| |
| |||||||
Log-Analyse und Auswertung: Probleme mit Java UpdateWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
18.11.2014, 20:47
| #1 |
| |  Probleme mit Java Update Hallo Forum, ich habe ein seehr großes Problem. Jedes mal wenn ich auf eine Seite gehe wie z.B. gmx.net dann kommt eine Meldung von einer Seite Namens : em.naolabo.com und diese Meldet mir das ; Vorsicht vor Phishingangriff Angreifer auf em.naolabo.com versuchen unter Umständen, Ihnen auf betrügerische Weise Informationen zu entlocken, zum Beispiel Passwörter, Nachrichten oder Kreditkartendaten. Dann habe ich noch ein Problem und zwar wenn ich wieder auf gmx.net gehe dann meldet mir ein weißes Fenster dass mein Java nicht aktuell sei und ich dieses Updaten müssen aber ich weiss das diese Seite nur ein Fake ist jedoch stört es mich gewaltig da ich immer & immer wieder auf diese Seite zurück geleitet werde und ich dieses Problem beheben will. Ich habe hier eine Logfile von dem Programm Farbar Recovery System: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-11-2014 Ran by Haakan (administrator) on HAAKAN-PC on 18-11-2014 20:43:11 Running from C:\Users\Haakan\Downloads Loaded Profiles: Haakan & (Available profiles: Haakan) Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe () C:\Program Files (x86)\watchmi\TvdService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (CyberLink) C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Spotify Ltd) C:\Users\Haakan\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd) C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Adobe Systems, Incorporated) C:\Program Files\Adobe\Adobe Photoshop CC 2014\Photoshop.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Photoshop CC 2014\Required\DynamicLinkMediaServer\32\dynamiclinkmanager.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11821160 2011-05-09] (Realtek Semiconductor) HKLM\...\Run: [MedionReminder] => C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe [443688 2011-05-26] (CyberLink) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated) HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-03] (CyberLink) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-08] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2014-10-08] (Power Software Ltd) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2014-10-15] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation) HKLM\...\RunOnce: [MedionReminder] => C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe [443688 2011-05-26] (CyberLink) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [Spotify] => C:\Users\Haakan\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-10-07] (Spotify Ltd) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [Spotify Web Helper] => C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-07] (Spotify Ltd) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [uTorrent] => C:\Users\Haakan\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-15] (BitTorrent Inc.) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 11\AudialsNotifier.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-10-15] (Sony) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\MountPoints2: {36c52d60-65d8-11e3-957f-806e6f6e6963} - E:\Setup.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\MountPoints2: {55723718-3ff4-11e4-b2b6-8c89a556c037} - I:\Startme.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\Haakan\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-10-07] (Spotify Ltd) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-07] (Spotify Ltd) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [uTorrent] => C:\Users\Haakan\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-15] (BitTorrent Inc.) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 11\AudialsNotifier.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-10-15] (Sony) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {36c52d60-65d8-11e3-957f-806e6f6e6963} - E:\Setup.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {55723718-3ff4-11e4-b2b6-8c89a556c037} - I:\Startme.exe ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll () GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled. ProxyServer: [.DEFAULT] => http=127.0.0.1:49823;https=127.0.0.1:49823 StartMenuInternet: IEXPLORE.EXE - iexplore.exe BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKU\S-1-5-21-1689028313-3358377157-2391210578-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{E402F878-83D6-4346-B616-4923CEF8C0AC}: [NameServer] 8.8.8.8,8.8.4.4 FireFox: ======== FF ProfilePath: C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default FF NewTab: about:newtab FF Keyword.URL: FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll No File FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF Plugin HKU\S-1-5-21-1689028313-3358377157-2391210578-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Haakan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Haakan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Extension: Amazon-Icon - C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default\Extensions\amazon-icon@giga.de [2014-11-01] FF Extension: Savernet - C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default\Extensions\mhrtfko@o-wv.com [2014-07-24] FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\KavAntiBanner@kaspersky.ru FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru FF Extension: No Name - C:\Windows\Installer\{3136C079-CE8A-41D7-8697-D000107AC1DF}\{4C66AEC6-0983-42F5-9BCE-5B05BADA8A2A}.xpi [Not Found] FF Extension: No Name - C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [Not Found] FF Extension: No Name - C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default\extensions\faststartff@gmail.com [Not Found] FF StartMenuInternet: FIREFOX.EXE - firefox.exe Chrome: ======= CHR Profile: C:\Users\Haakan\AppData\Local\Google\Chrome\User Data\Default ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-07-08] (Advanced Micro Devices, Inc.) [File not signed] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [46904 2013-12-17] (Hewlett-Packard Company) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed] R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [62464 2010-12-06] () [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S1 acedrv07; C:\Windows\system32\drivers\acedrv07.sys [125440 2014-11-01] () [File not signed] R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-11-18] (Malwarebytes Corporation) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-18 20:43 - 2014-11-18 20:43 - 00017341 _____ () C:\Users\Haakan\Downloads\FRST.txt 2014-11-18 20:42 - 2014-11-18 20:43 - 00000000 ____D () C:\FRST 2014-11-18 20:40 - 2014-11-18 20:40 - 02117120 _____ (Farbar) C:\Users\Haakan\Downloads\FRST64.exe 2014-11-18 20:25 - 2014-11-18 20:25 - 00384888 _____ (Premium Installer ) C:\Users\Haakan\Downloads\setup (4).exe 2014-11-18 20:23 - 2014-11-18 20:23 - 00384888 _____ (Premium Installer ) C:\Users\Haakan\Downloads\setup (3).exe 2014-11-18 20:22 - 2014-11-18 20:22 - 00768144 _____ (Webroot) C:\Users\Haakan\Downloads\wsainstall.exe 2014-11-18 20:22 - 2014-11-18 20:22 - 00000000 ____D () C:\ProgramData\WRData 2014-11-18 19:54 - 2014-11-18 19:54 - 00384888 _____ (Premium Installer ) C:\Users\Haakan\Downloads\setup (2).exe 2014-11-16 19:52 - 2014-11-16 19:52 - 01102049 _____ () C:\Users\Haakan\Downloads\After Effects CC amtlib.zip 2014-11-16 18:27 - 2014-11-16 18:27 - 00000000 __SHD () C:\Users\Haakan\AppData\Local\EmieBrowserModeList 2014-11-16 18:17 - 2014-11-16 18:17 - 00001226 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2014.lnk 2014-11-16 17:52 - 2014-11-16 17:52 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe 2014-11-16 02:17 - 2014-11-16 02:17 - 00399224 _____ (Premium Installer ) C:\Users\Haakan\Downloads\setup (1).exe 2014-11-15 20:23 - 2014-11-15 20:23 - 00008488 _____ () C:\Windows\DPINST.LOG 2014-11-15 20:23 - 2014-11-15 20:23 - 00002030 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk 2014-11-13 22:09 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2014-11-13 22:09 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2014-11-13 22:09 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-11-13 22:09 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2014-11-13 22:09 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2014-11-13 22:09 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-11-13 22:09 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-11-13 22:09 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2014-11-13 22:09 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2014-11-13 22:08 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-11-13 22:08 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-11-13 22:08 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-11-13 22:08 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-11-13 22:08 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-11-13 22:08 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-11-13 22:08 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-11-13 22:08 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-11-13 22:08 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-11-13 22:08 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-11-13 22:08 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-11-13 22:08 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-11-13 22:08 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-11-13 22:08 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-11-13 22:08 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-11-13 22:08 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-11-13 22:08 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-11-13 22:08 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-11-13 22:08 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-11-13 22:08 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-11-13 22:08 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-11-13 22:08 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-11-13 22:08 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-11-13 22:08 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-11-13 22:08 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-11-13 22:08 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-11-13 22:08 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-11-13 22:08 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-11-13 22:08 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-11-13 22:08 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-11-13 22:08 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-11-13 22:08 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-11-13 22:08 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-11-13 22:08 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-11-13 22:08 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-11-13 22:08 