F2126D68553053F0A5A411866DEC205E27283EDA ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\105_corticas_m.js.vir" sh=A69DBD3502EA9C4EDD7DEAFB23A8FC1C97BAB232 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\107_coupish_m.js.vir" sh=6FD52BE8732402A681159484442B6AA0351C4243 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\108_icm_m.js.vir" sh=F0D9BB17EC343592F74C53A4E3E5E460B90DD3E2 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\116_ads_only_5_m.js.vir" sh=DFB11E05B62F57EDA18112BC002C17EAFD79BEE7 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\117_coupons_intext_ads_5_m.js.vir" sh=9495814AE107F6739D62A09B1829E5A2DCDA1354 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\119_similar_web_m.js.vir" sh=D10EA105AB5DB329186B0B6F10541DD58058AEB8 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\120_luck_m.js.vir" sh=B985E49C6E0E423954A36327BE2EA87F0F287145 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\123_intext_adv_m.js.vir" sh=EAAF312959AC9CCF5138825927B5E2D38F57E2E1 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js.vir" sh=62B063E0D121966E9A83C9AB518DADAE47423555 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\125_arcadi2_m.js.vir" sh=C6936530686054A048C83CF221AE9CF15430256E ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\126_revizer_ws_m.js.vir" sh=FBCA935E295A6F9DD0A6118DAE63ADB15EC5F2DD ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\127_revizer_p_m.js.vir" sh=4A86247BDE5D2225473389037FA942819FD677CF ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\128_superfish_pricora_m.js.vir" sh=D9E89F57D3A13498640961F3B9954D67D7EA1039 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\129_widdit_m.js.vir" sh=B9CFC11B067C54952D592C618BD391AA26B3393B ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\135_arcadi3_m.js.vir" sh=17483832BF1FA23335B7C1E04A0530AB60CBEDC6 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\138_getdeal_m.js.vir" sh=90A4F559561CF603A203F93D56C80B17B8152325 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\141_corticas_ru_m.js.js.vir" sh=8395A2B6D59D2F3EDDCFC863DDA2F674396DC74C ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\142_intext_fa_m.js.vir" sh=5925EABD04108D9E7E0BF8A0ECBAEC38DE8BFFEC ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\155_ibario_pops_m.js.vir" sh=A28CB6571CE8071F7AC0A6BA249259A684E96292 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\158_50onred_ads_only_no_fb_m.js.vir" sh=18C46AE5CB67274764D17F8A40975EEB5C67F795 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\159_cortica_rollover_m.js.vir" sh=83049A36E01F304F22C9A582B5826457E2B8BF0F ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\170_icm1_5_m.js.vir" sh=81C3B657563171D65FE42C52872ECF8EB7924C86 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\171_arcadi2_sourceID_m.js.vir" sh=FAD5F9E3F4DA8ED3ACC760906893EC897A53D622 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js.vir" sh=92DD07C2421C2C5A4996E399DB6707B4707488F7 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\91_monetizationLoader.js.js.vir" sh=93022F69189E8D2F1B4B8717522CA1AFFA59F708 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\92_superfish_m.js.vir" sh=5CFBC7AED79FF8B602282A33D42FC9102DA53294 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo\1.25.77_0\extensionData\plugins\93_superfish_no_coupons_m.js.vir" sh=35B922C77E9F51BBF8A25D362152E8659AC4D14D ft=1 fh=1580afc1f00b3898 vn="Variante von Win32/Toolbar.Conduit.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Tbccint\BackgroundContainer\BackgroundContainer.dll.vir" sh=314F703F0F190BF70F0386509C10998D4E2BD10B ft=1 fh=2f9f46df1834d950 vn="Win32/Toolbar.Conduit.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Tbccint\BackgroundContainer\TBUpdaterLogic_1.0.0.1.dll.vir" sh=D3CBDD7C6ED2C9D81DA4FCF9AF57CDD5D3711ED3 ft=1 fh=86dbe26399c3d0fa vn="Win32/Toolbar.Conduit.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Tbccint\BackgroundContainer\TBUpdaterLogic_1.0.0.2.dll.vir" sh=C0794B81D4232F94E3E59917E6EFE025A5AC72D4 ft=1 fh=793aa3eeb17df0ba vn="Variante von Win32/Toolbar.Conduit.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Tbccint\Community Alerts\Alererror.dll.vir" sh=EB472A5F5CDBE47E5B53942F1971B26AF19A4945 ft=1 fh=c2ec1e05be884624 vn="Variante von Win32/Toolbar.Conduit.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\freddykrueger\AppData\Local\Tbccint\Community Alerts\Alert.dll.vir" sh=F2D0E0D3645DDD751F293C391C560C4142FCD1D3 ft=1 fh=2fcbc68ed4edd523 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\FREDDY~1\AppData\Local\Temp\BS_Player_ControlBar\tbBS_0.dll.vir" sh=16068B8977B4DC562AE782D91BC009472667E331 ft=1 fh=c3b5a87b7d152749 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\FREDDY~1\AppData\Local\Temp\OCS\ocs_v71a.exe.vir" sh=848C686280EAA04B172FCCFFBD312132A0C46172 ft=1 fh=7764b0effb0b9556 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\FREDDY~1\AppData\Local\Temp\OCS\ocs_v7f.exe.vir" sh=1DA7E55B7B8609994368D0C56A7B76474F882B6A ft=1 fh=6342ba6251261b43 vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\System32\roboot64.exe.vir" sh=AAA29097B1E5A7098E19A38F1200E636EE1C3A1E ft=1 fh=6b75069f13c3f94c vn="Win64/AdvancedSystemProtector.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\System32\sasnative64.exe.vir" sh=CF979F7756724BCD8752D52683559622DBD5E095 ft=1 fh=08587c9a0e0ac23f vn="Win32/AdWare.1ClickDownload.AT Anwendung" ac=I fn="C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Sicherungsstandard\File System\001\t\00\00000000" sh=4E438E91824DBD6C877276175919B623F4BEED74 ft=1 fh=a4be3f00afb4ea7c vn="Win32/AdWare.1ClickDownload.AT Anwendung" ac=I fn="C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Sicherungsstandard\File System\001\t\00\00000001" sh=6BF90AD7795E654A8F0A3C236DBE0DF9150450FB ft=1 fh=9fc15204e444e351 vn="Win32/Somoto.E evtl. unerwünschte Anwendung" ac=I fn="C:\Users\freddykrueger\Downloads\IDM324Setup.exe" sh=B602A6FA24F299FACA9559ED4592B72F480AACD7 ft=1 fh=c71c0011416ac255 vn="Variante von Win32/Packed.VMProtect.ABD Trojaner" ac=I fn="D:\Spiele\State Of Decay\steam_api.dll" sh=6D4E2F6DD962D555D7CD19A6C9ACD0A58CB1D264 ft=1 fh=c71c001109ac7c8d vn="Variante von Win32/Packed.VMProtect.ABD Trojaner" ac=I fn="D:\Spiele\Train Simulator 2014 Steam Edition\FAKE_API.DLL" sh=631C7F81BB087E2B50407B7306DDD8D3D3490D6F ft=1 fh=05cce27106cb731a vn="Variante von Win32/Packed.VMProtect.ABD Trojaner" ac=I fn="D:\Spiele\Train Simulator 2014 Steam Edition\FAKE_CLIENT.DLL" sh=75B0E9F494DF34D50310A98BFDB3E486CFBCBADB ft=1 fh=9a2f0f8a86e89ad5 vn="Variante von Win32/Packed.VMProtect.ABD Trojaner" ac=I fn="E:\Download\Spiele\Need.for.Speed.Rivals.Digital.Deluxe.Edition-P2P\NFS14_x86.exe" sh=691F65FB9FFDA33955C0F8B1201785E8038BE093 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.VMProtect.ABD Trojaner" ac=I fn="E:\Download\Spiele\State.of.Decay-WaLMaRT\STATE_OF_DECAY.ISO" sh=3C82D5C3190AF9A152E81846FC96EC7712D380BD ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.VMProtect.ABD Trojaner" ac=I fn="E:\Download\Spiele\Train Simulator 2014\wmt-ts14.iso" sh=3D42D88D50A2916D4A27360D5A5C62A1C09C1E41 ft=1 fh=922633ad68ab0444 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="J:\Programme\ashampoo_magical_uninstall_2_2.00_8016.exe" |
25.09.2014, 11:18 | #19 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7: Avast meldet URL:MalZitat:
Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html Es geht weiter wenn du alles Illegale entfernt hast. Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________ Logfiles bitte immer in CODE-Tags posten |
25.09.2014, 12:14 | #20 |
| Windows 7: Avast meldet URL:Mal Alles Klar alles Gelöscht, schande auf mein Haubt. Ich hoffe ich kann meine Ehre etwas Herstellen wenn ich sage das ich 217 Steam Games habe. Und in etwa 275 Spiele Auf die Drei Xbox Versionen Verteielt. ^^ P.s. Mittlerweile glaube ich sowieso das Formatierung hier Sinniger ist, da das System jetzt in Etwa geschätzt Zwei Jahre Läuft. Aber im Endeffekt was ich hier geschrieben habe ist nur Grosses. xD Deswegen was Sagt Chef ? |
25.09.2014, 15:37 | #21 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7: Avast meldet URL:Mal Hast du auch die gecrackten installierten Spiele deinstalliert? Wie läuft dein System überhaupt jetzt?
