|
Plagegeister aller Art und deren Bekämpfung: PC kommt nicht mehr in den Energie SparmodusWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
30.05.2015, 00:22 | #1 |
| PC kommt nicht mehr in den Energie Sparmodus Hallo nochmal, hab das Problem, dass mein PC seit wenigen Wochen nicht mehr in den Energie Sparmodus kommt. Wenn ich den "aktiviere", wird der Bildschirm wie immer schwarz, der PC bleibt aber länger als sonst an und schaltet sich letzten endes ab. Wenn ich den aber wieder einschalte, steht da diese Option, wenn Windows abgestürzt ist und Windows bootet sich wie immer als ob ich den ausgeschaltet hätte/der PC abgestürzt wäre. TL;DR Pc stürzt ab wenn ich in den Energie Modus will. MfG, Crounty Nebendaten: Ich habe letzte Woche erst eine neue Grafikkarte und ein Netzteil eingebaut und hab 2 unwichtige Kabel vergessen dran zu machen (Gehäuse Display) Logs: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015 Ran by Issam276 (administrator) on CROUNTY on 30-05-2015 01:06:31 Running from C:\Users\Issam276\Desktop Loaded Profiles: Issam276 (Available Profiles: Issam276 & Gast & DefaultAppPool) Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 9 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Internet Security\a2service.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe (Akamai Technologies, Inc.) C:\Users\Issam276\AppData\Local\Akamai\netsession_win.exe () C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe (Spotify Ltd) C:\Users\Issam276\AppData\Roaming\Spotify\SpotifyWebHelper.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe (AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Akamai Technologies, Inc.) C:\Users\Issam276\AppData\Local\Akamai\netsession_win.exe (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.2.1.1\Lightshot.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe () C:\Windows\SysWOW64\PnkBstrA.exe (ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe () C:\Windows\SysWOW64\WinMsgBalloonServer.exe () C:\Windows\SysWOW64\WinMsgBalloonClient.exe () C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.246\deploy\LoLLauncher.exe () C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.30\deploy\LoLPatcher.exe () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.146\deploy\LolClient.exe () C:\Program Files (x86)\GameforgeLive\gfl_client.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Solid State Networks) C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\TERA\TERA-Launcher.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7660760 2014-10-28] (Realtek Semiconductor) HKLM-x32\...\Run: [Turbo Key] => C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe [1874432 2009-11-24] (ASUSTeK Computer Inc.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Cpu Level Up help] => C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe [887936 2009-12-28] () HKLM-x32\...\Run: [RoccatIskuFX] => C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe [540672 2014-10-19] (ROCCAT GmbH) HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2014-10-19] (ROCCAT GmbH) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] () HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-03-31] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-05-15] (Raptr, Inc) HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0 HKLM\...\Policies\Explorer: [NoResolveSearch] 1 HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Issam276\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-30] (Akamai Technologies, Inc.) HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\Run: [Spotify Web Helper] => C:\Users\Issam276\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2022968 2015-05-21] (Spotify Ltd) HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\Policies\system: [EnableLUA] 0 HKU\S-1-5-18\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31280256 2015-04-17] (Skype Technologies S.A.) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX32.dll [2014-05-01] () ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-1925287450-1312797874-627100175-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKLM-x32 -> Backup.Old.DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} SearchScopes: HKU\S-1-5-21-1925287450-1312797874-627100175-1001 -> DefaultScope {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-flv SearchScopes: HKU\S-1-5-21-1925287450-1312797874-627100175-1001 -> Backup.Old.DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} SearchScopes: HKU\S-1-5-21-1925287450-1312797874-627100175-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-1925287450-1312797874-627100175-1001 -> {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-flv BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-27] (Oracle Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-27] (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-27] (Oracle Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-27] (Oracle Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{BF86312B-8016-42B1-B232-8DED504D4B33}: [NameServer] 81.173.194.68,212.117.68.10 FireFox: ======== FF ProfilePath: C:\Users\Issam276\AppData\Roaming\Mozilla\Firefox\Profiles\y4soi3fa.default-1429889675921 FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-27] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-27] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-27] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-27] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-09-12] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1925287450-1312797874-627100175-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Issam276\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-24] (Unity Technologies ApS) FF Extension: Adblock Plus - C:\Users\Issam276\AppData\Roaming\Mozilla\Firefox\Profiles\y4soi3fa.default-1429889675921\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-04-24] FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01] Chrome: ======= CHR Profile: C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (ProxFlow) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-01-10] CHR Extension: (Google Drive) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-10] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-01-10] CHR Extension: (MEGA) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-01-10] CHR Extension: (YouTube) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-10] CHR Extension: (Adblock Plus) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-10] CHR Extension: (Google Search) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-10] CHR Extension: (Google Wallet) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-10] CHR Extension: (Gmail) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-10] CHR Profile: C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (ProxFlow) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-01-10] CHR Extension: (Google Drive) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-10] CHR Extension: (MEGA) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-01-10] CHR Extension: (YouTube) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-10] CHR Extension: (Adblock Plus) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-10] CHR Extension: (Google Search) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-10] CHR Extension: (Bookmark Manager) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-24] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-01-23] CHR Extension: (Google Wallet) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-10] CHR Extension: (Gmail) - C:\Users\Issam276\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-10] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Internet Security\a2service.exe [4920104 2014-12-31] (Emsisoft GmbH) R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-03-31] (Advanced Micro Devices, Inc.) [File not signed] R2 AMD_RAIDXpert; C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe [122880 2009-12-15] (AMD) [File not signed] S4 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [136616 2012-05-10] () R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112 2009-08-19] (ASUSTeK Computer Inc.) [File not signed] R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed] S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-09-25] () [File not signed] R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed] R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-01-05] () S4 sesvc; C:\Program Files (x86)\ShadowExplorer\sesvc.exe [9216 2013-01-02] (www.shadowexplorer.com) [File not signed] S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5436176 2015-02-09] (TeamViewer GmbH) R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-21] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S3 npggsvc; C:\Windows\system32\GameMon.des -service [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\a2accx64.sys [71472 2014-05-12] (Emsisoft GmbH) R1 A2DDA; C:\Program Files (x86)\Emsisoft Internet Security\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH) R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Internet Security\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH) R1 a2util; C:\Program Files (x86)\Emsisoft Internet Security\a2util64.sys [23088 2014-05-12] (Emsisoft GmbH) S0 amdkmafd; C:\Windows\System32\DRIVERS\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.) R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.) S2 ANIO; C:\Windows\SysWOW64\ANIO.SYS [28205 2003-05-05] (Alpha Networks Inc.) [File not signed] R1 anodlwf; C:\Windows\System32\DRIVERS\anodlwfx.sys [15872 2009-03-06] () R2 AODDriver4.2.