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-11-13 22:08 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-11-13 22:08 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-11-13 22:08 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-11-13 22:08 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-11-13 22:08 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-11-13 22:08 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-11-13 22:08 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-11-13 22:08 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-11-13 22:08 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-11-13 22:08 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-11-13 22:08 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-11-13 22:08 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-11-13 22:08 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-11-13 22:08 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-11-13 22:08 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-11-13 22:08 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-11-13 22:08 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-11-13 22:08 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-11-13 22:08 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-11-13 22:08 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-11-13 22:07 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-11-13 22:07 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2014-11-13 22:07 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2014-11-13 22:07 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2014-11-13 22:07 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-11-13 22:07 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-11-13 22:07 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-11-13 22:07 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-11-13 22:07 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-11-13 22:07 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-11-13 22:07 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-11-13 22:07 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-11-13 22:07 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-11-13 22:07 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-11-13 22:07 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-11-13 22:07 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-11-13 22:07 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2014-11-13 22:07 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL 2014-11-13 22:07 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL 2014-11-12 20:10 - 2014-11-12 20:10 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\SomePDF 2014-11-12 20:10 - 2014-11-12 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SomePDF 2014-11-12 20:10 - 2014-11-12 20:10 - 00000000 ____D () C:\Program Files (x86)\SomePDF 2014-11-12 20:09 - 2014-11-12 20:10 - 02182311 _____ (SomePDF.com ) C:\Users\Haakan\Downloads\pdf2txt_2-0_setup (1).exe 2014-11-12 20:07 - 2014-11-12 20:07 - 00002713 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk 2014-11-12 20:05 - 2014-11-12 20:05 - 25755856 _____ (Microsoft Corporation) C:\Users\Haakan\Downloads\wordview_de-de (1).exe 2014-11-12 20:03 - 2014-11-12 20:03 - 02899667 _____ () C:\Users\Haakan\Downloads\KMSpico setup by MegaPennymarkt.rar 2014-11-12 19:52 - 2014-11-12 19:54 - 10803700 _____ () C:\Users\Haakan\Downloads\KMS Pico.rar 2014-11-11 18:09 - 2014-11-11 18:09 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\java 2014-11-11 17:53 - 2014-11-11 17:53 - 01128916 _____ (www.hellopdf.com ) C:\Users\Haakan\Downloads\pdf2wordsetup11.exe 2014-11-11 17:53 - 2014-11-11 17:53 - 01128916 _____ (www.hellopdf.com ) C:\Users\Haakan\Downloads\pdf2wordsetup11 (1).exe 2014-11-11 17:53 - 2014-11-11 17:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free PDF to Word Doc Converter 2014-11-11 17:53 - 2014-11-11 17:53 - 00000000 ____D () C:\Program Files (x86)\Free PDF to Word Doc Converter 2014-11-11 17:41 - 2014-11-11 17:41 - 00750552 _____ () C:\Users\Haakan\Downloads\Setup.exe 2014-11-07 21:39 - 2014-11-07 21:39 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-11-07 21:39 - 2014-11-07 21:39 - 00001346 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.de.lnk 2014-11-07 21:39 - 2014-11-07 21:39 - 00000000 ____D () C:\Program Files\Java 2014-11-07 21:39 - 2014-11-07 21:39 - 00000000 ____D () C:\Program Files (x86)\Knuddels 2014-11-07 21:34 - 2014-11-07 21:34 - 00001199 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4.lnk 2014-11-07 21:34 - 2014-11-07 21:34 - 00001187 _____ () C:\Users\Public\Desktop\The Sims 4.lnk 2014-11-07 21:33 - 2014-11-07 21:34 - 75085992 _____ () C:\Users\Haakan\Downloads\KnuddelsJavaUpdater.exe 2014-11-07 21:28 - 2014-11-07 21:34 - 00000000 ____D () C:\Program Files (x86)\The Sims 4 2014-11-07 17:02 - 2014-11-07 17:02 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-11-07 17:01 - 2014-11-07 17:02 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Haakan\Downloads\mbam-setup-2.0.3.1025.exe 2014-11-07 17:00 - 2014-11-07 17:04 - 00000000 ____D () C:\AdwCleaner 2014-11-07 17:00 - 2014-11-07 17:00 - 01998336 _____ () C:\Users\Haakan\Downloads\adwcleaner_4.002.exe 2014-11-07 16:51 - 2014-11-07 17:07 - 00000000 ____D () C:\Users\Haakan\Downloads\The.Sims.4-RELOADED[rarbg] 2014-11-07 07:27 - 2014-11-07 07:27 - 00000000 ____D () C:\Users\Haakan\AppData\Local\{45683832-214B-4F18-96D4-718ED80CA395} 2014-11-02 14:37 - 2014-11-02 14:37 - 00001044 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk 2014-11-02 14:36 - 2014-11-16 18:55 - 00000000 ____D () C:\Program Files\Adobe 2014-11-02 14:35 - 2014-11-02 14:35 - 00003174 _____ () C:\Windows\System32\Tasks\{9C4D3A69-572D-4FA4-8EFE-3BDEBC53475C} 2014-11-02 14:31 - 2014-11-16 19:02 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2014-11-02 14:15 - 2014-11-02 14:15 - 00000000 ___RD () C:\Users\Haakan\Creative Cloud Files 2014-11-02 14:05 - 2014-11-02 14:05 - 00000000 ____D () C:\Program Files (x86)\Adobe Download Assistant 2014-11-02 14:00 - 2014-11-02 14:00 - 00001317 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2014-11-01 20:39 - 2014-11-07 21:35 - 00000000 ____D () C:\ProgramData\Package Cache 2014-11-01 20:33 - 2014-11-01 20:33 - 00672432 _____ (Adobe Systems Incorporated) C:\Users\Haakan\Downloads\CreativeCloudSet-Up.exe 2014-11-01 20:30 - 2014-11-01 20:30 - 01390161 _____ () C:\Users\Haakan\Downloads\Adobe-Photoshop-CC-Crack.rar 2014-11-01 20:15 - 2014-11-01 20:15 - 01380032 _____ () C:\Users\Haakan\Downloads\Minecraft Skin.lib4d 2014-11-01 20:01 - 2014-11-01 20:02 - 08633308 _____ () C:\Users\Haakan\Downloads\Minecraft Item Pack v1.2 (By WeedLion).rar 2014-11-01 19:36 - 2014-11-01 19:36 - 00055745 _____ () C:\Users\Haakan\Downloads\Cinema 4D R15 15.037 (Keygen ONLY).zip 2014-11-01 19:35 - 2014-11-01 19:35 - 00466320 _____ () C:\Users\Haakan\Downloads\Cinema 4D.exe 2014-11-01 19:31 - 2014-11-01 19:31 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\MAXON 2014-11-01 19:24 - 2014-11-02 14:39 - 00000000 ____D () C:\Program Files (x86)\Cinema 4D R12 2014-11-01 19:19 - 2014-11-01 19:20 - 29589876 _____ () C:\Users\Haakan\Downloads\Pack by KeinGFX.rar 2014-11-01 19:19 - 2014-11-01 19:19 - 05528688 _____ () C:\Users\Haakan\Downloads\Minecraft Steve Rig v1.2 (by WeedLion).rar 2014-11-01 19:19 - 2014-11-01 19:19 - 00521216 _____ (PainteR) C:\Users\Haakan\Downloads\AdobeUniversalPatcher.exe 2014-11-01 19:18 - 2014-11-01 19:18 - 01340090 _____ () C:\Users\Haakan\Downloads\by BosshafteTutorials [Photoshop CC].rar 2014-11-01 19:04 - 2014-11-01 19:12 - 144726911 _____ () C:\Users\Haakan\Downloads\Cinema 4D by JabieProductions.rar 2014-11-01 18:46 - 2014-11-02 14:40 - 00000000 ____D () C:\Fraps 2014-11-01 18:46 - 2014-11-01 18:46 - 02629194 _____ () C:\Users\Haakan\Downloads\Fraps 3.5.99 by Elite48x.rar 2014-11-01 18:46 - 2014-11-01 18:46 - 00000000 ____D () C:\ProgramData\NoMore Ads 2014-11-01 18:26 - 2014-11-18 19:47 - 00001120 _____ () C:\Windows\setupact.log 2014-11-01 18:26 - 2014-11-11 17:29 - 00014022 _____ () C:\Windows\PFRO.log 2014-11-01 18:26 - 2014-11-01 18:26 - 00000000 _____ () C:\Windows\setuperr.log 2014-11-01 15:09 - 2014-11-01 15:09 - 11831445 _____ () C:\Users\Haakan\Downloads\Videos-Meine Tierarztpraxis-Kleine Patienten_PC_public_inklSarah_NEUERPACKSHOT.wmv 2014-11-01 13:35 - 2014-11-01 13:35 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Temp0c6d01c7e26ea586c00b83d771f17607_ 2014-11-01 13:34 - 2014-11-01 13:34 - 00000000 ____D () C:\Users\Haakan\Downloads\Meine-Tierarztpraxis 2014-11-01 13:34 - 2014-11-01 13:34 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Temp0c6d01c7e26ea586c00b83d771f17607 2014-11-01 13:33 - 2014-11-01 13:33 - 01045496 _____ () C:\Users\Haakan\Downloads\Meine-Tierarztpraxis-lnstall.exe 2014-11-01 13:06 - 2014-11-01 13:17 - 00002255 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-11-01 13:06 - 2014-11-01 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-11-01 13:04 - 2014-11-18 20:09 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-01 13:04 - 2014-11-18 19:47 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-01 13:04 - 2014-11-01 13:04 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-11-01 13:04 - 2014-11-01 13:04 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-11-01 13:03 - 2014-11-01 13:03 - 00000000 ____D () C:\Users\Haakan\Downloads\Google-Chrome 2014-11-01 13:02 - 2014-11-01 13:02 - 01045496 _____ () C:\Users\Haakan\Downloads\Google-Chrome-lnstall.exe 2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\KSafe 2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 ____D () C:\ProgramData\KSafe 2014-10-31 20:30 - 2014-10-31 20:30 - 00000000 ____D () C:\Program Files (x86)\DllTool 2014-10-31 20:29 - 2014-10-31 20:29 - 08473440 _____ ( ) C:\Users\Haakan\Downloads\DllTool.exe 2014-10-31 20:17 - 1998-11-17 13:44 - 00328704 _____ (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe 2014-10-31 20:16 - 2014-10-31 20:16 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\PowerISO 2014-10-31 20:15 - 2014-10-31 20:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO 2014-10-31 20:15 - 2014-10-31 20:15 - 00000000 ____D () C:\Program Files\PowerISO 2014-10-31 20:15 - 2014-10-08 14:13 - 00127760 _____ (Power Software Ltd) C:\Windows\system32\Drivers\scdemu.sys 2014-10-31 20:13 - 2014-10-31 20:13 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Notepad++ 2014-10-31 20:13 - 2014-10-31 20:13 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-10-31 20:13 - 2014-10-31 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-10-31 20:13 - 2014-10-31 20:13 - 00000000 ____D () C:\Program Files (x86)\Notepad++ 2014-10-31 20:12 - 2014-10-31 20:12 - 07945210 _____ () C:\Users\Haakan\Downloads\npp.6.6.9.Installer (1).exe 2014-10-31 19:34 - 2014-10-31 19:34 - 00000000 ____D () C:\Users\Haakan\AppData\Local\{8C91B0F6-3BF8-4AF5-A579-3B75F6292BDE} 