__________________ --> Windows 7: Avast meldet URL:Mal |
25.09.2014, 16:18 | #22 |
| Windows 7: Avast meldet URL:Mal Ja sind Deinstalliert die Order sind auch weg. System Läuft Stabil, momentan keine Avast meldung aber Russische Banner. Keine Abstürze, Bluescreens, Freez, oder Ähnliche Geschichten. Starten und Herunterfahren gehen auch Problemlos. |
25.09.2014, 21:56 | #23 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7: Avast meldet URL:Mal Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Scan klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
25.09.2014, 23:25 | #24 |
| Windows 7: Avast meldet URL:MalCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-09-2014 01 Ran by freddykrueger at 2014-09-26 00:21:07 Running from C:\Users\freddykrueger\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKLM-x32\...\uTorrent) (Version: 1.6 - ) Ace Stream Media 2.1.5.3 (HKCU\...\AceStream) (Version: 2.1.5.3 - Ace Stream Media) Acoustica Mixcraft 6 (HKLM-x32\...\Acoustica Mixcraft 6) (Version: b217 - Acoustica) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated) Adobe AIR (x32 Version: 15.0.0.249 - Adobe Systems Incorporated) Hidden Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Community Help (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated) Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated) Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated) AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1355, 14.07.2014 - AIMP DevTeam) Amazon MP3-Downloader 1.0.18 (HKCU\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC) Anodyne (HKLM-x32\...\Steam App 234900) (Version: - Sean Hogan and Jonathan Kittaka) Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.1.0 - Asmedia Technology) Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology) ASRock 3TB+ Unlocker v1.1 (HKLM\...\ASRock 3TB+ Unlocker_is1) (Version: - ASRock Inc.) ASUS Xonar DG Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - ) Audacity 2.0.4 (HKLM-x32\...\Audacity_is1) (Version: 2.0.4 - Audacity Team) Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.0.29.1101 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 3.0.155.0 - Autodesk) Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.) Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden Autodesk DWG TrueView 2015 - English (HKLM\...\DWG TrueView 2015 - English) (Version: 20.0.51.0 - Autodesk) Autodesk Inventor Content Center Libraries 2015 (Desktop Content) (HKLM\...\{B46DECD1-1964-4EF1-0000-22D71E81877C}) (Version: 19.0.15900.0000 - Autodesk) Autodesk Inventor Professional 2015 - English (HKLM\...\Autodesk Inventor Professional 2015) (Version: 19.0.15900.0000 - Autodesk) Autodesk Inventor Professional 2015 (Version: 19.0.15900.0000 - Autodesk) Hidden Autodesk Inventor Professional 2015 English Language Pack (Version: 19.0.15900.0000 - Autodesk) Hidden Autodesk Inventor Professional 2015 Language Pack - Deutsch (German) (HKLM\...\Autodesk Inventor 2015 Language Pack - Deutsch (German)) (Version: 19.0.15900.0000 - Autodesk) Autodesk Inventor Professional 2015 Language Pack - Deutsch (German) (Version: 19.0.15900.0000 - Autodesk) Hidden Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk) Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk) Autodesk Material Library Low Resolution Image Library 2015 (HKLM-x32\...\{4FBC9635-AC56-4378-8FDE-C4D3ED072681}) (Version: 5.2.9.100 - Autodesk) Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.3.1.39 - Autodesk) Autodesk ReCap (Version: 1.3.1.39 - Autodesk) Hidden Autodesk Revit Interoperability for Inventor 2015 (HKLM\...\Autodesk Revit Interoperability for Inventor 2015) (Version: 15.0.107.0 - Autodesk) Autodesk Revit Interoperability for Inventor 2015 (Version: 15.0.107.0 - Autodesk) Hidden Autodesk Vault Basic 2015 (Client) (HKLM\...\Autodesk Vault Basic 2015 (Client)) (Version: 19.0.49.0 - Autodesk) Autodesk Vault Basic 2015 (Client) (Version: 19.0.49.0 - Autodesk) Hidden Autodesk Vault Basic 2015 (Client) English Language Pack (Version: 19.0.49.0 - Autodesk) Hidden avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2021 - AVAST Software) Band-in-a-Box Server (HKLM-x32\...\BBServer_is1) (Version: - PG Music Inc.) Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB) BeamNG-Techdemo-0.3 (remove only) (HKCU\...\BeamNG-Techdemo-0.3) (Version: - ) BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.9.9 - BitRaider, LLC) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Bridge It (plus) (HKLM-x32\...\Steam App 248370) (Version: - Chronic Logic) Broadcom NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.8.5.1 - Broadcom Corporation) BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.66.1075 - AB Team, d.o.o.) Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.7 - Activision) Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch (x32 Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch (x32 Version: 1.2 - Activision) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch (x32 Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch (x32 Version: 1.3 - Activision) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch (x32 Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch (x32 Version: 1.4 - Activision) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch (x32 Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Patch (x32 Version: 1.5 - Activision) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6 - Activision) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7 - Activision) Hidden Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.3.4643 - CDBurnerXP) Cities XL Platinum (HKLM-x32\...\Steam App 231140) (Version: - Focus Home Interactive) Configurator 360 addin (HKLM-x32\...\{8FE324B0-B934-4D68-BAB5-DE2136036237}) (Version: 19.0.11300.9000 - Autodesk, Inc.) Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CoyoteWT 1.1 (HKLM-x32\...\CoyoteWT_is1) (Version: - Coyote Electronics Inc.) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd) Day of Defeat (HKLM-x32\...\Steam App 30) (Version: - Valve) DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive) DC++ 0.825 (HKLM-x32\...\DC++) (Version: 0.825 - Jacek Sieka) Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland) Deadlight (HKLM-x32\...\Steam App 211400) (Version: - Tequila Works, S.L.) Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts) Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts) Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts) Duel of Champions (HKLM-x32\...\MMDoC-PDCLive) (Version: - Ubisoft) Dungeon Keeper Gold (HKLM-x32\...\GOGPACKDUNGEONKEEPER_is1) (Version: 2.0.0.4 - GOG.com) DWG TrueView 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden Eco Materials Adviser for Autodesk Inventor 2015 (64-bit) (HKLM\...\{2F7441CB-A646-41F1-B1CB-518AB311138B}) (Version: 5.1.2.0 - Granta Design Limited) Emergency 2014 (HKLM-x32\...\Emergency 2014) (Version: - Quadriga Games) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software) EVE Online (nur entfernen) (HKLM-x32\...\EVE) (Version: - CCP Games Ltd.) EveHQ (HKLM-x32\...\EveHQ) (Version: - ) EVEMon (HKLM-x32\...\EVEMon) (Version: 1.9.0 - battleclinic.com) EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.) ExtractNow (HKLM-x32\...\ExtractNow) (Version: 4.8.2.0 - Nathan Moinvaziri) FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production) FIFA 14 (HKLM-x32\...\{7A6577E7-F341-430F-9173-91E14E2DE270}_is1) (Version: 1.0 - Electronic Arts) FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts) FileZilla Client 3.8.0 (HKLM-x32\...\FileZilla Client) (Version: 3.8.0 - Tim Kosse) FlashFXP 4 (HKLM-x32\...\FlashFXP 4) (Version: 4.4.3.2029 - OpenSight Software LLC) foobar2000 v1.2.9 (HKLM-x32\...\foobar2000) (Version: 1.2.9 - Peter Pawlowski) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.1.2.1224 - Foxit Corporation) FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version: - Subset Games) FTPRush 2.1.8 (HKLM-x32\...\FTP Rush_is1) (Version: 2.1.8 - wftpserver.com) FUSSBALL MANAGER 13 (HKLM-x32\...\{80AF0300-866F-400F-A350-D53E3C3E34E0}) (Version: 1.0.4.0 - Electronic Arts) Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version: - Greenheart Games) Gamers.IRC 6.07 (HKLM-x32\...\Gamers.IRC) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version: - Rockstar Games) Greed Corp (HKLM-x32\...\Steam App 48950) (Version: - W!Games) Gtk# for .Net 2.12.10 (HKLM-x32\...\{550B72C4-F404-4812-971F-947E835A877E}) (Version: 2.12.10 - Novell, Inc.) Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.) Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version: - Arobas Music) Hard Reset (HKLM-x32\...\Steam App 98400) (Version: - Flying Wild Hog) Heroes & Generals (HKLM-x32\...\Heroes & Generals) (Version: 1.0.6.1 - Reto-Moto) iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.) Incredipede (HKLM-x32\...\Steam App 230150) (Version: - Colin Northway with art by Thomas Shahan) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation) iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.) Jagged Alliance - Back in Action (HKLM-x32\...\Steam App 57740) (Version: - Coreplay GmbH) Jamulus (remove only) (HKLM-x32\...\Jamulus) (Version: - ) Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle) Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden Java SE Development Kit 7 Update 65 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170650}) (Version: 1.7.0.650 - Oracle) JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) KeePass Password Safe 1.26 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.26 - Dominik Reichl) Kepard (HKLM-x32\...\Kepard) (Version: - Kepard) Killing Floor (HKLM-x32\...\Steam App 1250) (Version: - Tripwire Interactive) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden LIMBO (HKLM-x32\...\Steam App 48000) (Version: - Playdead) LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.8 - Thibaut Lauziere) Local Cooling Setup (x32 Version: 1.0 - InstallAware Software Corporation) Hidden Logitech Gaming Software (Version: 8.30.28 - Logitech Inc.) Hidden Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech) Logitech Gaming Software 8.55 (HKLM\...\Logitech Gaming Software) (Version: 8.55.137 - Logitech Inc.) Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation) Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software) Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual Basic for Applications 7.1 (x64) (Version: 7.1.00.00 - Microsoft Corporation) Hidden Microsoft Visual Basic for Applications 7.1 (x64) English (Version: 7.1.0.0 - Microsoft Corporation) Hidden Microsoft Visual Basic for Applications 7.1 (x64) German (Version: 7.1.0.0 - Microsoft Corporation) Hidden Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden mIRC (HKLM-x32\...\mIRC) (Version: 7.29 - mIRC Co. Ltd.) Mockup 360 Addin 2015 (HKLM-x32\...\{E4D4242C-FC14-4B4F-B1D9-6760D8C241D5}) (Version: 1.1.0 - Autodesk) Mortal Kombat Komplete Edition (HKLM-x32\...\{BC8A9E23-2295-4821-9654-D51D7C3E1B9D}_is1) (Version: 1.0 - Warner Bros. Interactive Entertainment) Mozilla Firefox 32.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.2 (x86 de)) (Version: 32.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Mumble 1.2.4 (HKLM-x32\...\{AF348C2E-7596-481B-92E0-B211836AB949}) (Version: 1.2.4 - Thorvald Natvig) Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.5.6.1344 - Native Instruments) Native Instruments Controller Editor (Version: 1.5.6.1344 - Native Instruments) Hidden Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: - Native Instruments) Native Instruments Guitar Rig 5 (Version: 5.1.0.2641 - Native Instruments) Hidden Native Instruments Guitar Rig Mobile I/O (HKLM-x32\...\Native Instruments Guitar Rig Mobile I/O) (Version: - Native Instruments) Native Instruments Guitar Rig Mobile I/O (Version: 3.0.0.625 - Native Instruments) Hidden Native Instruments Guitar Rig Session I/O (HKLM-x32\...\Native Instruments Guitar Rig Session I/O) (Version: - Native Instruments) Native Instruments Guitar Rig Session I/O (Version: 3.0.0.625 - Native Instruments) Hidden Native Instruments Rig Kontrol 3 (HKLM-x32\...\Native Instruments Rig Kontrol 3) (Version: - Native Instruments) Native Instruments Rig Kontrol 3 (Version: 3.0.0.625 - Native Instruments) Hidden Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments) Native Instruments Service Center (Version: 2.3.2.926 - Native Instruments) Hidden Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.4 - Notepad++ Team) NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation) NVIDIA GeForce Experience 2.1.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1.1 - NVIDIA Corporation) NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Install Application (Version: 2.1002.160.1244 - NVIDIA Corporation) Hidden NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA ShadowPlay 15.3.36 (Version: 15.3.36 - NVIDIA Corporation) Hidden NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden NVIDIA Systemsteuerung 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden NVIDIA Update 15.3.36 (Version: 15.3.36 - NVIDIA Corporation) Hidden NVIDIA Update Core (Version: 15.3.36 - NVIDIA Corporation) Hidden NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) open3A 1.8 (HKLM-x32\...\{079B4FC8-3E7E-431D-89D3-5BDABDD2621B}_is1) (Version: - Furtmeier Hard- und Software) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation) Origin (HKLM-x32\...\Origin) (Version: 9.3.1.4482 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.80.20.0 - Overwolf Ltd.) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.) PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games) PG Music DirectX Plugins 2.0.0.0 (HKLM-x32\...\PG_DX_Plugins_is1) (Version: - PG Music Inc.) PhoenixRC (HKLM-x32\...\{6D44070C-86F9-424A-B514-6907E4335BCE}) (Version: 3.00.16 - Ihr Firmenname) Pokémon Trading Card Game Online (HKLM-x32\...