Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Alle Browser voller Werbung.

Alle Browser voller Werbung.


Plagegeister aller Art und deren Bekämpfung: Alle Browser voller Werbung.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 18.04.2015, 13:48   #1
Leon669
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Hallo ich habe seit 2 Wochen ein Problem mein ganzer Browser ist voller Werbung ich weiß nicht mehr weiter alle Browser sind betroffen. Außerdem öffnet sich bei fast jedem klick im Browser ein neues Fenster wo ich Werbung bekomme.

Hier Screenshots:

Name: 1.jpg Hits: 903 Größe: 44,5 KB
Name: 2.jpg Hits: 710 Größe: 35,9 KB

Was ich breits versucht habe:
-Viren Scan (AVG)
-Eset Online Scanner durschlaufen lassen
-CClenaer

Danke im Vorraus

Alt 18.04.2015, 14:26   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Hi,

hast du da Windows 10 am Laufen?

Das ist doch noch garnicht freigegeben...wenn nutzt man diese Vorabversionen nur zum Testen!
__________________

__________________
Alt 18.04.2015, 14:32   #3
Leon669
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Zitat:
Zitat von cosinus Beitrag anzeigen
Hi,

hast du da Windows 10 am Laufen?

Das ist doch noch garnicht freigegeben...wenn nutzt man diese Vorabversionen nur zum Testen!
Ist auch nur auf meinem zweit PC.
Läuft allerdings erste Sahne fast schon besser als Win 7 auf meinen erst PC.
__________________
Alt 18.04.2015, 14:40   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 18.04.2015, 15:00   #5
Leon669
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


okay ich werde mich drum kümmern

Geändert von Leon669 (18.04.2015 um 15:27 Uhr)

Alt 18.04.2015, 15:12   #6
Leon669
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Addition.txt
FRST Additions Logfile:
Geändert von Leon669 (18.04.2015 um 15:29 Uhr)

Alt 18.04.2015, 15:15   #7
Leon669
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Addition.txt
Geändert von Leon669 (18.04.2015 um 15:31 Uhr)

Alt 18.04.2015, 15:16   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Zitat:
C:\Users\Leon\Documents\[kickass.to]construction.simulator.2015.codex.torrent
System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-01-09] ()
Gecrackte Spiele, gecracktes Office. So nicht!
Alle Cracks und jede installierte gecrackte Software muss du deinstallieren, erst dann geht es weiter.

Lesestoff:
Illegale Software: Cracks, Keygens und Co

Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 18.04.2015, 16:04   #9
Leon669
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Hoffe das war alles ...
FRST.txt

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-04-2015 01
Ran by Leon (administrator) on LEON-PC on 18-04-2015 16:59:03
Running from C:\Users\Leon\Documents
Loaded Profiles: Leon (Available profiles: Leon & Jana)
Platform: Windows 10 Pro Technical Preview (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\ProgramData\eazyzoom\1.1.0.30\jikwlet.exe
(Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\D-Link\GO-USB-N150\RtlService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(Microsoft Corporation) C:\Windows\System32\sihost.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\D-Link\GO-USB-N150\RtWlan.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\System32\ApplicationFrameHost.exe
() C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\searchui.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Users\Leon\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(TODO: <公司名>) C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Microsoft Corporation) C:\Windows\System32\fontdrvhost.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\Leon\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Leon\AppData\Roaming\Spotify\Spotify.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\System32\SystemSettingsBroker.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8459480 2015-03-29] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392496 2015-03-29] (Realtek Semiconductor)
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SE61T-UserTools] => C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe [757248 2014-06-16] (TODO: <公司名>)
HKLM-x32\...\Run: [UX Launcher] => C:\Program Files (x86)\UX Pack\uxlaunch.exe
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-03-25] (Raptr, Inc)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3745232 2015-04-15] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Winlogon: [Userinit]  [X]
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7210160 2015-03-14] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7210160 2015-03-14] (Microsoft Corporation)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [GoogleChromeAutoLaunch_6F0EB3B7B051E3E928BE4901C529C47C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-04-13] (Google Inc.)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [BitTorrent] => C:\Users\Leon\AppData\Roaming\BitTorrent\BitTorrent.exe [1376600 2015-01-21] (BitTorrent Inc.)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [Spotify Web Helper] => C:\Users\Leon\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-04-04] (Spotify Ltd)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [4219088 2015-01-27] (Unified Intents AB)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2889408 2015-04-14] (Valve Corporation)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31087200 2015-01-23] (Skype Technologies S.A.)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [OneDrive] => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\OneDrive.exe [281248 2015-03-30] (Microsoft Corporation)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Run: [Spotify] => C:\Users\Leon\AppData\Roaming\Spotify\spotify.exe [7112248 2015-04-04] (Spotify Ltd)
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\MountPoints2: {0feb1467-c8ea-11e4-ab3e-806e6f6e6963} - "E:\Autorun.exe" 
Startup: C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk
ShortcutTarget: hqghumeaylnlf.lnk -> C:\ProgramData\{78cef2fe-473c-308d-78ce-ef2fe473cbf9}\hqghumeaylnlf.exe (No File)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\FileSyncShell.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: BetterDeals -> {05156942-7E94-3334-C8BD-DEC8D6785E65} -> C:\Program Files (x86)\ver1BetterDeals\189_x64.dll No File
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-18] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-18] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2015-03-14] (Microsoft Corporation)
Handler-x32: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2015-03-14] (Microsoft Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.111.6

FireFox:
========
FF ProfilePath: C:\Users\Leon\AppData\Roaming\Mozilla\Firefox\Profiles\4qblotz5.default
FF DefaultSearchEngine: luckysearches
FF SelectedSearchEngine: luckysearches
FF Homepage: www.google.de
FF Plugin: @videolan.org/vlc,version=2.1.5 -> D:\Programme\VLC\npvlc.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-18] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Leon\AppData\Roaming\Mozilla\Firefox\Profiles\4qblotz5.default\searchplugins\luckysearches.xml [2015-04-07]
FF Extension: EazyZoom - C:\Users\Leon\AppData\Roaming\Mozilla\Firefox\Profiles\4qblotz5.default\Extensions\qe@toglicw.com [2015-04-06]

Chrome: 
=======
CHR HomePage: Default -> https://www.google.de/
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3319434&octid=EB_ORIGINAL_CTID&ISID=ME6DBB126-A257-4010-B5CF-5C175146AAB3&SearchSource=55&CUI=&UM=5&UP=SPC45D851E-7969-4C14-A6CA-5D3EBC55AAF5&SSPV=", "hxxp://www.windowsxlive.net/", "hxxp://start.iminent.com/?appId=6621CED4-4D6A-4AF9-9D7F-DF3F97164193", "https://mysearch.avg.com/?cid={ADFFD3DA-8132-4457-816E-6590515BC0CE}&mid=581aa7741b6147d2953b26624ca1a20a-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=de&ds=AVG&coid=avgtbavg&pr=fr&d=2014-08-18%2017:38:16&v=3.2.0.14&pid=wtu&sg=&sap=hp", "https://mysearch.avg.com/?cid={8E25438D-E79F-478B-9CE6-F7A5F59C30C1}&mid=af54b70e600647d2b4ca4493fde2253e-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=de&ds=AVG&coid=avgtbavg&pr=fr&d=2014-09-06%2017:53:13&v=3.2.0.15&pid=wtu&sg=&sap=hp", "hxxp://www.mystartsearch.com/?type=hp&ts=1419622483&from=smt&uid=WDCXWD10EARS-00MVWB0_WD-WCAZA472249322493", "https://www.google.de/", "https://web.whatsapp.com/", "hxxp://www.mystartsearch.com/?type=hp&ts=1426106110&from=epom2&uid=WDCXWD10EARS-00MVWB0_WD-WCAZA472249322493"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-08-27]
CHR Extension: (Google Docs) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-27]
CHR Extension: (Google Drive) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-27]
CHR Extension: (YouTube) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-27]
CHR Extension: (Google Search) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-27]
CHR Extension: (Google Sheets) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-08-27]
CHR Extension: (Adblock Super) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd [2014-10-30]
CHR Extension: (No Name) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-30]
CHR Extension: (No Name) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-02-22]
CHR Extension: (Google Wallet) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-27]
CHR Extension: (Gmail) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-27]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

Opera: 
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files (x86)\Opera\Launcher.exe hxxp://www.luckysearches.com/?type=sc&ts=1428346995&from=2sq&uid=WDCXWD10EARS-00MVWB0_WD-WCAZA472249322493

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

Locked "egyifwiwo" service could not be unlocked. <===== ATTENTION
Locked "rofeaiej" service could not be unlocked. <===== ATTENTION
Locked "tammgF119" service could not be unlocked. <===== ATTENTION
Locked "tammgR119" service could not be unlocked. <===== ATTENTION