2014-10-31 19:33 - 2014-10-31 19:57 - 250421764 _____ () C:\Users\Haakan\Downloads\f1cba8cb131c54f93e47d1d6e5784855.rar 2014-10-31 19:32 - 2014-10-31 19:32 - 00001028 _____ () C:\Users\Haakan\Downloads\69eefa0523b6dd4ff2bfa67f9fef2a137dcc7a2a.dlc 2014-10-31 19:15 - 2014-10-31 19:15 - 00318816 _____ (FreeWorldApp) C:\Users\Haakan\Downloads\Meine Tierpension.rar.exe 2014-10-31 16:35 - 2014-11-01 13:20 - 00125440 _____ () C:\Windows\system32\Drivers\acedrv07.sys 2014-10-31 16:35 - 2014-10-31 16:35 - 00081920 _____ () C:\Windows\SysWOW64\acedrv07.dll 2014-10-31 16:21 - 2003-03-15 23:15 - 00090112 _____ (MindVision Software) C:\Windows\unvise32.exe 2014-10-31 16:20 - 2014-10-31 16:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Die Reitakademie 2014-10-31 16:20 - 2014-10-31 16:20 - 00000000 ____D () C:\Programme 2014-10-31 14:45 - 2014-10-31 14:45 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg 2014-10-31 14:45 - 2014-10-31 14:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg 2014-10-31 14:43 - 2014-10-31 14:43 - 00000000 ____D () C:\Kiddinx 2014-10-27 18:51 - 2014-11-11 17:41 - 00000004 _____ () C:\Users\Haakan\AppData\Roaming\appdataFr2.bin 2014-10-27 18:44 - 2014-10-27 18:44 - 00000000 ____D () C:\ProgramData\LizardSales 2014-10-27 09:34 - 2014-10-27 09:34 - 04816166 _____ () C:\Users\Haakan\Downloads\AltCheckerTMP.zip 2014-10-27 09:33 - 2014-10-27 09:33 - 05956779 _____ () C:\Users\Haakan\Downloads\Wurst 1.3.1.zip 2014-10-27 09:32 - 2014-10-27 09:32 - 00000166 _____ () C:\Users\Haakan\Downloads\01 This was moved!.txt 2014-10-26 17:07 - 2014-10-26 17:08 - 01910919 _____ () C:\Users\Haakan\Downloads\Hexxit Hacks by tsj9834 [Downloadbar von M4nu].zip 2014-10-24 15:15 - 2014-10-24 15:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 5 2014-10-24 15:15 - 2014-10-24 15:15 - 00000000 ____D () C:\Program Files (x86)\GeoGebra 5.0 2014-10-24 15:12 - 2014-10-24 15:14 - 58162552 _____ (International GeoGebra Institute) C:\Users\Haakan\Downloads\GeoGebra-Windows-Installer-5-0-18-0.exe 2014-10-20 18:22 - 2014-10-20 18:22 - 00018394 _____ () C:\Users\Haakan\Downloads\Unbenannt 1.odt ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-18 20:40 - 2013-12-15 15:35 - 01510729 _____ () C:\Windows\WindowsUpdate.log 2014-11-18 20:25 - 2014-06-03 18:52 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-11-18 19:59 - 2013-12-17 18:17 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Adobe 2014-11-18 19:55 - 2009-07-14 05:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-18 19:55 - 2009-07-14 05:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-18 19:50 - 2014-09-16 13:17 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\TS3Client 2014-11-18 19:50 - 2014-03-09 23:20 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-18 19:50 - 2013-12-15 15:55 - 00000000 ____D () C:\Users\Haakan 2014-11-18 19:49 - 2014-02-14 13:43 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\uTorrent 2014-11-18 19:49 - 2014-01-02 14:17 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Spotify 2014-11-18 19:49 - 2013-12-19 17:20 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Skype 2014-11-18 19:47 - 2014-01-12 16:49 - 00000462 ____H () C:\Windows\Tasks\GS.Enabler-S-926685765.job 2014-11-18 19:47 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-17 22:38 - 2014-01-02 14:18 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Spotify 2014-11-16 23:32 - 2009-07-14 05:45 - 05165816 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-11-16 20:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-11-16 19:54 - 2013-12-15 16:11 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Adobe 2014-11-16 18:53 - 2011-02-10 21:48 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-11-16 18:47 - 2013-12-15 15:56 - 00147224 _____ () C:\Users\Haakan\AppData\Local\GDIPFONTCACHEV1.DAT 2014-11-15 20:23 - 2014-09-19 16:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony 2014-11-15 20:22 - 2011-03-14 23:29 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-11-12 20:38 - 2014-05-17 15:54 - 00000000 ____D () C:\Users\Haakan\Desktop\Baba & Mama 2014-11-12 20:37 - 2014-05-17 16:08 - 00000000 ____D () C:\Users\Haakan\Desktop\Programme 2014-11-12 20:07 - 2011-02-10 21:39 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-11-12 20:06 - 2014-01-14 20:19 - 00000000 ____D () C:\Program Files (x86)\MSECache 2014-11-11 18:13 - 2014-04-12 13:10 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\.minecraft 2014-11-08 10:18 - 2014-04-24 14:54 - 00000000 ____D () C:\ProgramData\Origin 2014-11-08 10:18 - 2014-04-24 14:54 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-11-08 10:04 - 2014-04-24 18:26 - 00000000 ____D () C:\Users\Haakan\Documents\Electronic Arts 2014-11-07 21:38 - 2014-05-17 15:50 - 00000000 ____D () C:\Users\Haakan\Desktop\Hakan 2014-11-07 21:38 - 2013-12-15 17:07 - 00000000 ____D () C:\ProgramData\Oracle 2014-11-07 21:38 - 2013-12-15 17:06 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-11-07 21:38 - 2013-12-15 17:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-07 21:38 - 2011-06-28 00:28 - 00000000 ____D () C:\Program Files (x86)\Java 2014-11-07 21:37 - 2014-02-23 11:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-11-07 21:36 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-11-07 17:02 - 2014-06-03 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-11-07 17:02 - 2014-06-03 18:52 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-11-07 16:51 - 2014-10-11 16:51 - 00073728 _____ () C:\Windows\SysWOW64\tasks.dll 2014-11-02 14:40 - 2014-01-12 16:46 - 00000000 ____D () C:\ProgramData\ae7ea956ec59a405 2014-11-02 14:37 - 2011-02-10 21:48 - 00000000 ____D () C:\ProgramData\Adobe 2014-11-02 14:05 - 2014-01-29 16:39 - 00001047 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk 2014-11-01 13:21 - 2014-07-19 18:51 - 00000000 ____D () C:\Windows\System32\Tasks\Sony Corporation 2014-11-01 13:21 - 2014-07-19 18:50 - 00000000 ____D () C:\Program Files\Common Files\Sony Shared 2014-11-01 13:21 - 2014-07-19 18:49 - 00000000 ____D () C:\Program Files (x86)\Sony 2014-11-01 13:20 - 2014-07-19 18:49 - 00000000 ____D () C:\ProgramData\Sony Corporation 2014-11-01 13:17 - 2013-12-27 16:21 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-11-01 13:06 - 2013-12-15 16:11 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Google 2014-11-01 13:05 - 2013-12-15 15:38 - 00000000 ____D () C:\Program Files (x86)\Google 2014-11-01 12:45 - 2011-02-10 20:25 - 00699190 _____ () C:\Windows\system32\perfh007.dat 2014-11-01 12:45 - 2011-02-10 20:25 - 00149330 _____ () C:\Windows\system32\perfc007.dat 2014-11-01 12:45 - 2009-07-14 06:13 - 01619700 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-10-31 19:15 - 2014-01-12 16:42 - 00000000 ____D () C:\ProgramData\InstallMate 2014-10-27 18:52 - 2014-09-19 16:40 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-10-22 14:57 - 2013-12-17 15:31 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\.technic 2014-10-22 14:36 - 2014-01-31 18:22 - 02346942 _____ () C:\Users\Haakan\Downloads\TechnicLauncher.exe 2014-10-19 15:54 - 2014-04-24 17:43 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll Some content of TEMP: ==================== C:\Users\Haakan\AppData\Local\Temp\amazonicon_v10.exe C:\Users\Haakan\AppData\Local\Temp\amazoninstallernircmdc.exe C:\Users\Haakan\AppData\Local\Temp\CreativeCloudSet-Up.exe C:\Users\Haakan\AppData\Local\Temp\down.7280.setupytb.exe C:\Users\Haakan\AppData\Local\Temp\JavaRa.exe C:\Users\Haakan\AppData\Local\Temp\jli.dll C:\Users\Haakan\AppData\Local\Temp\jre-8u25-windows-i586.exe C:\Users\Haakan\AppData\Local\Temp\jre-8u25-windows-x64.exe C:\Users\Haakan\AppData\Local\Temp\keytool.exe C:\Users\Haakan\AppData\Local\Temp\msvcr100.dll C:\Users\Haakan\AppData\Local\Temp\node.exe C:\Users\Haakan\AppData\Local\Temp\Quarantine.exe C:\Users\Haakan\AppData\Local\Temp\sdan.exe C:\Users\Haakan\AppData\Local\Temp\sdapk.exe C:\Users\Haakan\AppData\Local\Temp\sdaspwn.exe C:\Users\Haakan\AppData\Local\Temp\sqlite3.dll C:\Users\Haakan\AppData\Local\Temp\sqlite3.exe C:\Users\Haakan\AppData\Local\Temp\Tsu634993DC.dll C:\Users\Haakan\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-16 20:47 und hier noch die andere : Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-11-2014 Ran by Haakan at 2014-11-18 20:44:28 Running from C:\Users\Haakan\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.1.1 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.8.0.447 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.9 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated) Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.) ATI AVIVO64 Codecs (Version: 11.6.0.10707 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{B72CAB06-4420-F4D1-AFBB-AF9093D3D237}) (Version: 3.0.833.0 - ATI Technologies, Inc.) Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.8.9046 - ) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform) Corel Graphics - Windows Shell Extension 64 Bit (Version: 15.2.686 - Corel Corporation) Hidden Die Reitakademie (HKLM-x32\...\Reitakademie) (Version: - ) Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts) Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts) Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts) Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.) Downtown Run (HKLM-x32\...\InstallShield_{5A00A29C-51EC-4CF2-9D37-EF2D8EB2AE42}) (Version: 1.00.0000 - Ihr Firmenname) Downtown Run (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden Free PDF to Word Doc Converter v1.1 (HKLM-x32\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com) GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.18.0 - International GeoGebra Institute) GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.) Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden HP Deskjet F4500 All-in-One Driver 14.0 Rel. 6 (HKLM\...\{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}) (Version: 14.0 - HP) Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG) MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Mathematics (64-Bit) (HKLM\...\{E57B7E0A-8BE5-42E2-BE60-C07ED680A063}) (Version: 4.0 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710F4C1C-CC18-4C49-8CBF-51240C89A1A2}) (Version: - ) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: - ) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) msxml4 (HKLM-x32\...\{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}) (Version: 1.0.0 - Default Company Name) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger) Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden NoMore Ads (HKLM-x32\...\{37476589-E48E-439E-A706-56189E2ED4C4}_is1) (Version: - NoMore Ads) <==== ATTENTION Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team) PowerISO (HKLM-x32\...\PowerISO) (Version: 6.1 - Power Software Ltd) Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: - ) Some PDF to Txt Converter 2.0 (HKLM-x32\...