\{496D7B7E-EBDC-4E2B-B021-4FF03B188B69}) (Version: 1.0.0 - The Pokémon Company International) Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.2.0 - Electronic Arts) Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - ) RealTracks Direct Input 3 (HKLM-x32\...\BB_is1) (Version: - PG Music Inc.) REAPER (x64) (HKLM\...\REAPER) (Version: - ) Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version: - Tripwire Interactive) RollerCoaster Tycoon 3 Platinum (HKLM-x32\...\GOGPACKRCT3_is1) (Version: 2.0.0.13 - GOG.com) Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia) Shadow Warrior Classic Redux (HKLM-x32\...\Steam App 225160) (Version: - 3D Realms) SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts) SopCast 3.5.0 (HKLM-x32\...\SopCast) (Version: 3.5.0 - www.sopcast.com) Spintires (HKLM-x32\...\Spintires_is1) (Version: - ) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) StreamTorrent 1.0 (HKLM-x32\...\StreamTorrent 1.0) (Version: - ) Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version: - ) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.11 - TeamSpeak Systems GmbH) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer) Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic) The Bard's Tale (HKLM-x32\...\Steam App 41900) (Version: - inXile Entertainment) The Showdown Effect (HKLM-x32\...\Steam App 204080) (Version: - Arrowhead Game Studios) Theme Hospital (HKLM-x32\...\Theme Hospital_is1) (Version: - GOG.com) Ticket to Ride (HKLM-x32\...\Steam App 108200) (Version: - Days of Wonder) TIPP10 Version 2.1.0 (HKLM-x32\...\TIPP10_is1) (Version: - (c) 2006-2011, Tom Thielicke IT Solutions) Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version: - The Creative Assembly) Trainz Simulator 12 (HKLM-x32\...\Steam App 24670) (Version: - N3V Games) Trainz: Murchison 2 (HKLM-x32\...\Steam App 24660) (Version: - N3V Games) Veetle Broadcaster 0.9.18 (HKLM-x32\...\Veetle Broadcaster) (Version: 0.9.18 - Veetle, Inc) Veetle TV (HKLM-x32\...\Veetle TV) (Version: 0.9.19 - Veetle, Inc) Viscosity 1.4.10 (1241) (HKLM\...\{CC85567E-DC83-4BB5-AD77-D84514C0D059}_is1) (Version: 1.4.10 - SparkLabs) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN) War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment) Widelands (HKLM-x32\...\{WIDELANDS-WIN32-IS}_is1) (Version: Widelands - Widelands Development Team) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) Worms Reloaded (HKLM-x32\...\Steam App 22600) (Version: - Team17 Software Ltd.) Worms Revolution (HKLM-x32\...\Steam App 200170) (Version: - Team17 Digital Ltd.) XBMC (HKCU\...\XBMC) (Version: - Team XBMC) X-Edit (HKLM-x32\...\X-Edit) (Version: 2.7.1.1 - DigiTech) X-Edit (x32 Version: 2.7.1.1 - DigiTech) Hidden Xfire (HKLM-x32\...\Xfire) (Version: - ) YGOPro DevPro Version 1.9.6 r0 (HKLM-x32\...\{3CF2634F-3F38-4DD3-9201-CB2FE6B5FF23}_is1) (Version: 1.9.6 r0 - YGOPro DevPro Online) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\RxAppCtrl.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\iDrop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\TI.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\RxAppDocView.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\RxAppDocView.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\RxTest.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DtCp.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\RxAppCtrl.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\SolidObject.Dll () CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\UCxTextBtn.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\UCxTextBtn.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\SolidObject.Dll () CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\BodyReceiver.dll () CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\RxApprenticeServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ColorButton.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ColorButton.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\AcInetUI.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\RxInventorUtilities.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DTInterop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\InvResc.dll (Autodesk) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> D:\Programme\Inventor\Inventor 2015\Bin\InvTXTStack.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> D:\Programme\Inventor\Inventor 2015\Bin\DTInterop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll No File CustomCLSID: HKU\S-1-5-21-668898273-2044096128-2289699793-1000_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll No File ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2014-01-31 09:48 - 2014-09-24 23:35 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {5C9EFE10-35F3-4FA3-83F7-3A1A5076F666} - System32\Tasks\Overwolf Updater Task => D:\Programme\Overwolf\OverwolfUpdater.exe [2014-09-21] (Overwolf LTD) Task: {689DECAB-5011-40B2-B3FB-9B843ECF0270} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24] (Adobe Systems Incorporated) Task: {81369281-8D1D-4FF9-A7D2-01FE7FAD2867} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-11] (Google Inc.) Task: {9FAAA61B-F0EE-4B5A-81B8-BD273C569702} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd) Task: {D80DFFEA-08EA-4D3C-8E56-5B9C53C7BF5C} - System32\Tasks\AdobeAAMUpdater-1.0-freddykrueger88-freddykrueger => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated) Task: {DDFFA825-9962-4E26-9EB0-EEDCA4DD1564} - System32\Tasks\avast! Emergency Update => D:\Programme\Avast\AvastEmUpdate.exe [2014-08-22] (AVAST Software) Task: {E0D7A3FA-0DCA-41F7-B9F1-75D034986AD8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-11] (Google Inc.) Task: {FF269F16-74C4-4BE5-A312-3B8AD4C1A64D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-08-11 01:07 - 2014-07-02 20:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () D:\Programme\FileZilla FTP Client\fzshellext_64.dll 2012-06-18 17:24 - 2012-06-18 17:24 - 00222720 _____ () D:\Programme\Notepad++\NppShell_05.dll 2013-11-20 12:32 - 2012-05-23 17:24 - 05779456 _____ () D:\Programme\open3A\mysql\bin\mysqld-nt.exe 2013-09-29 22:02 - 2014-06-14 00:26 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2013-08-11 01:43 - 2008-07-11 15:04 - 00200704 ____N () C:\Windows\SysWOW64\HsMgr.exe 2013-08-11 01:43 - 2008-07-11 15:03 - 00282112 ____N () C:\Windows\system\HsMgr64.exe 2012-12-14 02:42 - 2012-12-14 02:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-07-28 20:29 - 2014-07-28 20:29 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2014-07-28 20:32 - 2014-07-28 20:32 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2014-07-28 20:29 - 2014-07-28 20:29 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2014-07-28 20:31 - 2014-07-28 20:31 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2014-03-16 19:42 - 2014-03-16 19:42 - 02611808 _____ () D:\Programme\Rainlendar2\Rainlendar2.exe 2013-08-14 22:40 - 2014-09-25 13:57 - 00027904 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\ace_engine.exe 2013-05-22 20:50 - 2013-05-22 20:50 - 00400704 _____ () C:\Users\freddykrueger\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe 2014-02-19 01:26 - 2014-02-19 01:26 - 00232328 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll 2014-02-19 01:26 - 2014-02-19 01:26 - 00059784 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll 2014-02-19 01:26 - 2014-02-19 01:26 - 00922504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll 2014-02-19 01:26 - 2014-02-19 01:26 - 00048520 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll 2014-09-21 10:59 - 2014-09-21 10:59 - 00074528 _____ () D:\Programme\Overwolf\0.80.20.0\OverwolfBrowser.exe 2013-03-29 13:18 - 2013-03-29 13:18 - 00026744 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\ace_update.exe 2014-08-30 03:28 - 2014-09-25 20:15 - 02789672 _____ () D:\Spiele\Eve\launcher\launcher.exe 2014-09-25 20:15 - 2014-09-25 20:15 - 00469800 _____ () D:\Spiele\Eve\launcher\appdata\EVE_Online_Launcher-2.1.826897.win32\launcher.exe 2014-03-17 14:26 - 2014-03-17 14:26 - 00173568 _____ () D:\Programme\Teamspeak 3\quazip.dll 2014-03-17 14:26 - 2014-03-17 14:26 - 01080832 _____ () D:\Programme\Teamspeak 3\platforms\qwindows.dll 2014-03-17 14:26 - 2014-03-17 14:26 - 00833024 _____ () D:\Programme\Teamspeak 3\sqldrivers\qsqlite.dll 2013-08-06 09:19 - 2014-08-06 14:32 - 00102344 _____ () D:\Programme\Teamspeak 3\soundbackends\directsound_win64.dll 2013-08-06 09:19 - 2014-08-06 14:32 - 00108488 _____ () D:\Programme\Teamspeak 3\soundbackends\windowsaudiosession_win64.dll 2014-03-17 14:25 - 2014-03-17 14:25 - 00030208 _____ () D:\Programme\Teamspeak 3\imageformats\qgif.dll 2014-03-17 14:25 - 2014-03-17 14:25 - 00233984 _____ () D:\Programme\Teamspeak 3\imageformats\qjpeg.dll 2013-08-06 09:19 - 2014-08-06 14:32 - 00134088 _____ () D:\Programme\Teamspeak 3\plugins\appscanner_plugin.dll 2013-08-06 09:19 - 2014-08-06 14:32 - 00563656 _____ () D:\Programme\Teamspeak 3\plugins\clientquery_plugin.dll 2013-08-06 09:19 - 2014-08-06 14:32 - 00265160 _____ () D:\Programme\Teamspeak 3\plugins\lua_plugin.dll 2013-09-09 21:18 - 2014-08-06 14:32 - 00579016 _____ () D:\Programme\Teamspeak 3\plugins\teamspeak_control_plugin.dll 2014-03-17 14:25 - 2014-03-17 14:25 - 00159232 _____ () D:\Programme\Teamspeak 3\accessible\qtaccessiblewidgets.dll 2014-08-22 03:55 - 2014-08-22 03:55 - 00301152 _____ () D:\Programme\Avast\aswProperty.dll 2014-09-24 21:50 - 2014-09-24 21:50 - 02866688 _____ () D:\Programme\Avast\defs\14092401\algo.dll 2014-09-25 21:03 - 2014-09-25 21:03 - 02866688 _____ () D:\Programme\Avast\defs\14092501\algo.dll 2014-07-15 19:43 - 2014-06-21 08:19 - 00047496 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2014-07-15 19:43 - 2014-06-21 08:19 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2013-11-20 12:32 - 2012-05-23 17:24 - 02068480 _____ () D:\Programme\open3A\apache\bin\LIBMYSQL.dll 2013-11-20 12:32 - 2012-05-23 17:24 - 00167936 _____ () D:\Programme\open3A\apache\bin\LIBPQ.dll 2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2013-08-11 01:43 - 2012-06-06 09:56 - 00143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll 2014-08-29 16:48 - 2014-08-21 20:15 - 01171456 _____ () D:\Programme\Steam\libavcodec-56.dll 2014-08-29 16:48 - 2014-08-21 20:15 - 00442368 _____ () D:\Programme\Steam\libavutil-54.dll 2014-08-29 16:48 - 2014-08-21 20:15 - 00332800 _____ () D:\Programme\Steam\libavresample-2.dll 2013-07-01 08:20 - 2014-09-03 21:28 - 00774656 _____ () D:\Programme\Steam\SDL2.dll 2014-05-22 14:55 - 2014-09-23 06:32 - 02226880 _____ () D:\Programme\Steam\video.dll 2014-08-29 16:48 - 2014-08-21 20:15 - 00403968 _____ () D:\Programme\Steam\libavformat-56.dll 2014-08-29 16:48 - 2014-08-21 20:15 - 00485888 _____ () D:\Programme\Steam\libswscale-3.dll 2013-07-26 14:46 - 2014-09-23 06:32 - 00679616 _____ () D:\Programme\Steam\bin\chromehtml.DLL 2013-07-26 14:46 - 2014-09-23 06:32 - 00138432 _____ () D:\Programme\Steam\bin\audio.dll 2013-06-14 15:49 - 2014-05-31 03:27 - 00071680 _____ () D:\Programme\Steam\bin\mssmp3.asi 2013-06-14 15:49 - 2014-05-31 03:27 - 00153088 _____ () D:\Programme\Steam\bin\mssvoice.asi 2012-05-16 21:01 - 2012-05-16 21:01 - 00140800 _____ () D:\Programme\Rainlendar2\lua52.dll 2014-03-14 12:11 - 2014-03-14 12:11 - 00250368 _____ () D:\Programme\Rainlendar2\libical.dll 2014-03-16 19:42 - 2014-03-16 19:42 - 00060512 _____ () D:\Programme\Rainlendar2\plugins\iCalendarPlugin.dll 2014-03-14 12:11 - 2014-03-14 12:11 - 00065024 _____ () D:\Programme\Rainlendar2\libicalss.dll 2012-06-17 15:22 - 2012-06-17 15:22 - 00012800 _____ () D:\Programme\Rainlendar2\lfs.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00025600 _____ () D:\Programme\Overwolf\0.80.20.0\CoreAudioApi.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 38713856 _____ () D:\Programme\Overwolf\0.80.20.0\libcef.DLL 2013-08-14 22:40 - 2014-09-25 13:57 - 00235008 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\acestreamengine.Core.pyd 2011-06-12 15:09 - 2011-06-12 15:09 - 00038400 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\_socket.pyd 2011-06-12 15:09 - 2011-06-12 15:09 - 00720896 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\_ssl.pyd 2013-03-29 11:57 - 2013-03-29 11:57 - 00018944 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\acestreamengine.pycompat.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00287232 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\_hashlib.pyd 2014-01-29 18:00 - 2014-09-25 13:57 - 01318400 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\acestreamengine.live.pyd 2014-01-29 18:00 - 2014-01-28 12:57 - 00036352 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\_psutil_mswindows.pyd 2014-01-29 18:00 - 2014-01-28 12:57 - 00053248 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\_blist.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00106496 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\_ctypes.pyd 2014-01-29 18:00 - 2014-01-28 12:57 - 00040448 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\bitarray._bitarray.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00011776 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\select.pyd 2011-01-18 23:56 - 2011-01-18 23:56 - 00334336 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\M2Crypto.__m2crypto.