S3 AJRouter; C:\Windows\System32\AJRouter.dll [19968 2015-03-14] (Microsoft Corporation)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [116224 2014-11-20] (Advanced Micro Devices) [File not signed]
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3438032 2015-04-15] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [311792 2015-04-15] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [936832 2015-03-14] ()
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [409304 2014-10-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [388824 2014-10-07] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [782040 2014-10-07] (BlueStack Systems, Inc.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [325120 2015-03-14] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 ClipSVC; C:\Windows\System32\ClipSVC.dll [531456 2015-03-14] (Microsoft Corporation)
R2 CoreUIRegistrar; C:\Windows\system32\coremessaging.dll [708584 2015-03-14] (Microsoft Corporation)
R2 CoreUIRegistrar; C:\Windows\SysWOW64\coremessaging.dll [476160 2015-03-14] (Microsoft Corporation)
S3 DcpSvc; C:\Windows\system32\dcpsvc.dll [195584 2015-03-14] (Microsoft Corporation)
S3 DevQueryBroker; C:\Windows\system32\DevQueryBroker.dll [32256 2015-03-14] (Microsoft Corporation)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1430016 2015-03-14] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-03-14] (Microsoft Corporation)
S2 dmwappushservice; C:\Windows\system32\dmwappushsvc.dll [111616 2015-03-14] (Microsoft Corporation)
R2 DoSvc; C:\Windows\system32\svchost.exe [35160 2015-03-14] (Microsoft Corporation)
R2 DoSvc; C:\Windows\SysWOW64\svchost.exe [29968 2015-03-14] (Microsoft Corporation)
S3 DsSvc; C:\Windows\System32\DsSvc.dll [128512 2015-03-14] (Microsoft Corporation)
R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240576 2015-03-29] (DTS, Inc)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-09-11] (Freemake) [File not signed]
S3 icssvc; C:\Windows\System32\tetheringservice.dll [84992 2015-03-14] (Microsoft Corporation)
R3 lfsvc; C:\Windows\System32\lfsvc.dll [23040 2015-03-14] (Microsoft Corporation)
R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [18944 2015-03-14] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [155136 2015-03-14] (Microsoft Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25600 2015-03-30] (Microsoft Corporation)
S3 NetSetupSvc; C:\Windows\System32\NetSetupSvc.dll [135168 2015-03-14] (Microsoft Corporation)
S3 NgcCtnrSvc; C:\Windows\System32\NgcCtnrSvc.dll [223232 2015-03-14] (Microsoft Corporation)
S3 NgcSvc; C:\Windows\system32\ngcsvc.dll [424448 2015-03-14] (Microsoft Corporation)
S3 OneSyncSvc; C:\Windows\System32\APHostService.dll [237568 2015-03-14] (Microsoft Corporation)
S3 PhoneSvc; C:\Windows\System32\PhoneService.dll [588288 2015-03-14] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [276480 2015-03-14] (Microsoft Corporation)
R2 RemoteServerWin; C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [4219088 2015-01-27] (Unified Intents AB)
S3 RetailDemo; C:\Windows\system32\RetailDemoService.dll [332800 2015-03-14] (Microsoft Corporation)
R2 RtlService; C:\Program Files (x86)\D-Link\GO-USB-N150\RtlService.exe [36864 2012-05-10] (Realtek Semiconductor Corp.) [File not signed]
R2 RzWizardService; C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe [367616 2014-05-20] (Razer Inc.) [File not signed]
S3 SensorService; C:\Windows\system32\SensorService.dll [139264 2015-03-14] (Microsoft Corporation)
S3 SmsRouter; C:\Windows\system32\SmsRouterSvc.dll [579584 2015-03-14] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [3318272 2015-03-14] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2190336 2015-03-14] (Microsoft Corporation)
R3 tiledatamodelsvc; C:\Windows\system32\tileobjserver.dll [351744 2015-03-14] (Microsoft Corporation)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1021952 2015-03-14] (Microsoft Corporation)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1112064 2015-03-14] (Microsoft Corporation)
R2 UserManager; C:\Windows\System32\usermgr.dll [591360 2015-03-14] (Microsoft Corporation)
S3 UsoSvc; C:\Windows\system32\usocore.dll [220672 2015-03-14] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [450560 2015-03-14] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [83968 2015-03-30] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578048 2015-03-30] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348576 2015-03-14] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [12416 2015-03-14] (Microsoft Corporation)
S3 WpnService; C:\Windows\system32\WpnService.dll [48640 2015-03-14] (Microsoft Corporation)
S2 beviwojy; C:\Users\Leon\AppData\Local\1E00F0A0-1428353920-6E00-C1E1-D850E6E4D8A8\snszB1E7.tmp [X]
S2 pylywusy; C:\Users\Leon\AppData\Roaming\1E00F0A0-1428346422-6E00-C1E1-D850E6E4D8A8\jnsgB11D.tmp [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [294600 2014-11-21] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-21] (Advanced Micro Devices)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [281056 2015-03-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [213984 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [256992 2015-04-15] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [344544 2015-03-11] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [137184 2015-04-03] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-09-06] (AVG Technologies)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [293856 2015-04-07] (AVG Technologies CZ, s.r.o.)
S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [122072 2014-10-07] (BlueStack Systems)
S3 buttonconverter; C:\Windows\System32\drivers\buttonconverter.sys [31744 2015-03-14] (Microsoft Corporation)
S3 CapImg; C:\Windows\System32\drivers\capimg.sys [90624 2015-03-14] (Microsoft Corporation)
S4 cnghwassist; C:\Windows\System32\DRIVERS\cnghwassist.sys [34576 2015-03-14] (Microsoft Corporation)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_17a20466b7a2c2aa\CompositeBus.sys [39424 2015-03-14] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-28] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3432720 2015-03-14] (QLogic Corporation)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () [File not signed]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () [File not signed]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () [File not signed]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () [File not signed]
S3 fcvsc; C:\Windows\System32\drivers\fcvsc.sys [30720 2015-03-14] (Microsoft Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [77824 2015-03-14] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfnclass.sys [20992 2015-03-14] (Microsoft Corporation)
S3 hidinterrupt; C:\Windows\System32\drivers\hidinterrupt.sys [43792 2015-03-14] (Microsoft Corporation)
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [420624 2015-03-14] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [27136 2015-03-14] (Microsoft Corporation)
S0 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [93968 2015-03-14] (LSI Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [86288 2015-03-14] (LSI Corporation)
S0 megasas; C:\Windows\System32\drivers\megasas.sys [57104 2015-03-14] (Avago Technologies)
R2 mirahid; C:\Windows\System32\drivers\mirahid.sys [35840 2015-03-14] (Microsoft Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [701200 2015-03-14] (Mellanox)
R2 MMCSS; C:\Windows\system32\drivers\mmcss.sys [38400 2015-03-14] (Microsoft Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [174592 2015-03-30] (Microsoft Corporation)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [71952 2015-03-14] (Mellanox)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [66560 2015-03-14] ()
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc.sys [94720 2015-03-14] (Microsoft Corporation)
S3 NETVSCVFPP; C:\Windows\system32\DRIVERS\netvsc.sys [94720 2015-03-14] (Microsoft Corporation)
S0 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [54032 2015-03-14] (LSI Corporation)
S0 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [54544 2015-03-14] (Avago Technologies)
S3 ReFSv1; C:\Windows\System32\Drivers\ReFSv1.sys [929552 2015-03-14] (Microsoft Corporation)
R3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [3601624 2015-03-14] (Realtek Semiconductor Corporation                           )
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [67072 2015-03-14] (Microsoft Corporation)
S0 storufs; C:\Windows\System32\drivers\storufs.sys [36112 2015-03-14] (Microsoft Corporation)
S3 SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [16056 2015-04-18] (SlimWare Utilities, Inc.)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_29587da3d7e055a9\swenum.sys [13584 2015-03-14] (Microsoft Corporation)
R5 tammgF119; C:\Windows\System32\Drivers\tammgF119.sys [26760 2015-04-06] () [File not signed]
R5 tammgR119; C:\Windows\System32\Drivers\tammgR119.sys [26248 2015-04-06] () [File not signed]
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [43008 2015-03-14] ()
S3 Ufx01000; C:\Windows\System32\drivers\ufx01000.sys [230400 2015-03-14] (Microsoft Corporation)
S3 UfxChipidea; C:\Windows\System32\drivers\UfxChipidea.sys [80896 2015-03-14] (Microsoft Corporation)
S3 ufxsynopsys; C:\Windows\System32\drivers\ufxsynopsys.sys [108032 2015-03-14] (Microsoft Corporation)
S3 UrsChipidea; C:\Windows\System32\drivers\urschipidea.sys [16896 2015-03-14] (Microsoft Corporation)
S3 UrsCx01000; C:\Windows\System32\drivers\urscx01000.sys [43520 2015-03-14] (Microsoft Corporation)
S3 UrsSynopsys; C:\Windows\System32\drivers\urssynopsys.sys [18432 2015-03-14] (Microsoft Corporation)
S3 vhf; C:\Windows\System32\drivers\vhf.sys [28160 2015-03-14] (Microsoft Corporation)
S3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [677376 2015-03-14] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [112912 2015-03-14] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [22800 2015-03-14] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [55568 2015-03-14] (Mellanox)
U3 idsvc; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

NETSVC: dosvc -> No ServiceDLL Path.
NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
NETSVC: DiagTrack -> C:\Windows\system32\diagtrack.dll (Microsoft Corporation)
NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NETSVC: RetailDemo -> C:\Windows\system32\RetailDemoService.dll (Microsoft Corporation)
NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File.
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File.

