Boot dauert 2 minuten ! das behben.

Yoloo · 28.02.2015, 18:18

Hallo immer wenn ich mein Notebook starte dauert es anfangs 10 sek und dann kommt ein Schwarzerbildschirm!SIEHE HIER

und das nervt! Wie kann ich das beheben ?

schrauber · 28.02.2015, 18:53

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Yoloo · 28.02.2015, 19:07

Hier sind die Dateien
Addition

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-02-2015 01
Ran by admin at 2015-02-28 19:04:01
Running from C:\Users\admin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: BullGuard Antivirus (Enabled - Up to date) {EDBB5818-2352-E06B-028A-4E6873B92CC5}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: BullGuard Antispyware (Enabled - Up to date) {56DAB9FC-0568-EFE5-383A-751A083E6678}
FW: BullGuard Firewall (Enabled) {D580D93D-693D-E133-29D5-E75D8D6A6BBE}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.18.0 - Mirillis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo AppLauncher (Medion) v.1.0.0 (HKLM-x32\...\Ashampoo AppLauncher (Medion)_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
AVG (HKLM\...\AvgZen) (Version: 1.0.445 - AVG Technologies)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.393 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.393 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.393 - AVG Technologies) Hidden
AVG Zen (Version: 1.0.445 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BootRacer (HKLM-x32\...\{4E451C2C-9E30-43A3-BADD-C78698551CFB}) (Version: 4.7.1.372 - Greatis Software, LLC)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
BullGuard Internet Security (HKLM\...\BullGuard) (Version: 14.1 - BullGuard Ltd.)
Counter-Strike Nexon: Zombies (HKLM-x32\...\Steam App 273110) (Version:  - Nexon)
Craften Terminal 4.1.1 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 4.1.1 - Craften.de)
CyberLink PowerDirector (Version: 9.0.0.3815c - CyberLink Corp.) Hidden
DirectX Media Runtime 5.1 (HKLM-x32\...\DirectXMediaRuntime) (Version:  - )
Driver Booster 2.1 (HKLM-x32\...\Driver Booster_is1) (Version: 2.1 - IObit)
FMW 1 (Version: 1.0.308 - AVG Technologies) Hidden
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.10.923 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.1 - IObit)
iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Medion Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Medion Home Cinema 10 (x32 Version: 10.1924 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
MoonTools Version 1.7 (HKLM-x32\...\{61946000-8054-4452-B5F9-719D35D899D8}_is1) (Version: 1.7 - DotExE)
Movavi Video Suite 12 (HKLM-x32\...\Movavi Video Suite 12) (Version: 12.0.0 - Movavi)
Napster 5 Beta (HKLM-x32\...\com.Rhapsody.Napster5) (Version: 1.0.65 - Rhapsody International, Inc)
Napster 5 Beta (x32 Version: 1.0.65 - Rhapsody International, Inc) Hidden
Need For Speed™ World (HKLM-x32\...\{3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}) (Version: 1.0.0.0 - Electronic Arts)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.18 (HKLM\...\{74B7E6F9-DCAC-4ADB-B2D0-EEFDD1B5AC25}) (Version: 4.3.18 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paragon Backup and Recovery™ 2014 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PhoneClean 3.4.0 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 3.4.0 - iMobie Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.3.25.0 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
Renegade X Black Dawn (HKLM\...\UDK-581b33c8-d03f-439f-90ef-66e094fb972e) (Version:  - Epic Games, Inc.)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Star Wars(TM): Knights of the Old Republic (TM) (HKLM-x32\...\{2A9A40C7-6670-4D5F-8F41-D12E2E08B48B}) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3112673566-2443552264-417852688-1005_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3112673566-2443552264-417852688-1005_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

22-02-2015 15:38:21 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {13976834-D209-4E59-B6EC-B2CED07F0582} - System32\Tasks\Game_Booster_Startup => C:\Program Files (x86)\IObit\Game Booster 3\gbtray.exe
Task: {1957DF97-ECD4-421C-BFCD-9548907E669B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {4511A268-79D5-4EB3-BE3D-84F7A2426176} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3112673566-2443552264-417852688-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {54464B76-F7CC-45C1-A5E8-4C221DD45026} - System32\Tasks\Microsoft Office 15 Sync Maintenance for YANNIS-NB-admin Yannis-NB => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
Task: {5FFBCA20-B7C2-4755-AA47-40BB709071D2} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-12-17] (IObit)
Task: {6826CC76-E9EA-497D-BD8D-6F7A6F9CE9CF} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {68D8CA16-0B0C-4EB1-8E90-AEA87DD36531} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3112673566-2443552264-417852688-1001
Task: {6E031886-6297-4C94-9049-8D07C35F6340} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {707B942F-3192-4B73-93F1-76A79CCCB0BB} - System32\Tasks\Driver Booster SkipUAC (adminstrator) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-01-07] (IObit)
Task: {7F90F6BA-27E3-4231-B031-26E52BAF89FC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {854F6AD9-0D93-4DBA-B567-F4B9755D0B28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {862B48BC-6301-4B13-A18A-337DC4C3A28B} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-12-09] (IObit)
Task: {8B2B3EA0-FB8A-4DF6-8821-AD60B7AC7A25} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3112673566-2443552264-417852688-1005 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {A953A2E6-17DB-424D-9851-DC067A66DB44} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {B1074078-5A24-4995-845F-51C314687983} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-02-13] (Microsoft Corporation)
Task: {C9E2C144-B2F2-44DE-B547-21B800A23CA9} - System32\Tasks\Uninstaller_SkipUac_admin => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-30] (IObit)
Task: {D7452AEB-F5D2-4883-9D76-AAA580D18813} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-02-12] (AVG Technologies)
Task: {EB42FC3B-D93C-4726-A929-7E2AF6F0332D} - System32\Tasks\Driver Booster SkipUAC (admin) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-01-07] (IObit)
Task: {F03D8A20-F418-4B0E-8246-EE117A957CB4} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3112673566-2443552264-417852688-1005
Task: {F3BC0814-29D4-40C8-A5D9-1E6C33128F72} - System32\Tasks\Java Platform SE Auto Updater => c:\program files (x86)\common files\java\java update\jusched.exe [2014-12-17] (Oracle Corporation)
Task: {FABD4F54-5966-4130-9EC6-F5C60B687A71} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-30] (IObit)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_admin.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Loaded Modules (whitelisted) ==============

2015-02-23 17:53 - 2015-02-23 17:53 - 00613200 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00084304 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00653136 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00653136 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LibXml2.dll
2013-10-11 12:37 - 2013-10-11 12:37 - 00023376 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BullGuardBhvScannerRes.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00064848 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00084304 _____ () C:\Program Files\BullGuard Ltd\BullGuard\zlib1.dll
2015-01-31 01:10 - 2015-01-31 01:10 - 00186560 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-09-04 13:51 - 2012-09-07 08:00 - 00386344 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-02-12 17:39 - 2015-02-12 17:39 - 00712504 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-02-12 17:39 - 2015-02-12 17:39 - 00855864 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00613200 _____ () C:\Program Files\BullGuard Ltd\BullGuard\SQLite.dll
2015-01-23 15:21 - 2015-01-23 15:20 - 00287528 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BpBackupRes.dll
2014-10-12 10:15 - 2014-10-11 08:15 - 00035656 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BpMainRes.dll
2014-09-12 20:45 - 2014-09-12 20:45 - 31842816 _____ () C:\Program Files (x86)\AVG\Framework\Common\libcef.dll
2015-02-22 14:58 - 2012-11-20 16:13 - 00264192 _____ () C:\Program Files (x86)\Razer\Razer Cortex\D3DX8Wrapper.dll
2015-02-20 17:49 - 2015-02-17 23:44 - 01117512 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libglesv2.dll
2015-02-20 17:49 - 2015-02-17 23:44 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libegl.dll
2015-02-20 17:49 - 2015-02-17 23:44 - 09171272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\pdf.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\admin\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3112673566-2443552264-417852688-1005\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: AppLauncher => 
MSCONFIG\startupreg: iTunesHelper => 
MSCONFIG\startupreg: SunJavaUpdateSched => 
MSCONFIG\startupreg: YouCam Service => 
HKLM\...\StartupApproved\Run: => "Ashampoo Core Tuner 2"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "AppLauncher"
HKLM\...\StartupApproved\Run32: => "YouCam Service"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\StartupApproved\Run: => "DAEMON Tools Pro Agent"

==================== Accounts: =============================

admin (S-1-5-21-3112673566-2443552264-417852688-1005 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-3112673566-2443552264-417852688-500 - Administrator - Disabled)
Gast (S-1-5-21-3112673566-2443552264-417852688-501 - Administrator - Enabled) => C:\Users\TEMP

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/27/2015 06:29:25 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: YANNIS-NB)
Description: winstore_cw5n1h2txyewy32

Error: (02/27/2015 06:29:23 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: YANNIS-NB)
Description: microsoft.winjs.2.0_8wekyb3d8bbwe32

Error: (02/27/2015 06:22:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 5e8

Startzeit: 01d052b1299c6e73

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 1fcf836c-bea5-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 06:20:55 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: YANNIS-NB)
Description: Die Anwendung oder der Dienst "Microsoft Office Document Cache Sync Client Interface" konnte nicht heruntergefahren werden.