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [57472 2012-05-10] (Advanced Micro Devices) R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices) U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] () R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] () S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2014-06-29] (The OpenVPN Project) S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-25] (AVM Berlin) R3 cleanhlp; C:\Program Files (x86)\Emsisoft Internet Security\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH) S3 cpuz130; No ImagePath S3 DrvAgent64; C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [13824 2015-02-25] (Phoenix Technologies) [File not signed] S3 dump_wmimmc; No ImagePath S3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [714368 2010-10-25] (AVM GmbH) R3 fwndis; C:\Windows\System32\DRIVERS\fwndis64.sys [491632 2015-01-01] () R1 fwwfp; C:\Program Files (x86)\Emsisoft Internet Security\fwwfp764.sys [414936 2015-01-01] () R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [44744 2014-05-17] (AnchorFree Inc.) R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] () S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4682 2005-01-01] (INCA Internet Co., Ltd.) [File not signed] R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [53760 2012-09-28] (Apple, Inc.) [File not signed] S3 X6va008; No ImagePath S3 X6va009; No ImagePath S3 X6va012; No ImagePath S2 AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X] S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X] S3 EverestDriver; \??\C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [X] S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X] S3 netr28ux; system32\DRIVERS\netr28ux.sys [X] S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X] S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X] S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-30 01:06 - 2015-05-30 01:07 - 00022070 _____ () C:\Users\Issam276\Desktop\FRST.txt 2015-05-30 01:05 - 2015-05-30 01:06 - 02108928 _____ (Farbar) C:\Users\Issam276\Downloads\FRST64.exe 2015-05-29 18:10 - 2015-05-29 18:10 - 00001166 _____ () C:\Users\Issam276\Desktop\TERA.lnk 2015-05-29 18:10 - 2015-05-29 18:10 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\TERA 2015-05-29 18:09 - 2015-05-29 18:09 - 00000000 ____D () C:\Users\Issam276\Downloads\Gameforge Live 2015-05-29 18:09 - 2015-05-29 18:09 - 00000000 ____D () C:\Users\Issam276\AppData\Local\Gameforge4d 2015-05-29 17:30 - 2015-05-29 17:31 - 20199248 _____ (Gameforge ) C:\Users\Issam276\Downloads\TERA_GameforgeLiveSetup.exe 2015-05-26 15:23 - 2015-05-26 15:34 - 00000000 ____D () C:\Users\Issam276\AppData\Local\ESL Wire Game Client 2015-05-26 15:23 - 2015-05-26 15:34 - 00000000 ____D () C:\Program Files\EslWire 2015-05-26 15:22 - 2015-05-26 15:22 - 00939656 _____ (Turtle Entertainment GmbH) C:\Users\Issam276\Downloads\ESLWireSetup-1.18.0.8101.exe 2015-05-23 19:37 - 2015-05-23 19:37 - 00000795 _____ () C:\Users\Issam276\shaco.txt 2015-05-20 22:45 - 2015-05-20 22:45 - 00001613 _____ () C:\Users\Public\Desktop\League of Legends.lnk 2015-05-20 22:45 - 2015-05-20 22:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends 2015-05-20 21:37 - 2015-05-20 21:37 - 01196832 _____ () C:\Users\Issam276\Downloads\Free M4a to MP3 Converter - CHIP-Installer.exe 2015-05-20 21:27 - 2015-05-20 21:28 - 69328374 _____ () C:\Users\Issam276\Downloads\UNISON SQUARE GARDEN - Sugar Song and Bitter Step - JPopsuki TV.mp4 2015-05-20 20:04 - 2015-05-20 20:11 - 00000000 ____D () C:\Users\Issam276\Heaven 2015-05-20 20:04 - 2015-05-20 20:04 - 01065984 _____ () C:\Users\Issam276\AppData\Local\file__0.localstorage 2015-05-20 20:04 - 2015-05-20 20:04 - 00002123 _____ () C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk 2015-05-20 20:04 - 2015-05-20 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine 2015-05-20 20:03 - 2015-05-20 20:03 - 00000000 ____D () C:\Program Files (x86)\Unigine 2015-05-20 20:01 - 2015-05-20 20:03 - 258726655 _____ (Unigine Corp. ) C:\Users\Issam276\Downloads\Unigine_Heaven-4.0.exe 2015-05-20 20:00 - 2015-05-20 20:00 - 00019913 _____ () C:\Users\Issam276\Downloads\Unigine_Heaven-4.0.exe.torrent 2015-05-20 19:59 - 2015-05-20 20:02 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner 2015-05-20 19:59 - 2015-05-20 19:59 - 00001092 _____ () C:\Users\Issam276\Desktop\MSI Afterburner.lnk 2015-05-20 19:59 - 2015-05-20 19:59 - 00000852 _____ () C:\Users\Issam276\Desktop\MSI Kombustor 3.lnk 2015-05-20 19:59 - 2015-05-20 19:59 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server 2015-05-20 19:59 - 2015-05-20 19:59 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2015-05-20 19:59 - 2015-05-20 19:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3 2015-05-20 19:59 - 2015-05-20 19:59 - 00000000 ____D () C:\Program Files (x86)\RivaTuner Statistics Server 2015-05-20 19:58 - 2015-05-20 19:59 - 00000000 ____D () C:\Program Files\MSI Kombustor 3 2015-05-20 19:55 - 2015-05-20 19:55 - 19635058 _____ (MSI Co., LTD ) C:\Users\Issam276\Downloads\MSI_Kombustor_Setup_3.5.1.0_x64.exe 2015-05-20 19:54 - 2015-05-20 19:57 - 36210245 _____ () C:\Users\Issam276\Downloads\MSIAfterburnerSetup.zip 2015-05-20 19:36 - 2015-05-20 19:36 - 00000000 ____D () C:\ProgramData\ATI 2015-05-20 19:32 - 2015-05-20 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2015-05-20 19:30 - 2015-05-29 15:55 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Raptr 2015-05-20 19:30 - 2015-05-20 19:31 - 00000000 ____D () C:\Program Files (x86)\Raptr 2015-05-20 19:30 - 2015-05-20 19:30 - 00058826 _____ () C:\Windows\SysWOW64\CCCInstall_201505201930285150.log 2015-05-20 19:30 - 2015-05-20 19:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2015-05-20 19:30 - 2015-05-20 19:30 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2015-05-20 19:18 - 2015-05-20 19:21 - 305225392 _____ (AMD Inc.) C:\Users\Issam276\Downloads\amd-catalyst-15.4beta-64bit-win7-apr9.exe 2015-05-20 17:36 - 2015-05-20 17:37 - 00944672 _____ () C:\Windows\Minidump\052015-21824-01.dmp 2015-05-19 20:07 - 2015-05-19 20:07 - 00005920 _____ () C:\Users\Issam276\Downloads\LOL_OPGG_Observer_2111392211_replay.bat 2015-05-19 20:05 - 2015-05-19 20:05 - 00005920 _____ () C:\Users\Issam276\Downloads\LOL_OPGG_Observer_2115003905_replay.bat 2015-05-19 20:05 - 2015-05-19 20:05 - 00005920 _____ () C:\Users\Issam276\Downloads\LOL_OPGG_Observer_2113768305_replay.bat 2015-05-15 14:43 - 2015-05-15 14:44 - 13998253 _____ () C:\Users\Issam276\Downloads\Teslawars29-Apklover.apk 2015-05-14 19:06 - 2015-05-14 19:06 - 00000000 ____D () C:\Users\Issam276\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me 2015-05-14 18:58 - 2015-05-14 18:58 - 00000973 _____ () C:\Users\Gast\Desktop\OCCT.lnk 2015-05-14 18:58 - 2015-05-14 18:58 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT 2015-05-14 18:58 - 2015-05-14 18:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT 2015-05-14 18:58 - 2015-05-14 18:58 - 00000000 ____D () C:\Program Files (x86)\OCCTPT 2015-05-14 18:57 - 2015-05-14 18:57 - 06932340 _____ () C:\Users\Issam276\Downloads\OCCTPT4.4.1.exe 2015-05-14 03:03 - 2015-05-01 15:17 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-05-14 03:03 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-14 03:02 - 2015-05-14 03:02 - 00000000 __SHD () C:\Windows\system32\%APPDATA% 2015-05-14 03:01 - 2015-05-14 03:01 - 00000000 __SHD () C:\Windows\SysWOW64\%APPDATA% 2015-05-13 15:18 - 2015-05-05 03:29 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-05-13 15:18 - 2015-05-05 03:12 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-05-13 15:18 - 2015-04-27 21:28 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-05-13 15:18 - 2015-04-27 21:28 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-05-13 15:18 - 2015-04-27 21:28 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-05-13 15:18 - 2015-04-27 21:26 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 01254400 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-05-13 15:18 - 2015-04-27 21:23 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-05-13 15:18 - 2015-04-27 21:22 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-05-13 15:18 - 2015-04-27 21:22 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-05-13 15:18 - 2015-04-27 21:22 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-05-13 15:18 - 2015-04-27 21:22 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-05-13 15:18 - 2015-04-27 21:22 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2015-05-13 15:18 - 2015-04-27 21:22 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe 2015-05-13 15:18 - 2015-04-27 21:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2015-05-13 15:18 - 2015-04-27 21:22 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-05-13 15:18 - 2015-04-27 21:22 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe 2015-05-13 15:18 - 2015-04-27 21:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-05-13 15:18 - 2015-04-27 21:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-05-13 15:18 - 2015-04-27 21:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 21:11 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-05-13 15:18 - 2015-04-27 21:11 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-05-13 15:18 - 2015-04-27 21:08 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-05-13 15:18 - 2015-04-27 21:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-05-13 15:18 - 2015-04-27 21:04 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2015-05-13 15:18 - 2015-04-27 21:04 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-05-13 15:18 - 2015-04-27 21:04 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe 2015-05-13 15:18 - 2015-04-27 21:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe 2015-05-13 15:18 - 2015-04-27 21:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe 2015-05-13 15:18 - 2015-04-27 21:04 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe 2015-05-13 15:18 - 2015-04-27 21:04 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-05-13 15:18 - 2015-04-27 21:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-05-13 15:18 - 2015-04-27 21:03 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-05-13 15:18 - 2015-04-27 21:03 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-05-13 15:18 - 2015-04-27 21:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-05-13 15:18 - 2015-04-27 21:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-05-13 15:18 - 2015-04-27 21:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe 2015-05-13 15:18 - 2015-04-27 21:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-05-13 15:18 - 2015-04-27 21:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-05-13 15:18 - 2015-04-27 21:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 20:06 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-05-13 15:18 - 2015-04-27 19:57 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-05-13 15:18 - 2015-04-27 19:57 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-05-13 15:18 - 2015-04-27 19:55 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 19:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-05-13 15:18 - 2015-04-27 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-05-13 15:18 - 2015-04-20 05:17 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-05-13 15:18 - 2015-04-20 05:17 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-05-13 15:18 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2015-05-13 15:18 - 2015-04-20 04:11 - 03204608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-05-13 15:18 - 2015-04-18 05:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2015-05-13 15:18 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2015-05-13 15:18 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-05-13 15:18 - 2015-04-10 18:54 - 17881088 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-05-13 15:18 - 2015-04-10 18:44 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-05-13 15:18 - 2015-04-10 18:43 - 10935808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-05-13 15:18 - 2015-04-10 18:43 - 02339840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-05-13 15:18 - 2015-04-10 18:39 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-05-13 15:18 - 2015-04-10 18:39 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-05-13 15:18 - 2015-04-10 18:38 - 02158080 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-05-13 15:18 - 2015-04-10 18:37 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-05-13 15:18 - 2015-04-10 18:37 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-05-13 15:18 - 2015-04-10 18:37 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2015-05-13 15:18 - 2015-04-10 18:37 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2015-05-13 15:18 - 2015-04-10 18:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2015-05-13 15:18 - 2015-04-10 17:30 - 12379136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-05-13 15:18 - 2015-04-10 17:25 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-05-13 15:18 - 2015-04-10 17:25 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-05-13 15:18 - 2015-04-10 17:24 - 09750528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-05-13 15:18 - 2015-04-10 17:21 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-05-13 15:18 - 2015-04-10 17:20 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-05-13 15:18 - 2015-04-10 17:20 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-05-13 15:18 - 2015-04-10 17:19 - 01804288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-05-13 15:18 - 2015-04-10 17:19 - 00718336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-05-13 15:18 - 2015-04-10 17:19 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-05-13 15:18 - 2015-04-10 17:19 - 00421888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-05-13 15:18 - 2015-04-10 17:19 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-05-13 15:18 - 2015-04-10 17:19 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2015-05-13 15:18 - 2015-04-10 17:19 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-05-13 15:18 - 2015-04-10 17:19 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-05-13 15:18 - 2015-04-10 17:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-05-13 15:18 - 2015-04-10 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-05-13 15:18 - 2015-04-10 17:18 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-05-13 15:18 - 2015-04-10 17:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-05-13 15:18 - 2015-04-10 17:18 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2015-05-13 15:18 - 2015-04-10 17:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2015-05-13 15:18 - 2015-04-10 17:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2015-05-13 15:18 - 2015-04-08 05:29 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-05-13 15:18 - 2015-04-08 05:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-05-13 15:18 - 2015-04-08 05:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll 2015-05-13 15:18 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2015-05-13 15:18 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-05-13 15:18 - 2015-01-29 05:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2015-05-13 15:18 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll 2015-05-13 15:17 - 2015-03-04 06:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll 2015-05-13 15:17 - 2015-03-04 06:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll 2015-05-13 15:17 - 2015-03-04 06:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe 2015-05-13 15:17 - 2015-03-04 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll 2015-05-13 15:17 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll 2015-05-13 15:17 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll 2015-05-13 15:17 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe 2015-05-11 20:10 - 2015-05-11 20:10 - 00005912 _____ () C:\Users\Issam276\Downloads\LOL_OPGG_Observer_2103405450_spectate.bat 2015-05-11 19:24 - 2015-05-11 19:24 - 00005912 _____ () C:\Users\Issam276\Downloads\LOL_OPGG_Observer_2103209881_spectate (1).bat 2015-05-11 19:21 - 2015-05-11 19:21 - 00005912 _____ () C:\Users\Issam276\Downloads\LOL_OPGG_Observer_2103209881_spectate.bat 2015-05-11 16:01 - 2015-05-11 19:21 - 00003352 _____ () C:\Windows\System32\Tasks\BaronReplays 2015-05-11 15:58 - 2015-05-11 15:59 - 00000000 ____D () C:\Program Files (x86)\BaronReplays 2015-05-11 15:56 - 2015-05-11 15:57 - 25098287 _____ () C:\Users\Issam276\Downloads\BaronReplays.exe 2015-05-10 21:15 - 2015-05-10 21:15 - 00000000 ___HD () C:\Users\Issam276\Desktop\.updtmp 2015-05-10 21:14 - 2015-05-10 21:14 - 00000000 ____D () C:\Users\Issam276\AppData\Local\fabi.me 2015-05-10 13:36 - 2015-05-10 23:37 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Hide.me 2015-05-10 04:51 - 2015-05-20 20:00 - 00000000 ___HD () C:\Windows\msdownld.tmp 2015-05-10 04:51 - 2015-05-10 04:51 - 00292184 _____ (Microsoft Corporation) C:\Users\Issam276\Downloads\dxwebsetup.exe 2015-05-10 04:50 - 2015-05-10 04:52 - 95404032 _____ (hxxp://lolupdater.com) C:\Users\Issam276\Downloads\LoLUpdater.exe 2015-05-10 04:44 - 2015-05-10 04:44 - 00094899 _____ () C:\Users\Issam276\Downloads\SpeedAutoClicker.zip 2015-05-07 16:01 - 2015-05-07 16:01 - 00000576 _____ () C:\Windows\PFRO.log 2015-05-06 20:32 - 2015-05-06 20:32 - 00000758 _____ () C:\Users\Issam276\Desktop\Play League of Legends.lnk 2015-05-06 20:10 - 2015-05-06 20:10 - 00002730 _____ () C:\Windows\System32\Tasks\arp_flush 2015-05-06 20:10 - 2015-05-06 20:10 - 00001031 _____ () C:\Users\Public\Desktop\hide.me VPN.lnk 2015-05-06 20:10 - 2015-05-06 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hide.me VPN 2015-05-06 20:10 - 2015-05-06 20:10 - 00000000 ____D () C:\Program Files (x86)\hide.me VPN 2015-05-06 19:11 - 2015-05-06 19:13 - 00000026 _____ () C:\Users\Issam276\AppData\Local\isoworkshop.ini 2015-05-06 19:11 - 2015-05-06 19:11 - 02286936 _____ (Glorylogic ) C:\Users\Issam276\Downloads\isoworkshop_5.8 (1).exe 2015-05-06 19:11 - 2015-05-06 19:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glorylogic 2015-05-06 19:11 - 2015-05-06 19:11 - 00000000 ____D () C:\Program Files (x86)\Glorylogic 2015-05-06 18:04 - 2015-05-06 18:04 - 00030959 _____ () C:\Users\Issam276\Downloads\de_windows_7_professional_x64_dvd_X15-65813.iso.torrent 2015-05-06 15:43 - 2015-05-06 15:43 - 01998432 _____ (BitTorrent Inc.) C:\Users\Issam276\Downloads\uTorrent.exe 2015-05-06 15:31 - 2015-05-06 15:32 - 00000000 ____D () C:\Program Files (x86)\WinISO Computing 2015-05-06 15:31 - 2015-05-06 15:31 - 07043816 _____ (WinISO Computing Inc.) C:\Users\Issam276\Downloads\winiso.exe 2015-05-06 15:31 - 2015-05-06 15:31 - 00002048 _____ () C:\Users\Issam276\Downloads\windows7boot-64bit.bif 2015-05-06 15:31 - 2015-05-06 15:31 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\WinISO Computing 2015-05-06 15:31 - 2015-05-06 15:31 - 00000000 ____D () C:\Users\Issam276\AppData\Local\WinISO Computing 2015-05-06 15:17 - 2015-05-06 19:23 - 00000000 ____D () C:\Users\Issam276\Documents\Virtual Machines 2015-05-06 15:12 - 2015-05-06 15:12 - 30668968 _____ (Riot Games) C:\Users\Issam276\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe 2015-05-06 15:11 - 2015-05-06 19:49 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\VMware 2015-05-06 15:11 - 2015-05-06 19:48 - 00000000 ____D () C:\Users\Issam276\AppData\Local\VMware 2015-05-06 15:09 - 2015-05-06 15:09 - 00001024 _____ () C:\Windows\SysWOW64\%TMP% 2015-05-06 15:08 - 2015-05-06 19:51 - 00000000 ____D () C:\ProgramData\VMware 2015-05-05 22:41 - 2015-05-05 22:41 - 00005912 _____ () C:\Users\Issam276\Downloads\LOL_OPGG_Observer_2095100446_spectate (1).bat 2015-05-05 22:40 - 2015-05-05 22:40 - 00005912 _____ () C:\Users\Issam276\Downloads\LOL_OPGG_Observer_2095100446_spectate.bat 2015-05-01 18:39 - 2015-05-01 18:39 - 00001891 _____ () C:\Users\Issam276\Desktop\ShadowExplorer.lnk 2015-05-01 18:39 - 2015-05-01 18:39 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\www.shadowexplorer.com 2015-05-01 18:39 - 2015-05-01 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer 2015-05-01 18:39 - 2015-05-01 18:39 - 00000000 ____D () C:\Program Files (x86)\ShadowExplorer 2015-05-01 18:38 - 2015-05-01 18:39 - 00969845 _____ (ShadowExplorer.com ) C:\Users\Issam276\Downloads\ShadowExplorer-0.9-setup.exe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-30 01:06 - 2014-12-21 00:10 - 02108928 _____ (Farbar) C:\Users\Issam276\Desktop\FRST64.exe 2015-05-30 01:06 - 2014-06-28 20:29 - 00000000 ____D () C:\FRST 2015-05-30 01:01 - 2014-07-04 03:28 - 01667651 _____ () C:\Windows\WindowsUpdate.log 2015-05-30 01:00 - 2015-02-14 21:06 - 00000394 _____ () C:\Windows\Tasks\update-sys.job 2015-05-30 00:37 - 2015-01-10 18:20 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-30 00:27 - 2012-06-14 14:47 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-05-30 00:16 - 2015-02-14 21:06 - 00000394 _____ () C:\Windows\Tasks\update-S-1-5-21-1925287450-1312797874-627100175-1001.job 2015-05-30 00:12 - 2012-06-14 16:08 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\TS3Client 2015-05-30 00:06 - 2015-03-30 20:33 - 00009828 _____ () C:\Windows\setupact.log 2015-05-29 19:41 - 2015-01-02 00:37 - 00000000 ____D () C:\Program Files (x86)\Steam 2015-05-29 18:10 - 2014-09-06 19:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live 2015-05-29 18:09 - 2014-09-06 19:33 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive 2015-05-29 16:03 - 2009-07-14 06:45 - 00028720 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-05-29 16:03 - 2009-07-14 06:45 - 00028720 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-05-29 15:59 - 2011-04-12 09:43 - 00770016 _____ () C:\Windows\system32\perfh007.dat 2015-05-29 15:59 - 2011-04-12 09:43 - 00174334 _____ () C:\Windows\system32\perfc007.dat 2015-05-29 15:59 - 2009-07-14 07:13 - 01797688 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-05-29 15:55 - 2015-01-10 18:20 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-29 15:55 - 2014-12-21 00:43 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Internet Security 2015-05-29 15:54 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-05-28 16:16 - 2014-11-07 18:57 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Spotify 2015-05-28 16:16 - 2013-04-27 08:45 - 00000000 ____D () C:\Users\Issam276\AppData\Local\Spotify 2015-05-27 21:29 - 2012-06-29 20:50 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Skype 2015-05-27 20:34 - 2013-02-02 11:54 - 00000000 ___RD () C:\Program Files (x86)\Skype 2015-05-25 23:39 - 2015-01-10 18:21 - 00002181 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-25 14:21 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\LiveKernelReports 2015-05-25 13:05 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2015-05-25 00:33 - 2014-08-31 21:00 - 00000000 ___RD () C:\Users\Issam276\Dropbox 2015-05-25 00:23 - 2014-08-31 20:58 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Dropbox 2015-05-23 19:37 - 2012-06-14 13:17 - 00000000 ____D () C:\Users\Issam276 2015-05-21 00:02 - 2014-11-29 19:05 - 00000000 ____D () C:\Users\Issam276\Documents\Diablo III 2015-05-20 22:46 - 2014-05-11 11:31 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Riot Games 2015-05-20 20:00 - 2012-07-01 19:14 - 00000000 ____D () C:\Windows\SysWOW64\directx 2015-05-20 19:30 - 2014-05-10 19:22 - 00000000 ____D () C:\Program Files\AMD 2015-05-20 19:30 - 2012-06-14 13:47 - 00000000 ____D () C:\ProgramData\AMD 2015-05-20 19:22 - 2013-01-31 16:30 - 00000000 ____D () C:\AMD 2015-05-20 17:36 - 2015-03-30 20:33 - 576553049 _____ () C:\Windows\MEMORY.DMP 2015-05-20 17:36 - 2012-06-15 16:18 - 00000000 ____D () C:\Windows\Minidump 2015-05-16 09:32 - 2015-01-10 18:20 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-05-16 09:32 - 2015-01-10 18:20 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-05-15 15:20 - 2012-06-15 16:21 - 00000000 ____D () C:\Users\Issam276\Desktop\Alles 2015-05-15 14:56 - 2014-08-31 21:00 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-05-15 14:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2015-05-15 02:45 - 2014-06-10 19:43 - 00000000 ____D () C:\LOLPBE 2015-05-14 18:44 - 2014-01-20 15:20 - 00007604 _____ () C:\Users\Issam276\AppData\Local\Resmon.ResmonCfg 2015-05-14 04:03 - 2012-07-10 11:31 - 01771032 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2015-05-14 03:37 - 2012-12-08 10:38 - 04914240 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-05-14 03:36 - 2012-09-02 17:46 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2015-05-14 03:36 - 2012-09-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2015-05-14 03:35 - 2011-04-12 09:55 - 00000000 ____D () C:\Program Files\Windows Journal 2015-05-14 03:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers 2015-05-14 03:14 - 2013-08-22 00:30 - 00000000 ____D () C:\Windows\system32\MRT 2015-05-14 03:05 - 2012-06-17 15:06 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-05-14 03:02 - 2012-09-02 17:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-05-11 15:59 - 2014-09-14 21:04 - 00000000 ____D () C:\Users\Issam276\AppData\Local\Ahri.tw 2015-05-10 05:04 - 2014-05-10 18:27 - 00000000 ____D () C:\Windows\pss 2015-05-10 05:02 - 2012-11-08 15:27 - 00000000 ____D () C:\Users\Issam276\AppData\Roaming\LolClient 2015-05-08 21:03 - 2012-06-29 20:50 - 00000000 ____D () C:\ProgramData\Skype 2015-05-08 21:01 - 2015-02-03 16:57 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2015-05-01 19:26 - 2015-01-09 17:43 - 00000064 _____ () C:\Users\Issam276\Desktop\ᅠ.txt ==================== Files in the root of some directories ======= 2012-07-13 16:06 - 2012-07-03 16:41 - 0168864 _____ () C:\Program Files\Common Files\WireHelpSvc.exe 2014-12-05 18:13 - 2014-12-05 18:13 - 10124389 _____ () C:\Users\Issam276\AppData\Roaming\xulrunner.zip 2014-12-30 17:22 - 2014-12-30 17:22 - 0000037 ___SH () C:\Users\Issam276\AppData\Local\70149b02515b3bb20dd492.47983420 2015-05-20 20:04 - 2015-05-20 20:04 - 1065984 _____ () C:\Users\Issam276\AppData\Local\file__0.localstorage 2015-05-06 19:11 - 2015-05-06 19:13 - 0000026 _____ () C:\Users\Issam276\AppData\Local\isoworkshop.ini 2014-01-20 15:20 - 2015-05-14 18:44 - 0007604 _____ () C:\Users\Issam276\AppData\Local\Resmon.ResmonCfg 2012-09-20 15:42 - 2012-10-18 14:45 - 0877747 ____N () C:\Users\Issam276\AppData\Local\Tempmusic.ogg 2015-02-14 21:06 - 2015-02-14 21:06 - 0000003 _____ () C:\Users\Issam276\AppData\Local\updater.log 2015-02-14 21:06 - 2015-04-23 20:49 - 0000424 _____ () C:\Users\Issam276\AppData\Local\UserProducts.xml 2012-06-14 13:19 - 2012-06-14 13:19 - 0017408 _____ () C:\Users\Issam276\AppData\Local\WebpageIcons.db 2013-12-28 19:43 - 2013-12-28 19:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2012-09-25 19:21 - 2014-12-01 22:47 - 0006178 _____ () C:\ProgramData\hpzinstall.log Some files in TEMP: ==================== C:\Users\Issam276\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp35f_es.dll C:\Users\Issam276\AppData\Local\Temp\EslWireSetup-1.18.0.8101-x64.exe C:\Users\Issam276\AppData\Local\Temp\jre-8u45-windows-au.exe C:\Users\Issam276\AppData\Local\Temp\raptrpatch.exe C:\Users\Issam276\AppData\Local\Temp\raptr_stub.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-05-28 15:32 ==================== End of log ============================ |
30.05.2015, 00:23 | #2 |
| PC kommt nicht mehr in den Energie SparmodusCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015 Ran by Issam276 at 2015-05-30 01:07:40 Running from C:\Users\Issam276\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1925287450-1312797874-627100175-500 - Administrator - Disabled) Gast (S-1-5-21-1925287450-1312797874-627100175-501 - Limited - Disabled) => C:\Users\Gast HomeGroupUser$ (S-1-5-21-1925287450-1312797874-627100175-1002 - Limited - Enabled) Issam276 (S-1-5-21-1925287450-1312797874-627100175-1001 - Administrator - Enabled) => C:\Users\Issam276 ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Emsisoft Internet Security (Disabled - Out of date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Emsisoft Internet Security (Disabled - Out of date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367} FW: Emsisoft Internet Security (Disabled) {BD3F5FCA-866B-1E2E-0A68-58900A751EA1} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated) Adobe Flash Player 16 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated) Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated) AI Suite (HKLM-x32\...\{310BC5E2-31AF-49BB-904D-E71EB93645DC}) (Version: 1.06.22 - ) Akamai NetSession Interface (HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\Akamai) (Version: - Akamai Technologies, Inc) AlienFX for IskuFX (HKLM-x32\...\InstallShield_{2C3FC2CC-0A8B-409E-B487-8CD54F4DC1D4}) (Version: 1.02 - Roccat GmbH) AlienFX for IskuFX (Version: 1.02 - Roccat GmbH) Hidden AlienFX for KoneXTD (HKLM-x32\...\InstallShield_{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH) AlienFX for KoneXTD (Version: 1.02 - Roccat GmbH) Hidden AMD Catalyst Install Manager (HKLM\...\{F37C2975-92EA-59CA-59E6-50E56F0E76DD}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) AMD OverDrive (HKLM-x32\...\{9C1FAB12-F426-432E-8579-75CAB60C69CF}) (Version: 4.2.0.0594 - Advanced Micro Devices, Inc.) ANIO Service (HKLM-x32\...\{7B5CE976-C7A9-4E38-A7F3-6C8EF025DD8E}) (Version: - ) APB Reloaded (HKLM-x32\...\Steam App 113400) (Version: - Reloaded Productions) Application Profiles (HKLM-x32\...\{4ED980CB-C288-6A80-A3EA-AEECC543058B}) (Version: 2.0.4525.30280 - Advanced Micro Devices, Inc.) ASUSUpdate (HKLM-x32\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 7.18.03 - ASUSTeK Computer Inc.) Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team) AutoHotkey 1.0.48.05 (HKLM-x32\...\AutoHotkey) (Version: 1.0.48.05 - Chris Mallett) AutoIt v3.3.12.0 (HKLM-x32\...\AutoItv3) (Version: 3.3.12.0 - AutoIt Team) AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: - AVM Berlin) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform) ChrisPC DNS Switch 1.40 (HKLM-x32\...\{ECE17478-56C5-4280-AB67-AC2C2CAFA30F}_is1) (Version: - Chris P.C. srl) Chris-PC Game Booster (HKLM-x32\...