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-18 16:59 - 2015-04-18 16:59 - 00034953 _____ () C:\Users\Leon\Documents\FRST.txt
2015-04-18 15:46 - 2015-04-18 16:59 - 00000000 ____D () C:\FRST
2015-04-18 15:44 - 2015-04-18 15:45 - 02098176 _____ (Farbar) C:\Users\Leon\Documents\FRST64.exe
2015-04-18 14:24 - 2015-04-18 14:24 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-04-18 14:24 - 2015-04-18 14:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-04-18 14:24 - 2015-04-18 14:24 - 00000000 ____D () C:\Program Files (x86)\Java
2015-04-18 13:13 - 2015-04-18 13:13 - 00000390 _____ () C:\WINDOWS\PFRO.log
2015-04-17 19:41 - 2015-04-17 19:42 - 00000000 ____D () C:\Users\Leon\Desktop\musik April
2015-04-15 13:06 - 2015-04-15 13:06 - 00256992 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgldx64.sys
2015-04-09 14:11 - 2015-04-09 14:11 - 00284128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\SETEB86.tmp
2015-04-07 20:51 - 2015-04-07 20:51 - 02876452 _____ () C:\WINDOWS\shost.bin
2015-04-07 16:53 - 2015-04-18 15:54 - 00000191 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-07 16:43 - 2015-04-07 16:43 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-04-07 16:36 - 2015-04-07 16:36 - 00448512 _____ (OldTimer Tools) C:\Users\Leon\Downloads\TFC.exe
2015-04-07 16:03 - 2015-04-07 16:05 - 00000000 ____D () C:\AdwCleaner
2015-04-07 16:02 - 2015-04-07 16:02 - 02208768 _____ () C:\Users\Leon\Downloads\adwcleaner_4.200.exe
2015-04-07 15:23 - 2015-04-18 16:04 - 00129028 _____ () C:\WINDOWS\WindowsUpdate_AU_deprecated.log
2015-04-07 12:39 - 2015-04-07 12:39 - 00293856 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgwfpa.sys
2015-04-06 22:17 - 2015-04-18 12:57 - 00001054 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-04-06 22:17 - 2015-04-18 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-04-06 21:47 - 2015-04-06 22:05 - 169936496 _____ (AVG Technologies) C:\Users\Leon\Downloads\avg_free_x86_all_2015_ltst_222_5863 (1).exe
2015-04-06 21:00 - 2015-04-07 16:05 - 00001067 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-04-06 21:00 - 2015-04-07 16:05 - 00001055 _____ () C:\Users\Public\Desktop\Opera.lnk
2015-04-06 21:00 - 2015-04-06 21:00 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Opera Software
2015-04-06 21:00 - 2015-04-06 21:00 - 00000000 ____D () C:\Users\Leon\AppData\Local\Opera Software
2015-04-06 20:59 - 2015-04-06 20:59 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Optimizer Pro
2015-04-06 20:58 - 2015-04-08 00:22 - 00000000 ____D () C:\Users\Leon\AppData\Local\1E00F0A0-1428353920-6E00-C1E1-D850E6E4D8A8
2015-04-06 20:55 - 2015-04-06 22:48 - 00000000 ____D () C:\Users\Leon\AppData\Local\1E00F0A0-1428353722-6E00-C1E1-D850E6E4D8A8
2015-04-06 20:54 - 2015-04-06 23:05 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro 3.75
2015-04-06 20:54 - 2015-04-06 21:00 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-04-06 20:54 - 2015-04-06 20:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2015-04-06 20:53 - 2015-04-06 22:49 - 00000000 ____D () C:\ProgramData\{78cef2fe-473c-308d-78ce-ef2fe473cbf9}
2015-04-06 20:51 - 2015-04-06 20:51 - 00026760 _____ () C:\WINDOWS\system32\Drivers\tammgF119.sys
2015-04-06 20:51 - 2015-04-06 20:51 - 00026248 _____ () C:\WINDOWS\system32\Drivers\tammgR119.sys
2015-04-06 20:51 - 2015-04-06 20:51 - 00000000 ____D () C:\ProgramData\eazyzoom
2015-04-06 20:48 - 2015-04-06 20:48 - 01402251 _____ () C:\Users\Leon\Downloads\spacesniffer_1_2_0_2.zip
2015-04-04 21:58 - 2015-04-18 16:54 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-03 09:34 - 2015-04-03 09:34 - 00137184 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx64.sys
2015-04-01 21:03 - 2015-04-01 21:03 - 00009731 _____ () C:\Users\Leon\Downloads\ChromeOS 1.31.rar
2015-04-01 19:54 - 2015-04-07 16:05 - 00001134 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-04-01 19:54 - 2015-04-07 16:05 - 00001122 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-04-01 19:54 - 2015-04-01 19:54 - 00000000 ____D () C:\Users\Leon\AppData\Local\Mozilla
2015-04-01 19:54 - 2015-04-01 19:54 - 00000000 ____D () C:\ProgramData\Mozilla
2015-04-01 19:49 - 2015-04-01 19:50 - 00243576 _____ () C:\Users\Leon\Downloads\Firefox Setup Stub 37.0.exe
2015-03-31 17:37 - 2015-03-31 17:38 - 03684589 _____ () C:\Users\Leon\Downloads\Oversize Load Mod.rar
2015-03-31 15:46 - 2015-03-31 15:46 - 00000000 ____D () C:\WINDOWS\system32\SleepStudy
2015-03-31 15:36 - 2015-04-18 13:42 - 00005108 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for Leon-PC-Leon Leon-PC
2015-03-31 00:56 - 2015-03-24 04:51 - 00662016 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-03-31 00:56 - 2015-03-24 03:51 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-03-31 00:56 - 2015-03-20 09:46 - 00438272 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-03-31 00:56 - 2015-03-20 09:43 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2015-03-31 00:56 - 2015-03-20 09:22 - 01686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-03-31 00:56 - 2015-03-20 09:05 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-03-31 00:56 - 2015-03-20 09:03 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2015-03-31 00:56 - 2015-03-20 08:46 - 01432576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-03-31 00:49 - 2015-03-31 00:49 - 00000020 ___SH () C:\Users\Jana\ntuser.ini
2015-03-30 15:47 - 2015-03-30 15:47 - 00000000 ____D () C:\ProgramData\ATI
2015-03-30 15:40 - 2015-03-30 15:40 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2015-03-30 15:39 - 2015-03-30 15:39 - 00058826 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201503301539573684.log
2015-03-30 15:39 - 2015-03-30 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-03-30 15:35 - 2015-03-30 15:35 - 00061207 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201503301535426596.log
2015-03-30 15:03 - 2015-03-30 15:03 - 00000000 ____D () C:\ProgramData\SlimWare Utilities, Inc
2015-03-30 15:02 - 2015-03-30 15:02 - 00002852 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-03-30 15:02 - 2015-03-30 15:02 - 00000863 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-03-30 15:02 - 2015-03-30 15:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-03-30 15:02 - 2015-03-30 15:02 - 00000000 ____D () C:\Program Files\CCleaner
2015-03-30 15:01 - 2015-04-18 13:15 - 00000424 _____ () C:\WINDOWS\Tasks\SlimDrivers Startup.job
2015-03-30 15:01 - 2015-04-18 13:14 - 00016056 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2015-03-30 15:01 - 2015-03-30 15:01 - 00002902 _____ () C:\WINDOWS\System32\Tasks\SlimDrivers Startup
2015-03-30 15:01 - 2015-03-30 15:01 - 00002483 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk
2015-03-30 15:01 - 2015-03-30 15:01 - 00000000 ____D () C:\Users\Leon\AppData\Local\SlimWare Utilities Inc
2015-03-30 15:00 - 2015-03-30 15:00 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2015-03-30 14:50 - 2015-03-30 15:06 - 00000000 ____D () C:\WINDOWS\Minidump
2015-03-30 13:01 - 2015-03-30 13:01 - 00062082 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201503301301596002.log
2015-03-30 13:00 - 2015-03-30 13:00 - 00061207 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201503301300011378.log
2015-03-30 12:59 - 2015-03-30 12:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\ATI
2015-03-30 12:59 - 2015-03-30 12:59 - 00000000 ____D () C:\Users\Default\AppData\Local\ATI
2015-03-30 12:59 - 2015-03-30 12:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\ATI
2015-03-30 12:59 - 2015-03-30 12:59 - 00000000 ____D () C:\Users\Default User\AppData\Local\ATI
2015-03-30 12:57 - 2015-03-30 12:57 - 00101888 _____ () C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-03-30 12:57 - 2015-03-30 12:57 - 00101888 _____ () C:\WINDOWS\system32\hsa-thunk64.dll
2015-03-30 12:56 - 2015-03-30 12:56 - 43195904 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-03-30 12:56 - 2015-03-30 12:56 - 35574784 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-03-30 12:56 - 2015-03-30 12:56 - 08970240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-03-30 12:56 - 2015-03-30 12:56 - 07376384 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-03-30 12:56 - 2015-03-30 12:56 - 00251012 _____ () C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-03-30 12:56 - 2015-03-30 12:56 - 00249344 _____ () C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-03-30 12:56 - 2015-03-30 12:56 - 00204288 _____ () C:\WINDOWS\system32\amdgfxinfo64.dll
2015-03-30 12:56 - 2015-03-30 12:56 - 00189440 _____ () C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-03-30 12:56 - 2015-03-30 12:56 - 00159744 _____ () C:\WINDOWS\system32\atieah64.exe
2015-03-30 12:56 - 2015-03-30 12:56 - 00143872 _____ () C:\WINDOWS\SysWOW64\atieah32.exe
2015-03-30 12:56 - 2014-11-21 04:44 - 09401480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-03-30 12:56 - 2014-11-21 04:44 - 01127496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-03-30 12:56 - 2014-11-21 04:44 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-03-30 12:56 - 2014-11-21 04:09 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2015-03-30 02:56 - 2015-03-07 05:30 - 05738496 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-03-30 02:55 - 2015-03-30 02:55 - 00001051 _____ () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
2015-03-30 02:39 - 2015-03-30 15:06 - 00000000 ___DC () C:\WINDOWS\Panther
2015-03-30 02:37 - 2015-03-30 02:37 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2015-03-30 02:37 - 2015-03-30 02:37 - 00000000 ____D () C:\Windows.old
2015-03-30 02:29 - 2015-03-30 02:29 - 00008192 _____ () C:\WINDOWS\system32\config\userdiff
2015-03-30 02:28 - 2015-03-30 15:40 - 00001806 _____ () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TrayItem.{867A5F76-34E0-96E9-8F51-F93CFB5414D7}.lnk
2015-03-30 02:26 - 2015-03-30 02:26 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer
2015-03-30 02:26 - 2015-03-30 02:26 - 00000000 ____D () C:\WINDOWS\SysWOW64\BestPractices
2015-03-30 02:26 - 2015-03-30 02:26 - 00000000 ____D () C:\WINDOWS\system32\msmq
2015-03-30 02:26 - 2015-03-30 02:26 - 00000000 ____D () C:\WINDOWS\system32\BestPractices
2015-03-30 02:26 - 2015-03-30 02:26 - 00000000 ____D () C:\Program Files\Reference Assemblies
2015-03-30 02:26 - 2015-03-30 02:26 - 00000000 ____D () C:\Program Files\MSBuild
2015-03-30 02:26 - 2015-03-30 02:26 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2015-03-30 02:26 - 2015-03-30 02:26 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2015-03-30 02:26 - 2015-03-30 02:02 - 00000000 ____D () C:\inetpub
2015-03-30 02:25 - 2015-03-10 18:34 - 01166512 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-03-30 02:25 - 2015-03-10 18:34 - 00124104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-03-30 02:25 - 2015-03-10 18:34 - 00035472 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-03-30 02:25 - 2015-02-18 00:16 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-03-30 02:25 - 2015-02-18 00:16 - 00102600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-03-30 02:25 - 2015-02-18 00:16 - 00035472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-03-30 02:22 - 2015-03-30 02:22 - 00000020 ___SH () C:\Users\Leon\ntuser.ini
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Startmenü
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2015-03-30 02:21 - 2015-03-30 02:21 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-03-30 02:12 - 2015-03-14 10:49 - 02707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-03-30 02:04 - 2015-03-30 02:04 - 00001519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-03-30 02:04 - 2015-03-30 02:04 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2015-03-30 02:04 - 2015-03-30 02:04 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2015-03-30 02:04 - 2015-03-30 02:04 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2015-03-30 02:04 - 2015-03-30 02:04 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2015-03-30 02:04 - 2015-03-30 02:04 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-03-30 02:04 - 2015-03-30 02:04 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2015-03-30 02:02 - 2015-03-30 02:02 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2015-03-30 01:54 - 2015-04-18 12:45 - 00000000 ____D () C:\Users\Jana
2015-03-30 01:54 - 2015-04-15 18:25 - 00000000 ____D () C:\Users\Leon
2015-03-30 01:54 - 2015-04-07 16:05 - 00000000 ___RD () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-30 01:54 - 2015-03-31 00:50 - 00000000 ___RD () C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-30 01:54 - 2015-03-30 01:56 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Vorlagen
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Startmenü
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Netzwerkumgebung
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Lokale Einstellungen
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Eigene Dateien
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Druckumgebung
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Documents\Eigene Musik
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Documents\Eigene Bilder
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\AppData\Local\Verlauf
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\AppData\Local\Anwendungsdaten
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Leon\Anwendungsdaten
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Vorlagen
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Startmenü
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Netzwerkumgebung
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Lokale Einstellungen
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Eigene Dateien
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Druckumgebung
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Documents\Eigene Musik
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Documents\Eigene Bilder