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00152576 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\pyexpat.pyd 2011-02-13 17:02 - 2011-02-13 17:02 - 00031232 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\Crypto.Cipher.AES.pyd 2013-08-14 22:49 - 2014-09-25 13:57 - 03036672 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\acestreamengine.CoreApp.pyd 2012-02-07 18:37 - 2012-02-07 18:37 - 00098816 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\win32api.pyd 2012-02-07 18:35 - 2012-02-07 18:35 - 00110080 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\pywintypes27.dll 2012-02-07 18:38 - 2012-02-07 18:38 - 00358912 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\pythoncom27.dll 2012-02-07 18:36 - 2012-02-07 18:36 - 00111616 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\win32file.pyd 2012-02-07 18:36 - 2012-02-07 18:36 - 00024064 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\win32pdh.pyd 2010-10-11 00:23 - 2010-10-11 00:23 - 00723968 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\apsw.pyd 2013-01-29 18:20 - 2013-01-29 18:20 - 00082944 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\cpyamf.util.pyd 2011-07-15 21:37 - 2011-07-15 21:37 - 00981504 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\wx._core_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00746496 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\wx._gdi_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00670720 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\wx._windows_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00966144 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\wx._controls_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00674816 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\wx._misc_.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00688128 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\unicodedata.pyd 2014-01-29 18:00 - 2014-01-28 12:57 - 00061952 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\miniupnpc.pyd 2013-01-29 18:20 - 2013-01-29 18:20 - 00066048 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\lib\cpyamf.amf0.pyd 2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () D:\Programme\iCloud\zlib1.dll 2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () D:\Programme\iCloud\libxml2.dll 2013-07-15 14:32 - 2014-09-05 01:29 - 34589376 _____ () D:\Programme\Steam\bin\libcef.dll 2014-08-22 03:55 - 2014-08-22 03:55 - 19329904 _____ () D:\Programme\Avast\libcef.dll 2014-09-25 00:22 - 2014-06-21 08:19 - 00104328 _____ () C:\Users\freddykrueger\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00514528 _____ () D:\Programme\Overwolf\0.80.20.0\libglesv2.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00105952 _____ () D:\Programme\Overwolf\0.80.20.0\libegl.dll 2011-06-12 15:09 - 2011-06-12 15:09 - 00038400 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\_socket.pyd 2011-06-12 15:09 - 2011-06-12 15:09 - 00720896 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\_ssl.pyd 2011-07-15 21:37 - 2011-07-15 21:37 - 00981504 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\wx._core_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00746496 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\wx._gdi_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00670720 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\wx._windows_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00966144 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\wx._controls_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00674816 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\wx._misc_.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00287232 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\_hashlib.pyd 2011-01-18 23:56 - 2011-01-18 23:56 - 00334336 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\M2Crypto.__m2crypto.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00011776 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\select.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00152576 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\pyexpat.pyd 2012-02-07 18:37 - 2012-02-07 18:37 - 00098816 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\win32api.pyd 2012-02-07 18:35 - 2012-02-07 18:35 - 00110080 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\pywintypes27.dll 2012-02-07 18:38 - 2012-02-07 18:38 - 00358912 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\pythoncom27.dll 2012-02-07 18:36 - 2012-02-07 18:36 - 00111616 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\win32file.pyd 2012-02-07 18:36 - 2012-02-07 18:36 - 00024064 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\win32pdh.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00688128 _____ () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\lib\unicodedata.pyd 2014-09-12 16:03 - 2014-09-12 16:03 - 00017920 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\8d3ac73e597363dde66dc5843b0a162a\PSIClient.ni.dll 2014-03-28 11:35 - 2014-03-28 11:35 - 00093696 _____ () D:\Programme\FileZilla FTP Client\fzshellext.dll 2014-09-12 16:47 - 2014-09-04 05:01 - 01098056 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libglesv2.dll 2014-09-12 16:47 - 2014-09-04 05:01 - 00174408 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libegl.dll 2014-09-12 16:47 - 2014-09-04 05:01 - 08577864 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\pdf.dll 2014-09-12 16:47 - 2014-09-04 05:01 - 00331592 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll 2014-09-12 16:47 - 2014-09-04 05:01 - 01660232 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ffmpegsumo.dll 2014-08-15 13:47 - 2014-09-05 01:29 - 00837824 _____ () D:\Programme\Steam\bin\ffmpegsumo.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 01274655 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\libxml2-2.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00100352 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\zlib1.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00028160 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\libssp-0.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00373657 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\plugins\libmsn.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00021337 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\plugins\libxmpp.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00415553 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\libjabber.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00190464 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\libsasl.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00022832 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\plugins\libyahoo.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00228908 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\libymsg.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00027811 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\plugins\ssl-nss.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00012004 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\plugins\ssl.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00140288 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\sasl2\saslDIGESTMD5.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00102912 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\sasl2\saslPLAIN.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 00425984 _____ () D:\Programme\Overwolf\0.80.20.0\Purplizer\sqlite3.dll 2014-09-25 20:15 - 2013-11-19 15:24 - 00008192 _____ () D:\Spiele\Eve\launcher\appdata\EVE_Online_Launcher-2.1.826897.win32\launcher_helper.dll 2014-09-25 20:15 - 2013-11-19 15:25 - 20252160 _____ () D:\Spiele\Eve\launcher\appdata\EVE_Online_Launcher-2.1.826897.win32\libcef.dll 2014-09-25 20:15 - 2013-11-19 15:25 - 01093646 _____ () D:\Spiele\Eve\launcher\appdata\EVE_Online_Launcher-2.1.826897.win32\avcodec-53.dll 2014-09-25 20:15 - 2013-11-19 15:25 - 00117262 _____ () D:\Spiele\Eve\launcher\appdata\EVE_Online_Launcher-2.1.826897.win32\avutil-51.dll 2014-09-25 20:15 - 2013-11-19 15:25 - 00184846 _____ () D:\Spiele\Eve\launcher\appdata\EVE_Online_Launcher-2.1.826897.win32\avformat-53.dll 2014-09-11 03:52 - 2014-09-11 03:52 - 16825520 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll 2014-09-21 10:57 - 2014-09-21 10:57 - 01565128 _____ () D:\Programme\Overwolf\0.80.20.0\teamspeak_control_win32.dll 2014-08-30 03:28 - 2014-08-22 00:14 - 03238528 _____ () D:\Spiele\Eve\bin\blue.dll 2014-08-30 03:25 - 2014-08-15 00:11 - 00877568 _____ () D:\Spiele\Eve\bin\_ssl.pyd 2014-08-30 03:25 - 2014-08-15 00:11 - 00083072 _____ () D:\Spiele\Eve\bin\_ctypes.pyd 2014-08-30 03:25 - 2014-08-15 00:12 - 00631936 _____ () D:\Spiele\Eve\bin\d3dinfo.pyd 2014-08-30 03:25 - 2014-08-15 00:11 - 00205440 _____ () D:\Spiele\Eve\bin\_yaml.pyd 2014-08-30 03:25 - 2014-08-15 00:29 - 00461824 _____ () D:\Spiele\Eve\bin\pyFSD.pyd 2014-08-30 03:25 - 2014-08-15 00:11 - 00131200 _____ () D:\Spiele\Eve\bin\pyexpat.pyd 2014-08-30 03:28 - 2014-08-15 00:12 - 00276840 _____ () D:\Spiele\Eve\bin\ortp.dll 2014-08-30 03:25 - 2014-08-15 00:13 - 01150976 _____ () D:\Spiele\Eve\bin\ccpBrowserHost.pyd 2014-08-30 03:25 - 2014-08-15 00:12 - 00075080 _____ () D:\Spiele\Eve\bin\pychartdir27.pyd 2014-08-30 03:25 - 2014-08-15 00:11 - 00690816 _____ () D:\Spiele\Eve\bin\unicodedata.pyd 2014-08-30 03:28 - 2014-08-22 00:15 - 00614016 _____ () D:\Spiele\Eve\bin\pyEvePathfinder.dll 2014-08-30 03:28 - 2014-08-15 00:12 - 00117888 _____ () D:\Spiele\Eve\bin\_twitch.dll 2014-08-30 03:28 - 2014-08-15 00:12 - 00890368 _____ () D:\Spiele\Eve\bin\twitchsdk_32_release.dll 2014-08-30 03:28 - 2014-08-15 00:12 - 00394810 _____ () D:\Spiele\Eve\bin\libmp3lame-ttv.dll 2014-08-30 03:28 - 2014-08-15 00:12 - 00113171 _____ () D:\Spiele\Eve\bin\swresample-ttv-0.dll 2014-08-30 03:28 - 2014-08-15 00:12 - 00246332 _____ () D:\Spiele\Eve\bin\avutil-ttv-51.dll 2013-12-22 00:26 - 2014-09-03 23:07 - 00505344 _____ () D:\Programme\AIMP3\Sqlite3.dll 2013-12-22 00:26 - 2014-09-03 23:07 - 00218112 _____ () D:\Programme\AIMP3\libsoxr.dll 2014-09-03 23:07 - 2014-09-03 23:07 - 00220672 _____ () D:\Programme\AIMP3\Modules\MACDll.dll 2014-09-03 23:07 - 2014-09-03 23:07 - 00294400 _____ () D:\Programme\AIMP3\Modules\libFLAC.dll 2014-09-03 23:07 - 2014-09-03 23:07 - 01733120 _____ () D:\Programme\AIMP3\Modules\aimp_libvorbis.dll 2013-12-22 00:26 - 2014-09-03 23:07 - 00072136 _____ () D:\Programme\AIMP3\Plugins\aimp_lastfm.dll 2013-12-22 00:26 - 2014-09-03 23:07 - 00026624 _____ () D:\Programme\AIMP3\Plugins\Aorta.svp 2013-12-22 00:26 - 2014-09-03 23:07 - 00237568 _____ () D:\Programme\AIMP3\Plugins\OptimFROG.dll 2013-12-22 00:26 - 2014-09-03 23:07 - 00141768 _____ () D:\Programme\AIMP3\Plugins\PandemicAnalogMeter.dll 2014-09-25 21:35 - 2012-02-29 00:05 - 00511488 _____ () D:\Programme\AIMP3\Modules\lame_enc.dll 2014-09-12 16:47 - 2014-09-04 05:01 - 14891848 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Users\freddykrueger\Desktop\Perso Vorne.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\freddykrueger\Desktop\Perso Vorne.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\freddykrueger\Desktop\persohinten.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\freddykrueger\Desktop\persohinten.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-668898273-2044096128-2289699793-500 - Disabled - Status: Degraded) fbwuser3C50 (S-1-5-21-668898273-2044096128-2289699793-1129 - Enabled - Status: OK) fbwuser73B8 (S-1-5-21-668898273-2044096128-2289699793-1128 - Enabled - Status: OK) fbwuser9286 (S-1-5-21-668898273-2044096128-2289699793-1130 - Enabled - Status: OK) freddykrueger (S-1-5-21-668898273-2044096128-2289699793-1000 - Enabled - Status: OK) => C:\Users\freddykrueger Gast (S-1-5-21-668898273-2044096128-2289699793-501 - Disabled - Status: Degraded) HomeGroupUser$ (S-1-5-21-668898273-2044096128-2289699793-1002 - Enabled - Status: OK) ==================== Faulty Device Manager Devices ============= Name: Viscosity Virtual Adapter V9.1 Description: Viscosity Virtual Adapter V9.1 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: SparkLabs VPN Service: visctap0901 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: SM-Bus-Controller Description: SM-Bus-Controller Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: avast! Firewall NDIS Filter Miniport Description: avast! Firewall NDIS Filter Miniport Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: ALWIL Software Service: aswNdis Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (09/25/2014 06:48:07 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (09/25/2014 00:40:40 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (09/25/2014 00:40:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (09/25/2014 00:40:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (09/24/2014 11:35:04 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: FRST64 (1).exe, Version: 24.9.2014.0, Zeitstempel: 0x54220250 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000000ca89 ID des fehlerhaften Prozesses: 0x2080 Startzeit der fehlerhaften Anwendung: 0xFRST64 (1).exe0 Pfad der fehlerhaften Anwendung: FRST64 (1).exe1 Pfad des fehlerhaften Moduls: FRST64 (1).exe2 Berichtskennung: FRST64 (1).exe3 Error: (09/24/2014 10:52:47 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. System errors: ============= Error: (09/25/2014 03:38:39 AM) (Source: volsnap) (EventID: 36) (User: ) Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte. Error: (09/25/2014 00:21:44 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (09/24/2014 11:39:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (09/24/2014 11:39:26 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht. Error: (09/24/2014 11:38:42 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Microsoft Office Sessions: ========================= Error: (09/25/2014 06:48:07 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe Error: (09/25/2014 00:40:40 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\freddykrueger\Downloads\esetsmartinstaller_deu.exe Error: (09/25/2014 00:40:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\freddykrueger\Downloads\esetsmartinstaller_deu.exe Error: (09/25/2014 00:40:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\freddykrueger\Downloads\esetsmartinstaller_deu.exe Error: (09/24/2014 11:35:04 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: FRST64 (1).exe24.9.2014.054220250ntdll.dll6.1.7601.18247521eaf24c0000005000000000000ca89208001cfd83f5b5d5fa1C:\Users\freddykrueger\Desktop\FRST64 (1).exeC:\Windows\SYSTEM32\ntdll.dlla4cf2669-4432-11e4-bcf1-bc5ff4439435 Error: (09/24/2014 10:52:47 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\freddykrueger\Downloads\esetsmartinstaller_deu.exe CodeIntegrity Errors: =================================== Date: 2014-09-24 22:28:42.606 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-09-24 22:28:42.515 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz Percentage of memory in use: 57% Total physical RAM: 16269.55 MB Available physical RAM: 6873.04 MB Total Pagefile: 32537.29 MB Available Pagefile: 23082.39 MB Total Virtual: 8192 MB Available Virtual: 8191.84 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:119.14 GB) (Free:2.05 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (Lokaler Datenträger) (Fixed) (Total:465.75 GB) (Free:33.75 GB) NTFS Drive e: (Volume) (Fixed) (Total:3725.9 GB) (Free:1181.48 GB) NTFS Drive h: (FREDDY´S EX 2) (Fixed) (Total:149.04 GB) (Free:1.36 GB) NTFS Drive j: (FREDDY´S EX 3) (Fixed) (Total:1863.01 GB) (Free:23 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 6892DCD7) Partition 1: (Active) - (Size=119.1 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 3726 GB) (Disk ID: C78A2CEE) Partition: GPT Partition Type. ======================================================== Disk: 2 (Size: 465.8 GB) (Disk ID: 3C9F3C9E) Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 406A15EB) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (Size: 372.6 GB) (Disk ID: 310B3F0D) Partition 1: (Active) - (Size=372.6 GB) - (Type=07 NTFS) ======================================================== Disk: 5 (Size: 149.1 GB) (Disk ID: 00000001) Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS) ==================== End Of Log ============================ |