Error: (02/27/2015 05:54:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1050

Startzeit: 01d052acf8a108ad

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 489f09f2-bea1-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 05:50:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm javaw.exe, Version 8.0.31.13 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1a0c

Startzeit: 01d052ad28029bf0

Endzeit: 4

Anwendungspfad: C:\Program Files\Java\jre1.8.0_31\bin\javaw.exe

Berichts-ID: c06f2077-bea0-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (02/27/2015 05:38:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 11b0

Startzeit: 01d052ab273a5a6d

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 1c21b240-be9f-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 05:38:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 11b0

Startzeit: 01d052ab273a5a6d

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 19dec005-be9f-11e4-bf79-685d43dd7a47

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/23/2015 08:14:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNIS-NB)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (02/23/2015 08:14:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNIS-NB)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


System errors:
=============
Error: (02/28/2015 05:37:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (02/27/2015 06:31:35 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:16:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:16:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:16:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:01:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 06:01:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 05:46:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 05:46:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (02/27/2015 05:46:45 PM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


Microsoft Office Sessions:
=========================
Error: (02/27/2015 06:29:25 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: YANNIS-NB)
Description: winstore_cw5n1h2txyewy32

Error: (02/27/2015 06:29:23 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: YANNIS-NB)
Description: microsoft.winjs.2.0_8wekyb3d8bbwe32

Error: (02/27/2015 06:22:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.206895e801d052b1299c6e734294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe1fcf836c-bea5-11e4-bf79-685d43dd7a47microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 06:20:55 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: YANNIS-NB)
Description: 1C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXEMicrosoft Office Document Cache Sync Client Interface021176752243003A005C00500072006F006700720061006D002000460069006C00650073005C004D006900630072006F0073006F006600740020004F00660066006900630065002000310035005C0072006F006F0074005C007600660073005C00500072006F006700720061006D00460069006C006500730043006F006D006D006F006E005800380036005C004D006900630072006F0073006F006600740020005300680061007200650064005C004F0046004600490043004500310035005C00630032007200330032002E0064006C006C00000043003A005C00500072006F006700720061006D0044006100740061005C004D006900630072006F0073006F00660074005C004F00660066006900630065005C0043006C00690063006B0054006F00520075006E005000610063006B006100670065004C006F0063006B00650072000000

Error: (02/27/2015 05:54:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20689105001d052acf8a108ad4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe489f09f2-bea1-11e4-bf79-685d43dd7a47microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 05:50:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: javaw.exe8.0.31.131a0c01d052ad28029bf04C:\Program Files\Java\jre1.8.0_31\bin\javaw.exec06f2077-bea0-11e4-bf79-685d43dd7a47

Error: (02/27/2015 05:38:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2068911b001d052ab273a5a6d4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe1c21b240-be9f-11e4-bf79-685d43dd7a47microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/27/2015 05:38:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2068911b001d052ab273a5a6d4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe19dec005-be9f-11e4-bf79-685d43dd7a47microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/23/2015 08:14:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNIS-NB)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141

Error: (02/23/2015 08:14:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANNIS-NB)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 41%
Total physical RAM: 3960.38 MB
Available physical RAM: 2333.44 MB
Total Pagefile: 7928.38 MB
Available Pagefile: 5853.84 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.56 GB) (Free:742.56 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================