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\AppData\Local\Verlauf
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\AppData\Local\Anwendungsdaten
2015-03-30 01:54 - 2015-03-30 01:54 - 00000000 _SHDL () C:\Users\Jana\Anwendungsdaten
2015-03-30 01:54 - 2015-03-14 10:58 - 00000000 ___RD () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-30 01:54 - 2015-03-14 10:58 - 00000000 ___RD () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-30 01:54 - 2015-03-14 10:58 - 00000000 ___RD () C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-30 01:54 - 2015-03-14 10:58 - 00000000 ___RD () C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-30 01:54 - 2015-03-14 10:58 - 00000000 ____D () C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-03-30 01:54 - 2015-03-14 10:53 - 00000369 _____ () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-03-30 01:54 - 2015-03-14 10:53 - 00000369 _____ () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-03-30 01:54 - 2015-03-14 10:53 - 00000369 _____ () C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-03-30 01:54 - 2015-03-14 10:53 - 00000369 _____ () C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-03-30 01:53 - 2015-04-06 22:23 - 02074390 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-30 01:53 - 2015-03-30 02:20 - 00057153 _____ () C:\WINDOWS\diagwrn.xml
2015-03-30 01:53 - 2015-03-30 02:20 - 00057153 _____ () C:\WINDOWS\diagerr.xml
2015-03-30 01:53 - 2015-03-30 01:53 - 01980272 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-03-30 01:49 - 2015-03-30 01:49 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2015-03-30 01:45 - 2015-03-30 15:38 - 00000000 ____D () C:\Program Files\ATI Technologies
2015-03-30 01:45 - 2015-03-30 15:36 - 00000000 ____D () C:\ProgramData\Package Cache
2015-03-30 01:45 - 2015-03-30 13:00 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2015-03-30 01:45 - 2015-03-30 01:45 - 00000000 ____D () C:\Program Files\Realtek
2015-03-30 01:44 - 2015-04-18 13:12 - 00065536 _____ () C:\WINDOWS\system32\spu_storage.bin
2015-03-30 01:44 - 2015-03-30 15:40 - 00000000 ____D () C:\Program Files\AMD
2015-03-30 01:44 - 2015-03-30 01:45 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2015-03-30 01:44 - 2015-03-30 01:44 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2015-03-30 01:44 - 2015-03-30 01:44 - 00000000 _____ () C:\WINDOWS\ativpsrm.bin
2015-03-29 16:55 - 2015-03-29 16:55 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-03-29 16:55 - 2015-03-29 16:55 - 14048512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 12975360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 12834736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 06242576 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 05804772 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-03-29 16:55 - 2015-03-29 16:55 - 05486344 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 05234952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 04423000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-03-29 16:55 - 2015-03-29 16:55 - 03218800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02909552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02902040 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02814832 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02789808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02702040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-03-29 16:55 - 2015-03-29 16:55 - 02503536 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02421480 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02162992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01952722 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-03-29 16:55 - 2015-03-29 16:55 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01709272 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01558720 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01499984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01413776 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01360640 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01313904 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01298136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01136728 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 01104040 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00995120 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00979280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00943784 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00922880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00856992 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00836240 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00734376 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00650384 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00542352 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-03-29 16:55 - 2015-03-29 16:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00454288 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00434832 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00369296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00336144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00306288 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00284944 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00250536 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00213432 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00109848 _____ () C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00096568 _____ () C:\WINDOWS\system32\audioLibVc.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-03-29 16:55 - 2015-03-29 16:55 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-03-29 16:37 - 2015-03-29 16:37 - 00000000 ____D () C:\Users\Leon\AppData\Local\Quadriga Games
2015-03-29 16:33 - 2015-03-30 02:07 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Die Polizei 2013
2015-03-29 16:29 - 2015-03-29 16:29 - 00000000 ____D () C:\Program Files (x86)\Quadriga Games
2015-03-29 16:26 - 2015-03-29 16:26 - 00000424 _____ () C:\Users\Leon\Desktop\Dieser PC - Verknüpfung.lnk
2015-03-28 14:59 - 2015-03-28 14:59 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-03-27 20:28 - 2015-03-27 20:28 - 00000000 ____D () C:\Users\Jana\AppData\Roaming\Macromedia
2015-03-27 14:26 - 2015-04-18 13:14 - 00003808 _____ () C:\WINDOWS\System32\Tasks\AutoKMS
2015-03-27 08:40 - 2015-03-27 08:40 - 00021152 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgboota.sys
2015-03-26 14:13 - 2015-03-26 23:08 - 00001477 _____ () C:\Users\Leon\Desktop\XBoxStat - Verknüpfung.lnk
2015-03-26 13:40 - 2015-03-26 13:40 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2015-03-26 13:38 - 2015-03-30 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2015-03-26 13:38 - 2015-03-26 13:38 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories
2015-03-25 11:21 - 2015-03-25 11:21 - 00281056 ____N (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2015-03-25 11:21 - 2015-03-25 11:21 - 00281056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\SET197E.tmp
2015-03-23 19:02 - 2015-03-23 19:02 - 00000000 ____D () C:\Users\Jana\AppData\Roaming\AVG2015
2015-03-23 19:02 - 2015-03-23 19:02 - 00000000 ____D () C:\Users\Jana\AppData\Local\Avg2015
2015-03-23 18:31 - 2015-03-23 18:31 - 00000000 ____D () C:\Users\Leon\AppData\Local\Avg2014
2015-03-23 15:49 - 2015-03-30 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Construction Simulator 2015
2015-03-23 15:48 - 2015-03-23 15:50 - 00000000 ____D () C:\Program Files (x86)\Construction Simulator 2015
2015-03-20 20:38 - 2015-03-20 20:38 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\SOCCC
2015-03-20 20:38 - 2015-03-20 20:38 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA
2015-03-20 20:02 - 2015-03-20 22:03 - 00000000 ____D () C:\Users\Leon\Downloads\Construction.Simulator.2015.CODEX
2015-03-20 12:18 - 2015-03-20 12:18 - 00040928 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgrkx64.sys
2015-03-19 16:05 - 2015-03-19 16:05 - 00289248 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\SET18E1.tmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-18 16:58 - 2014-08-27 14:27 - 00001110 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-18 16:58 - 2014-08-27 14:27 - 00001106 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-18 16:57 - 2015-01-09 22:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-18 16:54 - 2015-03-14 19:17 - 00000000 ____D () C:\WINDOWS\ShellNew
2015-04-18 16:54 - 2015-03-14 10:58 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-18 16:54 - 2015-01-09 22:25 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2015-04-18 16:54 - 2015-01-09 22:13 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-04-18 16:51 - 2015-03-14 10:58 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-18 16:51 - 2009-07-14 04:34 - 00000387 _____ () C:\WINDOWS\win.ini
2015-04-18 16:45 - 2014-08-27 17:04 - 00000000 ____D () C:\ProgramData\MFAData
2015-04-18 16:25 - 2015-02-28 13:48 - 00016148 _____ () C:\WINDOWS\system32\LEON-PC_Leon_HistoryPrediction.bin
2015-04-18 16:16 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-04-18 16:15 - 2014-10-05 14:41 - 00000000 ____D () C:\ProgramData\AVG2015
2015-04-18 16:04 - 2015-02-28 15:27 - 00000000 ____D () C:\ProgramData\USOShared
2015-04-18 15:35 - 2015-02-14 20:50 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-18 14:54 - 2014-08-31 23:38 - 00000000 ____D () C:\Users\Leon\AppData\Local\ftblauncher
2015-04-18 13:24 - 2015-01-20 14:09 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-04-18 13:16 - 2015-01-05 19:22 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Raptr
2015-04-18 13:13 - 2015-03-14 11:17 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-18 13:12 - 2015-03-14 09:38 - 00131072 ___SH () C:\WINDOWS\system32\config\BBI
2015-04-18 13:00 - 2014-08-27 17:07 - 00000000 ___HD () C:\$AVG
2015-04-18 12:57 - 2015-03-14 10:58 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2015-04-18 12:47 - 2015-03-01 12:43 - 00004086 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{62FF9BEA-BA8C-400D-87D1-659BE52151C5}
2015-04-18 12:44 - 2015-02-01 01:11 - 00000000 ____D () C:\ProgramData\Unified Remote
2015-04-17 23:00 - 2014-08-27 14:31 - 00002252 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-04-17 22:07 - 2015-03-10 18:55 - 00005108 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for Leon-PC-Jana Leon-PC
2015-04-17 19:32 - 2015-03-09 19:14 - 00016148 _____ () C:\WINDOWS\system32\LEON-PC_Jana_HistoryPrediction.bin
2015-04-17 19:17 - 2015-03-09 19:28 - 00004086 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F95D1803-7854-4B9B-94B9-29C339260AC1}
2015-04-16 16:16 - 2015-03-09 19:15 - 00000000 ____D () C:\Users\Jana\AppData\Roaming\Raptr
2015-04-14 21:07 - 2014-11-24 19:04 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\BitTorrent
2015-04-14 21:07 - 2014-11-22 22:58 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\.ccemuredux
2015-04-14 14:13 - 2015-03-14 09:38 - 00032768 ___SH () C:\WINDOWS\system32\config\ELAM
2015-04-13 18:57 - 2015-01-23 22:53 - 00000000 ____D () C:\Users\Leon\AppData\Local\Spotify
2015-04-13 18:57 - 2015-01-23 22:44 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Spotify
2015-04-13 18:50 - 2015-02-21 21:35 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Skype
2015-04-08 00:22 - 2015-03-11 22:38 - 00000000 ____D () C:\Users\Leon\AppData\Local\1E00F0A0-1426109933-6E00-C1E1-D850E6E4D8A8
2015-04-08 00:22 - 2015-03-11 22:34 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\1E00F0A0-1426106091-6E00-C1E1-D850E6E4D8A8
2015-04-07 16:12 - 2009-07-14 05:20 - 00000000 ____D () C:\WINDOWS\LiveKernelReports
2015-04-07 16:05 - 2014-08-27 14:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-06 22:23 - 2015-03-14 19:13 - 00882900 _____ () C:\WINDOWS\system32\perfh007.dat
2015-04-06 22:23 - 2015-03-14 19:13 - 00195482 _____ () C:\WINDOWS\system32\perfc007.dat
2015-04-04 21:49 - 2015-01-23 22:53 - 00001882 _____ () C:\Users\Leon\Desktop\Spotify.lnk
2015-04-04 21:49 - 2015-01-23 22:53 - 00001868 _____ () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-04-01 19:54 - 2014-09-07 21:05 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Mozilla
2015-04-01 19:51 - 2015-01-09 20:49 - 00000000 ____D () C:\Users\Leon\Desktop\Programmierung
2015-03-31 23:16 - 2014-09-20 00:02 - 00000000 ____D () C:\Users\Leon\Documents\Euro Truck Simulator 2
2015-03-31 13:53 - 2015-01-20 13:35 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-03-31 00:53 - 2015-03-09 19:15 - 00002392 _____ () C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-03-31 00:53 - 2015-03-09 19:15 - 00000000 ___RD () C:\Users\Jana\OneDrive
2015-03-31 00:53 - 2015-03-09 19:14 - 00000000 ____D () C:\Users\Jana\AppData\Local\Packages
2015-03-30 15:39 - 2015-01-03 12:15 - 00000000 ____D () C:\ProgramData\AMD
2015-03-30 15:36 - 2015-01-05 19:22 - 00000000 ____D () C:\Program Files (x86)\AMD
2015-03-30 15:33 - 2015-01-05 19:02 - 00000000 ____D () C:\AMD
2015-03-30 15:19 - 2015-01-05 19:22 - 00000000 ____D () C:\Program Files (x86)\Raptr
2015-03-30 15:07 - 2015-02-02 20:38 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\TS3Client
2015-03-30 15:07 - 2014-10-19 22:52 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2015-03-30 15:07 - 2014-08-27 14:50 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\DAEMON Tools Lite
2015-03-30 14:39 - 2014-09-20 20:17 - 00000000 ____D () C:\Users\Leon\Desktop\Games
2015-03-30 13:00 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\restore
2015-03-30 12:57 - 2015-02-06 22:53 - 00865280 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
2015-03-30 02:37 - 2015-03-14 10:58 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2015-03-30 02:37 - 2014-10-30 21:24 - 00000000 ____D () C:\Users\Leon\Documents\My Games
2015-03-30 02:27 - 2015-02-28 13:48 - 00000000 ____D () C:\Users\Leon\AppData\Local\Packages