\Chris-PC Game Booster_is1) (Version: 2.00 - Chris P.C. srl) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) DriverIdentifier 4.2.8 (HKLM-x32\...\{40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1) (Version: - DriverIdentifier) Dropbox (HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.) Emsisoft Internet Security (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft Ltd.) Equalify v2.5.3 (Stable) (HKLM-x32\...\{33EC4F70-9F4B-406F-BB2A-F75A285E927D}) (Version: 2.5.3.0 - Equalify) eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) Gameforge Live 2.0.7 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.7 - Gameforge) Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) hide.me VPN Version 1.0.7 (HKLM-x32\...\{0E00BDA5-7998-4889-BE4B-39A4BBD2EDFB}_is1) (Version: 1.0.7 - eVenture Limited) inSSIDer 3 (HKLM-x32\...\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}) (Version: 3.0.7.48 - MetaGeek, LLC) ISO Workshop 5.8 (HKLM-x32\...\ISO Workshop_is1) (Version: - Glorylogic) Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) Lightshot-5.2.1.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.2.1.1 - Skillbrains) Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio Express 2013 für Windows Desktop - DEU mit Update 4 (HKLM-x32\...\{74d92646-2565-4a60-8008-448470da91db}) (Version: 12.0.31101.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Mozilla Firefox 36.0.4 (x86 de) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 de)) (Version: 36.0.4 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.4 - Mozilla) MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD) MSI Kombustor 3.5.1 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MTA:SA v1.4.0 (HKLM-x32\...\MTA:SA 1.4) (Version: v1.4.0 - Multi Theft Auto) NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version: - ) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) OCCT 4.4.1 (HKLM-x32\...\OCCT) (Version: 4.4.1 - Ocbase.com) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation) osu! (HKLM-x32\...\{ba6599d0-1e00-4060-a455-55382b1c7008}) (Version: latest - ppy Pty Ltd) PC Probe II (HKLM-x32\...\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}) (Version: 1.04.92 - ASUSTeK Computer Inc.) RAIDXpert (HKLM-x32\...\InstallShield_{8B76B8E9-F773-4B75-A08C-120079EB765E}) (Version: 3.2.1540.10 - AMD) RAIDXpert (x32 Version: 3.2.1540.10 - AMD) Hidden Raptr (HKLM-x32\...\Raptr) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.91.1119.2014 - Realtek) Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6519 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder) ROCCAT Isku FX Keyboard Driver (HKLM-x32\...\{DC69933C-E7B0-455D-8E54-FAC1EEF046FF}) (Version: - Roccat GmbH) ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version: - Roccat GmbH) ROCCAT Power-Grid Version 0.459 (HKLM-x32\...\{953CF6E6-4EC8-4E55-A263-720CEBD591FE}_is1) (Version: 0.459 - ROCCAT GmbH) Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0013 - Roccat GmbH) RuneScape Launcher 1.2.3 (HKLM-x32\...\{FAE99C85-0732-4C58-9C6B-10B5B12FA2E9}) (Version: 1.2.3 - Jagex Ltd) Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15013.17 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.15013.17 - Samsung Electronics Co., Ltd.) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.) ShadowExplorer 0.9 (HKLM-x32\...\ShadowExplorer_is1) (Version: 0.9.462.0 - ShadowExplorer.com) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\Spotify) (Version: 1.0.5.186.ga9c24d6a - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.38843 - TeamViewer) TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH) Turbo Key (HKLM-x32\...\{B83F7FA5-3191-4E39-A1F2-8A9038BD0B04}) (Version: 1.01.03 - ) TV-Total Emulator v1.4.1.1 (HKLM-x32\...\TV-Total Emulator_is1) (Version: - Sebastian-Gebhardt.de) Unity Web Player (HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS) Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation) WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) WinSCP 4.3.8 (HKLM-x32\...\winscp3_is1) (Version: 4.3.8 - Martin Prikryl) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{3a022117-d6e3-4fcd-a8a2-d31ed64d8e1e}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1925287450-1312797874-627100175-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Issam276\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ==================== Restore Points ========================= 26-05-2015 13:46:00 Windows Update 29-05-2015 16:00:15 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2014-09-27 12:49 - 2014-11-30 22:02 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {002BC456-DB44-4F10-BC5B-16C0AE4B94E5} - System32\Tasks\{35A5A0DE-E4FD-4FCE-A133-406843CE3598} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {00442CFD-6F8A-4E25-B0F7-099CBAF166DD} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-09-12] (Adobe Systems Incorporated) Task: {07487D3F-27D3-4242-9986-5805088BC752} - System32\Tasks\{9CD2CBDC-9F17-4183-A776-3C3CDDB91238} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {094AD9FC-9A2A-4434-A267-67318F3AFB3C} - System32\Tasks\{C0BF0233-4710-4F22-B838-C53FD13B197E} => C:\Program Files (x86)\Opera\Opera.exe Task: {0D5CB102-9F0B-4BEF-9B7C-C8DD85A116EC} - System32\Tasks\{57FA110B-6E92-4EFD-98D9-19C15C00EF98} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {0E945E72-5D2C-4BEE-8169-B44EFAF0C579} - System32\Tasks\{CC321D73-229D-4CDF-9597-05F0B15F5904} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {1B0FF44F-B3B3-4261-9E8C-07E83F04A8CE} - System32\Tasks\{97DA18F4-90B4-45A3-BC74-3C01B81E7603} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {1B9795BE-3E65-435B-A5B7-EE5DED837485} - System32\Tasks\{1DB90D4F-8D72-4AD5-8F36-5C4F0864AD9F} => C:\Program Files (x86)\Opera\Opera.exe Task: {1D959856-47B4-4D86-A9FD-33900CD35ADF} - System32\Tasks\{D7E5FBB1-D0B1-4F1A-8742-47F989B83816} => C:\Program Files (x86)\Opera\Opera.exe Task: {1EC122BA-C536-430F-8C35-6F86ECC39FF0} - System32\Tasks\{494A9B35-6058-4C19-A20A-E1DCE48F0786} => C:\Program Files (x86)\Opera\Opera.exe Task: {217D3CDB-3FEF-4F4E-9156-02BFFFAAE60A} - System32\Tasks\{1CB8B36D-FC19-4546-8C7C-611AF21AD7E1} => pcalua.exe -a C:\ProgramData\Wizard101(DE)\Wizard101.exe -d C:\ProgramData\Wizard101(DE) Task: {2572CB5E-1A7C-46F1-85B1-B62F4A17C417} - System32\Tasks\{1FBC4539-2901-4DDB-9D2F-862065494E88} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {27618943-30C4-4FBF-94B8-8ACB0A6F7E6D} - System32\Tasks\{0C9C72E9-00D2-49A6-8DF4-DAF367138BD8} => C:\Program Files (x86)\Opera\Opera.exe Task: {2991A55D-1CD8-403C-B255-0C11A6C837E1} - System32\Tasks\{B261FD97-9C57-4F06-9AD3-4052FA220C1D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {2B7A7CE2-981F-42D2-8492-CD5D1AF9E827} - System32\Tasks\{B4F0F2F1-B534-4A0D-9DF2-C38AE4C520E9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {2CCD6124-8AE7-461C-BE80-4B62D3002340} - System32\Tasks\{3D7EEA60-2C2B-478A-9723-F829C43AC6E5} => C:\Program Files (x86)\Opera\Opera.exe Task: {2CF1D8CF-0EA9-458A-85A8-561D147B6135} - System32\Tasks\{0B628F86-550A-486F-B114-58C62871B721} => C:\Program Files (x86)\Opera\Opera.exe Task: {310CC0F8-C247-4599-ACFC-F3CD766E6AD5} - System32\Tasks\{FB8C4083-EF27-4416-85FA-D471CEDE5FB4} => C:\Program Files (x86)\Opera\Opera.exe Task: {38D97D20-F837-4F1C-A4CD-12CC637BE89A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-13] (Piriform Ltd) Task: {38FF6FD9-3BC6-4F09-959F-F2205181E561} - System32\Tasks\ASUS\Cpu Level Up Hook Lanunch => C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHookLaunch.exe [2009-12-28] () Task: {3B272214-852C-4330-841F-3F9FF4F9CB96} - System32\Tasks\{2B6CE963-FF84-494C-A826-01D80631B926} => C:\Program Files (x86)\Opera\Opera.exe Task: {517D8EB9-77F1-497E-834A-D1FA240CE073} - System32\Tasks\{027A1301-659D-4B41-8A7F-040B74EBA95D} => C:\Program Files (x86)\Opera\Opera.exe Task: {518389D1-8CCD-4B86-8F41-B077F9C9C618} - System32\Tasks\{EDDBD687-D415-4B69-927A-02931F7F1AAE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {51BFF5FC-5BC5-4DEE-9099-827B8BFB3632} - System32\Tasks\{8383930E-67E3-4379-A09D-4E59914B6389} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {5244B6B7-C2C2-416A-8955-6F2586705863} - System32\Tasks\{54F5669B-1BD5-4394-89D5-A6EFBA584ACD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {5250B132-6E5B-47AC-BB16-E9815CC9A9C0} - System32\Tasks\{CAF62C3C-79A4-4066-B1CD-4E0DF30564F9} => pcalua.exe -a "C:\Program Files (x86)\Hotspot Shield\bin\HssInstaller.exe" -d "C:\Program Files (x86)\Hotspot Shield\bin" Task: {52E12DE9-93B7-4E4B-85D1-DD2EDCEBE48A} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe Task: {562A50BF-2E54-45F4-9077-473F7A049562} - System32\Tasks\{6310026B-3E16-4E78-998C-7F30496D8899} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {571A9041-6AA5-4836-BA2B-534C9EB85DCE} - System32\Tasks\{D319D8AB-8433-493A-84FA-D1698EDEAFCE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {577E3FA9-79BA-4694-AE4C-9B609E38C0E9} - System32\Tasks\{DE38B5D4-C035-40D9-848C-B966145964A9} => C:\Program Files (x86)\Opera\Opera.exe Task: {5969808F-8D9F-493A-B8B2-6D22AB5B204C} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation) Task: {5AEBC49C-BCC7-4EC1-8951-9B299633E773} - System32\Tasks\{9E9AC548-DCCB-4B5B-9EDB-0E52B9DE5627} => C:\Program Files (x86)\Opera\Opera.exe Task: {5BE38A7A-4925-497C-82F3-A330FC280BC4} - System32\Tasks\{949BCCD7-1397-41DE-9EF8-11EE2C0CE563} => C:\Program Files (x86)\Opera\Opera.exe Task: {5C099198-A578-4EEC-92B4-6417465170A1} - System32\Tasks\{41F9C8B0-D0DD-4377-9D24-69E831D0CF7A} => C:\Program Files (x86)\Opera\Opera.exe Task: {5C4A49C0-89DE-4238-8F91-64CFBFBAEE53} - System32\Tasks\{BB6E67DE-783D-4A31-8585-E7CAEC52E5AA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {60553E3D-46C1-4E1E-A947-FA9307DD2C8C} - System32\Tasks\{74F988AC-9E60-40C7-8D90-CFECFAEE92E1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {62764EEE-5FF6-4668-9869-2779BF40B3EE} - System32\Tasks\update-S-1-5-21-1925287450-1312797874-627100175-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] () Task: {627CECAB-2B8F-4A2E-92B9-B140446FE0EC} - System32\Tasks\{90038331-2672-47E4-99D2-E9ECCB36DC14} => C:\Program Files (x86)\Opera\Opera.exe Task: {6D6DF3D0-D45F-4F6F-B07C-E1FBBD6FD0B9} - System32\Tasks\{59008250-33FF-402A-82FD-577C388040C8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {717B3FF7-1A14-47F6-8B46-91A57AD183CA} - System32\Tasks\{1FB7ED02-0BF3-4694-A643-44D549B5C376} => C:\Program Files (x86)\Opera\Opera.exe Task: {722A80F7-B367-438E-82D6-607B2AAE2AD5} - System32\Tasks\{0D1B66EB-8E6C-4941-A849-C02CAA677C49} => C:\Program Files (x86)\Opera\Opera.exe Task: {7352E960-C7B0-45FE-A83F-F87B5AA6E651} - System32\Tasks\{5F44ABCA-6526-4396-A179-A30F6651B4A5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {740EE1F2-3BC5-4CD5-B694-A5FE540D3E9E} - System32\Tasks\{F6171EAE-04B0-4030-B64B-4B9DF15D3273} => C:\Program Files (x86)\Opera\Opera.exe Task: {76B86268-4206-4908-ADA8-A9FA15A4F610} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-10] (Oracle Corporation) Task: {76E62D93-411B-469C-8813-454B579E97C4} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {7A0C2EDE-2AF3-40D3-8E5E-AC91914B9348} - System32\Tasks\{36BD8F26-454A-45A7-98BC-D772130BD6D1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {7CBC7AB3-537B-4220-9FEA-AB9DDE0F19B8} - System32\Tasks\arp_flush => C:\Program Files (x86)\hide.me VPN\FlushArpCache.exe [2015-04-03] () Task: {7CBDBD19-6CA0-43C5-95A3-B5B0B50A01DB} - System32\Tasks\{B117D272-C5AF-4E62-9F8E-DA7E6CE8FF4E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {7EF615A3-395A-4B8F-AF0B-D79B49D3A554} - System32\Tasks\{064550D4-D75D-402D-AB32-91E23A58D5F4} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {7FFDF15E-F69F-446A-8627-8403BB471CF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-10] (Google Inc.) Task: {81234385-6D3E-44C5-8D6C-32FA7C62AAF8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-10] (Google Inc.) Task: {821856F1-ED6B-4965-84E5-2519F0D73FB5} - System32\Tasks\{8424C4DF-A4EC-4B5B-814E-60CE8AB30940} => C:\Program Files (x86)\Opera\Opera.exe Task: {82F5E65C-C34C-4E7A-BA2B-3EC5834D6E13} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-26] (Adobe Systems Incorporated) Task: {8637067B-A28D-4F20-8109-C3B3755C5E19} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] () Task: {86715FE4-085D-43AB-A67D-906AB668D4A7} - System32\Tasks\{D1BFDBF2-DEA8-4BB9-8474-3A446710C951} => C:\Program Files (x86)\Opera\Opera.exe Task: {878AA624-33EF-4ADA-BD3A-0D7BEA46656B} - System32\Tasks\{11EE2B2D-9A84-413C-B65A-30FADFE1F4C1} => C:\Program Files (x86)\Opera\Opera.exe Task: {8A24C11B-1434-4888-BB67-DA4035986E85} - System32\Tasks\{8F6BCC5D-9E79-4A90-A52C-B05FBD3A95EA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {8B9B1B73-C0C4-48B0-A910-7D63871A1890} - System32\Tasks\{CE6A2A80-3982-406F-916F-BF44A1FE93BE} => C:\Program Files (x86)\Opera\Opera.exe Task: {8C5EA5CA-2168-47C9-A8AD-8D8F8CD43494} - System32\Tasks\{3096790B-F753-40DE-BBBD-C96814C19276} => C:\Program Files (x86)\Opera\Opera.exe Task: {8D278482-A7C4-4259-B172-CD56F7F3242B} - System32\Tasks\{C307734E-4CEF-40E7-BB76-67E38AFE3245} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {8FB0CF65-18EC-4D9E-84EA-E0C2E70B609A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe Task: {9034EE4A-EF7C-4EBC-B8FB-59A0E30DCDCB} - System32\Tasks\{B7D832C7-A1D4-449B-AFB7-35A7D5308265} => C:\Program Files (x86)\Opera\Opera.exe Task: {9173C9BE-02B5-4B2E-9CDD-85959BAC8FE8} - System32\Tasks\{AA084653-E62A-4321-85C7-E1F14B703E3B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {92D5F453-D605-4376-BBAF-560DCBF5179E} - System32\Tasks\{08F83017-CD43-415F-BAC5-1B6099D399DE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {9455CECE-75DF-4B1C-8F1C-9D6F22BAF9EE} - System32\Tasks\{1C451F35-6BB4-4E64-9D44-83DA1235BD66} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {95814841-98A3-4FA3-AF2B-7562DD8BC388} - System32\Tasks\BaronReplays => C:\Program Task: {97E4E16D-3E9D-4441-B88C-F8DAD136D5AC} - System32\Tasks\Driver Booster SkipUAC (SYSTEM) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {9B836882-C9AA-46BA-A2BA-B2FBC31A7D1B} - System32\Tasks\{402ED0EB-55E1-49BC-85FF-B611C38007C2} => C:\Program Files (x86)\Opera\Opera.exe Task: {9DEE72AF-EDDE-4210-860C-D59F8CE425A5} - System32\Tasks\{FEE95010-E0AC-4F29-89EB-CC1D42B7322D} => C:\Program Files (x86)\Opera\Opera.exe Task: {A5971EB2-865A-4144-B663-DC582061EE03} - System32\Tasks\{2EB349E6-0751-41BC-9F7E-301AC1E05B93} => C:\Program Files (x86)\Opera\Opera.exe Task: {A6148E12-0291-4995-AF46-E06D84208F64} - System32\Tasks\{CE3CDE01-297E-4503-BDBC-F6BFCA06FC5A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {A67DF276-6D87-4B90-9873-2A2EA8FCE1CB} - System32\Tasks\{F14CFAC1-DBF2-4360-95C4-B2F2F9DB35E4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {AA1BFF9B-0E49-4EB7-B267-2C7CB4A2ED1E} - System32\Tasks\{9276B961-43E2-4972-B3AD-25EACD24D008} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {B1677E31-93D0-47CC-AC29-7D496732B34B} - System32\Tasks\{6933359E-E599-4364-BEFF-153E2C84ECF1} => C:\Program Files (x86)\Opera\Opera.exe Task: {B23234F8-1783-4601-B17A-A749DC43B32C} - System32\Tasks\{CF201C0D-902D-45EC-AB8B-441B32C49B96} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {B39E32F9-A4EE-4F1C-AD43-1AFF1EC66810} - System32\Tasks\{520D24F2-56D5-4A8F-A89D-4396E1298D0E} => C:\Program Files (x86)\Opera\Opera.exe Task: {B43C1327-9D38-4105-BA3A-C7AC2DC0A854} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe [2009-12-28] (ASUSTeK Computer Inc.) Task: {B4CB886A-F99C-4F83-B319-AC5B4339BAFC} - System32\Tasks\{74BC537C-1377-401A-9CBD-EC70A4E00FE6} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {B4D142B4-4AB8-4B95-912F-FA662BCB5F05} - System32\Tasks\{816E19F8-6746-42E8-825E-C00C9D8CFF94} => C:\Program Files (x86)\Opera\Opera.exe Task: {B4F576A8-5746-40C0-878D-8D298BD66F25} - System32\Tasks\{15AA7614-5DDE-4F02-8A19-A95EC0A1D51D} => C:\Program Files (x86)\Opera\Opera.exe Task: {B69B5904-2DF1-46B2-8A65-63345F80F5E9} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {B8266606-848E-4C36-BA78-1D86A62F2B77} - System32\Tasks\{24C3BC9D-CAFC-4292-BD2A-FFCF0B425D08} => C:\Program Files (x86)\Opera\Opera.exe Task: {BB7D82FD-251B-4EF7-B078-D7DCE617D964} - System32\Tasks\{8FC938EB-7EAF-4A34-BC9D-AE2F5778B1B1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {BD4AB4E0-6ACD-4D79-8678-5D630419C7EF} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {BE835B87-3BC8-4D2F-98F4-08EA1738769B} - System32\Tasks\{9A921854-22BF-4FF6-917B-1529CCCD96DB} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {BF14D3C2-045B-46CA-95BA-E54E71AA5EE8} - System32\Tasks\{FE9E2570-3D08-4423-AFC3-5C7948AE63B6} => C:\Program Files (x86)\Opera\Opera.exe Task: {CBB4538C-70A1-4630-8661-5D84D95409E7} - System32\Tasks\{7A14CB27-EE0B-47F1-B055-77F01B48DBC9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {CE491649-14B0-4AE2-AF71-9B80E2717EDE} - System32\Tasks\{9A3B38A4-E24C-4CA3-836B-B69E7E5C4A8F} => C:\Program Files (x86)\Opera\Opera.exe Task: {D3A08372-F9B6-4E87-B367-CF2D04F990A2} - System32\Tasks\{C58F335D-256C-447C-8F92-0D21522B0AE2} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {D3ABB6D7-9F40-4E4A-B2B6-72AB46A050F7} - System32\Tasks\{83D83B71-6311-4584-B276-FEF554406168} => C:\Program Files (x86)\Opera\Opera.exe Task: {D51CC9D5-F8A0-48CA-AF21-4E3C1E57E18A} - System32\Tasks\{E3BA121A-6110-46E2-B350-F190E39F142A} => C:\Program Files (x86)\Opera\Opera.exe Task: {D55EA148-E054-4415-97C3-733D26CAD4E3} - System32\Tasks\{7B2D31C4-B94E-459C-9AB9-7BA5A6885752} => C:\Program Files (x86)\Opera\Opera.exe Task: {D68AFE80-D806-4B03-8AF8-0D69B8F3266F} - System32\Tasks\{C0804A57-189E-4D52-A8D5-914BE6EC38F9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {D83E98A5-7D09-44DF-B00E-EA043987BD67} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation) Task: {D9F0C0DA-2D8C-45BC-8EB1-746DAD06A5AA} - System32\Tasks\{178B6CBE-CD97-4A87-A91B-79970D345AA5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {DF647FC5-023B-433B-A122-FD19ECBBFB86} - System32\Tasks\{6B5908DA-E475-496F-9C03-92B7931F8B4E} => C:\Program Files (x86)\Opera\Opera.exe Task: {E605C0CD-CF58-4517-9803-90D6F64981E6} - System32\Tasks\{CC42283F-627B-42E6-B065-74187AD2AC1E} => C:\Program Files (x86)\Opera\Opera.exe Task: {E6FF23C5-E38B-446E-8E9D-335C6AF909D1} - System32\Tasks\{174B23CD-95AE-408F-A856-1370A9D536E1} => C:\Program Files (x86)\Opera\Opera.exe Task: {E709A72E-20A0-408C-8C71-C6281C3A9E2C} - System32\Tasks\{A7B59FCB-77B6-43A8-B48C-A4408A63A05C} => C:\Program Files (x86)\Opera\Opera.exe Task: {E966568A-61B6-46C0-81ED-FD8F48DFB1A5} - System32\Tasks\{3EF7DE06-5206-4DE0-8481-16D004F97BC7} => C:\Program Files (x86)\Opera\Opera.exe Task: {EA7EC79F-EE05-40AC-A1AA-EF8F38EE1D94} - System32\Tasks\{0E7C6814-82A5-4652-86AF-0257E8E200B0} => C:\Program Files (x86)\Opera\Opera.exe Task: {ED2C4059-C99A-478E-AFB7-A89311EE1AF3} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.01.12\AsLoader.exe [2010-01-13] (ASUSTeK Computer Inc.) Task: {EE65A338-E67D-4F14-B674-5CBA24CD1AF1} - System32\Tasks\{3FE25692-2DF1-4C8A-83BD-5C0938957293} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {F20A80F0-766A-4B7F-98DD-6229DA061883} - System32\Tasks\{6ABFC70E-5286-4F62-8D85-3DB5C7E96535} => C:\Program Files (x86)\Opera\Opera.exe Task: {F338479B-8C88-412C-A226-BD5C2EC74385} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: {FAD1D3B7-6A37-47D3-839D-81888361D8DA} - System32\Tasks\{C4DCDE58-2889-4887-A3A8-759819CB3B00} => C:\Program Files (x86)\Opera\Opera.exe Task: {FBD60A63-97EE-4455-A187-75DD221AC9B9} - System32\Tasks\{B55E87D1-7DD5-45F3-839C-11D9E63BACE7} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {FDA4DAEA-5188-46B1-8E30-64BB76D227AC} - System32\Tasks\{EF6CA142-96C0-4D8A-B1B8-DF46DCB79231} => C:\Program Files (x86)\Opera\Opera.exe Task: {FE7BAC5A-F911-419A-A23E-1A2FA331CB95} - System32\Tasks\{4C1D5CDD-8AE5-4025-923B-71D4C96C9F47} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: {FFBA2F6D-660A-4E9F-984C-78AD46ACDCD5} - System32\Tasks\{87B307EE-CC62-4781-8900-89C379B24C05} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603 Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\update-S-1-5-21-1925287450-1312797874-627100175-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Loaded Modules (Whitelisted) ============== 2014-05-01 16:13 - 2014-05-01 16:13 - 00470016 _____ () C:\ProgramData\MEGAsync\ShellExtX64.dll 2015-03-31 16:24 - 2015-03-31 16:24 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll 2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll 2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll 2009-12-15 17:40 - 2009-12-15 17:40 - 00065536 _____ () C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe 2012-07-10 11:29 - 2014-01-05 21:31 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2015-03-31 16:24 - 2015-03-31 16:24 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2009-12-15 17:40 - 2009-12-15 17:40 - 00122880 _____ () C:\Windows\SysWOW64\WinMsgBalloonServer.exe 2009-12-15 17:41 - 2009-12-15 17:41 - 00139264 _____ () C:\Windows\SysWOW64\WinMsgBalloonClient.exe 2014-01-21 16:54 - 2015-05-20 22:46 - 01294336 _____ () C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe 2015-05-28 14:09 - 2015-05-28 14:09 - 02362872 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.246\deploy\LoLLauncher.exe 2015-05-28 14:09 - 2015-05-28 14:09 - 03919864 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.30\deploy\LoLPatcher.exe 2015-05-20 22:58 - 2015-05-20 22:58 - 00074752 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.146\deploy\LolClient.exe 2014-09-06 19:33 - 2015-05-12 13:56 - 03036560 _____ () C:\Program Files (x86)\GameforgeLive\gfl_client.exe 2009-12-15 23:44 - 2009-12-15 23:44 - 00516096 _____ () C:\Program Files (x86)\AMD\RAIDXpert\bin\libxml2.dll 2012-06-14 15:11 - 2009-04-29 14:24 - 00253952 _____ () C:\Program Files (x86)\ASUS\Turbo Key\pngio.dll 2012-06-14 15:11 - 2009-04-29 14:24 - 00208896 _____ () C:\Program Files (x86)\ASUS\Turbo Key\AiNap.dll 2012-06-14 15:11 - 2009-04-29 14:24 - 00008704 _____ () C:\Program Files (x86)\ASUS\Turbo Key\vvc.dll 2015-02-04 17:16 - 2012-07-08 17:31 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\hiddriver.dll 2014-05-01 16:15 - 2014-05-01 16:15 - 00463360 _____ () C:\ProgramData\MEGAsync\ShellExtX32.dll 2015-02-04 17:20 - 2012-06-17 12:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll 2015-05-28 14:09 - 2015-05-28 14:09 - 01672696 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.30\deploy\RiotLauncher.dll 2015-05-20 22:53 - 2015-05-20 22:53 - 04774248 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.146\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll 2015-05-20 22:53 - 2015-05-20 22:53 - 16032616 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.146\deploy\Adobe AIR\Versions\1.0\Resources\NPSWF32.dll 2014-09-06 19:33 - 2014-02-13 14:32 - 00088064 _____ () C:\Program Files (x86)\GameforgeLive\libgcc_s_sjlj-1.dll 2014-09-06 19:33 - 2014-02-13 14:32 - 00863744 _____ () C:\Program Files (x86)\GameforgeLive\libstdc++-6.dll 2014-09-06 19:33 - 2014-02-13 14:33 - 01765301 _____ () C:\Program Files (x86)\GameforgeLive\libgcrypt-11.dll 2014-09-06 19:33 - 2014-02-13 14:33 - 00126959 _____ () C:\Program Files (x86)\GameforgeLive\libgpg-error-0.dll 2014-09-06 19:33 - 2014-02-14 14:55 - 00530432 _____ () C:\Program Files (x86)\GameforgeLive\log4qt.dll 2014-09-06 19:33 - 2015-05-12 10:59 - 00141312 _____ () C:\Program Files (x86)\GameforgeLive\qjson.dll 2014-09-06 19:33 - 2014-02-14 15:19 - 05686669 _____ () C:\Program Files (x86)\GameforgeLive\libtorrent.dll 2014-09-06 19:33 - 2014-02-14 13:32 - 00097659 _____ () C:\Program Files (x86)\GameforgeLive\libboost_system-mgw47-mt-1_53.dll 2015-05-25 23:39 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll 2015-05-25 23:39 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll 2015-05-25 23:39 - 2015-05-22 22:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll 2015-05-29 18:10 - 2014-12-03 19:30 - 20452352 _____ () C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\TERA\libcef.dll 2015-05-29 18:10 - 2014-12-03 19:30 - 00115240 _____ () C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\TERA\CopyCub.dll 2015-05-29 18:10 - 2014-12-03 19:30 - 01090656 _____ () C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\TERA\Client\TL.exe 2015-05-29 22:45 - 2015-05-15 11:44 - 20645216 _____ () C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\TERA\Client\Binaries\awesomium.dll 2015-05-29 22:46 - 2015-05-15 11:44 - 00166992 _____ () C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\TERA\Client\Binaries\PhysXExtensions.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-21-1925287450-1312797874-627100175-1001\...\sony.com -> sony.com IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com There are 11290 more restricted sites. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1925287450-1312797874-627100175-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Issam276\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 81.173.194.68 - 212.117.68.10 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: Apple Mobile Device => 2 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: c2cautoupdatesvc => 2 MSCONFIG\Services: c2cpnrsvc => 2 MSCONFIG\Services: CGVPNCliService => 2 MSCONFIG\Services: EslWireHelper => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: Hamachi2Svc => 2 MSCONFIG\Services: hshld => 2 MSCONFIG\Services: HssTrayService => 3 MSCONFIG\Services: HssWd => 2 MSCONFIG\Services: iPod Service => 3 MSCONFIG\Services: LBTServ => 3 MSCONFIG\Services: LiveUpdateSvc => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: OkayFreedom VPN Starter Service => 2 MSCONFIG\Services: OverwolfUpdaterService => 3 MSCONFIG\Services: RalinkRegistryWriter => 2 MSCONFIG\Services: RalinkRegistryWriter64 => 2 MSCONFIG\Services: RaMediaServer => 2 MSCONFIG\Services: SearchAnonymizer => 2 MSCONFIG\Services: sesvc => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\Services: TeamViewer8 => 2 MSCONFIG\Services: TeamViewer9 => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Roccat Talk.lnk => C:\Windows\pss\Roccat Talk.lnk.CommonStartup MSCONFIG\startupreg: AVMWlanClient => C:\Program Files (x86)\avmwlanstick\wlangui.exe MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: hpqSRMon => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe MSCONFIG\startupreg: Spotify => "C:\Users\Issam276\AppData\Roaming\Spotify\Spotify.exe" -autostart MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Issam276\AppData\Roaming\Spotify\SpotifyWebHelper.exe" MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{1E3D0A12-E1D5-490B-8543-5E09459419AC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{AC21E619-899E-4CCB-B51D-5E806FE54277}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [TCP Query User{58FFE622-993C-4589-9F1F-698DD5E005FC}C:\users\issam276\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\issam276\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{E4A74A84-764C-4BC5-86F4-30FD484CB671}C:\users\issam276\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\issam276\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{1BEF8CE1-AEB4-4646-BAED-681937B02CD5}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [UDP Query User{A58E6FBD-DBC6-4FDC-86C1-ADCF267A6A3C}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [{6CA37DA8-8F19-4AEF-8D84-D2212C9E9592}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) %systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe FirewallRules: [TCP Query User{29D63448-F3AD-47A2-925B-AC53D3A29FE4}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe FirewallRules: [UDP Query User{FD6A6E47-673C-403B-A49C-FD887AEE417C}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe FirewallRules: [{AE59BCAA-D346-4B57-95C4-39898313CEC4}] => (Block) C:\program files\teamspeak 3 client\ts3client_win64.exe FirewallRules: [{C5CEC524-FB86-464D-8E97-2A7E044BA807}] => (Block) C:\program files\teamspeak 3 client\ts3client_win64.exe FirewallRules: [TCP Query User{2CD9BBBE-9E95-4283-B9A2-B48DC5E5766A}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe FirewallRules: [UDP Query User{2D6FB27B-7C72-4DFB-AD7B-77165D1D4138}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe FirewallRules: [{6E58296D-A26D-4A5C-9D8E-BBD91D7153AC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe FirewallRules: [{A26E955D-B8CA-4793-B76D-8EA4D57D2EC9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe FirewallRules: [{2C88B708-94CF-4BCA-BB1C-91DDE2DCBD7E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{2AE52036-3C97-4477-BF95-D010BA912A72}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{E8566FB2-2C6D-4909-B5BF-404C3AC5D456}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{CCC21DAF-A104-4FAB-ABAC-C15C5C6D1621}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [TCP Query User{D0601256-C369-4E36-A0D3-8F790D5C8E3E}C:\users\issam276\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\issam276\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{5AFA97D3-DD8E-405B-BF49-4CCDF54020E1}C:\users\issam276\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\issam276\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{87D7B411-FC37-4B46-82D5-846B409D7938}C:\users\issam276\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\issam276\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{51CA6182-6919-43AD-A19D-7F489431AF51}C:\users\issam276\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\issam276\appdata\roaming\spotify\spotify.exe FirewallRules: [{4D98B6C7-AE46-4A94-823E-1494CE332EBB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe FirewallRules: [{622D4F22-9393-4C27-A0CA-3915BD90313F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe FirewallRules: [{A121B30A-5415-4D75-9281-A6D044B5E987}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{0A6953E9-26A8-4B6B-8601-E340078FCFF3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{1590AD78-22E6-4260-9F3D-E2725255A8C2}] => (Allow) C:\Users\Issam276\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{0BB650E0-B89A-49D2-9CDC-6A7519D309DE}] => (Allow) C:\Users\Issam276\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{BBB20AF6-5393-4C53-B649-DB303AE1CC09}C:\users\issam276\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\issam276\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{788D709A-5BBF-4374-9E06-8AB4CB2CF1A2}C:\users\issam276\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\issam276\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{4A982421-8AA0-4DE2-878D-8411D28BE5A2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{113A4560-F612-42FF-AB97-3894043D2889}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{BA5EBB4A-C654-490A-B8B9-C8F3166D1B26}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{6075EA3B-BD04-450E-BE54-23B0F637EC09}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{16AE6BC0-2527-4FE9-86AC-ECD02DA2D0AA}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{E157DBEE-B810-49BB-873C-C7838EAA34E8}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{C65270E1-B3EC-4C45-969F-7C7C4611F619}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe FirewallRules: [{C0394A44-70FB-47EA-A7C8-95FECCB773AC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe FirewallRules: [{E5CB81D7-3174-422B-9824-4AF87FF752A1}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{2BF89FC5-378A-4E8A-AA9A-30CF32076FE1}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{ABD1F9F5-5AF9-41EE-A744-64C81955B1C6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe FirewallRules: [{F4240D93-1804-479D-B1E7-15570D881AFA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe FirewallRules: [{DDE9F7A7-DB9B-4280-AF72-3B418E274633}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{0B38B33B-A9E8-408A-952B-620E8F0AEFE2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{640FB748-09A4-4C78-A3A4-982822E17553}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{FC3783B1-C0E8-4C9F-A8E7-6572A70F36B0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{AF3FDA09-F914-4DF1-B27B-67C9CE124C6B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{3CEB00A9-03E8-4A62-B9F0-FF94390A18AE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{E914A0FF-322C-46E8-8208-53C1C2433166}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F89A6559-FF6C-4DE9-9FE1-610904843456}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{7E66FD7D-5DFD-43C8-823C-6EA9C512E0A1}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{CB5719DD-67C5-4635-8DF1-2E7CED3C55BF}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{4F94CB25-0217-4251-AAF3-9F5FB14D6318}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{4D8D9FAE-14DB-486B-94AF-1AAB741D73B0}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{DFE42C54-12A1-4FB4-B786-BBBAC6DC82C2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{E77DE947-949C-4D25-857C-E3A24EBD33BE}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe ==================== Faulty Device Manager Devices ============= Name: AODDriver4.01 Description: AODDriver4.01 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: AODDriver4.01 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Event log errors: ========================= Application errors: ================== Error: (05/29/2015 07:25:09 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/29/2015 06:40:27 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/29/2015 06:06:47 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/29/2015 04:24:39 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifest. Error: (05/29/2015 03:56:51 PM) (Source: MsiInstaller) (EventID: 1024) (User: Crounty) Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011011}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127 Error: (05/29/2015 03:55:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (05/28/2015 11:55:16 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/28/2015 11:19:57 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/28/2015 10:36:39 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/28/2015 09:47:53 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() System errors: ============= Error: (05/29/2015 03:55:53 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: amdkmafd Error: (05/29/2015 03:54:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "AODDriver4.01" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 Error: (05/29/2015 03:54:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "ANIO Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (05/28/2015 01:50:22 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: amdkmafd Error: (05/28/2015 01:49:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "AODDriver4.01" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 Error: (05/28/2015 01:49:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "ANIO Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (05/27/2015 08:34:30 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: amdkmafd Error: (05/27/2015 08:33:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "AODDriver4.01" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 Error: (05/27/2015 08:33:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "ANIO Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (05/27/2015 08:33:33 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 27.05.2015 um 11:48:50 unerwartet heruntergefahren. Microsoft Office: ========================= Error: (05/29/2015 07:25:09 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/29/2015 06:40:27 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/29/2015 06:06:47 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/29/2015 04:24:39 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (05/29/2015 03:56:51 PM) (Source: MsiInstaller) (EventID: 1024) (User: Crounty) Description: Adobe Reader XI - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011011}1625(NULL)(NULL)(NULL) Error: (05/29/2015 03:55:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (05/28/2015 11:55:16 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/28/2015 11:19:57 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/28/2015 10:36:39 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() Error: (05/28/2015 09:47:53 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: League of Legends.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.AccessViolationException Stapel: bei AlienLabs.AlienFX.Communication.Generic.Classes.AlienFXCapableDeviceClass.SetVisualization(AlienLabs.AlienFX.Communication.VisualizationData) bei AlienLabs.AlienFX.Tools.Classes.CommunicationServiceClass.SetVisualization(System.String, AlienLabs.AlienFX.Communication.VisualizationData) bei LightFX.LightFXController.sendLightFXCommand(AlienLabs.AlienFX.Communication.AlienFXCapableDevice, LightFX.CommandParameter) bei LightFX.LightFXController+<>c__DisplayClass18.<processSendCommand>b__17(AlienLabs.AlienFX.Communication.AlienFXCapableDevice) bei System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].ForEach(System.Action`1<System.__Canon>) bei LightFX.LightFXController.processSendCommand(LightFX.CommandParameter) bei LightFX.LightFXController.consumeQueue() bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bei System.Threading.ThreadHelper.ThreadStart() CodeIntegrity Errors: =================================== Date: 2015-02-25 15:56:42.293 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:42.158 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:42.022 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:41.885 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:41.748 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:41.611 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:41.474 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:41.339 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:41.197 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2015-02-25 15:56:41.061 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. ==================== Memory info =========================== Processor: AMD FX(tm)-4100 Quad-Core Processor Percentage of memory in use: 61% Total physical RAM: 8174.12 MB Available physical RAM: 3156.3 MB Total Pagefile: 16346.44 MB Available Pagefile: 9777.08 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: (System) (Fixed) (Total:921.75 GB) (Free:724.23 GB) NTFS ==>[Drive with boot components (obtained from BCD)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B2544B2F) Partition 1: (Not Active) - (Size=9.8 GB) - (Type=27) Partition 2: (Active) - (Size=921.7 GB) - (Type=07 NTFS) ==================== End of log ============================ |
30.05.2015, 08:18 | #3 |
/// the machine /// TB-Ausbilder | PC kommt nicht mehr in den Energie Sparmodus__________________
__________________ |
03.06.2015, 19:37 | #4 |
| PC kommt nicht mehr in den Energie Sparmodus Hallo nochmal, tut mir leid, dass ich mich die letzten Tage nicht gemeldet habe. Ich habe Windows Repair benutzt und es funktioniert leider immernoch nicht, obwohl da einiges gefixt wurde. MfG, Crounty |
04.06.2015, 11:09 | #5 |
/// the machine /// TB-Ausbilder | PC kommt nicht mehr in den Energie Sparmodus Windows DVD da? EInstellungen zum Energiesparmodus hast du gecheckt?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
04.06.2015, 13:43 | #6 |
| PC kommt nicht mehr in den Energie Sparmodus Windows DVD habe ich glaube ich nicht mehr, wie kann man die Einstellungen checken? |
05.06.2015, 11:00 | #7 |
/// the machine /// TB-Ausbilder | PC kommt nicht mehr in den Energie Sparmodus schau mal hier: Standbymodus und Ruhezustand: Häufig gestellte Fragen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu PC kommt nicht mehr in den Energie Sparmodus |
adobe, akamai, avast, bildschirm, browser, combofix, computer, converter, cpu, defender, flash player, google, home, league of legends, mozilla, mp3, problem, realtek, registry, scan, security, software, stick, system, usb, windows |