Und die FRST Datei
FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-02-2015 01
Ran by admin (administrator) on YANNIS-NB on 28-02-2015 19:00:04
Running from C:\Users\admin\Downloads
Loaded Profiles: admin (Available profiles: admin & Gast)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\main.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\LittleHook.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-30] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2015-01-30] (Realtek Semiconductor)
HKLM\...\Run: [BullGuard] => C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [1360208 2015-02-23] (BullGuard Ltd.)
HKLM\...\Run: [BullGuardUpdate2] => c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2935120 2015-02-23] (BullGuard Ltd.)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1140688 2015-01-16] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [YouCam Service] => c:\program files (x86)\cyberlink\youcam\youcamservice.exe [258576 2012-07-30] (CyberLink Corp.)
HKLM-x32\...\Run: [AppLauncher] => c:\program files (x86)\medion mediapack 3\ashampoo applauncher (medion)\applauncher.exe [969656 2012-08-10] (Ashampoo)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [98256 2015-01-26] (Razer Inc.)
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\Bootrace.exe [3843344 2014-04-23] ( (Greatis Software))
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\MountPoints2: E - "E:\zdata\cobi.exe" 
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\MountPoints2: {813773ef-312d-11e4-be66-806e6f6e6963} - "E:\autorun.exe" 
HKU\S-1-5-18\...\Run: [Advanced SystemCare 7] => "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
IFEO\bootrace.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\driverbooster.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\effectextractor.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\itunes.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mediaespresso.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\origin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\pdvdlaunchpolicy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerdvdcopy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ps.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\psi.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skipuacexec.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstaler_skipuac.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstalldisplay.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\youcam.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  No File
ShellIconOverlayIdentifiers: [BackupOverlayErr] -> {8749448C-D907-45BF-A842-4D3898894AC8} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlayInProgress] -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlaySynced] -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->  No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} ->  No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default
FF NetworkProxy: "ftp", "185.49.15.25"
FF NetworkProxy: "ftp_port", 7808
FF NetworkProxy: "http", " 	202.77.124.91 "
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "no_proxies_on", "localhost"
FF NetworkProxy: "socks", "185.49.15.25"
FF NetworkProxy: "socks_port", 7808
FF NetworkProxy: "ssl", "185.49.15.25"
FF NetworkProxy: "ssl_port", 7808
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\user.js
FF Extension: Ghostery - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\firefox@ghostery.com.xpi [2014-10-19]
FF Extension: Webutation - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2014-10-05]
FF Extension: Adblock Plus - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-19]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome: 
=======
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-22]
CHR Extension: (Google Docs) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-22]
CHR Extension: (Google Drive) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-22]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-22]
CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-22]
CHR Extension: (Adblock Plus) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-23]
CHR Extension: (Google Search) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-22]
CHR Extension: (Google Wallet) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-22]
CHR Extension: (YouTube Unblocker) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-10-27]
CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-22]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [865744 2015-01-16] (AVG Technologies CZ, s.r.o.)
S4 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
R2 BsBackup; C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll [850768 2015-02-23] (BullGuard Ltd.)
R2 BsBhvScan; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [601424 2015-02-27] (BullGuard Ltd.)
R2 BsCache; C:\Program Files\BullGuard Ltd\BullGuard\BsCache.dll [156496 2015-02-27] (BullGuard Ltd.)
R2 BsFileScan; c:\program files\bullguard ltd\bullguard\BsFileScan.dll [428368 2015-02-23] (BullGuard Ltd.)
R2 BsFire; c:\program files\bullguard ltd\bullguard\BsFire.dll [764752 2015-02-23] (BullGuard Ltd.)
R2 BsMailProxy; c:\program files\bullguard ltd\bullguard\BsMailProxy\BsMailProxy.dll [759632 2015-02-23] (BullGuard Ltd.)
R2 BsMain; C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll [553808 2015-02-23] (BullGuard Ltd.)
R2 BsScanner; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [280912 2015-02-27] (BullGuard Ltd.)
R2 BsUpdate; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [385360 2015-02-23] (BullGuard Ltd.)
R3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-19] (Microsoft Corporation)
S4 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-13] (CyberLink)
S4 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2635552 2015-01-30] (IObit)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-13] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186560 2015-01-31] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2012-09-07] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-01-26] (Razer Inc.)
S4 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S4 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604856 2015-02-12] (AVG Technologies)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44856 2015-02-12] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36664 2015-02-12] (AVG Technologies)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 ClickToRunSvc; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AFW; C:\Windows\system32\DRIVERS\afw.sys [41680 2014-09-07] (Agnitum Ltd.)
R3 afwcore; C:\Windows\system32\DRIVERS\afwcore.sys [469712 2014-09-07] (Agnitum Ltd.)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-18] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R1 BdAgent; C:\Windows\System32\DRIVERS\BdAgent.sys [117184 2014-05-15] (BullGuard Ltd.)
R3 BdNet; C:\Windows\system32\DRIVERS\BdNet.sys [34384 2014-03-19] (BullGuard Ltd.)
R1 BdSpy; C:\Windows\System32\drivers\BdSpy.sys [67680 2014-02-26] (BullGuard Ltd.)
S3 BioNTDrv; C:\Program Files\Paragon Software\Backup and Recovery 2014 Free\program\BioNTDrv.SYS [18696 2014-05-19] (Paragon Software Group)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131328 2014-11-19] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [32768 2014-11-19] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2015-01-30] (Motorola Solutions, Inc.)
S3 cpuz137; No ImagePath
U3 dtscsidrv; C:\Windows\System32\Drivers\dtscsidrv.sys [309248 2014-11-15] (Disc Soft Ltd)
S3 GPUZ; No ImagePath
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-30] (REALiX(tm))
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-01-30] (Intel Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew01.sys [3354384 2015-01-30] (Intel Corporation)
R1 NovaShieldFilterDriver; C:\Windows\System32\DRIVERS\NSKernel.sys [260824 2015-02-27] (BullGuard Ltd.)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-01-31] (Razer, Inc.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-19] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-11-29] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-11-14] (Duplex Secure Ltd.)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [350160 2014-02-26] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-08-28] (TuneUp Software)
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
R1 UimBus; C:\Windows\System32\drivers\UimBus.sys [102664 2014-05-19] ()
R1 Uim_DEVIM; C:\Windows\System32\drivers\uim_devim.sys [25992 2014-05-19] ()
R1 Uim_IM; C:\Windows\System32\drivers\uim_im.sys [700296 2014-05-19] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-28 19:00 - 2015-02-28 19:01 - 00019005 _____ () C:\Users\admin\Downloads\FRST.txt
2015-02-28 18:59 - 2015-02-28 19:00 - 00000000 ____D () C:\FRST
2015-02-28 18:58 - 2015-02-28 18:58 - 02087936 _____ (Farbar) C:\Users\admin\Downloads\FRST64.exe
2015-02-28 17:39 - 2015-02-28 17:39 - 00000512 _____ () C:\WINDOWS\system32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
2015-02-27 18:19 - 2015-02-28 17:37 - 00000298 _____ () C:\WINDOWS\Tasks\Uninstaller_SkipUac_admin.job
2015-02-27 18:19 - 2015-02-27 18:36 - 00002400 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_admin
2015-02-27 18:11 - 2015-02-27 18:12 - 00364443 _____ () C:\Users\admin\Downloads\MicrosoftFixit20101.mini.diagcab
2015-02-25 16:05 - 2015-02-27 17:39 - 00260824 _____ (BullGuard Ltd.) C:\WINDOWS\system32\Drivers\NSKernel.sys
2015-02-23 17:53 - 2015-02-23 17:53 - 00153712 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BgGamingMonitor.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00140280 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BgGamingMonitor.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00076624 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BGLsp.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00064336 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BGLsp.dll
2015-02-22 18:28 - 2015-02-22 18:29 - 00316416 _____ () C:\Users\admin\Downloads\updater.exe
2015-02-22 18:18 - 2015-02-22 18:18 - 03319548 _____ () C:\Users\admin\Downloads\forge-1.8-11.14.0.1295-1.8-installer-win.exe
2015-02-22 17:03 - 2015-02-22 17:03 - 00239191 _____ () C:\Users\admin\Downloads\RRe36's Shaders v7.zip
2015-02-22 16:38 - 2015-02-22 16:38 - 00001131 _____ () C:\Users\Public\Desktop\Craften Terminal.lnk
2015-02-22 16:37 - 2015-02-22 16:38 - 24581548 _____ (Craften.de ) C:\Users\admin\Downloads\craftenterminal.exe
2015-02-22 16:20 - 2015-02-28 17:37 - 00000770 _____ () C:\WINDOWS\setupact.log
2015-02-22 16:20 - 2015-02-28 17:36 - 00028524 _____ () C:\WINDOWS\PFRO.log
2015-02-22 16:20 - 2015-02-22 16:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-02-22 15:44 - 2015-02-22 15:45 - 10113386 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2771431-x64.msu
2015-02-22 15:39 - 2015-02-22 15:40 - 138370416 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x64 (1).msu.crdownload
2015-02-22 15:36 - 2015-02-22 15:38 - 170699203 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x64.msu
2015-02-22 15:35 - 2015-02-22 15:35 - 102182172 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x86 (1).msu
2015-02-22 15:31 - 2015-02-22 15:32 - 102182172 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x86.msu
2015-02-22 14:58 - 2015-02-22 14:58 - 00001274 _____ () C:\Users\Public\Desktop\Razer Cortex.lnk
2015-02-22 14:58 - 2015-01-31 01:08 - 00037184 _____ (Razer, Inc.) C:\WINDOWS\system32\Drivers\rzpmgrk.sys
2015-02-22 13:49 - 2015-02-22 18:28 - 00000000 ____D () C:\Users\admin\Downloads\SIDATA
2015-02-22 13:49 - 2015-02-22 13:49 - 00011704 _____ () C:\Users\admin\Downloads\WorldReset.jar
2015-02-22 13:49 - 2015-02-22 13:49 - 00000509 _____ () C:\Users\admin\Downloads\server.properties
2015-02-22 12:58 - 2015-02-22 16:26 - 00000000 ____D () C:\WINDOWS\pss
2015-02-21 11:18 - 2015-02-21 11:18 - 00001765 _____ () C:\Users\Public\Desktop\iTunes.lnk
2015-02-21 11:18 - 2015-02-21 11:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-02-21 11:17 - 2015-02-21 11:18 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-02-21 11:17 - 2015-02-21 11:18 - 00000000 ____D () C:\Program Files\iTunes
2015-02-21 11:17 - 2015-02-21 11:17 - 00000000 ____D () C:\Program Files\iPod
2015-02-21 11:17 - 2015-02-21 11:17 - 00000000 ____D () C:\Program Files (x86)\iTunes
2015-02-20 18:23 - 2015-02-20 18:23 - 00001031 _____ () C:\Users\Public\Desktop\MoonTools.lnk
2015-02-20 18:23 - 2015-02-20 18:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MoonTools
2015-02-20 18:23 - 2015-02-20 18:23 - 00000000 ____D () C:\Program Files (x86)\MoonTools
2015-02-20 18:22 - 2015-02-20 18:22 - 00569372 _____ (DotExE ) C:\Users\admin\Downloads\MoonTools.exe
2015-02-20 18:11 - 2015-02-20 18:11 - 00170454 _____ () C:\Users\admin\Downloads\xape.rar
2015-02-20 18:11 - 2015-02-20 18:11 - 00170454 _____ () C:\Users\admin\Desktop\xape.rar
2015-02-20 18:11 - 2015-02-20 18:11 - 00000000 ____D () C:\Users\admin\Desktop\xape
2015-02-17 18:46 - 2015-02-17 18:46 - 00897109 _____ () C:\Users\admin\Downloads\OptiFine_1.8.0_HD_U_D1.jar
2015-02-16 17:03 - 2015-02-27 18:02 - 00005138 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for YANNIS-NB-admin Yannis-NB
2015-02-16 15:07 - 2015-02-16 15:08 - 01959424 _____ (Mc-Interface) C:\Users\admin\Downloads\Server Interface 2015.exe
2015-02-15 13:52 - 2015-02-15 13:52 - 00144204 _____ () C:\Users\admin\Downloads\Bedwars.jar
2015-02-15 13:32 - 2015-02-15 13:32 - 00165409 _____ () C:\Users\admin\Downloads\ServerEssentials_.jar
2015-02-15 13:23 - 2015-02-15 13:30 - 00027445 _____ () C:\Users\admin\Downloads\AdminEssentials.jar
2015-02-15 11:07 - 2015-02-15 11:07 - 00340556 _____ () C:\Users\admin\Downloads\commandbook-2.4.zip
2015-02-15 11:03 - 2015-02-15 11:03 - 00013216 _____ () C:\Users\admin\Downloads\SHT2.jar
2015-02-15 11:02 - 2015-02-15 11:02 - 00227185 _____ () C:\Users\admin\Downloads\SurvivalGames.jar
2015-02-15 11:00 - 2015-02-15 11:01 - 00642910 _____ () C:\Users\admin\Downloads\ChestShop.jar
2015-02-15 11:00 - 2015-02-15 11:00 - 00131877 _____ () C:\Users\admin\Downloads\HeroChat.jar
2015-02-15 10:57 - 2015-02-15 10:58 - 00121405 _____ () C:\Users\admin\Downloads\bPermissions-2.10.9m.jar
2015-02-14 14:37 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-02-14 14:37 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-14 12:07 - 2015-02-14 12:07 - 00000850 _____ () C:\Users\admin\Downloads\permissions.yml
2015-02-14 11:40 - 2015-02-14 11:41 - 00723264 _____ () C:\Users\admin\Downloads\PermissionsEx-1.22.7.jar
2015-02-14 11:20 - 2015-02-14 11:20 - 01751040 _____ (Mc-Interface) C:\Users\admin\Downloads\Server Manager.exe
2015-02-14 11:15 - 2015-02-14 11:15 - 07903505 _____ () C:\Users\admin\Downloads\minecraft_server.1.8.1.jar
2015-02-14 11:11 - 2015-02-14 11:11 - 02742070 _____ () C:\Users\admin\Downloads\MinecraftServerLauncher (1).rar
2015-02-14 11:05 - 2015-02-14 11:05 - 01078825 _____ () C:\Users\admin\Downloads\SpigotPatcher4.jar
2015-02-14 11:04 - 2015-02-14 11:04 - 19711027 _____ () C:\Users\admin\Downloads\spigot_server.jar
2015-02-14 10:50 - 2015-02-14 10:50 - 00058087 _____ () C:\Users\admin\Downloads\MC ServerVille (1.2.0).jar
2015-02-14 10:46 - 2015-02-14 10:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-02-14 10:44 - 2015-02-14 10:44 - 00911178 _____ () C:\Users\admin\Downloads\MinecraftServerLauncher.rar
2015-02-14 10:42 - 2015-02-28 17:36 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-02-14 10:42 - 2015-02-14 10:42 - 01066176 _____ (Microsoft Corporation) C:\Users\admin\Downloads\Setup.X86.de-DE_O365HomePremRetail_151f5233-64d7-4946-a9d6-bd1f63973836_TX_DB_.exe
2015-02-13 19:42 - 2015-02-12 17:39 - 00044856 _____ (AVG Technologies) C:\WINDOWS\system32\uxtuneup.dll
2015-02-13 19:42 - 2015-02-12 17:39 - 00036664 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\uxtuneup.dll
2015-02-13 19:42 - 2015-02-12 17:39 - 00030520 _____ (AVG Technologies) C:\WINDOWS\system32\authuitu.dll
2015-02-13 19:42 - 2015-02-12 17:39 - 00025912 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\authuitu.dll
2015-02-11 15:47 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 15:47 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 15:47 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 15:47 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 15:47 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-02-11 15:47 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-11 15:47 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-02-11 15:47 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-02-11 15:47 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-02-11 15:47 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-02-11 15:47 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-02-11 15:47 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-02-11 15:47 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-02-11 15:47 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-02-11 15:47 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-02-11 15:47 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-02-11 15:47 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-02-11 15:47 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-02-11 15:47 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-02-11 15:47 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-02-11 15:47 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-02-11 15:47 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-02-11 15:47 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-02-11 15:47 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-02-11 15:47 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-11 15:47 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-02-11 15:47 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-02-11 15:47 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-02-11 15:47 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-02-11 15:47 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-02-11 15:47 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-02-11 15:47 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-02-11 15:47 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-02-11 15:47 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-11 15:47 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-02-11 15:47 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-02-11 15:47 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-02-11 15:47 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-02-11 15:47 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-02-11 15:47 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-02-11 15:47 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-02-11 15:47 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-02-11 15:47 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-11 15:47 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-02-11 15:47 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-02-11 15:47 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 15:47 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 15:47 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 15:47 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 15:47 - 2014-12-09 00:12 - 00391526 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-02-11 15:46 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 15:46 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-02-10 18:40 - 2015-02-10 18:40 - 00000059 _____ () C:\Users\admin\Desktop\rechtschreibpruefung24.de • Kostenlos Rechtschreibung und Grammatik prüfen.url
2015-02-09 18:07 - 2015-02-03 20:31 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-02-09 18:07 - 2015-02-03 20:31 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-07 10:39 - 2015-02-28 18:44 - 00001138 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-07 10:39 - 2015-02-28 17:39 - 00001134 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-01 20:10 - 2015-02-01 20:10 - 04603248 _____ () C:\Users\admin\Desktop\TechnicLauncher.exe
2015-02-01 18:20 - 2015-02-01 18:20 - 00000706 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2015-01-30 10:17 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-01-30 10:17 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-01-30 09:46 - 2015-01-30 09:46 - 00000000 ____D () C:\f84ec8345ba3ea218d
2015-01-30 09:46 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-30 09:46 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-30 09:45 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-30 09:45 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-30 09:43 - 2015-01-30 09:43 - 00272600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2015-01-30 09:35 - 2015-01-30 09:35 - 08108584 _____ () C:\WINDOWS\system32\Drivers\Netwfw01.dat
2015-01-30 09:35 - 2015-01-30 09:35 - 03354384 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwew01.sys
2015-01-30 09:33 - 2015-01-30 09:33 - 71040000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-01-30 09:33 - 2015-01-30 09:33 - 05804772 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-01-30 09:33 - 2015-01-30 09:33 - 04263128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-01-30 09:33 - 2015-01-30 09:33 - 03186544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 02860760 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 02827120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 01443340 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-01-30 09:33 - 2015-01-30 09:33 - 01287384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00959704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00629464 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-01-30 09:31 - 2015-01-30 09:31 - 00129312 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2015-01-30 09:30 - 2015-01-30 09:30 - 00874712 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2015-01-30 09:30 - 2015-01-30 09:30 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-30 09:30 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-30 09:30 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-30 09:30 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-30 09:30 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-30 09:24 - 2015-01-30 09:24 - 01721216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2015-01-30 09:24 - 2015-01-30 09:24 - 01424184 _____ (Motorola Solutions, Inc.) C:\WINDOWS\system32\Drivers\btmhsf.sys
2015-01-30 09:20 - 2015-01-30 09:53 - 00003216 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan
2015-01-30 09:20 - 2015-01-30 09:53 - 00003160 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update
2015-01-30 09:20 - 2015-01-30 09:53 - 00002856 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (admin)
2015-01-30 09:20 - 2015-01-30 09:20 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-01-30 09:20 - 2015-01-30 09:20 - 00001278 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-28 19:01 - 2014-09-07 10:35 - 00000000 ____D () C:\ProgramData\BullGuard
2015-02-28 19:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-02-28 18:21 - 2014-10-11 09:25 - 00003934 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ABD14460-EF79-4800-AB81-FF8583620032}
2015-02-28 18:18 - 2014-09-20 17:01 - 00000000 ____D () C:\Users\admin\AppData\Roaming\.minecraft
2015-02-28 18:03 - 2014-09-02 19:42 - 01265071 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-28 17:39 - 2014-11-01 11:17 - 00019677 ____H () C:\Users\Public\Documents\bootracer.log
2015-02-28 17:39 - 2014-10-24 13:26 - 00000683 ____H () C:\Users\Public\Documents\bootracer.ini
2015-02-28 17:39 - 2014-09-21 09:35 - 00000000 ___RD () C:\Users\admin\OneDrive
2015-02-28 17:37 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-27 19:26 - 2014-09-07 13:09 - 00403196 _____ () C:\WINDOWS\system32\config\afw_db.conf
2015-02-27 19:26 - 2014-09-07 13:09 - 00000532 _____ () C:\WINDOWS\system32\config\afw_hm.conf
2015-02-27 19:26 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-02-27 19:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-27 18:31 - 2014-09-20 15:32 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3112673566-2443552264-417852688-1005
2015-02-27 17:47 - 2014-10-02 10:36 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Craften Terminal
2015-02-22 19:43 - 2014-09-20 15:26 - 00000000 ____D () C:\Users\admin
2015-02-22 16:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-02-22 16:38 - 2014-09-01 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Craften Terminal
2015-02-22 16:38 - 2014-09-01 15:44 - 00000000 ____D () C:\Program Files (x86)\Craften Terminal
2015-02-22 16:14 - 2014-10-25 15:18 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Skype
2015-02-22 15:42 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-02-22 13:50 - 2015-01-23 15:30 - 00000000 ____D () C:\Users\admin\Desktop\Minecraft server
2015-02-21 11:17 - 2014-08-31 18:55 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-02-20 19:43 - 2014-09-12 15:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-02-20 19:38 - 2014-09-20 15:46 - 00000000 ___RD () C:\Users\admin\Desktop\tuning
2015-02-20 17:49 - 2014-10-22 16:07 - 00002197 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-17 18:48 - 2014-12-27 20:45 - 00000000 ____D () C:\Users\admin\AppData\Roaming\TS3Client
2015-02-17 14:18 - 2014-12-27 15:45 - 00000000 ____D () C:\WINDOWS\SysWOW64\DCS
2015-02-16 17:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-02-16 14:59 - 2014-11-20 16:57 - 00492472 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-14 11:20 - 2015-01-23 15:23 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Mc-Interface
2015-02-13 18:29 - 2014-09-03 08:35 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-13 18:21 - 2014-09-03 08:35 - 116773704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-12 17:39 - 2014-09-12 20:55 - 00041784 _____ (AVG Technologies) C:\WINDOWS\system32\TURegOpt.exe
2015-02-07 10:39 - 2014-10-22 16:06 - 00004110 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-07 10:39 - 2014-10-22 16:06 - 00003874 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-06 18:07 - 2014-10-12 12:03 - 00043520 _____ () C:\WINDOWS\SysWOW64\CmdLineExt03.dll
2015-02-01 20:09 - 2014-12-29 11:54 - 00000000 ____D () C:\Users\admin\AppData\Roaming\.technic
2015-01-30 09:47 - 2014-03-18 11:03 - 01823422 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-30 09:47 - 2014-03-18 10:25 - 00788474 _____ () C:\WINDOWS\system32\perfh007.dat
2015-01-30 09:47 - 2014-03-18 10:25 - 00166086 _____ () C:\WINDOWS\system32\perfc007.dat
2015-01-30 09:35 - 2014-09-02 19:21 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2015-01-30 09:20 - 2014-11-29 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-01-30 09:20 - 2014-09-20 15:29 - 00000000 ____D () C:\Users\admin\AppData\Roaming\IObit
2015-01-30 09:19 - 2014-08-31 18:08 - 00000000 ____D () C:\ProgramData\ProductData
2015-01-30 09:08 - 2014-09-12 15:31 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