2015-03-30 02:26 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\SysWOW64\inetsrv
2015-03-30 02:26 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2015-03-30 02:26 - 2015-03-14 10:55 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-03-30 02:26 - 2015-03-14 10:55 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-03-30 02:26 - 2015-03-14 10:55 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-03-30 02:26 - 2015-03-14 10:55 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-03-30 02:26 - 2015-03-14 10:55 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-03-30 02:26 - 2015-03-14 10:55 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-03-30 02:26 - 2015-03-14 10:55 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-03-30 02:26 - 2015-03-14 10:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-03-30 02:26 - 2015-03-14 10:55 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-03-30 02:26 - 2015-03-14 10:55 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-03-30 02:26 - 2015-03-14 10:55 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-03-30 02:26 - 2015-03-14 10:55 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-03-30 02:26 - 2015-02-28 13:51 - 00002392 _____ () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-03-30 02:26 - 2015-02-28 13:51 - 00000000 ___RD () C:\Users\Leon\OneDrive
2015-03-30 02:25 - 2015-03-14 10:55 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-03-30 02:25 - 2015-03-14 10:55 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-03-30 02:25 - 2015-03-14 10:55 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-03-30 02:25 - 2015-03-14 10:55 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-03-30 02:25 - 2015-03-14 10:55 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-03-30 02:25 - 2015-03-14 10:55 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-03-30 02:25 - 2015-03-14 10:55 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-03-30 02:25 - 2015-03-14 10:55 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-03-30 02:25 - 2015-03-14 10:55 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-03-30 02:25 - 2015-03-14 10:55 - 00009096 _____ () C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-03-30 02:25 - 2015-03-14 10:54 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-03-30 02:25 - 2015-03-14 10:54 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-03-30 02:25 - 2015-03-14 10:54 - 00563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-03-30 02:25 - 2015-03-14 10:54 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-03-30 02:25 - 2015-03-14 10:54 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-03-30 02:25 - 2015-03-14 10:54 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-03-30 02:25 - 2015-03-14 10:54 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-03-30 02:25 - 2015-03-14 10:54 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-03-30 02:25 - 2015-03-14 10:54 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-03-30 02:25 - 2015-03-14 10:54 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-03-30 02:25 - 2015-03-14 10:54 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-03-30 02:25 - 2015-03-14 10:54 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-03-30 02:25 - 2015-03-14 10:54 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-03-30 02:25 - 2015-03-14 10:54 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-03-30 02:25 - 2015-03-14 10:54 - 00009096 _____ () C:\WINDOWS\system32\msmqtrc.mof
2015-03-30 02:23 - 2015-03-14 19:17 - 00000000 ___RD () C:\WINDOWS\MiracastView
2015-03-30 02:23 - 2015-03-14 10:58 - 00000000 ___RD () C:\WINDOWS\PrintDialog3D
2015-03-30 02:23 - 2015-03-14 10:58 - 00000000 ___RD () C:\WINDOWS\PrintDialog
2015-03-30 02:23 - 2015-03-14 10:58 - 00000000 ___RD () C:\WINDOWS\MtcUvc
2015-03-30 02:23 - 2015-03-14 10:58 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-03-30 02:23 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\WinStore
2015-03-30 02:22 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\rescache
2015-03-30 02:21 - 2015-03-14 09:38 - 00000000 __RHD () C:\Users\Default
2015-03-30 02:20 - 2015-02-28 12:58 - 00000000 ____D () C:\RecoveryImage
2015-03-30 02:19 - 2015-03-14 10:58 - 00000000 __RSD () C:\WINDOWS\Media
2015-03-30 02:19 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\Registration
2015-03-30 02:19 - 2015-02-28 13:40 - 00023056 _____ () C:\WINDOWS\system32\emptyregdb.dat
2015-03-30 02:18 - 2015-02-28 12:58 - 00000000 ____H () C:\$WINRE_BACKUP_PARTITION.MARKER
2015-03-30 02:17 - 2015-03-14 10:58 - 00000000 __RHD () C:\Users\Public\Libraries
2015-03-30 02:08 - 2015-03-14 11:16 - 00512176 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-30 02:07 - 2015-03-16 17:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.3
2015-03-30 02:07 - 2015-03-14 21:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2015-03-30 02:07 - 2015-03-14 10:58 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-30 02:07 - 2015-03-13 16:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Papers, Please [GOG.com]
2015-03-30 02:07 - 2015-03-10 23:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super nude patch 3
2015-03-30 02:07 - 2015-03-10 23:57 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Super nude patch 3
2015-03-30 02:07 - 2015-03-04 20:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series
2015-03-30 02:07 - 2015-02-20 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2015-03-30 02:07 - 2015-02-14 23:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltimateSuite
2015-03-30 02:07 - 2015-02-14 21:04 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-03-30 02:07 - 2015-02-14 20:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-03-30 02:07 - 2015-02-14 17:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aerosoft
2015-03-30 02:07 - 2015-02-11 22:21 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UltraUXThemePatcher
2015-03-30 02:07 - 2015-02-11 21:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\European Bus Simulator 2012
2015-03-30 02:07 - 2015-02-07 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bus-Simulator 2009
2015-03-30 02:07 - 2015-02-02 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-03-30 02:07 - 2015-02-01 01:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unified Remote 3
2015-03-30 02:07 - 2015-01-31 22:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TightVNC
2015-03-30 02:07 - 2015-01-31 15:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-03-30 02:07 - 2015-01-11 19:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Far Cry 4
2015-03-30 02:07 - 2015-01-09 23:52 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-03-30 02:07 - 2015-01-09 23:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super nude patch II
2015-03-30 02:07 - 2015-01-09 17:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HeavyLoad
2015-03-30 02:07 - 2015-01-09 16:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recovery Toolbox for Zip
2015-03-30 02:07 - 2015-01-08 22:27 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2015-03-30 02:07 - 2015-01-05 19:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2015-03-30 02:07 - 2015-01-03 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perixx Gaming mouse
2015-03-30 02:07 - 2014-11-07 19:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Writer
2015-03-30 02:07 - 2014-11-04 18:17 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDF Editor 64bit 4.5
2015-03-30 02:07 - 2014-10-19 22:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2015-03-30 02:07 - 2014-10-19 21:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-03-30 02:07 - 2014-10-17 21:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Train Fever
2015-03-30 02:07 - 2014-10-01 20:23 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-03-30 02:07 - 2014-09-20 00:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
2015-03-30 02:07 - 2014-09-16 19:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2015-03-30 02:07 - 2014-09-16 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MassTube
2015-03-30 02:07 - 2014-09-14 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool
2015-03-30 02:07 - 2014-09-02 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.1
2015-03-30 02:07 - 2014-08-31 23:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-03-30 02:07 - 2014-08-31 01:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Automation
2015-03-30 02:07 - 2014-08-30 21:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\D-Fend Reloaded
2015-03-30 02:07 - 2014-08-29 15:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 2013
2015-03-30 02:07 - 2014-08-28 18:26 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-03-30 02:07 - 2014-08-28 18:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-03-30 02:07 - 2014-08-27 23:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-03-30 02:07 - 2014-08-27 14:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-03-30 02:07 - 2014-08-27 14:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-03-30 02:07 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-03-30 02:04 - 2015-03-14 19:13 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN
2015-03-30 02:04 - 2015-03-14 19:13 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep
2015-03-30 02:04 - 2015-03-14 19:13 - 00000000 ____D () C:\WINDOWS\system32\WCN
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ___SD () C:\WINDOWS\SysWOW64\Configuration
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ___SD () C:\WINDOWS\system32\Configuration
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\SysWOW64\Speech_OneCore
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\WinBioPlugIns
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\spool
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\Speech_OneCore
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\oobe
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\MUI
2015-03-30 02:04 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\IME
2015-03-30 02:04 - 2015-02-28 17:02 - 00000000 ____D () C:\WINDOWS\system32\MetroClock
2015-03-30 02:04 - 2015-01-20 14:09 - 00000000 ____D () C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-03-30 02:04 - 2015-01-20 14:09 - 00000000 ____D () C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-03-30 02:04 - 2015-01-20 11:54 - 00000000 ____D () C:\Users\Default.migrated
2015-03-30 02:04 - 2014-08-28 16:08 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2015-03-30 02:03 - 2015-03-14 12:15 - 00000000 ____D () C:\WINDOWS\DigitalLocker
2015-03-30 02:03 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\schemas
2015-03-30 02:03 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\InputMethod
2015-03-30 02:03 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\ime
2015-03-30 02:03 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\Help
2015-03-30 02:03 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\Cursors
2015-03-30 02:03 - 2015-03-04 20:27 - 00000000 ___HD () C:\WINDOWS\system32\CanonIJ Uninstaller Information
2015-03-30 02:03 - 2014-09-02 18:40 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2015-03-30 02:02 - 2015-03-14 10:58 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2015-03-30 02:02 - 2015-03-14 10:58 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2015-03-30 02:02 - 2015-03-12 21:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-03-30 02:02 - 2015-02-21 21:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-03-30 02:02 - 2015-01-09 23:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2015-03-30 02:02 - 2015-01-03 12:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PERIXX
2015-03-30 02:02 - 2014-10-20 15:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-03-30 02:02 - 2014-10-19 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari
2015-03-30 02:02 - 2014-10-13 18:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-03-30 02:02 - 2014-10-05 14:41 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-03-30 02:02 - 2014-09-16 15:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
2015-03-30 02:02 - 2014-09-07 20:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\N3V Games
2015-03-30 02:02 - 2014-08-30 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
2015-03-30 01:56 - 2015-03-14 10:58 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2015-03-30 01:56 - 2014-09-16 18:53 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-03-30 01:56 - 2014-08-30 22:47 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fishtank Interactive
2015-03-30 01:52 - 2015-03-14 09:39 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2015-03-30 01:52 - 2014-08-27 13:47 - 00000000 __SHD () C:\Recovery
2015-03-29 21:41 - 2015-01-28 19:30 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2015-03-29 17:04 - 2015-03-14 19:47 - 00000000 ___HD () C:\$Windows.~BT
2015-03-28 19:45 - 2015-03-12 21:19 - 00000000 ____D () C:\ProgramData\Avira
2015-03-28 19:45 - 2015-03-12 21:19 - 00000000 ____D () C:\Program Files (x86)\Avira
2015-03-28 19:03 - 2015-02-28 13:52 - 00001912 _____ () C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TrayItem.{152BFE5E-87A8-A031-AC90-697C5BFFAA92}.lnk
2015-03-28 18:53 - 2014-09-01 00:12 - 00000000 ____D () C:\Users\Leon\AppData\Roaming\.minecraft
2015-03-28 18:45 - 2015-03-17 22:27 - 00000000 ____D () C:\Program Files (x86)\Remotr
2015-03-28 18:26 - 2014-09-16 15:56 - 00000000 ____D () C:\Users\Leon\Documents\OpenTTD
2015-03-23 17:17 - 2014-10-19 21:26 - 00000000 ____D () C:\Users\Leon\Documents\HTC
2015-03-22 15:31 - 2015-03-17 22:27 - 00000000 ____D () C:\ProgramData\Remotr
2015-03-20 19:22 - 2015-03-10 16:53 - 00000000 ____D () C:\ProgramData\Origin
2015-03-20 19:22 - 2015-03-10 16:53 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-03-20 19:19 - 2015-02-14 21:04 - 00000891 _____ () C:\Users\Leon\Desktop\Steam.lnk