\Some PDF to Txt Converter_is1) (Version: - SomePDF.com) Sony PC Companion 2.10.235 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.235 - Sony) Spotify (HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) The Sims 4 (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - ) Unity Web Player (HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\UnityWebPlayer) (Version: - Unity Technologies ApS) WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP) WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) XMedia Recode Version 3.1.9.0 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.9.0 - XMedia Recode) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 16-11-2014 19:54:34 Geplanter Prüfpunkt ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2014-10-15 17:58 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {1879261B-5257-4B30-BFE1-EA3DDF7DEBEA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd) Task: {2AD9D1B1-9911-4235-9D03-569B3FB4FBE2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-09] (Adobe Systems Incorporated) Task: {7718A101-86BB-47A4-BFC2-57A814EEFC57} - System32\Tasks\GS.Enabler-S-926685765 => c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe <==== ATTENTION Task: {8BF352EA-E110-4F70-9C3C-68BBBBBF5E8C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-01] (Google Inc.) Task: {CB17C176-6CA1-4F65-BD7A-BB5E53D6E2E7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {E20013A3-6361-4DCD-A0CF-8C143DA934F6} - System32\Tasks\GPUP => C:\Program Files (x86)\GetPrivate\gpup.exe <==== ATTENTION Task: {F93CE9D8-56C1-4AF1-9330-118934FB6E1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-01] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GS.Enabler-S-926685765.job => c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe <==== ATTENTION ==================== Loaded Modules (whitelisted) ============= 2014-11-02 13:58 - 2014-09-26 14:41 - 01021088 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2014-05-12 10:49 - 2014-05-12 10:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2011-07-08 07:36 - 2011-07-08 07:36 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2010-12-06 12:52 - 2010-12-06 12:52 - 00062464 _____ () C:\Program Files (x86)\watchmi\TvdService.exe 2013-12-15 15:37 - 2013-12-15 15:37 - 00061952 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Remote\2.5.0.5__f722db7bec59a14b\Tvd.Remote.dll 2013-12-15 15:37 - 2013-12-15 15:37 - 00009216 _____ () C:\Windows\assembly\GAC_MSIL\FingerPrint\1.0.0.0__a62e68e935d72fa6\FingerPrint.dll 2013-12-15 15:37 - 2013-12-15 15:37 - 00078848 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Reporting\2.5.0.5__f722db7bec59a14b\Tvd.Reporting.dll 2013-12-15 15:37 - 2013-12-15 15:37 - 00148480 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Aprico\2.5.0.5__f722db7bec59a14b\Tvd.Aprico.dll 2011-07-08 07:36 - 2011-07-08 07:36 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2011-07-08 07:44 - 2011-07-08 07:44 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2014-11-02 13:58 - 2014-09-26 14:40 - 06237856 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2014-01-02 14:18 - 2014-10-07 18:46 - 00613944 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe 2014-05-08 03:35 - 2014-05-08 03:35 - 00470728 _____ () C:\Program Files\Adobe\Adobe Photoshop CC 2014\aif_core.dll 2014-05-08 03:36 - 2014-05-08 03:36 - 02605256 _____ () C:\Program Files\Adobe\Adobe Photoshop CC 2014\aif_ogl.dll 2014-05-08 03:35 - 2014-05-08 03:35 - 00170184 _____ () C:\Program Files\Adobe\Adobe Photoshop CC 2014\aif_ocl.dll 2013-09-13 19:51 - 2013-09-13 19:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2013-09-13 19:51 - 2013-09-13 19:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2014-01-02 14:18 - 2014-10-07 18:46 - 36966968 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\libcef.dll 2010-08-03 23:39 - 2010-08-03 23:39 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll 2010-08-03 23:39 - 2010-08-03 23:39 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll 2014-07-17 17:50 - 2014-10-07 18:46 - 00867896 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\ffmpegsumo.dll 2014-01-02 14:18 - 2014-10-07 18:46 - 00886840 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\libglesv2.dll 2014-01-02 14:18 - 2014-10-07 18:46 - 00108600 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\libegl.dll 2014-11-01 13:06 - 2014-10-22 05:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll 2014-11-01 13:06 - 2014-10-22 05:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll 2014-11-01 13:06 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll 2014-11-01 13:06 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll 2011-06-28 00:24 - 2011-07-04 21:40 - 06271648 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll 2014-11-01 13:06 - 2014-10-22 05:05 - 14902600 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Temp:373E1720 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-1689028313-3358377157-2391210578-500 - Administrator - Disabled) Gast (S-1-5-21-1689028313-3358377157-2391210578-501 - Limited - Disabled) Haakan (S-1-5-21-1689028313-3358377157-2391210578-1003 - Administrator - Enabled) => C:\Users\Haakan HomeGroupUser$ (S-1-5-21-1689028313-3358377157-2391210578-1004 - Limited - Enabled) ==================== Faulty Device Manager Devices ============= Name: Microsoft-Teredo-Tunneling-Adapter Description: Microsoft-Teredo-Tunneling-Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (11/18/2014 07:49:26 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Creative Cloud.exe, Version: 2.8.1.451, Zeitstempel: 0x543e8b4e Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea8e7 Ausnahmecode: 0xc0000374 Fehleroffset: 0x000ce753 ID des fehlerhaften Prozesses: 0xf98 Startzeit der fehlerhaften Anwendung: 0xCreative Cloud.exe0 Pfad der fehlerhaften Anwendung: Creative Cloud.exe1 Pfad des fehlerhaften Moduls: Creative Cloud.exe2 Berichtskennung: Creative Cloud.exe3 Error: (11/16/2014 08:49:12 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/13/2014 10:29:19 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/12/2014 00:30:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/11/2014 08:28:16 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/09/2014 06:50:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm uTorrent.exe, Version 3.4.2.34944 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: dc4 Startzeit: 01cffb2a67069943 Endzeit: 1081 Anwendungspfad: C:\Users\Haakan\AppData\Roaming\uTorrent\uTorrent.exe Berichts-ID: c7ec70d2-6838-11e4-adc6-8c89a556c037 Error: (11/09/2014 00:31:46 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/08/2014 08:47:47 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/07/2014 06:14:23 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/02/2014 02:37:44 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm Origin.exe, Version 9.4.23.2817 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: e74 Startzeit: 01cff69eb602b616 Endzeit: 247 Anwendungspfad: C:\Program Files (x86)\Origin\Origin.exe Berichts-ID: 61265007-6295-11e4-869e-8c89a556c037 System errors: ============= Error: (11/18/2014 07:47:33 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: acedrv07 Error: (11/18/2014 01:43:59 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (11/17/2014 10:36:05 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: acedrv07 Error: (11/17/2014 00:42:07 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (11/16/2014 11:33:01 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: acedrv07 Error: (11/16/2014 11:31:53 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 16.11.2014 um 21:55:00 unerwartet heruntergefahren. Error: (11/16/2014 07:10:19 PM) (Source: volsnap) (EventID: 14) (User: ) Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen. Error: (11/16/2014 05:31:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: acedrv07 Error: (11/16/2014 03:44:42 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (11/16/2014 02:43:17 AM) (Source: volsnap) (EventID: 14) (User: ) Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen. Microsoft Office Sessions: ========================= Error: (11/18/2014 07:49:26 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Creative Cloud.exe2.8.1.451543e8b4entdll.dll6.1.7601.18247521ea8e7c0000374000ce753f9801d003602722259fC:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exeC:\Windows\SysWOW64\ntdll.dll9e422de2-6f53-11e4-956a-8c89a556c037 Error: (11/16/2014 08:49:12 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/13/2014 10:29:19 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/12/2014 00:30:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/11/2014 08:28:16 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/09/2014 06:50:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: uTorrent.exe3.4.2.34944dc401cffb2a670699431081C:\Users\Haakan\AppData\Roaming\uTorrent\uTorrent.exec7ec70d2-6838-11e4-adc6-8c89a556c037 Error: (11/09/2014 00:31:46 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/08/2014 08:47:47 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/07/2014 06:14:23 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/02/2014 02:37:44 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Origin.exe9.4.23.2817e7401cff69eb602b616247C:\Program Files (x86)\Origin\Origin.exe61265007-6295-11e4-869e-8c89a556c037 CodeIntegrity Errors: =================================== Date: 2014-11-18 19:46:49.296 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-18 19:46:49.187 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-17 22:35:01.007 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-17 22:35:00.898 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 23:31:30.740 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 23:31:30.631 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 17:31:00.308 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 17:31:00.199 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 01:11:03.742 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 01:11:03.633 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. ==================== Memory info =========================== Processor: AMD A8-3800 APU with Radeon(tm) HD Graphics Percentage of memory in use: 78% Total physical RAM: 3576.13 MB Available physical RAM: 759.37 MB Total Pagefile: 7150.45 MB Available Pagefile: 1803.36 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: (Boot) (Fixed) (Total:890.41 GB) (Free:704.77 GB) NTFS Drive d: (Recover) (Fixed) (Total:40 GB) (Free:19.35 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 2BD2C32A) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=890.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=40 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=1 GB) - (Type=12) |
|
18.11.2014, 20:54
| #2 |
| /// the machine /// TB-Ausbilder    |  Probleme mit Java Update hi,