==================== Files in the root of some directories =======

2014-10-19 18:34 - 2014-10-19 18:34 - 0000017 _____ () C:\Users\admin\AppData\Local\resmon.resmoncfg
2014-09-02 19:21 - 2014-09-02 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1158944541474046759.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1221275453917134109.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1937122953553512062.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-2741950927697001228.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3635781356779355688.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3636249024984032712.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3679400468332001726.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4378473335793077020.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4384506923180519002.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4991806641530326345.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5319087848509179804.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5667584316821192027.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5839675717742508645.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5863565428377481144.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5955251507403825809.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-6816446968278476918.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-6992683639557725448.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-711204296612003551.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-7587475947637124764.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-9157336193915010703.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-27 18:31

==================== End Of Log ============================

--- --- ---

schrauber · 01.03.2015, 09:13

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Yoloo · 01.03.2015, 11:18

Also jetzt kommt ADWCleane

Code:

ATTFilter

# AdwCleaner v4.111 - Bericht erstellt 01/03/2015 um 10:34:16
# Aktualisiert 18/02/2015 von Xplode
# Datenbank : 2015-02-18.3 [Server]
# Betriebssystem : Windows 8.1  (x64)
# Benutzername : admin - YANNIS-NB
# Gestarted von : C:\Users\admin\Downloads\adwcleaner_4.111.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MoonTools
Ordner Gelöscht : C:\Program Files (x86)\MoonTools
Ordner Gelöscht : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl
Datei Gelöscht : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\user.js

***** [ Geplante Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{61946000-8054-4452-B5F9-719D35D899D8}_is1
Daten Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>

***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v


-\\ Google Chrome v40.0.2214.115


*************************

AdwCleaner[R0].txt - [1467 Bytes] - [01/03/2015 10:34:04]
AdwCleaner[S0].txt - [1343 Bytes] - [01/03/2015 10:34:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1402  Bytes] ##########

Und dann mbam

Code:

ATTFilter

alwarebytes Anti-Malware
www.malwarebytes.org


Protection, 01.03.2015 10:39:36, SYSTEM, YANNIS-NB, Protection, Malware Protection, Starting, 
Protection, 01.03.2015 10:39:36, SYSTEM, YANNIS-NB, Protection, Malware Protection, Started, 
Protection, 01.03.2015 10:39:36, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Starting, 
Protection, 01.03.2015 10:39:37, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Started, 
Update, 01.03.2015 10:39:41, SYSTEM, YANNIS-NB, Manual, Remediation Database, 2013.10.16.1, 2014.12.6.1, 
Update, 01.03.2015 10:39:41, SYSTEM, YANNIS-NB, Manual, Rootkit Database, 2014.11.18.1, 2015.2.25.1, 
Update, 01.03.2015 10:39:43, SYSTEM, YANNIS-NB, Manual, Malware Database, 2014.11.20.6, 2015.3.1.1, 
Protection, 01.03.2015 10:39:43, SYSTEM, YANNIS-NB, Protection, Refresh, Starting, 
Protection, 01.03.2015 10:39:43, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Stopping, 
Protection, 01.03.2015 10:39:43, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Stopped, 
Protection, 01.03.2015 10:39:48, SYSTEM, YANNIS-NB, Protection, Refresh, Success, 
Protection, 01.03.2015 10:39:48, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Starting, 
Protection, 01.03.2015 10:39:49, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Started, 
Scan, 01.03.2015 11:03:01, SYSTEM, YANNIS-NB, Manual, Start: % 1 "% 2", Dauer: % 1 min 22 Sekunden, Bedrohungs-Suchlauf, Abgeschlossen, 4 Malwareerkennung, 0-Malwareerkennung, 
Protection, 01.03.2015 11:04:28, SYSTEM, YANNIS-NB, Protection, Malware Protection, Starting, 
Protection, 01.03.2015 11:04:29, SYSTEM, YANNIS-NB, Protection, Malware Protection, Started, 
Protection, 01.03.2015 11:04:29, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Starting, 
Protection, 01.03.2015 11:05:04, SYSTEM, YANNIS-NB, Protection, Malicious Website Protection, Started, 

(end)

Und dann JRT

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.2 (02.02.2015:1)
OS: Windows 8.1 x64
Ran by admin on 01.03.2015 at 11:07:22,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01.03.2015 at 11:10:45,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Hoffentlich kannst du damit was anfangen . mfg Yoloo

schrauber · 01.03.2015, 16:17

Das frische FRST log fehlt noch. Wie lange dauert der Boot?