==================== Files in the root of some directories =======

2014-10-11 00:50 - 2014-10-11 00:52 - 0000624 _____ () C:\Users\Leon\AppData\Roaming\All CPU MeterV3_Settings.ini
2014-10-11 00:51 - 2014-10-11 00:52 - 0000282 _____ () C:\Users\Leon\AppData\Roaming\GPU MeterV2_Settings.ini
2014-11-07 23:07 - 2014-11-07 23:09 - 0000600 _____ () C:\Users\Leon\AppData\Local\PUTTY.RND
2014-09-02 17:03 - 2015-03-08 18:48 - 0007605 _____ () C:\Users\Leon\AppData\Local\resmon.resmoncfg
2014-10-15 18:50 - 2014-10-15 18:50 - 0000000 _____ () C:\Users\Leon\AppData\Local\{4F557A6B-3222-4A4B-AF96-1AFFAF6610AF}
2015-03-30 01:49 - 2015-03-30 01:49 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Leon\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe IS MISSING <==== ATTENTION!.
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-18 13:24

==================== End Of Log ============================
--- --- ---
Alt 18.04.2015, 16:06   #10
Leon669
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Addition.txt
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-04-2015 01
Ran by Leon at 2015-04-18 16:59:47
Running from C:\Users\Leon\Documents
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4K Video Downloader 3.4 (HKLM-x32\...\4K Video Downloader_is1) (Version: 3.4.3.1485 - Open Media LLC)
ACP Application (Version: 2.15.10.0003 - Advanced Micro Devices, Inc.) Hidden
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.0.0.7 - Aerosoft)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.10.0 - Asmedia Technology)
AVG 2014 (Version: 14.0.4765 - AVG Technologies) Hidden
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5941 - AVG Technologies)
AVG 2015 (Version: 15.0.4331 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5941 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 3.2.0.18 - AVG Technologies)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 15.0.8.656 - Avira)
BitTorrent (HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\BitTorrent) (Version: 7.9.2.37755 - BitTorrent Inc.)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.4.4078 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{152E0B21-19D5-4772-9EF8-8E76074B0C0A}) (Version: 0.9.4.4078 - BlueStack Systems, Inc.)
Bus-Simulator 2009 (HKLM-x32\...\Bus-Simulator 2009_is1) (Version:  - astragon Software GmbH)
Canon MP640 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP640_series) (Version:  - )
Car Tycoon (HKLM-x32\...\{797D1DB3-BA0F-4A2D-9F99-5D2C09D0A7FE}) (Version: 1.00.0000 - Fishtank Interactive)
CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5000 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Construction Simulator 2015 (HKLM-x32\...\Construction Simulator 2015_is1) (Version:  - )
CrystalDiskInfo 6.3.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.3.0 - Crystal Dew World)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
D-Fend Reloaded 1.4.1 (deinstallieren) (HKLM-x32\...\D-Fend Reloaded) (Version: 1.4.1 - Alexander Herzog)
Die Polizei 2013 (HKLM-x32\...\Die Polizei 2013) (Version:  - Quadriga Games)
Die Sims 2 (HKLM-x32\...\{6E7DD182-9FC6-4651-0095-2E666CC6AF35}) (Version:  - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
D-Link GO-USB-N150 (HKLM-x32\...\{9C222509-055C-4CFF-A116-1774517825EB}) (Version: 1.13.0109 - D-Link Corp.)
EaseUS Partition Master 10.1 (HKLM-x32\...\EaseUS Partition Master_is1) (Version:  - EaseUS)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON SX125 Series Printer Uninstall (HKLM\...\EPSON SX125 Series) (Version:  - SEIKO EPSON Corporation)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.11.1 - SCS Software)
European Bus Simulator 2012 (HKLM\...\European Bus Simulator 2012_is1) (Version:  - astragon)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.6.0 - Релиз от R.G. Steamgames)
Farming Simulator 2013 (HKLM-x32\...\FarmingSimulator2013INT_is1) (Version: 1.0 - GIANTS Software)
Free Audio Converter version 5.0.48.923 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.48.923 - DVDVideoSoft Ltd.)
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.0 - Ellora Assets Corporation)
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version:  - Greenheart Games)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.90 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
HeavyLoad V3.3 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.3 - JAM Software)
Hotfix für Microsoft Visual C# 2010 Express - DEU (KB2635973) (HKLM-x32\...\{D81641E8-ABF1-3D07-803B-60E8FC619368}.KB2635973) (Version: 1 - Microsoft Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
LG United Mobile Driver (HKLM-x32\...\{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}) (Version: 3.10.1.0 - LG Electronics)
LibreOffice 4.3.6.2 (HKLM-x32\...\{9F410B70-8A45-4F28-985E-F9731219BCBC}) (Version: 4.3.6.2 - The Document Foundation)
MassTube 12.8.3.295 (HKLM-x32\...\{622A0A32-9711-43D3-A6F1-B0FC78F1A68A}_is1) (Version: 12.8.3.295 - Havy Alegria)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.1 Language Pack - DEU) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{E9089B6A-1FDE-47F3-8D29-175F5B7A0722}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{C668416A-9213-4058-B7F2-01A42D85559D}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C# 2010 Express - DEU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 37.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 de)) (Version: 37.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NewFreeScreensaver nfsHDWaterfall05 (HKLM-x32\...\nfsHDWaterfall05 New Free Screensaver_is1) (Version:  - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.8 - Notepad++ Team)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OMAPFlash (HKLM-x32\...\{497A3C2A-737B-4392-93E4-4B571CFBAB75}) (Version: 1.0.0 - Texas Instruments)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
OpenTTD 1.4.2 (HKLM-x32\...\OpenTTD) (Version: 1.4.2 - OpenTTD)
Opera Stable 28.0.1750.48 (HKLM-x32\...\Opera 28.0.1750.48) (Version: 28.0.1750.48 - Opera Software ASA)
Papers, Please (HKLM-x32\...\GOGPACKPAPERSPLEASE_is1) (Version: 2.0.0.4 - GOG.com)
PDF Editor 64bit 4 (HKLM\...\PDF Editor 64bit 4) (Version:  - )
Perixx Gaming mouse version 1.1.2 (HKLM-x32\...\{2F606408-495F-4772-A3A7-BE0A31C4B261}_is1) (Version: 1.1.2 - )
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.17.22533 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.86.508.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7458 - Realtek Semiconductor Corp.)
Recovery Toolbox for Zip 1.1 (HKLM-x32\...\Recovery Toolbox for Zip_is1) (Version:  - Recovery Toolbox, Inc.)
RollerCoaster Tycoon 3 (HKLM-x32\...\RollerCoaster Tycoon 3_is1) (Version:  - Atari)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{5AD12E7A-D739-4451-9BD1-3610EC56D8F5}) (Version: 2.2.45206 - SlimWare Utilities, Inc.)
Smooth Operators (HKLM-x32\...\Steam App 262900) (Version:  - Heydeck Games)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spotify (HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\Spotify) (Version: 1.0.3.101.gbfa97dfe - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
TightVNC (HKLM\...\{D2372F87-7DA2-47F7-A102-AF2181B8EAA2}) (Version: 2.7.10.0 - GlavSoft LLC.)
Train Fever (HKLM-x32\...\Train Fever_is1) (Version:  - )
Trainz Simulator 12 (HKLM-x32\...\Trainz Simulator 12_is1) (Version:  - )
UltimateModEditor GDT (HKLM-x32\...\UltimateModEditor GDT 0.4.5.39) (Version: 0.4.5.39 - Francesco Abbattista and Chad Keating)
UltimateModEditor GDT (Version: 0.4.5.39 - Francesco Abbattista and Chad Keating) Hidden
UltraUXThemePatcher (HKLM-x32\...\UltraUXThemePatcher) (Version: 2.4.0.0 - Manuel Hoefs (Zottel))
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.1 - Unified Intents AB)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{CFCB8616-A5D1-4281-80E8-389F685BFAE2}) (Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Windows 10 Transformation Pack (HKLM-x32\...\UX Pack) (Version: 2.0 - Windows X's Live)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
World of Subways Vol. 3 (HKLM-x32\...\{3D294F77-AD11-45A5-B56B-E0D9C63C21FF}) (Version: 1.2 - aerosoft)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1716409246-1522537784-3627350102-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Leon\AppData\Local\Microsoft\OneDrive\17.3.4726.0226_1\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

05-04-2015 21:33:44 SlimDrivers Installing Drivers
06-04-2015 22:15:19 Installed AVG 2015
18-04-2015 14:13:39 Geplanter Prüfpunkt

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-03-14 10:58 - 2015-03-14 10:57 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00FCF4D9-4757-4A1C-A3BB-0488E1C26956} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {04304132-F27E-48EC-A9CF-7D5608AFA30C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_RebootDisplay => C:\windows\system32\MusNotification.exe [2015-03-14] (Microsoft Corporation)
Task: {084ED4C7-D25E-454C-83D0-271F32C6BE6A} - System32\Tasks\{BD3DB0CB-93F5-4D8A-A617-4D3461BFA03A} => pcalua.exe -a E:\Setup.EXE -d E:\
Task: {0B5FFD95-2576-4C61-8B83-A946EAF2D1B7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {136025E2-FF4C-470A-8F54-59808B3F520F} - System32\Tasks\{3DCE903C-3EAA-4A0B-85A9-2674E42AAF49} => pcalua.exe -a "C:\Program Files (x86)\UX Pack\uxuninst.exe"
Task: {19B6AB5F-73A7-47AE-80F8-B6E3199A62F1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {1BB15F3F-698E-4815-9937-235A28116909} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-27] (Google Inc.)
Task: {2073DC63-6F4F-4662-ACC1-9F28CA8EFD1E} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask
Task: {24E7D347-C6B6-421F-8739-D4BA85C0EFD5} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {291636DD-F871-4337-A3E5-F1DA66190EE2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {2A6FC9CC-EFF0-4C40-AAB9-86069CB5608D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {2A8B98EB-3946-48E6-B46E-B520DF56BE64} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {32401EF8-116B-41F0-840A-969D063D13BC} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Leon-PC-Leon Leon-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe
Task: {3550F6E2-D940-42F8-9FC5-46736F13E889} - System32\Tasks\{D7A54F4D-5791-4D86-947D-992860705C13} => pcalua.exe -a E:\program\32\Setup32.exe -d E:\program\32
Task: {35FB7F99-049D-42BC-8EFF-12B67F3CF721} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\Windows\system32\MusNotification.exe [2015-03-14] (Microsoft Corporation)
Task: {46924F8E-706E-41F5-94C9-F28A935555E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {47EFD96C-C9A2-4BBE-BA72-A8104E4BBD29} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4C3E505D-6508-4E6D-9005-51A5D293C66A} - System32\Tasks\Microsoft\Windows\ContextManager\Triggers => C:\Windows\system32\ContextManagerNotificationHandler.exe
Task: {4CEF0FD2-F530-4741-A601-1C243D507471} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2015-02-27] (SlimWare Utilities, Inc.)
Task: {5001D88D-98B1-449B-8319-6DC6E62F5806} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-02-26] (Microsoft Corporation)
Task: {51AF124C-D430-4850-9741-4BAF9EB390A4} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update
Task: {5ACAB365-3176-4648-8FAF-B25C3060DDCA} - System32\Tasks\Microsoft\Windows\ContextManager\Logon => C:\Windows\system32\ContextManagerNotificationHandler.exe
Task: {5E4759D6-53C1-4363-AB67-C52D4A0C42E8} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation
Task: {5FBFF91F-8956-4316-A24A-5FC41BAD382F} - System32\Tasks\{D7956BFC-BEAD-413D-887C-E3B37C8FF436} => pcalua.exe -a C:\ProgramData\LGMOBILEAX\LGMLauncher.exe -d C:\ProgramData\LGMOBILEAX
Task: {67C4EE98-B9FC-4E9A-9DB4-8F615AC1EAC3} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {68E60F43-4179-4E67-A53A-854168023218} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-27] (Google Inc.)
Task: {6B4298AF-9260-4CEE-8714-7F7613D566B9} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {6DC1A932-7450-40A3-A78A-799208F06CF5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-13] (Piriform Ltd)
Task: {78DF3C32-B55A-4F39-9F09-94CDA211996C} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-03-14] (Microsoft Corporation)
Task: {7ABEDC3B-7DC9-4E2B-A4BC-73973BFA5A3D} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\HypervisorFlightingTask
Task: {7F507CA0-B22A-4F57-AD8A-06A747B92F04} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7F903C6B-E511-4493-97C4-3164667B5F60} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2015-03-14] (Microsoft Corporation)
Task: {8A2C31D9-3880-408A-A057-E940782C0626} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {8E9C29E3-035C-4A20-88A1-242D647AB476} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2015-03-14] (Microsoft Corporation)
Task: {905E75CF-AA98-4F34-94ED-03B8E0E8CAEC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {93DDF3E5-F16A-4542-8A74-784608B7D7F2} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {94DA19F3-B76C-40A9-8373-6873C6835A31} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9AFF561F-7B0B-46E6-B77F-7D72C579DE1E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2015-03-14] (Microsoft Corporation)
Task: {A07D0BF2-9909-4954-A946-AAC39803733C} - System32\Tasks\{3DC8C0E6-0858-43AD-8483-17BF2CDC6144} => pcalua.exe -a C:\ProgramData\SecurityUtility\uninstall.exe
Task: {A244FF79-8619-437F-A180-FB01B8460504} - System32\Tasks\Microsoft\Windows\User Data Service\Unistore Logon => C:\Windows\System32\UnistackSvcWrapper.exe [2015-03-14] (Microsoft Corporation)
Task: {A541C91F-AE2D-4B62-A782-A9EA4AF2586C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_WnfDisplay => C:\windows\system32\MusNotification.exe [2015-03-14] (Microsoft Corporation)
Task: {A65DB340-2EA6-4875-970F-57AB72AC1AB6} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2015-03-14] (Microsoft Corporation)
Task: {A9EB41F5-CB86-4FBA-BA8B-E861A38F7DF6} - System32\Tasks\Microsoft\Windows\Service Configuration\ConfigurationClient
Task: {AE54CDCD-CAD5-4D3C-8D91-1F0679EB29CE} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2015-03-14] (Microsoft Corporation)
Task: {AEAD4A8E-59B9-4939-917B-2A52FC91E519} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-03-14] (Microsoft Corporation)
Task: {B1A22C91-8F36-427D-A4AF-A4264F0039B0} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-03-14] (Microsoft Corporation)
Task: {B1CB86F7-FE51-4EA4-B8D5-1214082AE183} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {B23F69AD-89D3-441E-8819-675802471972} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
Task: {B3B229C9-7E69-4BC9-AAB7-F5337A4B38F8} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2015-03-14] (Microsoft Corporation)
Task: {B599B85B-1D65-4B91-830A-EF2ADDD75F68} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {B7095521-DA9C-46BB-B3F3-91F6E73BF358} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation
Task: {B7144753-BB3E-4195-8254-7F1B54162B11} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {B8FBC7CF-CEF8-4356-9CAA-968E2AB9A859} - System32\Tasks\0614aUpdateInfo => C:\ProgramData\Avg_Update_0614a\0614a_AVG-Secure-Search-Update.exe [2014-06-19] ()
Task: {C266EB8F-A735-4A77-9C14-1B1C2A4183BF} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Leon-PC-Jana Leon-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe
Task: {C4A00CBB-5CC8-4897-AE43-031844CE567C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {C8A23626-DD41-41B0-A459-63AF15ABC8AE} - System32\Tasks\Microsoft\Windows\NetworkDriverPlatform\TelemetryGatherer => C:\Windows\system32\NetCfgDiagnostics.exe [2015-03-14] (Microsoft Corporation)
Task: {C9F4BBDD-EA53-441E-A282-F5B85D986611} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync
Task: {D0639693-A38C-4C44-8F2F-22632D550F50} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {D2E81209-DD45-46F2-A821-BA6119570ED7} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {D72A07B1-5374-403A-BC2C-E792910C56F4} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {DA9DD096-A0DB-4B6D-A4F9-288DD4056D4F} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask
Task: {DB304E5C-BBFE-45C3-99D9-12032ABCA9ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {DFA0A932-9E4F-43AC-9B08-FF522A3A472F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {F7CC0B29-231E-40FA-88A8-540239A2CF3A} - System32\Tasks\SpeechRuntimeTask => C:\Windows\system32\speech_onecore\common\SpeechRuntime.exe [2015-03-14] (Microsoft Corporation)
Task: {F91BCE70-B727-4885-BD2B-6A689203D803} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {FE16B017-8CF0-492E-A172-F0E92439AEE1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: C:\WINDOWS\Tasks\0614aUpdateInfo.job => C:\ProgramData\Avg_Update_0614a\0614a_AVG-Secure-Search-Update.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