25.09.2014, 23:26 | #25 |
| Windows 7: Avast meldet URL:MalFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-09-2014 01 Ran by freddykrueger (administrator) on FREDDYKRUEGER88 on 26-09-2014 00:20:42 Running from C:\Users\freddykrueger\Desktop Loaded Profile: freddykrueger (Available profiles: freddykrueger) Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (AVAST Software) D:\Programme\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (Apache Software Foundation) D:\Programme\open3A\apache\bin\apache.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Autodesk, Inc.) D:\Programme\Inventor\Inventor 2015\Moldflow\bin\mitsijm.exe () D:\Programme\open3A\mysql\bin\mysqld-nt.exe (Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (SparkLabs) D:\Programme\Viscosity\ViscosityService.exe (Apache Software Foundation) D:\Programme\open3A\apache\bin\apache.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe () C:\Windows\SysWOW64\HsMgr.exe () C:\Windows\system\HsMgr64.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe (CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\AsusAudioCenter.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Valve Corporation) D:\Programme\Steam\Steam.exe () D:\Programme\Rainlendar2\Rainlendar2.exe (Overwolf LTD) D:\Programme\Overwolf\Overwolf.exe () C:\Users\freddykrueger\AppData\Roaming\ACEStream\.data\ace_engine3\backup\last\ace_engine.exe () C:\Users\freddykrueger\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe (Apple Inc.) D:\Programme\iCloud\iCloudServices.exe (Apple Inc.) D:\Programme\iCloud\ApplePhotoStreams.exe (Apple Inc.) D:\Programme\iCloud\APSDaemon.exe (Valve Corporation) D:\Programme\Steam\bin\steamwebhelper.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (AVAST Software) D:\Programme\Avast\AvastUI.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Apple Inc.) D:\Programme\Itunes\iTunesHelper.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Autodesk Inc.) C:\Users\freddykrueger\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe (Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.80.20.0\OverwolfHelper.exe () D:\Programme\Overwolf\0.80.20.0\OverwolfBrowser.exe (Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.80.20.0\OverwolfHelper64.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe () C:\Users\freddykrueger\AppData\Roaming\ACEStream\updater\ace_update.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Dominik Reichl) D:\Programme\KeePass Password Safe\KeePass.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Valve Corporation) D:\Programme\Steam\bin\steamwebhelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Overwolf LTD) D:\Programme\Overwolf\0.80.20.0\Purplizer\Purplizer.exe () D:\Spiele\Eve\launcher\launcher.exe () D:\Spiele\Eve\launcher\appdata\EVE_Online_Launcher-2.1.826897.win32\launcher.exe (TeamSpeak Systems GmbH) D:\Programme\Teamspeak 3\ts3client_win64.exe (Overwolf LTD) D:\Programme\Overwolf\0.80.20.0\OverwolfTSHelper.exe (CCP hf.) D:\Spiele\Eve\bin\exefile.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (AIMP DevTeam) D:\Programme\AIMP3\AIMP3.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (AIMP DevTeam) D:\Programme\AIMP3\AIMP3ac.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] () HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] () HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.) HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403288 2014-08-09] (NVIDIA Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10801944 2014-07-28] (Logitech Inc.) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-26] (Intel Corporation) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation) HKLM-x32\...\Run: [AvastUI.exe] => D:\Programme\Avast\AvastUI.exe [4085896 2014-08-22] (AVAST Software) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [iTunesHelper] => D:\Programme\Itunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.) HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-06-21] (Autodesk Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [Steam] => D:\Programme\Steam\steam.exe [1938112 2014-09-23] (Valve Corporation) HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [Rainlendar2] => D:\Programme\Rainlendar2\Rainlendar2.exe [2611808 2014-03-16] () HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [Overwolf] => D:\Programme\Overwolf\Overwolf.exe [39712 2014-09-21] (Overwolf LTD) HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [AceStream] => C:\Users\freddykrueger\AppData\Roaming\ACEStream\engine\ace_engine.exe [27904 2014-09-25] () HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\freddykrueger\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] () HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [iCloudServices] => D:\Programme\iCloud\iCloudServices.exe [59720 2013-11-20] (Apple Inc.) HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [ApplePhotoStreams] => D:\Programme\iCloud\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.) HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [DAEMON Tools Lite] => D:\Programme\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd) HKU\S-1-5-21-668898273-2044096128-2289699793-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1193352 2014-02-19] (Autodesk, Inc.) HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1193352 2014-02-19] (Autodesk, Inc.) AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [166568 2014-07-02] (NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TeamSpeak 3 Client.lnk ShortcutTarget: TeamSpeak 3 Client.lnk -> D:\Programme\Teamspeak 3\ts3client_win64.exe (TeamSpeak Systems GmbH) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Programme\Avast\ashShA64.dll (AVAST Software) ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3E22DDA01D96CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com?fr=hp-avast&type=avastbcl StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKCU - {80338CC0-6C8B-45B7-911F-424DFFD34FD9} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=10557 BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programme\Java\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> D:\Programme\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> D:\Programme\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\freddykrueger\AppData\Roaming\Mozilla\Firefox\Profiles\eir7hdjn.default FF SearchEngineOrder.1: Yahoo! (Avast) FF Keyword.URL: https://de.search.yahoo.com/yhs/search FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin: @java.com/DTPlugin,version=10.51.2 -> D:\Programme\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> D:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> D:\Programme\Itunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> D:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @live.heroesandgenerals.com/npretox -> D:\Spiele\Heroes & Generals\live\npretox-1.0.6.1\npretoxlive-1.0.6.1.dll (Reto-Moto ApS) FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @veetle.com/vbp;version=0.9.18 -> D:\Programme\Veetle\VLCBroadcast\npvbp.dll (Veetle Inc) FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 -> D:\Programme\Veetle\plugins\npVeetle.dll (Veetle Inc) FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> D:\Programme\Veetle\Player\npvlc.dll (Veetle Inc) FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> D:\Programme\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> D:\Programme\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> D:\Programme\VLC\npvlc.dll (VideoLAN) FF Plugin HKCU: @acestream.net/acestreamplugin,version=2.1.5.3 -> C:\Users\freddykrueger\AppData\Roaming\ACEStream\player\npace_plugin.dll (Innovative Digital Technologies) FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\freddykrueger\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF SearchPlugin: C:\Users\freddykrueger\AppData\Roaming\Mozilla\Firefox\Profiles\eir7hdjn.default\searchplugins\yahoo-avast.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - D:\Programme\Avast\WebRep\FF FF Extension: avast! Online Security - D:\Programme\Avast\WebRep\FF [2013-08-11] FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\freddykrueger\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org Chrome: ======= CHR Profile: C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (ProxFlow) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2014-09-05] CHR Extension: (Google Slides) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-05] CHR Extension: (Xmarks Bookmark Sync) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2014-09-18] CHR Extension: (Google Docs) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-05] CHR Extension: (Google Drive) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-05] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05] CHR Extension: (YouTube) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-05] CHR Extension: (Google Search) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-05] CHR Extension: (CHIP Download Adventskalender 2013) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\eieokkbmdedgencncfbagbcapghlakcg [2014-09-05] CHR Extension: (busuu.com) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\epadnjldocmkadjbopkanclaamocokoo [2014-09-05] CHR Extension: (My JDownloader) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2014-09-05] CHR Extension: (UNO HD) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbiocfeggkcomnebamodmbngedojipdp [2014-09-18] CHR Extension: (ZenMate) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2014-09-05] CHR Extension: (Google Sheets) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-05] CHR Extension: (Heroes & Generals) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbophcdhblbipoaacgchllkobdaolpge [2014-09-05] CHR Extension: (HTTPS Everywhere) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2014-09-05] CHR Extension: (AdBlock) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-05] CHR Extension: (avast! Online Security) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-05] CHR Extension: (TweetDeck by Twitter) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2014-09-05] CHR Extension: (LastPass: Free Password Manager) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-09-05] CHR Extension: (eBay Extension for Google Chrome™) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\khhckppjhonfmcpegdjdibmngahahhck [2014-09-20] CHR Extension: (No Name) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim [2014-09-24] CHR Extension: (Need for Speed World) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk [2014-09-05] CHR Extension: (Google Wallet) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-05] CHR Extension: (NotScripts) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\odjhifogjcknibkahlpidmdajjpkkcfn [2014-09-05] CHR Extension: (Gmail) - C:\Users\freddykrueger\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-05] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - D:\Programme\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-22] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [596360 2014-06-21] (Autodesk Inc.) R2 Apache2.2; D:\Programme\open3A\apache\bin\apache.exe [17408 2012-05-23] (Apache Software Foundation) [File not signed] R2 avast! Antivirus; D:\Programme\Avast\AvastSvc.exe [50344 2014-08-22] (AVAST Software) S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-08-28] (BitRaider, LLC) R2 mitsijm2015; D:\Programme\Inventor\Inventor 2015\Moldflow\bin\mitsijm.exe [968480 2013-10-12] (Autodesk, Inc.) R2 mysql; D:\Programme\open3A\mysql\bin\my.cnf [5407 2013-11-20] () [File not signed] R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720792 2014-08-09] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18973144 2014-08-09] (NVIDIA Corporation) S3 OverwolfUpdater; D:\Programme\Overwolf\OverwolfUpdater.exe [998176 2014-09-21] (Overwolf LTD) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-14] () R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] R2 ViscosityService; D:\Programme\Viscosity\ViscosityService.exe [54048 2014-06-06] (SparkLabs) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology) R3 AsrVDrive; C:\Windows\System32\DRIVERS\AsrVDrive.sys [23048 2011-01-26] (ASRock Inc.