Yoloo · 01.03.2015, 18:25

Der Boot dauert etwa 2 Minuten

Wenn das Video net geht dann drücke hier hxxp://youtu.be/otp67O55I-4

Hier ist FRST
FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-02-2015
Ran by admin (administrator) on YANNIS-NB on 01-03-2015 18:18:21
Running from C:\Users\admin\Desktop
Loaded Profiles: admin (Available profiles: admin & Gast)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\main.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\LittleHook.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Apple Inc.) C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-30] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2015-01-30] (Realtek Semiconductor)
HKLM\...\Run: [BullGuard] => C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [1360208 2015-02-23] (BullGuard Ltd.)
HKLM\...\Run: [BullGuardUpdate2] => c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2935120 2015-02-23] (BullGuard Ltd.)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1140688 2015-01-16] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [YouCam Service] => c:\program files (x86)\cyberlink\youcam\youcamservice.exe [258576 2012-07-30] (CyberLink Corp.)
HKLM-x32\...\Run: [AppLauncher] => c:\program files (x86)\medion mediapack 3\ashampoo applauncher (medion)\applauncher.exe [969656 2012-08-10] (Ashampoo)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [98256 2015-01-26] (Razer Inc.)
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\Bootrace.exe [3843344 2014-04-23] ( (Greatis Software))
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\MountPoints2: E - "E:\zdata\cobi.exe" 
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\MountPoints2: {813773ef-312d-11e4-be66-806e6f6e6963} - "E:\autorun.exe" 
HKU\S-1-5-18\...\Run: [Advanced SystemCare 7] => "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
IFEO\bootrace.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\effectextractor.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mediaespresso.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\origin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\pdvdlaunchpolicy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerdvdcopy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ps.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\psi.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\youcam.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  No File
ShellIconOverlayIdentifiers: [BackupOverlayErr] -> {8749448C-D907-45BF-A842-4D3898894AC8} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlayInProgress] -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlaySynced] -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->  No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} ->  No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default
FF NetworkProxy: "ftp", "185.49.15.25"
FF NetworkProxy: "ftp_port", 7808
FF NetworkProxy: "http", " 	202.77.124.91 "
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "no_proxies_on", "localhost"
FF NetworkProxy: "socks", "185.49.15.25"
FF NetworkProxy: "socks_port", 7808
FF NetworkProxy: "ssl", "185.49.15.25"
FF NetworkProxy: "ssl_port", 7808
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Extension: Ghostery - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\firefox@ghostery.com.xpi [2014-10-19]
FF Extension: Webutation - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2014-10-05]
FF Extension: Adblock Plus - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\egmqrlrj.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-19]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome: 
=======
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-22]
CHR Extension: (Google Docs) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-22]
CHR Extension: (Google Drive) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-22]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-22]
CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-22]
CHR Extension: (Adblock Plus) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-23]
CHR Extension: (Google Search) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-22]
CHR Extension: (Google Wallet) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-22]
CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-22]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [865744 2015-01-16] (AVG Technologies CZ, s.r.o.)
S4 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
R2 BsBackup; C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll [850768 2015-02-23] (BullGuard Ltd.)
R2 BsBhvScan; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [601424 2015-02-27] (BullGuard Ltd.)
R2 BsCache; C:\Program Files\BullGuard Ltd\BullGuard\BsCache.dll [156496 2015-02-27] (BullGuard Ltd.)
R2 BsFileScan; c:\program files\bullguard ltd\bullguard\BsFileScan.dll [428368 2015-02-23] (BullGuard Ltd.)
R2 BsFire; c:\program files\bullguard ltd\bullguard\BsFire.dll [764752 2015-02-23] (BullGuard Ltd.)
R2 BsMailProxy; c:\program files\bullguard ltd\bullguard\BsMailProxy\BsMailProxy.dll [759632 2015-02-23] (BullGuard Ltd.)
R2 BsMain; C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll [553808 2015-02-23] (BullGuard Ltd.)
R2 BsScanner; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [280912 2015-02-27] (BullGuard Ltd.)
R2 BsUpdate; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [385360 2015-02-23] (BullGuard Ltd.)
R3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-19] (Microsoft Corporation)
S4 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-13] (CyberLink)
S4 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2635552 2015-01-30] (IObit)
S4 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-13] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186560 2015-01-31] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2012-09-07] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-01-26] (Razer Inc.)
S4 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S4 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604856 2015-02-25] (AVG Technologies)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44856 2015-02-25] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36664 2015-02-25] (AVG Technologies)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 ClickToRunSvc; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AFW; C:\Windows\system32\DRIVERS\afw.sys [41680 2014-09-07] (Agnitum Ltd.)
R3 afwcore; C:\Windows\system32\DRIVERS\afwcore.sys [469712 2014-09-07] (Agnitum Ltd.)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-18] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R1 BdAgent; C:\Windows\System32\DRIVERS\BdAgent.sys [117184 2014-05-15] (BullGuard Ltd.)
R3 BdNet; C:\Windows\system32\DRIVERS\BdNet.sys [34384 2014-03-19] (BullGuard Ltd.)
R1 BdSpy; C:\Windows\System32\drivers\BdSpy.sys [67680 2014-02-26] (BullGuard Ltd.)
S3 BioNTDrv; C:\Program Files\Paragon Software\Backup and Recovery 2014 Free\program\BioNTDrv.SYS [18696 2014-05-19] (Paragon Software Group)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131328 2014-11-19] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [32768 2014-11-19] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2015-01-30] (Motorola Solutions, Inc.)
S3 cpuz137; No ImagePath
U3 dtscsidrv; C:\Windows\System32\Drivers\dtscsidrv.sys [309248 2014-11-15] (Disc Soft Ltd)
S3 GPUZ; No ImagePath
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-30] (REALiX(tm))
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-01-30] (Intel Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew01.sys [3354384 2015-01-30] (Intel Corporation)
R1 NovaShieldFilterDriver; C:\Windows\System32\DRIVERS\NSKernel.sys [260824 2015-02-27] (BullGuard Ltd.)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-01-31] (Razer, Inc.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-19] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-11-29] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-11-14] (Duplex Secure Ltd.)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [350160 2014-02-26] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-08-28] (TuneUp Software)
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
R1 UimBus; C:\Windows\System32\drivers\UimBus.sys [102664 2014-05-19] ()
R1 Uim_DEVIM; C:\Windows\System32\drivers\uim_devim.sys [25992 2014-05-19] ()
R1 Uim_IM; C:\Windows\System32\drivers\uim_im.sys [700296 2014-05-19] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-01 18:18 - 2015-03-01 18:18 - 02092544 _____ (Farbar) C:\Users\admin\Desktop\FRST64.exe
2015-03-01 18:18 - 2015-03-01 18:18 - 00018756 _____ () C:\Users\admin\Desktop\FRST.txt
2015-03-01 18:18 - 2015-03-01 18:18 - 00000000 ____D () C:\Users\admin\Desktop\FRST-OlderVersion
2015-03-01 18:16 - 2015-03-01 18:16 - 00000512 _____ () C:\WINDOWS\system32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
2015-03-01 11:27 - 2015-02-25 09:24 - 00044856 _____ (AVG Technologies) C:\WINDOWS\system32\uxtuneup.dll
2015-03-01 11:27 - 2015-02-25 09:24 - 00036664 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\uxtuneup.dll
2015-03-01 11:27 - 2015-02-25 09:24 - 00030520 _____ (AVG Technologies) C:\WINDOWS\system32\authuitu.dll
2015-03-01 11:27 - 2015-02-25 09:24 - 00025912 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\authuitu.dll
2015-03-01 11:20 - 2015-03-01 11:22 - 00000298 _____ () C:\WINDOWS\Tasks\Uninstaller_SkipUac_admin.job
2015-03-01 11:20 - 2015-03-01 11:20 - 00002398 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_admin
2015-03-01 11:10 - 2015-03-01 11:10 - 00000614 _____ () C:\Users\admin\Desktop\JRT.txt
2015-03-01 11:06 - 2015-03-01 11:06 - 00001945 _____ () C:\Users\admin\Desktop\mbam.txt
2015-03-01 10:39 - 2015-03-01 10:39 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-03-01 10:39 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-03-01 10:39 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-03-01 10:39 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-03-01 10:34 - 2015-03-01 10:34 - 00001482 _____ () C:\Users\admin\Desktop\AdwCleaner[S0].txt
2015-03-01 10:34 - 2015-03-01 10:34 - 00001467 _____ () C:\Users\admin\Desktop\AdwCleaner[R0].txt
2015-03-01 10:32 - 2015-03-01 10:42 - 00000000 ____D () C:\AdwCleaner
2015-03-01 10:30 - 2015-03-01 10:30 - 02126848 _____ () C:\Users\admin\Downloads\adwcleaner_4.111.exe
2015-02-28 19:23 - 2015-02-28 19:23 - 00000000 ____D () C:\Users\admin\AppData\Local\Steam
2015-02-28 19:04 - 2015-02-28 19:04 - 00033640 _____ () C:\Users\admin\Downloads\Addition.txt
2015-02-28 19:00 - 2015-02-28 19:04 - 00046055 _____ () C:\Users\admin\Downloads\FRST.txt
2015-02-28 18:59 - 2015-03-01 18:18 - 00000000 ____D () C:\FRST
2015-02-27 18:11 - 2015-02-27 18:12 - 00364443 _____ () C:\Users\admin\Downloads\MicrosoftFixit20101.mini.diagcab
2015-02-25 16:05 - 2015-02-27 17:39 - 00260824 _____ (BullGuard Ltd.) C:\WINDOWS\system32\Drivers\NSKernel.sys
2015-02-23 17:53 - 2015-02-23 17:53 - 00153712 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BgGamingMonitor.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00140280 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BgGamingMonitor.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00076624 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BGLsp.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00064336 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BGLsp.dll
2015-02-22 18:18 - 2015-02-22 18:18 - 03319548 _____ () C:\Users\admin\Downloads\forge-1.8-11.14.0.1295-1.8-installer-win.exe
2015-02-22 17:03 - 2015-02-22 17:03 - 00239191 _____ () C:\Users\admin\Downloads\RRe36's Shaders v7.zip
2015-02-22 16:38 - 2015-02-22 16:38 - 00001131 _____ () C:\Users\Public\Desktop\Craften Terminal.lnk
2015-02-22 16:37 - 2015-02-22 16:38 - 24581548 _____ (Craften.de ) C:\Users\admin\Downloads\craftenterminal.exe
2015-02-22 16:20 - 2015-03-01 18:13 - 00001155 _____ () C:\WINDOWS\setupact.log
2015-02-22 16:20 - 2015-03-01 11:12 - 00029238 _____ () C:\WINDOWS\PFRO.log
2015-02-22 16:20 - 2015-02-22 16:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-02-22 15:44 - 2015-02-22 15:45 - 10113386 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2771431-x64.msu
2015-02-22 15:39 - 2015-02-22 15:40 - 138370416 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x64 (1).msu.crdownload
2015-02-22 15:36 - 2015-02-22 15:38 - 170699203 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x64.msu
2015-02-22 15:35 - 2015-02-22 15:35 - 102182172 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x86 (1).msu
2015-02-22 15:31 - 2015-02-22 15:32 - 102182172 _____ () C:\Users\admin\Downloads\Windows8-RT-KB2756872-x86.msu
2015-02-22 14:58 - 2015-02-22 14:58 - 00001274 _____ () C:\Users\Public\Desktop\Razer Cortex.lnk
2015-02-22 14:58 - 2015-01-31 01:08 - 00037184 _____ (Razer, Inc.) C:\WINDOWS\system32\Drivers\rzpmgrk.sys
2015-02-22 13:49 - 2015-02-22 18:28 - 00000000 ____D () C:\Users\admin\Downloads\SIDATA
2015-02-22 13:49 - 2015-02-22 13:49 - 00011704 _____ () C:\Users\admin\Downloads\WorldReset.jar
2015-02-22 13:49 - 2015-02-22 13:49 - 00000509 _____ () C:\Users\admin\Downloads\server.properties
2015-02-22 12:58 - 2015-02-22 16:26 - 00000000 ____D () C:\WINDOWS\pss
2015-02-21 11:18 - 2015-02-21 11:18 - 00001765 _____ () C:\Users\Public\Desktop\iTunes.lnk
2015-02-21 11:18 - 2015-02-21 11:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-02-21 11:17 - 2015-02-21 11:18 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-02-21 11:17 - 2015-02-21 11:18 - 00000000 ____D () C:\Program Files\iTunes
2015-02-21 11:17 - 2015-02-21 11:17 - 00000000 ____D () C:\Program Files\iPod
2015-02-21 11:17 - 2015-02-21 11:17 - 00000000 ____D () C:\Program Files (x86)\iTunes
2015-02-20 18:23 - 2015-02-20 18:23 - 00001031 _____ () C:\Users\Public\Desktop\MoonTools.lnk
2015-02-20 18:22 - 2015-02-20 18:22 - 00569372 _____ (DotExE ) C:\Users\admin\Downloads\MoonTools.exe
2015-02-20 18:11 - 2015-02-20 18:11 - 00170454 _____ () C:\Users\admin\Downloads\xape.rar
2015-02-20 18:11 - 2015-02-20 18:11 - 00170454 _____ () C:\Users\admin\Desktop\xape.rar
2015-02-20 18:11 - 2015-02-20 18:11 - 00000000 ____D () C:\Users\admin\Desktop\xape