__________________ So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Scan mit Combofix
__________________ |
|
18.11.2014, 21:06
| #3 |
| | Probleme mit Java Update Oke so dann hier nochmal
__________________ Tut mir seehr leid bin aber neu.[CO==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe () C:\Program Files (x86)\watchmi\TvdService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (CyberLink) C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Spotify Ltd) C:\Users\Haakan\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd) C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Adobe Systems, Incorporated) C:\Program Files\Adobe\Adobe Photoshop CC 2014\Photoshop.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Photoshop CC 2014\Required\DynamicLinkMediaServer\32\dynamiclinkmanager.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11821160 2011-05-09] (Realtek Semiconductor) HKLM\...\Run: [MedionReminder] => C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe [443688 2011-05-26] (CyberLink) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated) HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-03] (CyberLink) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-08] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2014-10-08] (Power Software Ltd) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2014-10-15] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation) HKLM\...\RunOnce: [MedionReminder] => C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe [443688 2011-05-26] (CyberLink) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [Spotify] => C:\Users\Haakan\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-10-07] (Spotify Ltd) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [Spotify Web Helper] => C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-07] (Spotify Ltd) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [uTorrent] => C:\Users\Haakan\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-15] (BitTorrent Inc.) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 11\AudialsNotifier.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-10-15] (Sony) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\MountPoints2: {36c52d60-65d8-11e3-957f-806e6f6e6963} - E:\Setup.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\MountPoints2: {55723718-3ff4-11e4-b2b6-8c89a556c037} - I:\Startme.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\Haakan\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-10-07] (Spotify Ltd) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-07] (Spotify Ltd) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [uTorrent] => C:\Users\Haakan\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-15] (BitTorrent Inc.) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 11\AudialsNotifier.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-10-15] (Sony) HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {36c52d60-65d8-11e3-957f-806e6f6e6963} - E:\Setup.exe HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {55723718-3ff4-11e4-b2b6-8c89a556c037} - I:\Startme.exe ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll () GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled. ProxyServer: [.DEFAULT] => http=127.0.0.1:49823;https=127.0.0.1:49823 StartMenuInternet: IEXPLORE.EXE - iexplore.exe BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKU\S-1-5-21-1689028313-3358377157-2391210578-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{E402F878-83D6-4346-B616-4923CEF8C0AC}: [NameServer] 8.8.8.8,8.8.4.4 FireFox: ======== FF ProfilePath: C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default FF NewTab: about:newtab FF Keyword.URL: FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll No File FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF Plugin HKU\S-1-5-21-1689028313-3358377157-2391210578-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Haakan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-1689028313-3358377157-2391210578-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Haakan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Extension: Amazon-Icon - C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default\Extensions\amazon-icon@giga.de [2014-11-01] FF Extension: Savernet - C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default\Extensions\mhrtfko@o-wv.com [2014-07-24] FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\KavAntiBanner@kaspersky.ru FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru FF Extension: No Name - C:\Windows\Installer\{3136C079-CE8A-41D7-8697-D000107AC1DF}\{4C66AEC6-0983-42F5-9BCE-5B05BADA8A2A}.xpi [Not Found] FF Extension: No Name - C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [Not Found] FF Extension: No Name - C:\Users\Haakan\AppData\Roaming\Mozilla\Firefox\Profiles\jlu5dmhd.default\extensions\faststartff@gmail.com [Not Found] FF StartMenuInternet: FIREFOX.EXE - firefox.exe Chrome: ======= CHR Profile: C:\Users\Haakan\AppData\Local\Google\Chrome\User Data\Default ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-07-08] (Advanced Micro Devices, Inc.) [File not signed] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [46904 2013-12-17] (Hewlett-Packard Company) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed] R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [62464 2010-12-06] () [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S1 acedrv07; C:\Windows\system32\drivers\acedrv07.sys [125440 2014-11-01] () [File not signed] R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-11-18] (Malwarebytes Corporation) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-18 20:43 - 2014-11-18 20:43 - 00017341 _____ () C:\Users\Haakan\Downloads\FRST.txt 2014-11-18 20:42 - 2014-11-18 20:43 - 00000000 ____D () C:\FRST 2014-11-18 20:40 - 2014-11-18 20:40 - 02117120 _____ (Farbar) C:\Users\Haakan\Downloads\FRST64.exe 2014-11-18 20:25 - 2014-11-18 20:25 - 00384888 _____ (Premium Installer ) C:\Users\Haakan\Downloads\setup (4).exe 2014-11-18 20:23 - 2014-11-18 20:23 - 00384888 _____ (Premium Installer ) C:\Users\Haakan\Downloads\setup (3).exe 2014-11-18 20:22 - 2014-11-18 20:22 - 00768144 _____ (Webroot) C:\Users\Haakan\Downloads\wsainstall.exe 2014-11-18 20:22 - 2014-11-18 20:22 - 00000000 ____D () C:\ProgramData\WRData 2014-11-18 19:54 - 2014-11-18 19:54 - 00384888 _____ (Premium Installer ) C:\Users\Haakan\Downloads\setup (2).exe 2014-11-16 19:52 - 2014-11-16 19:52 - 01102049 _____ () C:\Users\Haakan\Downloads\After Effects CC amtlib.zip 2014-11-16 18:27 - 2014-11-16 18:27 - 00000000 __SHD () C:\Users\Haakan\AppData\Local\EmieBrowserModeList 2014-11-16 18:17 - 2014-11-16 18:17 - 00001226 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2014.lnk 2014-11-16 17:52 - 2014-11-16 17:52 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe 2014-11-16 02:17 - 2014-11-16 02:17 - 00399224 _____ (Premium Installer ) C:\Users\Haakan\Downloads\setup (1).exe 2014-11-15 20:23 - 2014-11-15 20:23 - 00008488 _____ () C:\Windows\DPINST.LOG 2014-11-15 20:23 - 2014-11-15 20:23 - 00002030 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk 2014-11-13 22:09 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2014-11-13 22:09 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2014-11-13 22:09 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-11-13 22:09 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2014-11-13 22:09 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2014-11-13 22:09 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-11-13 22:09 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-11-13 22:09 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2014-11-13 22:09 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2014-11-13 22:08 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-11-13 22:08 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-11-13 22:08 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-11-13 22:08 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-11-13 22:08 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-11-13 22:08 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-11-13 22:08 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-11-13 22:08 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-11-13 22:08 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-11-13 22:08 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-11-13 22:08 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-11-13 22:08 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-11-13 22:08 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-11-13 22:08 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-11-13 22:08 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-11-13 22:08 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-11-13 22:08 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-11-13 22:08 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-11-13 22:08 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-11-13 22:08 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-11-13 22:08 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-11-13 22:08 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-11-13 22:08 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-11-13 22:08 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-11-13 22:08 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-11-13 22:08 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-11-13 22:08 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-11-13 22:08 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-11-13 22:08 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-11-13 22:08 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-11-13 22:08 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-11-13 22:08 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-11-13 22:08 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-11-13 22:08 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-11-13 22:08 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-11-13 22:08 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-11-13 22:08 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-11-13 22:08 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-11-13 22:08 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-11-13 22:08 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-11-13 22:08 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-11-13 22:08 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-11-13 22:08 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-11-13 22:08 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-11-13 22:08 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-11-13 22:08 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-11-13 22:08 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-11-13 22:08 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-11-13 22:08 