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-22] () R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-22] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-22] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-22] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-22] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-22] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-22] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-12-19] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-22] () S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-08-28] (BitRaider) R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2734080 2013-04-11] (C-Media Inc) R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [44744 2013-11-13] (AnchorFree Inc.) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-11-19] (Intel Corporation) R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) R3 LGSUsbFilt; C:\Windows\System32\DRIVERS\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech Inc.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20440 2014-08-09] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-11-08] (Duplex Secure Ltd.) R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-09-17] (Anchorfree Inc.) S3 tapSF0901; C:\Windows\System32\DRIVERS\tapSF0901.sys [39104 2014-05-06] (Spotflux, Inc.) S3 visctap0901; C:\Windows\System32\DRIVERS\visctap0901.sys [39048 2014-06-06] (The OpenVPN Project) U3 afdgj3s7; C:\Windows\System32\Drivers\afdgj3s7.sys [0 ] (Intel Corporation) S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-26 00:20 - 2014-09-26 00:20 - 02108928 _____ (Farbar) C:\Users\freddykrueger\Desktop\FRST64.exe 2014-09-26 00:20 - 2014-09-26 00:20 - 00000000 ____D () C:\Users\freddykrueger\Desktop\FRST-OlderVersion 2014-09-25 21:39 - 2014-09-25 21:39 - 00650657 _____ () C:\Users\freddykrueger\Downloads\lame3.99.5.zip 2014-09-25 21:35 - 2014-09-25 21:35 - 00891865 _____ () C:\Users\freddykrueger\Downloads\lame3.99.5-64.zip 2014-09-25 21:35 - 2014-09-25 21:35 - 00000000 ____D () C:\Users\freddykrueger\Downloads\lame3.99.5-64 2014-09-25 21:35 - 2014-05-22 16:18 - 01020928 _____ (hxxp://lame.sf.net) C:\Users\freddykrueger\Downloads\lame.exe 2014-09-25 21:35 - 2012-02-28 23:59 - 00104627 _____ () C:\Users\freddykrueger\Downloads\history.html 2014-09-25 21:35 - 2012-01-25 13:41 - 00000000 ____D () C:\Users\freddykrueger\Downloads\styles 2014-09-25 21:35 - 2012-01-25 13:41 - 00000000 ____D () C:\Users\freddykrueger\Downloads\images 2014-09-25 21:35 - 2011-10-15 14:31 - 00052475 _____ () C:\Users\freddykrueger\Downloads\detailed.html 2014-09-25 21:35 - 2010-12-03 19:46 - 00005406 _____ () C:\Users\freddykrueger\Downloads\about.html 2014-09-25 21:35 - 2010-11-21 20:45 - 00005695 _____ () C:\Users\freddykrueger\Downloads\usage.html 2014-09-25 21:35 - 2010-11-21 20:07 - 00004645 _____ () C:\Users\freddykrueger\Downloads\cbr.html 2014-09-25 21:35 - 2010-11-21 20:07 - 00004349 _____ () C:\Users\freddykrueger\Downloads\abr.html 2014-09-25 21:35 - 2010-06-11 17:44 - 00025559 _____ () C:\Users\freddykrueger\Downloads\links.html 2014-09-25 21:35 - 2010-06-11 17:44 - 00007791 _____ () C:\Users\freddykrueger\Downloads\introduction.html 2014-09-25 21:35 - 2010-06-11 17:44 - 00005998 _____ () C:\Users\freddykrueger\Downloads\contributors.html 2014-09-25 21:35 - 2010-06-11 17:44 - 00005639 _____ () C:\Users\freddykrueger\Downloads\ms_stereo.html 2014-09-25 21:35 - 2010-06-11 17:44 - 00004519 _____ () C:\Users\freddykrueger\Downloads\contact.html 2014-09-25 21:35 - 2010-06-11 17:44 - 00003421 _____ () C:\Users\freddykrueger\Downloads\vbr.html 2014-09-25 21:35 - 2010-06-11 17:44 - 00002898 _____ () C:\Users\freddykrueger\Downloads\index.html 2014-09-25 21:35 - 2010-06-11 17:44 - 00002532 _____ () C:\Users\freddykrueger\Downloads\list.html 2014-09-25 21:35 - 2005-07-28 13:05 - 00004764 _____ () C:\Users\freddykrueger\Downloads\basic.html 2014-09-25 00:40 - 2014-09-25 00:40 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-09-25 00:34 - 2014-09-25 00:34 - 00001433 _____ () C:\Users\freddykrueger\Desktop\mbam.txt 2014-09-25 00:11 - 2014-09-25 00:24 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-09-25 00:10 - 2014-09-25 00:10 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\freddykrueger\Downloads\mbam-setup-2.0.2.1012.exe 2014-09-25 00:10 - 2014-09-25 00:10 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-09-25 00:10 - 2014-09-25 00:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-09-25 00:10 - 2014-09-25 00:10 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-09-25 00:10 - 2014-09-25 00:10 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-09-25 00:10 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-09-25 00:10 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-09-25 00:10 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-09-24 23:03 - 2014-09-24 23:34 - 00085069 _____ () C:\Users\freddykrueger\Desktop\Addition.txt 2014-09-24 22:53 - 2014-09-26 00:20 - 00029002 _____ () C:\Users\freddykrueger\Desktop\FRST.txt 2014-09-24 22:51 - 2014-09-24 22:51 - 00001569 _____ () C:\Users\freddykrueger\Desktop\JRT.txt 2014-09-24 22:48 - 2014-09-24 22:48 - 01024790 _____ (Thisisu) C:\Users\freddykrueger\Desktop\JRT.exe 2014-09-24 22:48 - 2014-09-24 22:48 - 00000000 ____D () C:\Windows\ERUNT 2014-09-24 22:47 - 2014-09-24 22:53 - 00000000 ____D () C:\Users\freddykrueger\Desktop\24092014 2014-09-24 22:37 - 2014-09-24 22:37 - 01373475 _____ () C:\Users\freddykrueger\Desktop\AdwCleaner_3.310 (1).exe 2014-09-24 22:30 - 2014-09-24 22:30 - 00032333 _____ () C:\ComboFix.txt 2014-09-24 22:22 - 2014-09-24 22:30 - 00000000 ____D () C:\ComboFix 2014-09-24 22:22 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe 2014-09-24 22:22 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe 2014-09-24 22:22 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2014-09-24 22:22 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2014-09-24 22:22 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2014-09-24 22:22 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe 2014-09-24 22:22 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe 2014-09-24 22:22 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe 2014-09-24 22:21 - 2014-09-24 22:30 - 00000000 ____D () C:\Qoobox 2014-09-24 22:21 - 2014-09-24 22:29 - 00000000 ____D () C:\Windows\erdnt 2014-09-24 22:11 - 2014-09-24 22:11 - 05579290 ____R (Swearware) C:\Users\freddykrueger\Desktop\ComboFix.exe 2014-09-24 22:00 - 2014-09-23 22:51 - 00562599 _____ () C:\Users\freddykrueger\Desktop\wrcBrokerx32.log 2014-09-24 22:00 - 2014-09-23 22:51 - 00084668 _____ () C:\Users\freddykrueger\Desktop\webRepx32.log 2014-09-24 20:05 - 2014-09-24 20:05 - 00064096 _____ () C:\Users\freddykrueger\Documents\ts3_clientui-win64-1407159763-2014-09-24 20_05_47.761008.dmp 2014-09-24 19:51 - 2014-09-24 19:51 - 00000680 _____ () C:\Users\freddykrueger\Desktop\EVEREST Ultimate Edition.lnk 2014-09-24 19:51 - 2014-09-24 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys 2014-09-24 19:50 - 2014-09-24 19:51 - 10255080 _____ (Lavalys, Inc. ) C:\Users\freddykrueger\Desktop\everestultimate550.exe 2014-09-24 19:49 - 2014-09-24 19:49 - 04179293 _____ (Lavalys, Inc. ) C:\Users\freddykrueger\Downloads\everesthome220.exe 2014-09-24 17:03 - 2014-09-24 17:03 - 00032866 _____ () C:\Users\freddykrueger\Downloads\Logs.zip 2014-09-24 16:44 - 2014-09-26 00:20 - 00000000 ____D () C:\FRST 2014-09-24 16:44 - 2014-09-24 17:01 - 00093453 _____ () C:\Users\freddykrueger\Downloads\Addition.txt 2014-09-24 16:44 - 2014-09-24 16:45 - 00065999 _____ () C:\Users\freddykrueger\Downloads\FRST.txt 2014-09-24 16:43 - 2014-09-24 16:43 - 02106880 _____ (Farbar) C:\Users\freddykrueger\Downloads\FRST64.exe 2014-09-24 16:30 - 2014-09-24 16:30 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-09-24 16:30 - 2014-09-24 16:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-09-24 16:30 - 2014-09-24 16:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-09-24 16:30 - 2014-09-24 16:30 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-09-24 16:29 - 2014-09-24 16:29 - 00918440 _____ (Oracle Corporation) C:\Users\freddykrueger\Downloads\chromeinstall-7u67.exe 2014-09-24 14:10 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-09-24 14:10 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2014-09-24 05:18 - 2014-09-24 05:18 - 00001116 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk 2014-09-24 05:18 - 2014-09-24 05:18 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2014-09-24 05:16 - 2014-09-24 05:16 - 00000000 ____D () C:\Program Files\Java 2014-09-24 05:15 - 2014-09-24 05:18 - 00006563 _____ () C:\Windows\SecuniaPackage.log 2014-09-24 05:12 - 2014-09-24 05:12 - 05329480 _____ (Secunia) C:\Users\freddykrueger\Downloads\PSISetup_3.0.0.9016.exe 2014-09-24 05:12 - 2014-09-24 05:12 - 00001069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk 2014-09-24 05:12 - 2014-09-24 05:12 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\Secunia PSI 2014-09-24 05:12 - 2014-09-24 05:12 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-09-24 05:11 - 2014-09-24 05:11 - 00000816 _____ () C:\Users\freddykrueger\Desktop\checkup.txt 2014-09-24 05:06 - 2014-09-24 05:06 - 00854417 _____ () C:\Users\freddykrueger\Downloads\SecurityCheck.exe 2014-09-23 23:06 - 2014-09-23 23:06 - 02347384 _____ (ESET) C:\Users\freddykrueger\Downloads\esetsmartinstaller_deu.exe 2014-09-23 22:59 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-09-23 22:55 - 2014-09-23 22:55 - 01373475 _____ () C:\Users\freddykrueger\Downloads\AdwCleaner_3.310.exe 2014-09-23 00:52 - 2014-09-23 00:52 - 00025593 _____ () C:\Users\freddykrueger\Downloads\full.ics 2014-09-22 05:20 - 2014-09-22 05:20 - 00000000 ____D () C:\Users\freddykrueger\Downloads\zbot_cs16 2014-09-22 04:34 - 2014-09-22 04:34 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live for Speed 2014-09-22 01:45 - 2014-09-22 01:45 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\.mono 2014-09-21 16:07 - 2014-09-21 16:08 - 06057862 _____ (Tim Kosse) C:\Users\freddykrueger\Downloads\FileZilla_3.9.0.5_win32-setup.exe 2014-09-21 16:07 - 2014-09-21 16:07 - 04996210 _____ (Tim Kosse) C:\Users\freddykrueger\Downloads\FileZilla_3.8.1_win32-setup.exe 2014-09-20 05:22 - 2014-09-20 05:22 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gamers.IRC 2014-09-20 04:58 - 2014-09-20 04:58 - 03907097 _____ () C:\Users\freddykrueger\Downloads\girc607.exe 2014-09-19 04:11 - 2014-09-19 04:11 - 00000000 _____ () C:\Users\freddykrueger\Desktop\Neues Textdokument (2).txt 2014-09-19 02:42 - 2014-09-19 02:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-09-18 00:05 - 2014-09-18 00:05 - 04021536 _____ (Marx Software ) C:\Users\freddykrueger\Downloads\IDMSetup.exe 2014-09-18 00:05 - 2014-09-18 00:05 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\IsolatedStorage 2014-09-18 00:05 - 2014-09-18 00:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iDevice Manager 2014-09-17 22:49 - 2014-09-18 03:34 - 00000000 ____D () C:\Users\freddykrueger\Downloads\EFT2.23.3 2014-09-17 20:51 - 2014-09-17 20:51 - 01306272 _____ (pendrivelinux.com) C:\Users\freddykrueger\Downloads\YUMI-2.0.0.9.exe 2014-09-17 20:15 - 2014-09-17 20:16 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\Apps\Windows 7 USB DVD Download Tool 2014-09-17 20:15 - 2014-09-17 20:15 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool 2014-09-16 15:46 - 2014-09-22 02:55 - 00000000 ____D () C:\Users\freddykrueger\Downloads\Faun - Luna (Deluxe Edition) - 2014 2014-09-16 15:37 - 2014-09-16 15:42 - 135114620 _____ () C:\Users\freddykrueger\Downloads\Kor99.rar 2014-09-16 15:37 - 2014-09-16 15:42 - 118191336 _____ () C:\Users\freddykrueger\Downloads\Kropardel2013.rar 2014-09-16 15:36 - 2014-09-16 15:43 - 190624500 _____ () C:\Users\freddykrueger\Downloads\Kor98.rar 2014-09-16 15:35 - 2014-09-16 15:37 - 115887598 _____ () C:\Users\freddykrueger\Downloads\Kor96.rar 2014-09-16 15:25 - 2014-09-16 15:35 - 172490739 _____ () C:\Users\freddykrueger\Downloads\Kor2010.rar 2014-09-16 15:25 - 2014-09-16 15:35 - 158888579 _____ () C:\Users\freddykrueger\Downloads\Kor94.rar 2014-09-16 15:25 - 2014-09-16 15:33 - 107122218 _____ () C:\Users\freddykrueger\Downloads\Kor2011.rar 2014-09-16 15:24 - 2014-09-16 15:35 - 177313514 _____ () C:\Users\freddykrueger\Downloads\Kor2005.rar 2014-09-16 15:24 - 2014-09-16 15:32 - 127887235 _____ () C:\Users\freddykrueger\Downloads\Kor2007.rar 2014-09-16 15:23 - 2014-09-16 15:30 - 156501661 _____ () C:\Users\freddykrueger\Downloads\Kor2002.rar 2014-09-12 03:06 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-09-12 03:06 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-09-12 03:06 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-09-12 03:06 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-09-12 03:06 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-09-12 03:06 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-09-12 03:06 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-09-12 03:06 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-09-12 03:06 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-09-12 03:06 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-09-12 03:06 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-09-12 03:06 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-09-12 03:06 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-09-12 03:06 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-09-12 