==================== Loaded Modules (whitelisted) ==============

2014-11-20 21:23 - 2014-11-20 21:23 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00348672 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-03-14 10:52 - 2015-03-14 10:52 - 02143960 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-03-14 10:52 - 2015-03-14 10:52 - 02143960 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2014-05-12 11:49 - 2014-05-12 11:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 05292544 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\StartUI.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 01555968 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.ActionCenter.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00987648 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\JumpViewUI.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00201728 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\BatteryFlyoutExperience.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00462336 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ClockFlyoutExperience.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 01180160 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\NetworkUX.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00312832 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00802816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickConnectUI.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00349696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\SampleTrayFlyout.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00710656 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\SplitApp1.dll
2015-03-14 10:50 - 2015-03-14 10:50 - 00338432 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\TrayFlyoutTemplate.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 05613568 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\SearchUI.exe
2015-03-14 19:19 - 2015-03-14 19:19 - 00131584 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\Cortana.Settings.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 02981888 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\CortanaApi.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 01966080 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\RemindersUI.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 00097792 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\Cortana.Authentication.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 00250368 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\Cortana.BackgroundTask.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 00080896 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\PersonaX.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 00310784 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\Cortana.Places.ViewModels.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 00215040 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\Cortana.Persona.dll
2015-03-14 19:19 - 2015-03-14 19:19 - 00308224 _____ () C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.2.152_x64__8wekyb3d8bbwe\Cortana.LiveTiles.dll
2014-11-20 21:23 - 2014-11-20 21:23 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-03-13 15:54 - 2015-03-13 15:54 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-01-21 02:35 - 2015-01-21 02:35 - 00106136 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe\GNSDK_FP.DLL
2015-02-14 21:01 - 2015-03-10 08:37 - 00775680 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-02-14 21:01 - 2014-12-02 02:29 - 05002752 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-02-14 21:01 - 2015-04-14 01:44 - 02371776 _____ () C:\Program Files (x86)\Steam\video.dll
2015-02-14 21:01 - 2014-12-02 02:29 - 01612800 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-02-14 21:01 - 2014-12-02 02:29 - 01210368 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-02-14 21:01 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-02-14 21:01 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-02-14 21:01 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-02-14 21:01 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-02-14 21:01 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-02-14 21:01 - 2015-04-14 01:44 - 00702656 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-01-03 12:57 - 2014-06-13 11:11 - 00042496 _____ () C:\Program Files (x86)\Perixx Gaming mouse\KBGetKey.dll
2014-09-06 17:53 - 2014-10-06 16:09 - 00577560 _____ () C:\Program Files (x86)\AVG Web TuneUp\TBAPI.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00016384 _____ () C:\Program Files (x86)\Raptr\win32trace.pyd
2014-08-14 02:37 - 2014-08-14 02:37 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll
2014-08-14 02:37 - 2014-08-14 02:37 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd
2013-11-21 02:05 - 2013-11-21 02:05 - 00256000 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll
2015-03-25 01:50 - 2015-03-25 01:50 - 02539776 _____ () C:\Program Files (x86)\Raptr\ltc_host_ex.DLL
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2014-06-18 02:56 - 2014-06-18 02:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2015-02-14 21:01 - 2015-02-25 03:58 - 34641288 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-04-17 23:00 - 2015-04-13 23:55 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\libglesv2.dll
2015-04-17 23:00 - 2015-04-13 23:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\libegl.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreUIRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreUIRegistrar => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.111.6

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^Leon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Product Registration.lnk => C:\Windows\pss\Product Registration.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BitTorrent => "C:\Users\Leon\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: DAEMON Tools Lite => "D:\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.1\bin\EpmNews.exe
MSCONFIG\startupreg: GoogleChromeAutoLaunch_6F0EB3B7B051E3E928BE4901C529C47C => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Razer Synapse => "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
MSCONFIG\startupreg: RzWizard => C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe
MSCONFIG\startupreg: Search Protection => "C:\Users\Leon\AppData\Roaming\Search Protection\SP.EXE" /autostart
MSCONFIG\startupreg: SearchProtection => "C:\Users\Leon\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Leon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: UX Launcher => C:\Program Files (x86)\UX Pack\uxlaunch.exe
MSCONFIG\startupreg: vProt => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
HKLM\...\StartupApproved\Run: => "tvncontrol"
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_6F0EB3B7B051E3E928BE4901C529C47C"
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1716409246-1522537784-3627350102-1000\...\StartupApproved\Run: => "Spotify Web Helper"

==================== Accounts: =============================

Administrator (S-1-5-21-1716409246-1522537784-3627350102-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1716409246-1522537784-3627350102-503 - Limited - Disabled)
Gast (S-1-5-21-1716409246-1522537784-3627350102-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1716409246-1522537784-3627350102-1007 - Limited - Enabled)
Jana (S-1-5-21-1716409246-1522537784-3627350102-1009 - Limited - Enabled) => C:\Users\Jana
Leon (S-1-5-21-1716409246-1522537784-3627350102-1000 - Administrator - Enabled) => C:\Users\Leon

==================== Faulty Device Manager Devices =============

Name: Microsoft Streaming Service Proxy
Description: Microsoft Streaming Service Proxy
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: MSKSSRV
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konformes, vom Hersteller definiertes Gerät
Description: HID-konformes, vom Hersteller definiertes Gerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Lautsprecher (Realtek High Definition Audio)
Description: Audioendpunkt
Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: USB-Eingabegerät
Description: USB-Eingabegerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: HidUsb
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: USB-Verbundgerät
Description: USB-Verbundgerät
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: usbccgp
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HTC One
Description: HTC One
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: HTC
Service: WUDFWpdMtp
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konformes Benutzersteuergerät
Description: HID-konformes Benutzersteuergerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: USB-Verbundgerät
Description: USB-Verbundgerät
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: usbccgp
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Microsoft-ISATAP-Adapter
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Microsoft-ISATAP-Adapter #3
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Microsoft-ISATAP-Adapter #4
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Standardvolume
Description: Standardvolume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: USB-Eingabegerät
Description: USB-Eingabegerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: HidUsb
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konforme Maus
Description: HID-konforme Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: mouhid
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Standard-Volumeschattenkopie
Description: Standard-Volumeschattenkopie
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Standard-Volumeschattenkopie
Description: Standard-Volumeschattenkopie
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Standard-Volumeschattenkopie
Description: Standard-Volumeschattenkopie
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: USB-Eingabegerät
Description: USB-Eingabegerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: HidUsb
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: USB-Massenspeichergerät
Description: USB-Massenspeichergerät
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Kompatibles USB-Speichergerät
Service: USBSTOR
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Digitalaudio (HDMI) (High Definition Audio-Gerät)
Description: Audioendpunkt
Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konformer Systemcontroller
Description: HID-konformer Systemcontroller
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: USB-Eingabegerät
Description: USB-Eingabegerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: HidUsb
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Nicht-PnP Monitor (Standard)
Description: Nicht-PnP Monitor (Standard)
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardmonitortypen)
Service: monitor
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Xbox 360
Description: Generisches Softwaregerät
Class Guid: {62f9c741-b25a-46ce-b54c-9bccce08b6f2}
Manufacturer: Microsoft Corporation
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: USB-Eingabegerät
Description: USB-Eingabegerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: HidUsb
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Standardvolume
Description: Standardvolume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-Tastatur
Description: HID-Tastatur
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: kbdhid
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Microsoft Streaming Tee/Sink-to-Sink-Konvertierung
Description: Microsoft Streaming Tee/Sink-to-Sink-Konvertierung
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: MSTEE
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konformes, vom Hersteller definiertes Gerät
Description: HID-konformes, vom Hersteller definiertes Gerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Microsoft Trusted Audio Drivers
Description: Microsoft Trusted Audio Drivers
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: drmkaud
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Microsoft Proxy für Streaming Quality Manager
Description: Microsoft Proxy für Streaming Quality Manager
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: MSPQM
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Standardvolume
Description: Standardvolume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konformes Gerät
Description: HID-konformes Gerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konformes Gerät
Description: HID-konformes Gerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konformer Systemcontroller
Description: HID-konformer Systemcontroller
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: 1 - LG TV (AMD High Definition Audio Device)
Description: Audioendpunkt
Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konformes Benutzersteuergerät
Description: HID-konformes Benutzersteuergerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: PnP-Monitor (Standard)
Description: PnP-Monitor (Standard)
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardmonitortypen)
Service: monitor
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-konforme Maus
Description: HID-konforme Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: mouhid
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HTC Android Phone USB Device
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: WiFi
Description: Generisches Softwaregerät
Class Guid: {62f9c741-b25a-46ce-b54c-9bccce08b6f2}
Manufacturer: Microsoft
Service: 
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Microsoft Proxy für Streaming Clock
Description: Microsoft Proxy für Streaming Clock
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: MSPCLOCK
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: HID-Tastatur
Description: HID-Tastatur
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: kbdhid
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: USB-Verbundgerät
Description: USB-Verbundgerät
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: usbccgp
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Standardvolume
Description: Standardvolume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: Microsoft Streaming Tee/Sink-to-Sink-Konvertierung
Description: Microsoft Streaming Tee/Sink-to-Sink-Konvertierung
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: MSTEE
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.