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-11-13 22:08 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-11-13 22:08 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-11-13 22:08 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-11-13 22:08 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-11-13 22:08 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-11-13 22:08 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-11-13 22:08 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-11-13 22:07 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-11-13 22:07 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2014-11-13 22:07 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2014-11-13 22:07 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2014-11-13 22:07 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-11-13 22:07 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-11-13 22:07 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-11-13 22:07 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-11-13 22:07 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-11-13 22:07 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-11-13 22:07 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-11-13 22:07 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-11-13 22:07 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-11-13 22:07 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-11-13 22:07 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-11-13 22:07 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-11-13 22:07 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-11-13 22:07 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-11-13 22:07 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2014-11-13 22:07 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL 2014-11-13 22:07 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL 2014-11-12 20:10 - 2014-11-12 20:10 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\SomePDF 2014-11-12 20:10 - 2014-11-12 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SomePDF 2014-11-12 20:10 - 2014-11-12 20:10 - 00000000 ____D () C:\Program Files (x86)\SomePDF 2014-11-12 20:09 - 2014-11-12 20:10 - 02182311 _____ (SomePDF.com ) C:\Users\Haakan\Downloads\pdf2txt_2-0_setup (1).exe 2014-11-12 20:07 - 2014-11-12 20:07 - 00002713 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk 2014-11-12 20:05 - 2014-11-12 20:05 - 25755856 _____ (Microsoft Corporation) C:\Users\Haakan\Downloads\wordview_de-de (1).exe 2014-11-12 20:03 - 2014-11-12 20:03 - 02899667 _____ () C:\Users\Haakan\Downloads\KMSpico setup by MegaPennymarkt.rar 2014-11-12 19:52 - 2014-11-12 19:54 - 10803700 _____ () C:\Users\Haakan\Downloads\KMS Pico.rar 2014-11-11 18:09 - 2014-11-11 18:09 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\java 2014-11-11 17:53 - 2014-11-11 17:53 - 01128916 _____ (Free PDF to Word Doc Converter - easy and powerful pdf converter software. ) C:\Users\Haakan\Downloads\pdf2wordsetup11.exe 2014-11-11 17:53 - 2014-11-11 17:53 - 01128916 _____ (Free PDF to Word Doc Converter - easy and powerful pdf converter software. ) C:\Users\Haakan\Downloads\pdf2wordsetup11 (1).exe 2014-11-11 17:53 - 2014-11-11 17:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free PDF to Word Doc Converter 2014-11-11 17:53 - 2014-11-11 17:53 - 00000000 ____D () C:\Program Files (x86)\Free PDF to Word Doc Converter 2014-11-11 17:41 - 2014-11-11 17:41 - 00750552 _____ () C:\Users\Haakan\Downloads\Setup.exe 2014-11-07 21:39 - 2014-11-07 21:39 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-11-07 21:39 - 2014-11-07 21:39 - 00001346 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.de.lnk 2014-11-07 21:39 - 2014-11-07 21:39 - 00000000 ____D () C:\Program Files\Java 2014-11-07 21:39 - 2014-11-07 21:39 - 00000000 ____D () C:\Program Files (x86)\Knuddels 2014-11-07 21:34 - 2014-11-07 21:34 - 00001199 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4.lnk 2014-11-07 21:34 - 2014-11-07 21:34 - 00001187 _____ () C:\Users\Public\Desktop\The Sims 4.lnk 2014-11-07 21:33 - 2014-11-07 21:34 - 75085992 _____ () C:\Users\Haakan\Downloads\KnuddelsJavaUpdater.exe 2014-11-07 21:28 - 2014-11-07 21:34 - 00000000 ____D () C:\Program Files (x86)\The Sims 4 2014-11-07 17:02 - 2014-11-07 17:02 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-11-07 17:01 - 2014-11-07 17:02 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Haakan\Downloads\mbam-setup-2.0.3.1025.exe 2014-11-07 17:00 - 2014-11-07 17:04 - 00000000 ____D () C:\AdwCleaner 2014-11-07 17:00 - 2014-11-07 17:00 - 01998336 _____ () C:\Users\Haakan\Downloads\adwcleaner_4.002.exe 2014-11-07 16:51 - 2014-11-07 17:07 - 00000000 ____D () C:\Users\Haakan\Downloads\The.Sims.4-RELOADED[rarbg] 2014-11-07 07:27 - 2014-11-07 07:27 - 00000000 ____D () C:\Users\Haakan\AppData\Local\{45683832-214B-4F18-96D4-718ED80CA395} 2014-11-02 14:37 - 2014-11-02 14:37 - 00001044 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk 2014-11-02 14:36 - 2014-11-16 18:55 - 00000000 ____D () C:\Program Files\Adobe 2014-11-02 14:35 - 2014-11-02 14:35 - 00003174 _____ () C:\Windows\System32\Tasks\{9C4D3A69-572D-4FA4-8EFE-3BDEBC53475C} 2014-11-02 14:31 - 2014-11-16 19:02 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2014-11-02 14:15 - 2014-11-02 14:15 - 00000000 ___RD () C:\Users\Haakan\Creative Cloud Files 2014-11-02 14:05 - 2014-11-02 14:05 - 00000000 ____D () C:\Program Files (x86)\Adobe Download Assistant 2014-11-02 14:00 - 2014-11-02 14:00 - 00001317 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2014-11-01 20:39 - 2014-11-07 21:35 - 00000000 ____D () C:\ProgramData\Package Cache 2014-11-01 20:33 - 2014-11-01 20:33 - 00672432 _____ (Adobe Systems Incorporated) C:\Users\Haakan\Downloads\CreativeCloudSet-Up.exe 2014-11-01 20:30 - 2014-11-01 20:30 - 01390161 _____ () C:\Users\Haakan\Downloads\Adobe-Photoshop-CC-Crack.rar 2014-11-01 20:15 - 2014-11-01 20:15 - 01380032 _____ () C:\Users\Haakan\Downloads\Minecraft Skin.lib4d 2014-11-01 20:01 - 2014-11-01 20:02 - 08633308 _____ () C:\Users\Haakan\Downloads\Minecraft Item Pack v1.2 (By WeedLion).rar 2014-11-01 19:36 - 2014-11-01 19:36 - 00055745 _____ () C:\Users\Haakan\Downloads\Cinema 4D R15 15.037 (Keygen ONLY).zip 2014-11-01 19:35 - 2014-11-01 19:35 - 00466320 _____ () C:\Users\Haakan\Downloads\Cinema 4D.exe 2014-11-01 19:31 - 2014-11-01 19:31 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\MAXON 2014-11-01 19:24 - 2014-11-02 14:39 - 00000000 ____D () C:\Program Files (x86)\Cinema 4D R12 2014-11-01 19:19 - 2014-11-01 19:20 - 29589876 _____ () C:\Users\Haakan\Downloads\Pack by KeinGFX.rar 2014-11-01 19:19 - 2014-11-01 19:19 - 05528688 _____ () C:\Users\Haakan\Downloads\Minecraft Steve Rig v1.2 (by WeedLion).rar 2014-11-01 19:19 - 2014-11-01 19:19 - 00521216 _____ (PainteR) C:\Users\Haakan\Downloads\AdobeUniversalPatcher.exe 2014-11-01 19:18 - 2014-11-01 19:18 - 01340090 _____ () C:\Users\Haakan\Downloads\by BosshafteTutorials [Photoshop CC].rar 2014-11-01 19:04 - 2014-11-01 19:12 - 144726911 _____ () C:\Users\Haakan\Downloads\Cinema 4D by JabieProductions.rar 2014-11-01 18:46 - 2014-11-02 14:40 - 00000000 ____D () C:\Fraps 2014-11-01 18:46 - 2014-11-01 18:46 - 02629194 _____ () C:\Users\Haakan\Downloads\Fraps 3.5.99 by Elite48x.rar 2014-11-01 18:46 - 2014-11-01 18:46 - 00000000 ____D () C:\ProgramData\NoMore Ads 2014-11-01 18:26 - 2014-11-18 19:47 - 00001120 _____ () C:\Windows\setupact.log 2014-11-01 18:26 - 2014-11-11 17:29 - 00014022 _____ () C:\Windows\PFRO.log 2014-11-01 18:26 - 2014-11-01 18:26 - 00000000 _____ () C:\Windows\setuperr.log 2014-11-01 15:09 - 2014-11-01 15:09 - 11831445 _____ () C:\Users\Haakan\Downloads\Videos-Meine Tierarztpraxis-Kleine Patienten_PC_public_inklSarah_NEUERPACKSHOT.wmv 2014-11-01 13:35 - 2014-11-01 13:35 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Temp0c6d01c7e26ea586c00b83d771f17607_ 2014-11-01 13:34 - 2014-11-01 13:34 - 00000000 ____D () C:\Users\Haakan\Downloads\Meine-Tierarztpraxis 2014-11-01 13:34 - 2014-11-01 13:34 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Temp0c6d01c7e26ea586c00b83d771f17607 2014-11-01 13:33 - 2014-11-01 13:33 - 01045496 _____ () C:\Users\Haakan\Downloads\Meine-Tierarztpraxis-lnstall.exe 2014-11-01 13:06 - 2014-11-01 13:17 - 00002255 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-11-01 13:06 - 2014-11-01 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-11-01 13:04 - 2014-11-18 20:09 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-01 13:04 - 2014-11-18 19:47 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-01 13:04 - 2014-11-01 13:04 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-11-01 13:04 - 2014-11-01 13:04 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-11-01 13:03 - 2014-11-01 13:03 - 00000000 ____D () C:\Users\Haakan\Downloads\Google-Chrome 2014-11-01 13:02 - 2014-11-01 13:02 - 01045496 _____ () C:\Users\Haakan\Downloads\Google-Chrome-lnstall.exe 2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\KSafe 2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 ____D () C:\ProgramData\KSafe 2014-10-31 20:30 - 2014-10-31 20:30 - 00000000 ____D () C:\Program Files (x86)\DllTool 2014-10-31 20:29 - 2014-10-31 20:29 - 08473440 _____ ( ) C:\Users\Haakan\Downloads\DllTool.exe 2014-10-31 20:17 - 1998-11-17 13:44 - 00328704 _____ (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe 2014-10-31 20:16 - 2014-10-31 20:16 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\PowerISO 2014-10-31 20:15 - 2014-10-31 20:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO 2014-10-31 20:15 - 2014-10-31 20:15 - 00000000 ____D () C:\Program Files\PowerISO 2014-10-31 20:15 - 2014-10-08 14:13 - 00127760 _____ (Power Software Ltd) C:\Windows\system32\Drivers\scdemu.sys 2014-10-31 20:13 - 2014-10-31 20:13 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Notepad++ 2014-10-31 20:13 - 2014-10-31 20:13 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-10-31 20:13 - 2014-10-31 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-10-31 20:13 - 2014-10-31 20:13 - 00000000 ____D () C:\Program Files (x86)\Notepad++ 2014-10-31 20:12 - 2014-10-31 20:12 - 07945210 _____ () C:\Users\Haakan\Downloads\npp.6.6.9.Installer (1).exe 2014-10-31 19:34 - 2014-10-31 19:34 - 00000000 ____D () C:\Users\Haakan\AppData\Local\{8C91B0F6-3BF8-4AF5-A579-3B75F6292BDE} 2014-10-31 19:33 - 2014-10-31 19:57 - 250421764 _____ () C:\Users\Haakan\Downloads\f1cba8cb131c54f93e47d1d6e5784855.rar 2014-10-31 19:32 - 2014-10-31 19:32 - 00001028 _____ () C:\Users\Haakan\Downloads\69eefa0523b6dd4ff2bfa67f9fef2a137dcc7a2a.dlc 2014-10-31 19:15 - 2014-10-31 19:15 - 00318816 _____ (FreeWorldApp) C:\Users\Haakan\Downloads\Meine Tierpension.rar.exe 2014-10-31 16:35 - 2014-11-01 13:20 - 00125440 _____ () C:\Windows\system32\Drivers\acedrv07.sys 2014-10-31 16:35 - 2014-10-31 16:35 - 00081920 _____ () C:\Windows\SysWOW64\acedrv07.dll 2014-10-31 16:21 - 2003-03-15 23:15 - 00090112 _____ (MindVision Software) C:\Windows\unvise32.exe 2014-10-31 16:20 - 2014-10-31 16:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Die Reitakademie 2014-10-31 16:20 - 2014-10-31 16:20 - 00000000 ____D () C:\Programme 2014-10-31 14:45 - 2014-10-31 14:45 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg 2014-10-31 14:45 - 2014-10-31 14:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg 2014-10-31 14:43 - 2014-10-31 14:43 - 00000000 ____D () C:\Kiddinx 2014-10-27 18:51 - 2014-11-11 17:41 - 00000004 _____ () C:\Users\Haakan\AppData\Roaming\appdataFr2.bin 2014-10-27 18:44 - 2014-10-27 18:44 - 00000000 ____D () C:\ProgramData\LizardSales 2014-10-27 09:34 - 2014-10-27 09:34 - 04816166 _____ () C:\Users\Haakan\Downloads\AltCheckerTMP.zip 2014-10-27 09:33 - 2014-10-27 09:33 - 05956779 _____ () C:\Users\Haakan\Downloads\Wurst 1.3.1.zip 2014-10-27 09:32 - 2014-10-27 09:32 - 00000166 _____ () C:\Users\Haakan\Downloads\01 This was moved!.txt 2014-10-26 17:07 - 2014-10-26 17:08 - 01910919 _____ () C:\Users\Haakan\Downloads\Hexxit Hacks by tsj9834 [Downloadbar von M4nu].zip 2014-10-24 15:15 - 2014-10-24 15:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 5 2014-10-24 15:15 - 2014-10-24 15:15 - 00000000 ____D () C:\Program Files (x86)\GeoGebra 5.0 2014-10-24 15:12 - 2014-10-24 15:14 - 58162552 _____ (International GeoGebra Institute) C:\Users\Haakan\Downloads\GeoGebra-Windows-Installer-5-0-18-0.exe 2014-10-20 18:22 - 2014-10-20 18:22 - 00018394 _____ () C:\Users\Haakan\Downloads\Unbenannt 1.odt ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-18 20:40 - 2013-12-15 15:35 - 01510729 _____ () C:\Windows\WindowsUpdate.log 2014-11-18 20:25 - 2014-06-03 18:52 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-11-18 19:59 - 2013-12-17 18:17 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Adobe 2014-11-18 19:55 - 2009-07-14 05:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-18 19:55 - 2009-07-14 05:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-18 19:50 - 2014-09-16 13:17 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\TS3Client 2014-11-18 19:50 - 2014-03-09 23:20 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-18 19:50 - 2013-12-15 15:55 - 00000000 ____D () C:\Users\Haakan 2014-11-18 19:49 - 2014-02-14 13:43 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\uTorrent 2014-11-18 19:49 - 2014-01-02 14:17 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Spotify 2014-11-18 19:49 - 2013-12-19 17:20 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Skype 2014-11-18 19:47 - 2014-01-12 16:49 - 00000462 ____H () C:\Windows\Tasks\GS.Enabler-S-926685765.job 2014-11-18 19:47 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-17 22:38 - 2014-01-02 14:18 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Spotify 2014-11-16 23:32 - 2009-07-14 05:45 - 05165816 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-11-16 20:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-11-16 19:54 - 2013-12-15 16:11 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\Adobe 2014-11-16 18:53 - 2011-02-10 21:48 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-11-16 18:47 - 2013-12-15 15:56 - 00147224 _____ () C:\Users\Haakan\AppData\Local\GDIPFONTCACHEV1.DAT 2014-11-15 20:23 - 2014-09-19 16:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony 2014-11-15 20:22 - 2011-03-14 23:29 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-11-12 20:38 - 2014-05-17 15:54 - 00000000 ____D () C:\Users\Haakan\Desktop\Baba & Mama 2014-11-12 20:37 - 2014-05-17 16:08 - 00000000 ____D () C:\Users\Haakan\Desktop\Programme 2014-11-12 20:07 - 2011-02-10 21:39 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-11-12 20:06 - 2014-01-14 20:19 - 00000000 ____D () C:\Program Files (x86)\MSECache 2014-11-11 18:13 - 2014-04-12 13:10 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\.minecraft 2014-11-08 10:18 - 2014-04-24 14:54 - 00000000 ____D () C:\ProgramData\Origin 2014-11-08 10:18 - 2014-04-24 14:54 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-11-08 10:04 - 2014-04-24 18:26 - 00000000 ____D () C:\Users\Haakan\Documents\Electronic Arts 2014-11-07 21:38 - 2014-05-17 15:50 - 00000000 ____D () C:\Users\Haakan\Desktop\Hakan 2014-11-07 21:38 - 2013-12-15 17:07 - 00000000 ____D () C:\ProgramData\Oracle 2014-11-07 21:38 - 2013-12-15 17:06 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-11-07 21:38 - 2013-12-15 17:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-07 21:38 - 2011-06-28 00:28 - 00000000 ____D () C:\Program Files (x86)\Java 2014-11-07 21:37 - 2014-02-23 11:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-11-07 21:36 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-11-07 17:02 - 2014-06-03 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-11-07 17:02 - 2014-06-03 18:52 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-11-07 16:51 - 2014-10-11 16:51 - 00073728 _____ () C:\Windows\SysWOW64\tasks.dll 2014-11-02 14:40 - 2014-01-12 16:46 - 00000000 ____D () C:\ProgramData\ae7ea956ec59a405 2014-11-02 14:37 - 2011-02-10 21:48 - 00000000 ____D () C:\ProgramData\Adobe 2014-11-02 14:05 - 2014-01-29 16:39 - 00001047 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk 2014-11-01 13:21 - 2014-07-19 18:51 - 00000000 ____D () C:\Windows\System32\Tasks\Sony Corporation 2014-11-01 13:21 - 2014-07-19 18:50 - 00000000 ____D () C:\Program Files\Common Files\Sony Shared 2014-11-01 13:21 - 2014-07-19 18:49 - 00000000 ____D () C:\Program Files (x86)\Sony 2014-11-01 13:20 - 2014-07-19 18:49 - 00000000 ____D () C:\ProgramData\Sony Corporation 2014-11-01 13:17 - 2013-12-27 16:21 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-11-01 13:06 - 2013-12-15 16:11 - 00000000 ____D () C:\Users\Haakan\AppData\Local\Google 2014-11-01 13:05 - 2013-12-15 15:38 - 00000000 ____D () C:\Program Files (x86)\Google 2014-11-01 12:45 - 2011-02-10 20:25 - 00699190 _____ () C:\Windows\system32\perfh007.dat 2014-11-01 12:45 - 2011-02-10 20:25 - 00149330 _____ () C:\Windows\system32\perfc007.dat 2014-11-01 12:45 - 2009-07-14 06:13 - 01619700 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-10-31 19:15 - 2014-01-12 16:42 - 00000000 ____D () C:\ProgramData\InstallMate 2014-10-27 18:52 - 2014-09-19 16:40 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-10-22 14:57 - 2013-12-17 15:31 - 00000000 ____D () C:\Users\Haakan\AppData\Roaming\.technic 2014-10-22 14:36 - 2014-01-31 18:22 - 02346942 _____ () C:\Users\Haakan\Downloads\TechnicLauncher.exe 2014-10-19 15:54 - 2014-04-24 17:43 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll Some content of TEMP: ==================== C:\Users\Haakan\AppData\Local\Temp\amazonicon_v10.exe C:\Users\Haakan\AppData\Local\Temp\amazoninstallernircmdc.exe C:\Users\Haakan\AppData\Local\Temp\CreativeCloudSet-Up.exe C:\Users\Haakan\AppData\Local\Temp\down.7280.setupytb.exe C:\Users\Haakan\AppData\Local\Temp\JavaRa.exe C:\Users\Haakan\AppData\Local\Temp\jli.dll C:\Users\Haakan\AppData\Local\Temp\jre-8u25-windows-i586.exe C:\Users\Haakan\AppData\Local\Temp\jre-8u25-windows-x64.exe C:\Users\Haakan\AppData\Local\Temp\keytool.exe C:\Users\Haakan\AppData\Local\Temp\msvcr100.dll C:\Users\Haakan\AppData\Local\Temp\node.exe C:\Users\Haakan\AppData\Local\Temp\Quarantine.exe C:\Users\Haakan\AppData\Local\Temp\sdan.exe C:\Users\Haakan\AppData\Local\Temp\sdapk.exe C:\Users\Haakan\AppData\Local\Temp\sdaspwn.exe C:\Users\Haakan\AppData\Local\Temp\sqlite3.dll C:\Users\Haakan\AppData\Local\Temp\sqlite3.exe C:\Users\Haakan\AppData\Local\Temp\Tsu634993DC.dll C:\Users\Haakan\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-16 20:47 DE][/CODAdditional scan result of Farbar Recovery Scan Tool (x64) Version: 17-11-2014 Ran by Haakan at 2014-11-18 20:44:28 Running from C:\Users\Haakan\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.1.1 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.8.0.447 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.9 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated) Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.) ATI AVIVO64 Codecs (Version: 11.6.0.10707 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{B72CAB06-4420-F4D1-AFBB-AF9093D3D237}) (Version: 3.0.833.0 - ATI Technologies, Inc.) Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.8.9046 - ) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform) Corel Graphics - Windows Shell Extension 64 Bit (Version: 15.2.686 - Corel Corporation) Hidden Die Reitakademie (HKLM-x32\...\Reitakademie) (Version: - ) Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts) Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts) Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts) Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.) Downtown Run (HKLM-x32\...\InstallShield_{5A00A29C-51EC-4CF2-9D37-EF2D8EB2AE42}) (Version: 1.00.0000 - Ihr Firmenname) Downtown Run (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden Free PDF to Word Doc Converter v1.1 (HKLM-x32\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - Free PDF to Word Doc Converter - easy and powerful pdf converter software.) GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.18.0 - International GeoGebra Institute) GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.) Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden HP Deskjet F4500 All-in-One Driver 14.0 Rel. 6 (HKLM\...\{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}) (Version: 14.0 - HP) Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG) MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Mathematics (64-Bit) (HKLM\...\{E57B7E0A-8BE5-42E2-BE60-C07ED680A063}) (Version: 4.0 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710F4C1C-CC18-4C49-8CBF-51240C89A1A2}) (Version: - ) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: - ) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) msxml4 (HKLM-x32\...\{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}) (Version: 1.0.0 - Default Company Name) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger) Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden NoMore Ads (HKLM-x32\...\{37476589-E48E-439E-A706-56189E2ED4C4}_is1) (Version: - NoMore Ads) <==== ATTENTION Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team) PowerISO (HKLM-x32\...\PowerISO) (Version: 6.1 - Power Software Ltd) Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: - ) Some PDF to Txt Converter 2.0 (HKLM-x32\...\Some PDF to Txt Converter_is1) (Version: - SomePDF.com) Sony PC Companion 2.10.235 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.235 - Sony) Spotify (HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) The Sims 4 (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - ) Unity Web Player (HKU\S-1-5-21-1689028313-3358377157-2391210578-1003\...