2015-02-17 18:46 - 2015-02-17 18:46 - 00897109 _____ () C:\Users\admin\Downloads\OptiFine_1.8.0_HD_U_D1.jar
2015-02-16 17:03 - 2015-02-27 18:02 - 00005138 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for YANNIS-NB-admin Yannis-NB
2015-02-16 15:07 - 2015-02-16 15:08 - 01959424 _____ (Mc-Interface) C:\Users\admin\Downloads\Server Interface 2015.exe
2015-02-15 13:52 - 2015-02-15 13:52 - 00144204 _____ () C:\Users\admin\Downloads\Bedwars.jar
2015-02-15 13:32 - 2015-02-15 13:32 - 00165409 _____ () C:\Users\admin\Downloads\ServerEssentials_.jar
2015-02-15 13:23 - 2015-02-15 13:30 - 00027445 _____ () C:\Users\admin\Downloads\AdminEssentials.jar
2015-02-15 11:07 - 2015-02-15 11:07 - 00340556 _____ () C:\Users\admin\Downloads\commandbook-2.4.zip
2015-02-15 11:03 - 2015-02-15 11:03 - 00013216 _____ () C:\Users\admin\Downloads\SHT2.jar
2015-02-15 11:02 - 2015-02-15 11:02 - 00227185 _____ () C:\Users\admin\Downloads\SurvivalGames.jar
2015-02-15 11:00 - 2015-02-15 11:01 - 00642910 _____ () C:\Users\admin\Downloads\ChestShop.jar
2015-02-15 11:00 - 2015-02-15 11:00 - 00131877 _____ () C:\Users\admin\Downloads\HeroChat.jar
2015-02-15 10:57 - 2015-02-15 10:58 - 00121405 _____ () C:\Users\admin\Downloads\bPermissions-2.10.9m.jar
2015-02-14 14:37 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-02-14 14:37 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-14 12:07 - 2015-02-14 12:07 - 00000850 _____ () C:\Users\admin\Downloads\permissions.yml
2015-02-14 11:40 - 2015-02-14 11:41 - 00723264 _____ () C:\Users\admin\Downloads\PermissionsEx-1.22.7.jar
2015-02-14 11:20 - 2015-02-14 11:20 - 01751040 _____ (Mc-Interface) C:\Users\admin\Downloads\Server Manager.exe
2015-02-14 11:15 - 2015-02-14 11:15 - 07903505 _____ () C:\Users\admin\Downloads\minecraft_server.1.8.1.jar
2015-02-14 11:11 - 2015-02-14 11:11 - 02742070 _____ () C:\Users\admin\Downloads\MinecraftServerLauncher (1).rar
2015-02-14 11:05 - 2015-02-14 11:05 - 01078825 _____ () C:\Users\admin\Downloads\SpigotPatcher4.jar
2015-02-14 11:04 - 2015-02-14 11:04 - 19711027 _____ () C:\Users\admin\Downloads\spigot_server.jar
2015-02-14 10:50 - 2015-02-14 10:50 - 00058087 _____ () C:\Users\admin\Downloads\MC ServerVille (1.2.0).jar
2015-02-14 10:46 - 2015-02-14 10:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-02-14 10:44 - 2015-02-14 10:44 - 00911178 _____ () C:\Users\admin\Downloads\MinecraftServerLauncher.rar
2015-02-14 10:42 - 2015-02-28 17:36 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-02-14 10:42 - 2015-02-14 10:42 - 01066176 _____ (Microsoft Corporation) C:\Users\admin\Downloads\Setup.X86.de-DE_O365HomePremRetail_151f5233-64d7-4946-a9d6-bd1f63973836_TX_DB_.exe
2015-02-11 15:47 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 15:47 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 15:47 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 15:47 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 15:47 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-02-11 15:47 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-11 15:47 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-02-11 15:47 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-02-11 15:47 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-02-11 15:47 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-02-11 15:47 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-02-11 15:47 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-02-11 15:47 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-02-11 15:47 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-02-11 15:47 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-02-11 15:47 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-02-11 15:47 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-02-11 15:47 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-02-11 15:47 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-02-11 15:47 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-02-11 15:47 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-02-11 15:47 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-02-11 15:47 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-02-11 15:47 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-02-11 15:47 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-11 15:47 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-02-11 15:47 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-02-11 15:47 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-02-11 15:47 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-02-11 15:47 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-02-11 15:47 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-02-11 15:47 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-02-11 15:47 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-02-11 15:47 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-11 15:47 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-02-11 15:47 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-02-11 15:47 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-02-11 15:47 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-02-11 15:47 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-02-11 15:47 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-02-11 15:47 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-02-11 15:47 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-02-11 15:47 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-11 15:47 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-02-11 15:47 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-02-11 15:47 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 15:47 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 15:47 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 15:47 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 15:47 - 2014-12-09 00:12 - 00391526 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-02-11 15:46 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 15:46 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-02-10 18:40 - 2015-02-10 18:40 - 00000059 _____ () C:\Users\admin\Desktop\rechtschreibpruefung24.de • Kostenlos Rechtschreibung und Grammatik prüfen.url
2015-02-09 18:07 - 2015-02-03 20:31 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-02-09 18:07 - 2015-02-03 20:31 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-07 10:39 - 2015-03-01 18:16 - 00001134 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-07 10:39 - 2015-03-01 10:44 - 00001138 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-01 20:10 - 2015-02-01 20:10 - 04603248 _____ () C:\Users\admin\Desktop\TechnicLauncher.exe
2015-02-01 18:20 - 2015-02-01 18:20 - 00000706 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2015-01-30 10:17 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-01-30 10:17 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-01-30 09:46 - 2015-01-30 09:46 - 00000000 ____D () C:\f84ec8345ba3ea218d
2015-01-30 09:46 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-30 09:46 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-30 09:45 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-30 09:45 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-30 09:43 - 2015-01-30 09:43 - 00272600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2015-01-30 09:35 - 2015-01-30 09:35 - 08108584 _____ () C:\WINDOWS\system32\Drivers\Netwfw01.dat
2015-01-30 09:35 - 2015-01-30 09:35 - 03354384 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwew01.sys
2015-01-30 09:33 - 2015-01-30 09:33 - 71040000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-01-30 09:33 - 2015-01-30 09:33 - 05804772 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-01-30 09:33 - 2015-01-30 09:33 - 04263128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-01-30 09:33 - 2015-01-30 09:33 - 03186544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 02860760 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 02827120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 01443340 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-01-30 09:33 - 2015-01-30 09:33 - 01287384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00959704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00629464 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-01-30 09:33 - 2015-01-30 09:33 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-01-30 09:31 - 2015-01-30 09:31 - 00129312 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2015-01-30 09:30 - 2015-01-30 09:30 - 00874712 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2015-01-30 09:30 - 2015-01-30 09:30 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-30 09:30 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-30 09:30 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-30 09:30 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-30 09:30 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-30 09:30 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-30 09:24 - 2015-01-30 09:24 - 01721216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2015-01-30 09:24 - 2015-01-30 09:24 - 01424184 _____ (Motorola Solutions, Inc.) C:\WINDOWS\system32\Drivers\btmhsf.sys
2015-01-30 09:20 - 2015-03-01 11:21 - 00002854 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (admin)
2015-01-30 09:20 - 2015-03-01 11:20 - 00003214 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan
2015-01-30 09:20 - 2015-03-01 11:20 - 00003158 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update
2015-01-30 09:20 - 2015-01-30 09:20 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-01-30 09:20 - 2015-01-30 09:20 - 00001278 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-01 18:15 - 2014-11-01 11:17 - 00020377 ____H () C:\Users\Public\Documents\bootracer.log
2015-03-01 18:15 - 2014-10-24 13:26 - 00000683 ____H () C:\Users\Public\Documents\bootracer.ini
2015-03-01 18:15 - 2014-09-21 09:35 - 00000000 ___RD () C:\Users\admin\OneDrive
2015-03-01 18:14 - 2014-09-07 10:35 - 00000000 ____D () C:\ProgramData\BullGuard
2015-03-01 18:13 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-01 11:31 - 2014-11-29 09:47 - 00000000 ____D () C:\ProgramData\DAEMON Tools Pro
2015-03-01 11:31 - 2014-11-29 09:42 - 00000000 ____D () C:\Users\admin\AppData\Roaming\DAEMON Tools Pro
2015-03-01 11:31 - 2014-09-07 13:09 - 00401896 _____ () C:\WINDOWS\system32\config\afw_db.conf
2015-03-01 11:31 - 2014-09-07 13:09 - 00000532 _____ () C:\WINDOWS\system32\config\afw_hm.conf
2015-03-01 11:29 - 2014-09-02 19:42 - 01292605 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-01 11:25 - 2014-12-27 20:45 - 00000000 ____D () C:\Users\admin\AppData\Roaming\TS3Client
2015-03-01 11:25 - 2014-09-20 15:32 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3112673566-2443552264-417852688-1005
2015-03-01 11:21 - 2014-08-31 18:08 - 00000000 ____D () C:\ProgramData\ProductData
2015-03-01 11:19 - 2014-09-20 15:46 - 00000000 ___RD () C:\Users\admin\Desktop\tuning
2015-03-01 11:19 - 2014-09-12 15:31 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-01 11:11 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-03-01 11:03 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\L2Schemas
2015-03-01 11:02 - 2015-01-24 17:30 - 00000000 ____D () C:\Users\TEMP
2015-03-01 11:00 - 2015-01-23 15:30 - 00000000 ____D () C:\Users\admin\Desktop\Minecraft server
2015-03-01 11:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-03-01 10:39 - 2014-09-12 15:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-03-01 10:33 - 2014-10-11 09:25 - 00003934 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ABD14460-EF79-4800-AB81-FF8583620032}
2015-02-28 19:27 - 2014-08-31 18:14 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-28 18:18 - 2014-09-20 17:01 - 00000000 ____D () C:\Users\admin\AppData\Roaming\.minecraft
2015-02-27 19:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-27 17:47 - 2014-10-02 10:36 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Craften Terminal
2015-02-25 09:25 - 2014-09-12 20:55 - 00041784 _____ (AVG Technologies) C:\WINDOWS\system32\TURegOpt.exe
2015-02-22 19:43 - 2014-09-20 15:26 - 00000000 ____D () C:\Users\admin
2015-02-22 16:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-02-22 16:38 - 2014-09-01 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Craften Terminal
2015-02-22 16:38 - 2014-09-01 15:44 - 00000000 ____D () C:\Program Files (x86)\Craften Terminal
2015-02-22 16:14 - 2014-10-25 15:18 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Skype
2015-02-22 15:42 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-02-21 11:17 - 2014-08-31 18:55 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-02-20 17:49 - 2014-10-22 16:07 - 00002197 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-17 14:18 - 2014-12-27 15:45 - 00000000 ____D () C:\WINDOWS\SysWOW64\DCS
2015-02-16 17:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-02-16 14:59 - 2014-11-20 16:57 - 00492472 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-14 11:20 - 2015-01-23 15:23 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Mc-Interface
2015-02-13 18:29 - 2014-09-03 08:35 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-13 18:21 - 2014-09-03 08:35 - 116773704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-07 10:39 - 2014-10-22 16:06 - 00004110 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-07 10:39 - 2014-10-22 16:06 - 00003874 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-06 18:07 - 2014-10-12 12:03 - 00043520 _____ () C:\WINDOWS\SysWOW64\CmdLineExt03.dll
2015-02-01 20:09 - 2014-12-29 11:54 - 00000000 ____D () C:\Users\admin\AppData\Roaming\.technic
2015-01-30 09:47 - 2014-03-18 11:03 - 01823422 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-30 09:47 - 2014-03-18 10:25 - 00788474 _____ () C:\WINDOWS\system32\perfh007.dat
2015-01-30 09:47 - 2014-03-18 10:25 - 00166086 _____ () C:\WINDOWS\system32\perfc007.dat
2015-01-30 09:35 - 2014-09-02 19:21 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2015-01-30 09:20 - 2014-11-29 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-01-30 09:20 - 2014-09-20 15:29 - 00000000 ____D () C:\Users\admin\AppData\Roaming\IObit