03:06 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-09-12 03:06 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-09-12 03:06 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-09-12 03:06 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-09-12 03:06 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-09-12 03:06 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-09-12 03:06 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-09-12 03:06 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-09-12 03:06 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-09-12 03:06 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-09-12 03:06 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-09-12 03:06 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-09-12 03:06 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-09-12 03:06 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-09-12 03:06 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-09-12 03:06 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-09-12 03:06 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-09-12 03:06 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-09-12 03:06 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-09-12 03:06 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-09-12 03:06 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-09-12 03:06 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-09-12 03:06 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-09-12 03:06 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-09-12 03:06 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-09-12 03:06 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-09-12 03:06 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-09-12 03:06 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-09-12 03:06 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-09-12 03:06 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-09-12 03:06 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-09-12 03:06 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-09-12 03:06 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-09-12 03:06 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-09-12 03:06 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-09-12 03:06 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-09-12 03:06 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-09-12 03:06 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-09-12 03:06 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-09-12 03:06 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-09-12 03:06 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-09-12 03:06 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-09-12 03:00 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2014-09-12 03:00 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2014-09-12 01:14 - 2014-09-12 01:14 - 00039012 _____ () C:\Users\freddykrueger\Downloads\H1_marine_helmet_GARLAND.pdo 2014-09-12 01:11 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2014-09-12 01:11 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll 2014-09-12 01:10 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-09-12 01:10 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-09-12 01:10 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-09-12 01:10 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-09-12 01:10 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-09-12 01:10 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-09-12 01:10 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-09-12 01:10 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-09-12 01:10 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2014-09-09 04:39 - 2014-09-09 04:39 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA 2014-09-05 01:17 - 2014-09-13 02:03 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\EVEMon 2014-09-05 01:17 - 2014-09-05 01:17 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVEMon 2014-09-05 01:08 - 2014-09-05 01:08 - 00000000 ____D () C:\Users\freddykrueger\Downloads\EVE Mentat 1.2.26.1238 2014-09-05 01:07 - 2014-09-05 01:08 - 21926389 _____ () C:\Users\freddykrueger\Downloads\EVE Mentat 1.2.26.1238.zip 2014-09-04 13:56 - 2014-09-05 18:08 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\EveHQ 2014-09-04 13:56 - 2014-09-04 13:56 - 00000000 ____D () C:\Users\freddykrueger\Documents\EveHQ 2014-09-04 04:57 - 2014-09-04 04:57 - 00000649 _____ () C:\Users\freddykrueger\Desktop\EveHQ.lnk 2014-09-04 04:57 - 2014-09-04 04:57 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EveHQ 2014-09-03 23:15 - 2014-09-03 23:15 - 00000000 ____D () C:\ProgramData\LogiShrd 2014-09-03 23:14 - 2014-09-03 23:14 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2014-09-03 23:14 - 2014-09-03 23:14 - 00000786 _____ () C:\Windows\LkmdfCoInst.log 2014-09-03 23:14 - 2014-09-03 23:14 - 00000000 ____D () C:\Program Files\Logitech Gaming Software 2014-09-03 23:13 - 2014-09-03 23:13 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Logitech 2014-09-03 23:13 - 2014-09-03 23:13 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Logishrd 2014-09-03 23:07 - 2014-09-03 23:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3 2014-08-31 06:25 - 2014-09-01 23:18 - 00013952 _____ () C:\Users\freddykrueger\Desktop\clickerHeroSave.txt 2014-08-30 04:42 - 2014-08-30 04:42 - 00000000 ____D () C:\Users\freddykrueger\Documents\EVE 2014-08-30 03:32 - 2014-08-30 03:32 - 00000656 _____ () C:\Users\freddykrueger\Desktop\EVE.lnk 2014-08-30 03:32 - 2014-08-30 03:32 - 00000049 _____ () C:\Windows\6620594 2014-08-30 03:32 - 2014-08-30 03:32 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE 2014-08-30 02:02 - 2014-08-30 02:02 - 00000362 _____ () C:\Users\Public\Desktop\Heroes & Generals spielen.lnk 2014-08-30 01:42 - 2014-08-30 01:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes & Generals 2014-08-30 01:42 - 2014-08-30 01:42 - 00000000 ____D () C:\Program Files (x86)\HeroesAndGenerals 2014-08-30 01:38 - 2014-08-30 01:38 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\CCP 2014-08-30 01:37 - 2014-08-30 01:37 - 00007227 _____ () C:\Users\freddykrueger\Documents\Uninstall STAR WARS The Old Republic.log 2014-08-28 15:01 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-28 15:01 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-28 15:01 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-28 05:00 - 2014-08-28 05:00 - 00003192 _____ () C:\Windows\System32\Tasks\{2FB19E7F-03F8-4F30-A1EE-72F6B6D0884A} 2014-08-28 04:17 - 2014-08-30 01:36 - 00000000 ____D () C:\ProgramData\BitRaider 2014-08-28 04:17 - 2014-08-28 04:17 - 00000000 ____D () C:\Users\Public\Documents\BitRaider 2014-08-28 04:17 - 2014-08-28 04:17 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\SWTORPerf 2014-08-28 04:10 - 2014-08-28 04:16 - 00017567 _____ () C:\Users\freddykrueger\Documents\Install STAR WARS The Old Republic.log 2014-08-28 04:06 - 2014-08-28 04:06 - 29720272 _____ () C:\Users\freddykrueger\Downloads\SWTOR_setup.exe 2014-08-27 02:51 - 2014-08-27 02:51 - 00000000 ____D () C:\Users\freddykrueger\Documents\PVZ Garden Warfare ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-26 00:20 - 2014-09-26 00:20 - 02108928 _____ (Farbar) C:\Users\freddykrueger\Desktop\FRST64.exe 2014-09-26 00:20 - 2014-09-26 00:20 - 00000000 ____D () C:\Users\freddykrueger\Desktop\FRST-OlderVersion 2014-09-26 00:20 - 2014-09-24 22:53 - 00029002 _____ () C:\Users\freddykrueger\Desktop\FRST.txt 2014-09-26 00:20 - 2014-09-24 16:44 - 00000000 ____D () C:\FRST 2014-09-25 23:52 - 2013-08-26 18:02 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-09-25 23:46 - 2013-08-11 01:02 - 00001124 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-09-25 22:17 - 2013-08-11 05:13 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\TS3Client 2014-09-25 21:48 - 2013-12-22 00:26 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\AIMP3 2014-09-25 21:39 - 2014-09-25 21:39 - 00650657 _____ () C:\Users\freddykrueger\Downloads\lame3.99.5.zip 2014-09-25 21:35 - 2014-09-25 21:35 - 00891865 _____ () C:\Users\freddykrueger\Downloads\lame3.99.5-64.zip 2014-09-25 21:35 - 2014-09-25 21:35 - 00000000 ____D () C:\Users\freddykrueger\Downloads\lame3.99.5-64 2014-09-25 20:25 - 2013-08-14 02:23 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\vlc 2014-09-25 12:30 - 2013-09-15 01:30 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\Purplizer 2014-09-25 12:21 - 2013-08-11 00:37 - 01148550 _____ () C:\Windows\WindowsUpdate.log 2014-09-25 07:46 - 2013-08-11 01:02 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-09-25 00:40 - 2014-09-25 00:40 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-09-25 00:34 - 2014-09-25 00:34 - 00001433 _____ () C:\Users\freddykrueger\Desktop\mbam.txt 2014-09-25 00:28 - 2009-07-14 06:45 - 00022448 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-09-25 00:28 - 2009-07-14 06:45 - 00022448 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-09-25 00:26 - 2009-07-14 19:58 - 00700244 _____ () C:\Windows\system32\perfh007.dat 2014-09-25 00:26 - 2009-07-14 19:58 - 00149882 _____ () C:\Windows\system32\perfc007.dat 2014-09-25 00:26 - 2009-07-14 07:13 - 01623194 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-09-25 00:24 - 2014-09-25 00:11 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-09-25 00:21 - 2013-09-09 21:19 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\Overwolf 2014-09-25 00:21 - 2013-09-04 00:03 - 00000000 ____D () C:\Users\freddykrueger\.rainlendar2 2014-09-25 00:20 - 2013-12-02 14:03 - 00144086 _____ () C:\Windows\PFRO.log 2014-09-25 00:20 - 2013-12-01 02:00 - 00067237 _____ () C:\Windows\setupact.log 2014-09-25 00:20 - 2013-08-11 01:07 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-09-25 00:20 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-09-25 00:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PLA 2014-09-25 00:10 - 2014-09-25 00:10 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\freddykrueger\Downloads\mbam-setup-2.0.2.1012.exe 2014-09-25 00:10 - 2014-09-25 00:10 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-09-25 00:10 - 2014-09-25 00:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-09-25 00:10 - 2014-09-25 00:10 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-09-25 00:10 - 2014-09-25 00:10 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-09-24 23:34 - 2014-09-24 23:03 - 00085069 _____ () C:\Users\freddykrueger\Desktop\Addition.txt 2014-09-24 22:53 - 2014-09-24 22:47 - 00000000 ____D () C:\Users\freddykrueger\Desktop\24092014 2014-09-24 22:51 - 2014-09-24 22:51 - 00001569 _____ () C:\Users\freddykrueger\Desktop\JRT.txt 2014-09-24 22:48 - 2014-09-24 22:48 - 01024790 _____ (Thisisu) C:\Users\freddykrueger\Desktop\JRT.exe 2014-09-24 22:48 - 2014-09-24 22:48 - 00000000 ____D () C:\Windows\ERUNT 2014-09-24 22:43 - 2013-10-21 21:52 - 00000000 ____D () C:\AdwCleaner 2014-09-24 22:37 - 2014-09-24 22:37 - 01373475 _____ () C:\Users\freddykrueger\Desktop\AdwCleaner_3.310 (1).exe 2014-09-24 22:30 - 2014-09-24 22:30 - 00032333 _____ () C:\ComboFix.txt 2014-09-24 22:30 - 2014-09-24 22:22 - 00000000 ____D () C:\ComboFix 2014-09-24 22:30 - 2014-09-24 22:21 - 00000000 ____D () C:\Qoobox 2014-09-24 22:30 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default 2014-09-24 22:29 - 2014-09-24 22:21 - 00000000 ____D () C:\Windows\erdnt 2014-09-24 22:29 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini 2014-09-24 22:11 - 2014-09-24 22:11 - 05579290 ____R (Swearware) C:\Users\freddykrueger\Desktop\ComboFix.exe 2014-09-24 20:05 - 2014-09-24 20:05 - 00064096 _____ () C:\Users\freddykrueger\Documents\ts3_clientui-win64-1407159763-2014-09-24 20_05_47.761008.dmp 2014-09-24 19:51 - 2014-09-24 19:51 - 00000680 _____ () C:\Users\freddykrueger\Desktop\EVEREST Ultimate Edition.lnk 2014-09-24 19:51 - 2014-09-24 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys 2014-09-24 19:51 - 2014-09-24 19:50 - 10255080 _____ (Lavalys, Inc. ) C:\Users\freddykrueger\Desktop\everestultimate550.exe 2014-09-24 19:49 - 2014-09-24 19:49 - 04179293 _____ (Lavalys, Inc. ) C:\Users\freddykrueger\Downloads\everesthome220.exe 2014-09-24 17:03 - 2014-09-24 17:03 - 00032866 _____ () C:\Users\freddykrueger\Downloads\Logs.zip 2014-09-24 17:01 - 2014-09-24 16:44 - 00093453 _____ () C:\Users\freddykrueger\Downloads\Addition.txt 2014-09-24 16:45 - 2014-09-24 16:44 - 00065999 _____ () C:\Users\freddykrueger\Downloads\FRST.txt 2014-09-24 16:43 - 2014-09-24 16:43 - 02106880 _____ (Farbar) C:\Users\freddykrueger\Downloads\FRST64.exe 2014-09-24 16:30 - 2014-09-24 16:30 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-09-24 16:30 - 2014-09-24 16:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-09-24 16:30 - 2014-09-24 16:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-09-24 16:30 - 2014-09-24 16:30 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-09-24 16:30 - 2014-05-20 03:38 - 00000000 ____D () C:\ProgramData\Oracle 2014-09-24 16:29 - 2014-09-24 16:29 - 00918440 _____ (Oracle Corporation) C:\Users\freddykrueger\Downloads\chromeinstall-7u67.exe 2014-09-24 14:09 - 2013-08-11 14:51 - 00004144 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-09-24 14:09 - 2013-08-11 01:02 - 00701328 _____ () C:\Users\freddykrueger\AppData\Local\GDIPFONTCACHEV1.DAT 2014-09-24 14:08 - 2009-07-14 06:45 - 06198912 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-09-24 05:18 - 2014-09-24 05:18 - 00001116 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk 2014-09-24 05:18 - 2014-09-24 05:18 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2014-09-24 05:18 - 2014-09-24 05:15 - 00006563 _____ () C:\Windows\SecuniaPackage.log 2014-09-24 05:18 - 2013-09-02 14:55 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4 2014-09-24 05:16 - 2014-09-24 