Name: PnP-Monitor (Standard)
Description: PnP-Monitor (Standard)
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardmonitortypen)
Service: monitor
Problem: : Currently, this hardware device is not connected to the computer. (Code 45).
Resolution: The device is not present or was previously attached to the computer.
To fix this problem, reconnect this hardware device to the computer.
If Device Manager is started with the environment variable DEVMGR_SHOW_NONPRESENT_DEVICES set to 1 (which means show these devices), then any previously attached (NONPRESENT) devices are displayed in the device list and assigned this error code.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/18/2015 04:20:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10041.0_none_8290572e5fa31d2e.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10041.0_none_8290572e5fa31d2e.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10041.0_none_8290572e5fa31d2e.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10041.0_none_8290572e5fa31d2e.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10041.0_none_ca3d8e05741f4634.manifest.

Error: (04/18/2015 04:19:26 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=948D1E6B297E43D39FD9989AC822CBDB;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\7502dd83-c839-464a-b9c2-9158e0ccd2f3.dmp

Error: (04/18/2015 03:52:04 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=948D1E6B297E43D39FD9989AC822CBDB;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\900723b6-c7a2-46bf-8c6e-37137941c190.dmp

Error: (04/18/2015 03:11:48 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\ddf43aa5-55cd-48ff-9904-a3b44fa85566.dmp

Error: (04/18/2015 03:10:58 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\84d9cdb7-66cf-4968-902e-db536fa6359a.dmp

Error: (04/18/2015 03:10:57 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\99ee06f5-24a8-4a3d-934a-76e17279963f.dmp

Error: (04/18/2015 02:49:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Microsoft.Photos.exe, Version: 15.307.21020.0, Zeitstempel: 0x54fbf3d3
Name des fehlerhaften Moduls: Microsoft.Photos.dll, Version: 15.307.21020.0, Zeitstempel: 0x54fbf3d3
Ausnahmecode: 0x80072ee4
Fehleroffset: 0x0000000000901cda
ID des fehlerhaften Prozesses: 0x1e78
Startzeit der fehlerhaften Anwendung: 0xMicrosoft.Photos.exe0
Pfad der fehlerhaften Anwendung: Microsoft.Photos.exe1
Pfad des fehlerhaften Moduls: Microsoft.Photos.exe2
Berichtskennung: Microsoft.Photos.exe3
Vollständiger Name des fehlerhaften Pakets: Microsoft.Photos.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Microsoft.Photos.exe5

Error: (04/18/2015 02:48:45 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\65499735-9d7c-4e76-b9f8-9ada59545560.dmp

Error: (04/18/2015 02:48:43 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\72c1106f-c12a-4ea7-955a-fb3ae29782b7.dmp

Error: (04/18/2015 02:48:42 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\9a194c80-6fdf-4d0b-a599-360992493e81.dmp


System errors:
=============
Error: (04/18/2015 04:15:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "egyifwiwo" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (04/18/2015 01:13:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Slug Docking Station" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/18/2015 01:13:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Net.Tcp-Listeneradapter" ist vom Dienst "Net.Tcp-Portfreigabedienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (04/18/2015 01:13:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Workbook Restricted Access" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/18/2015 01:13:40 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "BlueStacks Android Service" ist vom Dienst "BlueStacks Hypervisor" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%2

Error: (04/18/2015 01:13:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/18/2015 01:13:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/18/2015 01:11:43 PM) (Source: DCOM) (EventID: 10010) (User: Leon-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (04/18/2015 01:11:43 PM) (Source: DCOM) (EventID: 10010) (User: Leon-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (04/18/2015 01:11:42 PM) (Source: DCOM) (EventID: 10010) (User: Leon-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}


Microsoft Office Sessions:
=========================
Error: (04/18/2015 04:20:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10041.0_none_8290572e5fa31d2e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10041.0_none_ca3d8e05741f4634.manifestC:\Users\Leon\Documents\esetsmartinstaller_deu.exe

Error: (04/18/2015 04:19:26 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=948D1E6B297E43D39FD9989AC822CBDB;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\7502dd83-c839-464a-b9c2-9158e0ccd2f3.dmp

Error: (04/18/2015 03:52:04 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=948D1E6B297E43D39FD9989AC822CBDB;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\900723b6-c7a2-46bf-8c6e-37137941c190.dmp

Error: (04/18/2015 03:11:48 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\ddf43aa5-55cd-48ff-9904-a3b44fa85566.dmp

Error: (04/18/2015 03:10:58 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\84d9cdb7-66cf-4968-902e-db536fa6359a.dmp

Error: (04/18/2015 03:10:57 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\99ee06f5-24a8-4a3d-934a-76e17279963f.dmp

Error: (04/18/2015 02:49:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Microsoft.Photos.exe15.307.21020.054fbf3d3Microsoft.Photos.dll15.307.21020.054fbf3d380072ee40000000000901cda1e7801d079d61158d5d1C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.307.21020.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exeC:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.307.21020.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll54d86ea7-e5c9-11e4-ab77-d850e6e4d8a8Microsoft.Windows.Photos_15.307.21020.0_x64__8wekyb3d8bbweApp

Error: (04/18/2015 02:48:45 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\65499735-9d7c-4e76-b9f8-9ada59545560.dmp

Error: (04/18/2015 02:48:43 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\72c1106f-c12a-4ea7-955a-fb3ae29782b7.dmp

Error: (04/18/2015 02:48:42 PM) (Source: Chrome) (EventID: 1) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=42.0.2311.90;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\9a194c80-6fdf-4d0b-a599-360992493e81.dmp


CodeIntegrity Errors:
===================================
  Date: 2015-04-04 13:40:51.176
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-04-01 13:58:36.527
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-31 13:54:38.821
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-30 02:23:10.305
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\WerFaultSecure.exe because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-11 19:03:34.362
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-10 17:51:27.787
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-10 15:54:34.792
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\Gambali64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-10 15:54:34.773
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\Gambali64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-04 14:13:22.650
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-02 18:18:44.666
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Memory info =========================== 

Processor: AMD FX(tm)-8350 Eight-Core Processor 
Percentage of memory in use: 41%
Total physical RAM: 8091.49 MB
Available physical RAM: 4719.25 MB
Total Pagefile: 16283.49 MB
Available Pagefile: 12275.06 MB
Total Virtual: 131072 MB
Available Virtual: 131071.76 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:443.13 GB) (Free:184.91 GB) NTFS
Drive d: (Volume) (Fixed) (Total:39.06 GB) (Free:16.02 GB) NTFS
Drive e: (Sims3EP06) (CDROM) (Total:5.22 GB) (Free:0 GB) UDF
Drive g: (Volume) (Fixed) (Total:449.22 GB) (Free:188.83 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0DA7C2E8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=443.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=449.2 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=39.1 GB) - (Type=OF Extended)

==================== End Of Log ============================

Alt 18.04.2015, 16:09   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Alle Browser voller Werbung. - Standard

Alle Browser voller Werbung.


Adware/Junkware/Toolbars entfernen

1. Schritt: Malwarebytes

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.




(alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!)

2. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).



3. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




4. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
Logfiles bitte immer in CODE-Tags posten

Antwort

Themen zu Alle Browser voller Werbung.
alle browser, avg, browser, fenster, klick, neues, neues fenster, nicht mehr, online, problem, scan, scanner, screenshots, versuch, versucht, voller, werbung, woche, wochen, öffnet


« VBS/LNK.Jenxcus.Gen Trojaner gefunden, wie kann ich ihn entfernen? | Ads by SalePlus - Wie werde ich das los? »


Ähnliche Themen: Alle Browser voller Werbung.


  1. Chrome öffnet bei Klick auf Link Werbung & Werbung PopUps im Browser
    Plagegeister aller Art und deren Bekämpfung - 03.11.2015 (1)
  2. Alle Browser öffnen Werbung in neuen Fenstern, und auf aktueller Seite?
    Antiviren-, Firewall- und andere Schutzprogramme - 28.02.2015 (1)
  3. Windows 7: Browser voller Werbung/ Links werden zu Werbung weitergeleitet
    Log-Analyse und Auswertung - 17.12.2014 (31)
  4. Alle Browser voll mit Werbung
    Log-Analyse und Auswertung - 08.12.2014 (17)
  5. Win8/ Firefox voller Werbung nach Avira installation/ evtl. mehr?
    Plagegeister aller Art und deren Bekämpfung - 06.12.2014 (14)
  6. Virus öffnet schädliche Webseiten und Werbeseiten + Webseiten voller Werbung
    Log-Analyse und Auswertung - 27.10.2014 (10)
  7. Windows 7 alle Browser voller neuer Werbetags bei jedem Click und extrem langsam
    Log-Analyse und Auswertung - 15.10.2014 (15)
  8. Win 7 (64): Browser voller Toolbars, Startseite geändert, alles doppelt unterstrichen; MBAM startet nicht ...
    Plagegeister aller Art und deren Bekämpfung - 07.07.2014 (20)
  9. Alle Browser voll mit Werbung :(
    Plagegeister aller Art und deren Bekämpfung - 13.05.2014 (6)
  10. Werbung im Browser; Unterstrichene Wörter mit Werbung; Taskleiste zeigt kurz ein Symbol
    Plagegeister aller Art und deren Bekämpfung - 17.03.2014 (4)
  11. Firefox voller Werbung und Pop-ups die 2.
    Plagegeister aller Art und deren Bekämpfung - 05.03.2014 (4)
  12. Firefox voller Werbung und Pop-ups
    Plagegeister aller Art und deren Bekämpfung - 05.03.2014 (13)
  13. Internet voller Werbung!
    Plagegeister aller Art und deren Bekämpfung - 08.01.2014 (6)
  14. ALLES voller Werbung (und wer weiß was sonst noch)
    Plagegeister aller Art und deren Bekämpfung - 06.01.2014 (11)
  15. Seit kurzem im Browser plötzlich Werbung und grün unterstrichene Wörter, die mit Popup-Werbung hinterlegt sind
    Log-Analyse und Auswertung - 13.12.2013 (7)
  16. Browser ist lahm und PC wird immer voller
    Plagegeister aller Art und deren Bekämpfung - 06.10.2013 (12)
  17. Browser öffnet alle 2 min mit Werbung
    Plagegeister aller Art und deren Bekämpfung - 21.06.2009 (10)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Alle Browser voller Werbung. - Hallo ich habe seit 2 Wochen ein Problem mein ganzer Browser ist voller Werbung ich weiß nicht mehr weiter alle Browser sind betroffen. Außerdem öffnet sich bei fast jedem klick - Alle Browser voller Werbung....
Archiv
Du betrachtest: Alle Browser voller Werbung. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131