\UnityWebPlayer) (Version: - Unity Technologies ApS) WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP) WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) XMedia Recode Version 3.1.9.0 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.9.0 - XMedia Recode) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 16-11-2014 19:54:34 Geplanter Prüfpunkt ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2014-10-15 17:58 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {1879261B-5257-4B30-BFE1-EA3DDF7DEBEA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd) Task: {2AD9D1B1-9911-4235-9D03-569B3FB4FBE2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-09] (Adobe Systems Incorporated) Task: {7718A101-86BB-47A4-BFC2-57A814EEFC57} - System32\Tasks\GS.Enabler-S-926685765 => c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe <==== ATTENTION Task: {8BF352EA-E110-4F70-9C3C-68BBBBBF5E8C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-01] (Google Inc.) Task: {CB17C176-6CA1-4F65-BD7A-BB5E53D6E2E7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {E20013A3-6361-4DCD-A0CF-8C143DA934F6} - System32\Tasks\GPUP => C:\Program Files (x86)\GetPrivate\gpup.exe <==== ATTENTION Task: {F93CE9D8-56C1-4AF1-9330-118934FB6E1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-01] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GS.Enabler-S-926685765.job => c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe <==== ATTENTION ==================== Loaded Modules (whitelisted) ============= 2014-11-02 13:58 - 2014-09-26 14:41 - 01021088 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2014-05-12 10:49 - 2014-05-12 10:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2011-07-08 07:36 - 2011-07-08 07:36 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2010-12-06 12:52 - 2010-12-06 12:52 - 00062464 _____ () C:\Program Files (x86)\watchmi\TvdService.exe 2013-12-15 15:37 - 2013-12-15 15:37 - 00061952 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Remote\2.5.0.5__f722db7bec59a14b\Tvd.Remote.dll 2013-12-15 15:37 - 2013-12-15 15:37 - 00009216 _____ () C:\Windows\assembly\GAC_MSIL\FingerPrint\1.0.0.0__a62e68e935d72fa6\FingerPrint.dll 2013-12-15 15:37 - 2013-12-15 15:37 - 00078848 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Reporting\2.5.0.5__f722db7bec59a14b\Tvd.Reporting.dll 2013-12-15 15:37 - 2013-12-15 15:37 - 00148480 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Aprico\2.5.0.5__f722db7bec59a14b\Tvd.Aprico.dll 2011-07-08 07:36 - 2011-07-08 07:36 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2011-07-08 07:44 - 2011-07-08 07:44 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2014-11-02 13:58 - 2014-09-26 14:40 - 06237856 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2014-01-02 14:18 - 2014-10-07 18:46 - 00613944 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe 2014-05-08 03:35 - 2014-05-08 03:35 - 00470728 _____ () C:\Program Files\Adobe\Adobe Photoshop CC 2014\aif_core.dll 2014-05-08 03:36 - 2014-05-08 03:36 - 02605256 _____ () C:\Program Files\Adobe\Adobe Photoshop CC 2014\aif_ogl.dll 2014-05-08 03:35 - 2014-05-08 03:35 - 00170184 _____ () C:\Program Files\Adobe\Adobe Photoshop CC 2014\aif_ocl.dll 2013-09-13 19:51 - 2013-09-13 19:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2013-09-13 19:51 - 2013-09-13 19:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2014-01-02 14:18 - 2014-10-07 18:46 - 36966968 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\libcef.dll 2010-08-03 23:39 - 2010-08-03 23:39 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll 2010-08-03 23:39 - 2010-08-03 23:39 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll 2014-07-17 17:50 - 2014-10-07 18:46 - 00867896 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\ffmpegsumo.dll 2014-01-02 14:18 - 2014-10-07 18:46 - 00886840 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\libglesv2.dll 2014-01-02 14:18 - 2014-10-07 18:46 - 00108600 _____ () C:\Users\Haakan\AppData\Roaming\Spotify\Data\libegl.dll 2014-11-01 13:06 - 2014-10-22 05:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll 2014-11-01 13:06 - 2014-10-22 05:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll 2014-11-01 13:06 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll 2014-11-01 13:06 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll 2011-06-28 00:24 - 2011-07-04 21:40 - 06271648 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll 2014-11-01 13:06 - 2014-10-22 05:05 - 14902600 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Temp:373E1720 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-1689028313-3358377157-2391210578-500 - Administrator - Disabled) Gast (S-1-5-21-1689028313-3358377157-2391210578-501 - Limited - Disabled) Haakan (S-1-5-21-1689028313-3358377157-2391210578-1003 - Administrator - Enabled) => C:\Users\Haakan HomeGroupUser$ (S-1-5-21-1689028313-3358377157-2391210578-1004 - Limited - Enabled) ==================== Faulty Device Manager Devices ============= Name: Microsoft-Teredo-Tunneling-Adapter Description: Microsoft-Teredo-Tunneling-Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (11/18/2014 07:49:26 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Creative Cloud.exe, Version: 2.8.1.451, Zeitstempel: 0x543e8b4e Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea8e7 Ausnahmecode: 0xc0000374 Fehleroffset: 0x000ce753 ID des fehlerhaften Prozesses: 0xf98 Startzeit der fehlerhaften Anwendung: 0xCreative Cloud.exe0 Pfad der fehlerhaften Anwendung: Creative Cloud.exe1 Pfad des fehlerhaften Moduls: Creative Cloud.exe2 Berichtskennung: Creative Cloud.exe3 Error: (11/16/2014 08:49:12 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/13/2014 10:29:19 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/12/2014 00:30:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/11/2014 08:28:16 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/09/2014 06:50:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm uTorrent.exe, Version 3.4.2.34944 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: dc4 Startzeit: 01cffb2a67069943 Endzeit: 1081 Anwendungspfad: C:\Users\Haakan\AppData\Roaming\uTorrent\uTorrent.exe Berichts-ID: c7ec70d2-6838-11e4-adc6-8c89a556c037 Error: (11/09/2014 00:31:46 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/08/2014 08:47:47 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/07/2014 06:14:23 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/02/2014 02:37:44 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm Origin.exe, Version 9.4.23.2817 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: e74 Startzeit: 01cff69eb602b616 Endzeit: 247 Anwendungspfad: C:\Program Files (x86)\Origin\Origin.exe Berichts-ID: 61265007-6295-11e4-869e-8c89a556c037 System errors: ============= Error: (11/18/2014 07:47:33 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: acedrv07 Error: (11/18/2014 01:43:59 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (11/17/2014 10:36:05 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: acedrv07 Error: (11/17/2014 00:42:07 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (11/16/2014 11:33:01 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: acedrv07 Error: (11/16/2014 11:31:53 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 16.11.2014 um 21:55:00 unerwartet heruntergefahren. Error: (11/16/2014 07:10:19 PM) (Source: volsnap) (EventID: 14) (User: ) Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen. Error: (11/16/2014 05:31:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: acedrv07 Error: (11/16/2014 03:44:42 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (11/16/2014 02:43:17 AM) (Source: volsnap) (EventID: 14) (User: ) Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen. Microsoft Office Sessions: ========================= Error: (11/18/2014 07:49:26 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Creative Cloud.exe2.8.1.451543e8b4entdll.dll6.1.7601.18247521ea8e7c0000374000ce753f9801d003602722259fC:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exeC:\Windows\SysWOW64\ntdll.dll9e422de2-6f53-11e4-956a-8c89a556c037 Error: (11/16/2014 08:49:12 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/13/2014 10:29:19 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/12/2014 00:30:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/11/2014 08:28:16 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/09/2014 06:50:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: uTorrent.exe3.4.2.34944dc401cffb2a670699431081C:\Users\Haakan\AppData\Roaming\uTorrent\uTorrent.exec7ec70d2-6838-11e4-adc6-8c89a556c037 Error: (11/09/2014 00:31:46 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/08/2014 08:47:47 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/07/2014 06:14:23 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe Error: (11/02/2014 02:37:44 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Origin.exe9.4.23.2817e7401cff69eb602b616247C:\Program Files (x86)\Origin\Origin.exe61265007-6295-11e4-869e-8c89a556c037 CodeIntegrity Errors: =================================== Date: 2014-11-18 19:46:49.296 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-18 19:46:49.187 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-17 22:35:01.007 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-17 22:35:00.898 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 23:31:30.740 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 23:31:30.631 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 17:31:00.308 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 17:31:00.199 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 01:11:03.742 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-11-16 01:11:03.633 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. ==================== Memory info =========================== Processor: AMD A8-3800 APU with Radeon(tm) HD Graphics Percentage of memory in use: 78% Total physical RAM: 3576.13 MB Available physical RAM: 759.37 MB Total Pagefile: 7150.45 MB Available Pagefile: 1803.36 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: (Boot) (Fixed) (Total:890.41 GB) (Free:704.77 GB) NTFS Drive d: (Recover) (Fixed) (Total:40 GB) (Free:19.35 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 2BD2C32A) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=890.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=40 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=1 GB) - (Type=12)] |
|
19.11.2014, 17:31
| #4 |
| /// the machine /// TB-Ausbilder | Probleme mit Java Update Das mit den Codeboxen is noch nit so wirklich drin oder? Mach bitte obige Anweisungen noch.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Probleme mit Java Update |
| adobe after effects, bonjour, desktop, fehlercode 0xc0000374, flash player, gmx.net, iexplore.exe, installation, keygen, kmspico, newtab, nomore ads entfernen, photoshop, poweriso, programm, realtek, registry, required, security, services.exe, software, spotify web helper, svchost.exe, system, this device cannot start. (code10), windows |
dann auf 
und dann auf 
. 
Linear-Darstellung