==================== Files in the root of some directories =======

2014-10-19 18:34 - 2014-10-19 18:34 - 0000017 _____ () C:\Users\admin\AppData\Local\resmon.resmoncfg
2014-09-02 19:21 - 2014-09-02 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1158944541474046759.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1221275453917134109.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-1937122953553512062.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-2741950927697001228.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3635781356779355688.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3636249024984032712.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-3679400468332001726.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4378473335793077020.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4384506923180519002.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-4991806641530326345.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5319087848509179804.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5667584316821192027.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5839675717742508645.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5863565428377481144.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-5955251507403825809.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-6816446968278476918.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-6992683639557725448.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-711204296612003551.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-7587475947637124764.dll
C:\Users\admin\AppData\Local\Temp\jansi-64-git-Spigot-b43a31a-7bc218d-9157336193915010703.dll
C:\Users\admin\AppData\Local\Temp\Quarantine.exe
C:\Users\admin\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-28 19:19

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

--- --- ---

Und hier Addition

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-02-2015
Ran by admin at 2015-03-01 18:20:02
Running from C:\Users\admin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: BullGuard Antivirus (Enabled - Up to date) {EDBB5818-2352-E06B-028A-4E6873B92CC5}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: BullGuard Antispyware (Enabled - Up to date) {56DAB9FC-0568-EFE5-383A-751A083E6678}
FW: BullGuard Firewall (Enabled) {D580D93D-693D-E133-29D5-E75D8D6A6BBE}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.18.0 - Mirillis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo AppLauncher (Medion) v.1.0.0 (HKLM-x32\...\Ashampoo AppLauncher (Medion)_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
AVG (HKLM\...\AvgZen) (Version: 1.0.445 - AVG Technologies)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.403 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden
AVG Zen (Version: 1.0.445 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BootRacer (HKLM-x32\...\{4E451C2C-9E30-43A3-BADD-C78698551CFB}) (Version: 4.7.1.372 - Greatis Software, LLC)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
BullGuard Internet Security (HKLM\...\BullGuard) (Version: 14.1 - BullGuard Ltd.)
Counter-Strike Nexon: Zombies (HKLM-x32\...\Steam App 273110) (Version:  - Nexon)
Craften Terminal 4.1.1 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 4.1.1 - Craften.de)
CyberLink PowerDirector (Version: 9.0.0.3815c - CyberLink Corp.) Hidden
DirectX Media Runtime 5.1 (HKLM-x32\...\DirectXMediaRuntime) (Version:  - )
Driver Booster 2.1 (HKLM-x32\...\Driver Booster_is1) (Version: 2.1 - IObit)
FMW 1 (Version: 1.0.308 - AVG Technologies) Hidden
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.10.923 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.1 - IObit)
iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Medion Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Medion Home Cinema 10 (x32 Version: 10.1924 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movavi Video Suite 12 (HKLM-x32\...\Movavi Video Suite 12) (Version: 12.0.0 - Movavi)
Napster 5 Beta (HKLM-x32\...\com.Rhapsody.Napster5) (Version: 1.0.65 - Rhapsody International, Inc)
Napster 5 Beta (x32 Version: 1.0.65 - Rhapsody International, Inc) Hidden
Need For Speed™ World (HKLM-x32\...\{3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}) (Version: 1.0.0.0 - Electronic Arts)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.18 (HKLM\...\{74B7E6F9-DCAC-4ADB-B2D0-EEFDD1B5AC25}) (Version: 4.3.18 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paragon Backup and Recovery™ 2014 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PhoneClean 3.4.0 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 3.4.0 - iMobie Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.3.25.0 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
Renegade X Black Dawn (HKLM\...\UDK-581b33c8-d03f-439f-90ef-66e094fb972e) (Version:  - Epic Games, Inc.)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Star Wars(TM): Knights of the Old Republic (TM) (HKLM-x32\...\{2A9A40C7-6670-4D5F-8F41-D12E2E08B48B}) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3112673566-2443552264-417852688-1005_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points  =========================