05:16 - 00000000 ____D () C:\Program Files\Java 2014-09-24 05:12 - 2014-09-24 05:12 - 05329480 _____ (Secunia) C:\Users\freddykrueger\Downloads\PSISetup_3.0.0.9016.exe 2014-09-24 05:12 - 2014-09-24 05:12 - 00001069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk 2014-09-24 05:12 - 2014-09-24 05:12 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\Secunia PSI 2014-09-24 05:12 - 2014-09-24 05:12 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-09-24 05:11 - 2014-09-24 05:11 - 00000816 _____ () C:\Users\freddykrueger\Desktop\checkup.txt 2014-09-24 05:06 - 2014-09-24 05:06 - 00854417 _____ () C:\Users\freddykrueger\Downloads\SecurityCheck.exe 2014-09-24 01:52 - 2013-08-26 18:02 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-09-24 01:52 - 2013-08-26 18:02 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-09-24 01:52 - 2013-08-23 18:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-09-23 23:06 - 2014-09-23 23:06 - 02347384 _____ (ESET) C:\Users\freddykrueger\Downloads\esetsmartinstaller_deu.exe 2014-09-23 22:55 - 2014-09-23 22:55 - 01373475 _____ () C:\Users\freddykrueger\Downloads\AdwCleaner_3.310.exe 2014-09-23 22:51 - 2014-09-24 22:00 - 00562599 _____ () C:\Users\freddykrueger\Desktop\wrcBrokerx32.log 2014-09-23 22:51 - 2014-09-24 22:00 - 00084668 _____ () C:\Users\freddykrueger\Desktop\webRepx32.log 2014-09-23 16:53 - 2014-04-14 14:27 - 00010715 _____ () C:\Users\freddykrueger\Desktop\Serienstand.ods 2014-09-23 15:38 - 2013-11-18 12:50 - 00000000 ____D () C:\Users\freddykrueger\Desktop\Spiele 2014-09-23 00:52 - 2014-09-23 00:52 - 00025593 _____ () C:\Users\freddykrueger\Downloads\full.ics 2014-09-22 14:59 - 2014-08-08 02:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-09-22 05:20 - 2014-09-22 05:20 - 00000000 ____D () C:\Users\freddykrueger\Downloads\zbot_cs16 2014-09-22 05:12 - 2013-11-09 09:21 - 00000000 ____D () C:\Users\freddykrueger\Documents\My Games 2014-09-22 04:34 - 2014-09-22 04:34 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live for Speed 2014-09-22 02:55 - 2014-09-16 15:46 - 00000000 ____D () C:\Users\freddykrueger\Downloads\Faun - Luna (Deluxe Edition) - 2014 2014-09-22 01:45 - 2014-09-22 01:45 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\.mono 2014-09-21 16:08 - 2014-09-21 16:07 - 06057862 _____ (Tim Kosse) C:\Users\freddykrueger\Downloads\FileZilla_3.9.0.5_win32-setup.exe 2014-09-21 16:08 - 2013-08-12 05:13 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\FileZilla 2014-09-21 16:07 - 2014-09-21 16:07 - 04996210 _____ (Tim Kosse) C:\Users\freddykrueger\Downloads\FileZilla_3.8.1_win32-setup.exe 2014-09-21 13:48 - 2013-08-12 16:20 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\mIRC 2014-09-21 13:48 - 2013-08-11 14:37 - 00000000 ____D () C:\Users\freddykrueger\Desktop\Porgramme 2014-09-20 05:22 - 2014-09-20 05:22 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gamers.IRC 2014-09-20 04:58 - 2014-09-20 04:58 - 03907097 _____ () C:\Users\freddykrueger\Downloads\girc607.exe 2014-09-19 04:11 - 2014-09-19 04:11 - 00000000 _____ () C:\Users\freddykrueger\Desktop\Neues Textdokument (2).txt 2014-09-19 02:42 - 2014-09-19 02:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-09-18 19:50 - 2013-08-11 15:01 - 00000000 ____D () C:\ProgramData\Origin 2014-09-18 17:03 - 2013-08-14 15:18 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Adobe 2014-09-18 03:34 - 2014-09-17 22:49 - 00000000 ____D () C:\Users\freddykrueger\Downloads\EFT2.23.3 2014-09-18 00:05 - 2014-09-18 00:05 - 04021536 _____ (Marx Software ) C:\Users\freddykrueger\Downloads\IDMSetup.exe 2014-09-18 00:05 - 2014-09-18 00:05 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\IsolatedStorage 2014-09-18 00:05 - 2014-09-18 00:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iDevice Manager 2014-09-17 20:51 - 2014-09-17 20:51 - 01306272 _____ (pendrivelinux.com) C:\Users\freddykrueger\Downloads\YUMI-2.0.0.9.exe 2014-09-17 20:16 - 2014-09-17 20:15 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\Apps\Windows 7 USB DVD Download Tool 2014-09-17 20:15 - 2014-09-17 20:15 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool 2014-09-17 20:14 - 2014-07-25 08:56 - 00000000 ____D () C:\Users\freddykrueger\Desktop\Tagebuch 2014-09-16 15:43 - 2014-09-16 15:36 - 190624500 _____ () C:\Users\freddykrueger\Downloads\Kor98.rar 2014-09-16 15:42 - 2014-09-16 15:37 - 135114620 _____ () C:\Users\freddykrueger\Downloads\Kor99.rar 2014-09-16 15:42 - 2014-09-16 15:37 - 118191336 _____ () C:\Users\freddykrueger\Downloads\Kropardel2013.rar 2014-09-16 15:37 - 2014-09-16 15:35 - 115887598 _____ () C:\Users\freddykrueger\Downloads\Kor96.rar 2014-09-16 15:35 - 2014-09-16 15:25 - 172490739 _____ () C:\Users\freddykrueger\Downloads\Kor2010.rar 2014-09-16 15:35 - 2014-09-16 15:25 - 158888579 _____ () C:\Users\freddykrueger\Downloads\Kor94.rar 2014-09-16 15:35 - 2014-09-16 15:24 - 177313514 _____ () C:\Users\freddykrueger\Downloads\Kor2005.rar 2014-09-16 15:33 - 2014-09-16 15:25 - 107122218 _____ () C:\Users\freddykrueger\Downloads\Kor2011.rar 2014-09-16 15:32 - 2014-09-16 15:24 - 127887235 _____ () C:\Users\freddykrueger\Downloads\Kor2007.rar 2014-09-16 15:30 - 2014-09-16 15:23 - 156501661 _____ () C:\Users\freddykrueger\Downloads\Kor2002.rar 2014-09-15 09:06 - 2013-08-11 01:36 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-09-14 15:20 - 2013-09-29 20:02 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\.ACEStream 2014-09-13 03:40 - 2014-08-16 14:13 - 00000000 ____D () C:\Windows\rescache 2014-09-13 02:03 - 2014-09-05 01:17 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\EVEMon 2014-09-12 03:06 - 2013-10-18 13:57 - 01596538 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-09-12 03:05 - 2013-08-14 03:28 - 00000000 ____D () C:\Windows\system32\MRT 2014-09-12 03:00 - 2014-04-30 06:22 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-09-12 03:00 - 2013-08-14 03:28 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-09-12 01:14 - 2014-09-12 01:14 - 00039012 _____ () C:\Users\freddykrueger\Downloads\H1_marine_helmet_GARLAND.pdo 2014-09-10 00:11 - 2014-09-24 14:10 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-09-09 23:47 - 2014-09-24 14:10 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2014-09-09 04:39 - 2014-09-09 04:39 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA 2014-09-07 23:51 - 2013-12-02 14:05 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\Adobe 2014-09-05 18:08 - 2014-09-04 13:56 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\EveHQ 2014-09-05 04:10 - 2014-09-12 01:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-09-05 04:05 - 2014-09-12 01:10 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-09-05 01:17 - 2014-09-05 01:17 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVEMon 2014-09-05 01:08 - 2014-09-05 01:08 - 00000000 ____D () C:\Users\freddykrueger\Downloads\EVE Mentat 1.2.26.1238 2014-09-05 01:08 - 2014-09-05 01:07 - 21926389 _____ () C:\Users\freddykrueger\Downloads\EVE Mentat 1.2.26.1238.zip 2014-09-04 13:56 - 2014-09-04 13:56 - 00000000 ____D () C:\Users\freddykrueger\Documents\EveHQ 2014-09-04 04:57 - 2014-09-04 04:57 - 00000649 _____ () C:\Users\freddykrueger\Desktop\EveHQ.lnk 2014-09-04 04:57 - 2014-09-04 04:57 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EveHQ 2014-09-03 23:15 - 2014-09-03 23:15 - 00000000 ____D () C:\ProgramData\LogiShrd 2014-09-03 23:15 - 2013-09-11 22:47 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\Logitech 2014-09-03 23:14 - 2014-09-03 23:14 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2014-09-03 23:14 - 2014-09-03 23:14 - 00000786 _____ () C:\Windows\LkmdfCoInst.log 2014-09-03 23:14 - 2014-09-03 23:14 - 00000000 ____D () C:\Program Files\Logitech Gaming Software 2014-09-03 23:14 - 2013-09-29 22:01 - 00000000 ____D () C:\ProgramData\Package Cache 2014-09-03 23:14 - 2013-09-11 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-09-03 23:13 - 2014-09-03 23:13 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Logitech 2014-09-03 23:13 - 2014-09-03 23:13 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Logishrd 2014-09-03 23:07 - 2014-09-03 23:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3 2014-09-01 23:18 - 2014-08-31 06:25 - 00013952 _____ () C:\Users\freddykrueger\Desktop\clickerHeroSave.txt 2014-08-30 04:42 - 2014-08-30 04:42 - 00000000 ____D () C:\Users\freddykrueger\Documents\EVE 2014-08-30 03:32 - 2014-08-30 03:32 - 00000656 _____ () C:\Users\freddykrueger\Desktop\EVE.lnk 2014-08-30 03:32 - 2014-08-30 03:32 - 00000049 _____ () C:\Windows\6620594 2014-08-30 03:32 - 2014-08-30 03:32 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE 2014-08-30 03:32 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-08-30 02:19 - 2013-08-11 16:21 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\NVIDIA 2014-08-30 02:02 - 2014-08-30 02:02 - 00000362 _____ () C:\Users\Public\Desktop\Heroes & Generals spielen.lnk 2014-08-30 01:42 - 2014-08-30 01:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes & Generals 2014-08-30 01:42 - 2014-08-30 01:42 - 00000000 ____D () C:\Program Files (x86)\HeroesAndGenerals 2014-08-30 01:38 - 2014-08-30 01:38 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\CCP 2014-08-30 01:37 - 2014-08-30 01:37 - 00007227 _____ () C:\Users\freddykrueger\Documents\Uninstall STAR WARS The Old Republic.log 2014-08-30 01:36 - 2014-08-28 04:17 - 00000000 ____D () C:\ProgramData\BitRaider 2014-08-30 00:56 - 2013-08-11 05:13 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\.minecraft 2014-08-28 23:54 - 2013-10-29 04:04 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Mozilla 2014-08-28 05:02 - 2014-07-13 00:07 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\FTPRush 2014-08-28 05:02 - 2014-06-22 12:28 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Steganos 2014-08-28 05:02 - 2013-12-21 00:28 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Xfire 2014-08-28 05:02 - 2013-11-10 22:25 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\dvdcss 2014-08-28 05:02 - 2013-10-23 17:31 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Apple Computer 2014-08-28 05:02 - 2013-10-22 03:32 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Audacity 2014-08-28 05:02 - 2013-10-22 03:09 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\REAPER 2014-08-28 05:02 - 2013-10-20 00:25 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\XBMC 2014-08-28 05:02 - 2013-09-24 22:29 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Mumble 2014-08-28 05:02 - 2013-09-03 21:55 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Guitar Pro 6 2014-08-28 05:02 - 2013-08-25 22:59 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\OBS 2014-08-28 05:02 - 2013-08-13 18:12 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Foxit Software 2014-08-28 05:02 - 2013-08-11 16:37 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\foobar2000 2014-08-28 05:02 - 2013-08-11 15:02 - 00000000 ____D () C:\Users\freddykrueger\AppData\Roaming\Origin 2014-08-28 05:01 - 2014-08-08 02:45 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-08-28 05:01 - 2013-08-11 00:37 - 00001433 _____ () C:\Users\freddykrueger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-08-28 05:00 - 2014-08-28 05:00 - 00003192 _____ () C:\Windows\System32\Tasks\{2FB19E7F-03F8-4F30-A1EE-72F6B6D0884A} 2014-08-28 04:17 - 2014-08-28 04:17 - 00000000 ____D () C:\Users\Public\Documents\BitRaider 2014-08-28 04:17 - 2014-08-28 04:17 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\SWTORPerf 2014-08-28 04:16 - 2014-08-28 04:10 - 00017567 _____ () C:\Users\freddykrueger\Documents\Install STAR WARS The Old Republic.log 2014-08-28 04:13 - 2014-04-18 23:26 - 00000000 ____D () C:\Users\freddykrueger\Documents\NCSOFT 2014-08-28 04:13 - 2014-04-17 16:10 - 00000000 ____D () C:\Users\freddykrueger\AppData\Local\NCSOFT 2014-08-28 04:06 - 2014-08-28 04:06 - 29720272 _____ () C:\Users\freddykrueger\Downloads\SWTOR_setup.exe 2014-08-27 05:12 - 2013-08-11 16:24 - 00000600 _____ () C:\Users\freddykrueger\AppData\Local\PUTTY.RND 2014-08-27 02:51 - 2014-08-27 02:51 - 00000000 ____D () C:\Users\freddykrueger\Documents\PVZ Garden Warfare 2014-08-27 00:06 - 2013-12-05 15:25 - 00316776 _____ () C:\Windows\DirectX.log ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-09-16 17:48 ==================== End Of Log ============================ |
26.09.2014, 09:30 | #26 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7: Avast meldet URL:Mal Sieht soweit ok aus Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ist aber nur optional. Um Usertracking zu verhindern kann man gut die Firefox-Erweiterung Ghostery verwenden. Info: Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
26.09.2014, 14:17 | #27 |
| Windows 7: Avast meldet URL:Mal Hi, also jaein Avast meldet sich nicht mehr so Intensiv. Aber Komische Banner habe ich immer noch. Ich google gerade wie ich eine ISO Von meinem System erstellen kann, mit Automatischer Installatsion und CDKEY Einbettung. Ich denke das ist das beste das ich das ding einfach Formatiere und gut. Wird ehe mal wieder zeit. Ich bedanke mich trotzdem für die Zügige und Nette Hilfe. |
26.09.2014, 14:24 | #28 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7: Avast meldet URL:Mal Erstell dir mal ein neues Profil und teste => http://support.mozilla.com/de/kb/Profile%20verwalten
__________________ Logfiles bitte immer in CODE-Tags posten |
26.09.2014, 14:30 | #29 |
| Windows 7: Avast meldet URL:Mal Ich Benutze in der Hauptsache Chrome. Bin da schon vor Längere Zeit Umgestiegen. Firefox habe ich nur noch da für den Gamepass (NFL) da ich den nicht in Chrome öffnen kann. Wieso auch immer. |
26.09.2014, 14:30 | #30 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7: Avast meldet URL:Mal Dann musst du sinnigerweise Chrome resetten
__________________ Logfiles bitte immer in CODE-Tags posten |