22-02-2015 15:38:21 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {13976834-D209-4E59-B6EC-B2CED07F0582} - System32\Tasks\Game_Booster_Startup => C:\Program Files (x86)\IObit\Game Booster 3\gbtray.exe
Task: {1957DF97-ECD4-421C-BFCD-9548907E669B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {4511A268-79D5-4EB3-BE3D-84F7A2426176} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3112673566-2443552264-417852688-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {54464B76-F7CC-45C1-A5E8-4C221DD45026} - System32\Tasks\Microsoft Office 15 Sync Maintenance for YANNIS-NB-admin Yannis-NB => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
Task: {5FFBCA20-B7C2-4755-AA47-40BB709071D2} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-12-17] (IObit)
Task: {6826CC76-E9EA-497D-BD8D-6F7A6F9CE9CF} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {68D8CA16-0B0C-4EB1-8E90-AEA87DD36531} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3112673566-2443552264-417852688-1001
Task: {6E031886-6297-4C94-9049-8D07C35F6340} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {707B942F-3192-4B73-93F1-76A79CCCB0BB} - System32\Tasks\Driver Booster SkipUAC (adminstrator) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-01-07] (IObit)
Task: {7F90F6BA-27E3-4231-B031-26E52BAF89FC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {854F6AD9-0D93-4DBA-B567-F4B9755D0B28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {862B48BC-6301-4B13-A18A-337DC4C3A28B} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-12-09] (IObit)
Task: {9605B813-C4BB-4D87-A200-D4C2D8600FEC} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-02-13] (Microsoft Corporation)
Task: {9FB92ED5-F65F-4079-A76D-0947C8FACED0} - System32\Tasks\Uninstaller_SkipUac_admin => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-30] (IObit)
Task: {A953A2E6-17DB-424D-9851-DC067A66DB44} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {D7452AEB-F5D2-4883-9D76-AAA580D18813} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-02-25] (AVG Technologies)
Task: {EB42FC3B-D93C-4726-A929-7E2AF6F0332D} - System32\Tasks\Driver Booster SkipUAC (admin) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-01-07] (IObit)
Task: {F03D8A20-F418-4B0E-8246-EE117A957CB4} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3112673566-2443552264-417852688-1005
Task: {F3BC0814-29D4-40C8-A5D9-1E6C33128F72} - System32\Tasks\Java Platform SE Auto Updater => c:\program files (x86)\common files\java\java update\jusched.exe [2014-12-17] (Oracle Corporation)
Task: {FABD4F54-5966-4130-9EC6-F5C60B687A71} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-30] (IObit)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_admin.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Loaded Modules (whitelisted) ==============

2015-02-23 17:53 - 2015-02-23 17:53 - 00613200 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00084304 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00653136 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00653136 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LibXml2.dll
2013-10-11 12:37 - 2013-10-11 12:37 - 00023376 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BullGuardBhvScannerRes.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00064848 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00084304 _____ () C:\Program Files\BullGuard Ltd\BullGuard\zlib1.dll
2015-01-31 01:10 - 2015-01-31 01:10 - 00186560 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-09-04 13:51 - 2012-09-07 08:00 - 00386344 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-02-25 09:25 - 2015-02-25 09:25 - 00712504 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2014-06-26 08:50 - 2014-06-26 08:50 - 00030536 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BackupShellNamespaceRes.dll
2015-02-25 09:25 - 2015-02-25 09:25 - 00855864 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-02-23 17:53 - 2015-02-23 17:53 - 00613200 _____ () C:\Program Files\BullGuard Ltd\BullGuard\SQLite.dll
2015-01-23 15:21 - 2015-01-23 15:20 - 00287528 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BpBackupRes.dll
2014-10-12 10:15 - 2014-10-11 08:15 - 00035656 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BpMainRes.dll
2014-08-31 18:08 - 2015-01-30 09:20 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2014-09-12 20:45 - 2014-09-12 20:45 - 31842816 _____ () C:\Program Files (x86)\AVG\Framework\Common\libcef.dll
2015-02-22 14:58 - 2012-11-20 16:13 - 00264192 _____ () C:\Program Files (x86)\Razer\Razer Cortex\D3DX8Wrapper.dll
2015-01-30 09:20 - 2014-10-08 15:51 - 00348992 _____ () C:\Program Files (x86)\IObit\Driver Booster\madExcept_.bpl
2015-01-30 09:20 - 2014-10-08 15:50 - 00183616 _____ () C:\Program Files (x86)\IObit\Driver Booster\madBasic_.bpl
2015-01-30 09:20 - 2014-10-08 15:50 - 00051008 _____ () C:\Program Files (x86)\IObit\Driver Booster\madDisAsm_.bpl
2015-01-30 09:20 - 2014-08-22 15:19 - 00893248 _____ () C:\Program Files (x86)\IObit\Driver Booster\webres.dll
2015-01-30 09:20 - 2012-02-16 10:16 - 00516440 _____ () C:\Program Files (x86)\IObit\Driver Booster\sqlite3.dll
2015-02-25 09:19 - 2015-02-25 09:19 - 00173368 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUBasic.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00726328 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUKernel.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00096056 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUTransl.bpl
2015-02-25 09:20 - 2015-02-25 09:20 - 10215736 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUComponents.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00559416 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\GR32_D6.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00260408 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\XMLComponents.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00101688 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TUShell.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00054072 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxCoreD12.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00089400 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxGDIPlusD12.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00170296 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\PerlRegEx.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00069944 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxThemeD12.bpl
2015-02-25 09:20 - 2015-02-25 09:20 - 01076536 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\cxLibraryD12.bpl
2015-02-25 09:20 - 2015-02-25 09:20 - 01374520 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxBarD12.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00063288 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\TURar.bpl
2015-02-25 09:19 - 2015-02-25 09:19 - 00021304 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\dxComnD12.bpl
2015-02-25 09:25 - 2015-02-25 09:25 - 00728888 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulngx.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\admin\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3112673566-2443552264-417852688-1005\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: AppLauncher => 
MSCONFIG\startupreg: iTunesHelper => 
MSCONFIG\startupreg: SunJavaUpdateSched => 
MSCONFIG\startupreg: YouCam Service => 
HKLM\...\StartupApproved\Run: => "Ashampoo Core Tuner 2"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "AppLauncher"
HKLM\...\StartupApproved\Run32: => "YouCam Service"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-3112673566-2443552264-417852688-1005\...\StartupApproved\Run: => "DAEMON Tools Pro Agent"

==================== Accounts: =============================

admin (S-1-5-21-3112673566-2443552264-417852688-1005 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-3112673566-2443552264-417852688-500 - Administrator - Disabled)
Gast (S-1-5-21-3112673566-2443552264-417852688-501 - Administrator - Enabled) => C:\Users\TEMP

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/01/2015 06:18:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.3.9600.17415, Zeitstempel: 0x54503a3a
Name des fehlerhaften Moduls: DEVRTL.dll, Version: 6.3.9600.17415, Zeitstempel: 0x5450429b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000001475
ID des fehlerhaften Prozesses: 0xdb0
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Vollständiger Name des fehlerhaften Pakets: Explorer.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Explorer.EXE5

Error: (03/01/2015 11:19:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AppVLp.exe, Version: 5.151.53.0, Zeitstempel: 0x5432f4e0
Name des fehlerhaften Moduls: AppVIsvSubsystems32.dll, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0x910
Startzeit der fehlerhaften Anwendung: 0xAppVLp.exe0
Pfad der fehlerhaften Anwendung: AppVLp.exe1
Pfad des fehlerhaften Moduls: AppVLp.exe2
Berichtskennung: AppVLp.exe3
Vollständiger Name des fehlerhaften Pakets: AppVLp.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AppVLp.exe5


System errors:
=============
Error: (03/01/2015 06:13:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (03/01/2015 11:31:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%1062

Error: (03/01/2015 11:27:19 AM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/01/2015 11:27:19 AM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/01/2015 11:27:19 AM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/01/2015 11:27:19 AM) (Source: DCOM) (EventID: 10016) (User: YANNIS-NB)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}YANNIS-NBadminS-1-5-21-3112673566-2443552264-417852688-1005LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/01/2015 11:20:33 AM) (Source: DCOM) (EventID: 10010) (User: YANNIS-NB)
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/01/2015 11:12:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (03/01/2015 11:11:45 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%1062


Microsoft Office Sessions:
=========================
Error: (03/01/2015 06:18:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.3.9600.1741554503a3aDEVRTL.dll6.3.9600.174155450429bc00000050000000000001475db001d054434227ff9dC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\DEVRTL.dll05f1f30c-c037-11e4-bf7f-685d43dd7a47

Error: (03/01/2015 11:19:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: AppVLp.exe5.151.53.05432f4e0AppVIsvSubsystems32.dll6.3.9600.1763054b0d74fc00001350009e0b291001d05409436c3683C:\Program Files\Microsoft Office 15\Root\Client\AppVLp.exeAppVIsvSubsystems32.dll818574d1-bffc-11e4-bf7e-685d43dd7a47


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 38%
Total physical RAM: 3960.38 MB
Available physical RAM: 2434.63 MB
Total Pagefile: 7928.38 MB
Available Pagefile: 5956.16 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.56 GB) (Free:742.17 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================

schrauber · 02.03.2015, 08:27

Alles von IOBIT runter, ebenso diesen TuneUp-Scheiss runter, vorher alle Änderungen rückgängig machen lassen.

01.03.2015, 16:17	#6
schrauber /// the machine /// TB-Ausbilder	Wo Boot dauert 2 minuten ! das behben. Lösung! Das frische FRST log fehlt noch. Wie lange dauert der Boot? __________________ --> Boot dauert 2 minuten ! das behben.

02.03.2015, 08:27	#8
schrauber /// the machine /// TB-Ausbilder	Boot dauert 2 minuten ! das behben. Alles von IOBIT runter, ebenso diesen TuneUp-Scheiss runter, vorher alle Änderungen rückgängig machen lassen. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Boot dauert 2 minuten ! das behben.

Alles rund um Windows: Boot dauert 2 minuten ! das behben.

Problem: Boot dauert 2 minuten ! das behben.

Boot dauert 2 minuten ! das behben. Anleitung / Hilfe

Boot dauert 2 minuten ! das behben. Details

Lösung: Boot dauert 2 minuten ! das behben.

Wie Boot dauert 2 minuten ! das behben.

Wo Boot dauert 2 minuten ! das behben. Lösung!

Boot dauert 2 minuten ! das behben.

Boot dauert 2 minuten ! das behben.

Ähnliche Themen: Boot dauert 2 minuten ! das behben.

28.02.2015, 18:18	#1
Yoloo	Problem: Boot dauert 2 minuten ! das behben. Hallo immer wenn ich mein Notebook starte dauert es anfangs 10 sek und dann kommt ein Schwarzerbildschirm!SIEHE HIER und das nervt! Wie kann ich das beheben ?