Eigenartige Proxy einstellungen durch Tune Up Utilities...?

wolff1975 · 04.07.2015, 23:14

Hallo,
mir ist leider seit kurzem ein Problem aufgefallen das mich doch sehr beunruhigt und möchte dies hier schildern um Gewissheit zu erlangen :

Sobald ich Tune Up installiert habe und oder den Dienst Aktiviere habe ich folgenden Registrierungs Schlüssel in meiner regestry :

HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxp=127.0.0.1:50294;hxxps=127.0.0.1:50294
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>

solange Tune Up Aktiv ist wird der Eintrag nach einem manuellen löschen wieder zurück geschrieben...
Wenn ich Tune Up Deaktiviere oder Lösche kann ich den Eintrag Löschen ohne das er wieder zurück geschrieben wird?

Was genau geht da vor ? gerade Proxy Einstellungen die ich nicht nachvollziehen kann bereiten mir sorge (auch in Bezug von Hijackern).

Ich hoffe auf eine Antwort von euch auf mein Problem.
Herzlichen Dank im voraus.

schrauber · 05.07.2015, 05:50

Hi,

Tune up is Schrott und zerstört nur den pc. Aber das mit dem Proxy waere mir auch neu.

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

wolff1975 · 05.07.2015, 15:29

ich danke dir für deine Hilfe.
mir ist da noch ein Eintrag der hiermit in Verbindung zu stehen scheint aufgefallen :

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\iphlpsvc\Parameters\ProxyMgr\{8C116BEA-0025-4CDA-94B6-81EBD4ADD066}]
"StaticProxy"="http=127.0.0.1:50294;https=127.0.0.1:50294"
"ProxyBypass"="<-loopback>"
"LastUseTime"=hex(b):fc,3d,7d,24,2a,33,d0,01

das erstaunliche ist das sich sobald ich den Tune Up dienst deaktiviere die Einträge nachhaltig löschen kann ohne das sie wieder erscheinen ... sobald ich den dienst aktiviere ist nach kürzester zeit der Eintrag vorhanden das geschieht auch bei Deinstallation sowie Installation ebenso.
Ein Proxy Eintrag in den Internetoptionen des Internet Explorers ist nicht vorhanden... weshalb mir nicht schlüssig ist ob ich hier tatsächlich umgeleitet werde und weshalb wozu und warum dieser Eintrag vorhanden ist er beunruhigt mich sehr...
deshalb meine bitte um Hilfe an euch experten.

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:28-06-2015 01
Ran by Michael Wolff (administrator) on COBRA on 05-07-2015 16:24:17
Running from D:\Cobra x64 - Download
Loaded Profiles: Michael Wolff (Available Profiles: Michael Wolff)
Platform: Windows 8.1 Pro with Media Center (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Aqua Computer GmbH & Co. KG) C:\Program Files\aquasuite\AquaComputerService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(CMedia) C:\Program Files\ASUS Essence STX II Audio Device\Customapp\AsusAudioCenter.exe
() C:\Windows\SysWOW64\HsMgr.exe
(FinalWire Ltd.) C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe
() C:\Windows\System\HsMgr64.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Giulio Sosio) C:\Program Files (x86)\Xonar-Switch\XonarSwitch.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Mad Catz) C:\Program Files\Mad Catz\X-55 Rhino\X55_Rhino_Profiler.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CmiCnfgSTXII.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2015-01-13] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2015-01-13] ()
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [571192 2014-08-14] (Acronis)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5343272 2014-11-27] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [606096 2014-10-17] (Acronis International GmbH)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [X-55 Rhino] => C:\Program Files\Mad Catz\X-55 Rhino\X55_Rhino_Profiler.exe [86528 2015-03-17] (Mad Catz)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1069008 2015-04-07] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\Run: [icq] => C:\Users\Michael Wolff\AppData\Roaming\ICQM\icq.exe [36705800 2015-01-18] (ICQ)
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\Run: [XonarSwitch] => C:\Program Files (x86)\Xonar-Switch\XonarSwitch.exe [1163264 2015-06-25] (Giulio Sosio)
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28785792 2015-06-02] (Skype Technologies S.A.)
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\bttray.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ccleaner64.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\gputweakii.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\hamachi-2-ui.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\icq.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\overwolflauncher.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-01-13]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled
ProxyServer: [.DEFAULT] => http=127.0.0.1:50294;https=127.0.0.1:50294
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Content Blocker Plugin -> {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll [2015-01-13] (Kaspersky Lab ZAO)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Virtual Keyboard Plugin -> {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll [2015-01-13] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {E3D96E85-529D-4269-AC6A-97CF9E2221E3} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll [2015-01-13] (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2015-01-13] (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-24] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin -> {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2015-01-13] (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-24] (Oracle Corporation)
BHO-x32: Safe Money Plugin -> {E3D96E85-529D-4269-AC6A-97CF9E2221E3} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2015-01-13] (Kaspersky Lab ZAO)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{457567D8-6E6B-478D-AB9D-2D8A49B4FCC5}: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_194.dll [2015-06-24] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_194.dll [2015-06-24] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-24] (Oracle Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker_6418E0D362104DADA084DC312DFA8ABC -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com [2015-01-13] ()
FF Plugin-x32: @kaspersky.com/online_banking_69A4E213815F42BD863D889007201D82 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com [2015-01-13] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com [2015-01-13] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-24] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\searchplugins\englische-ergebnisse.xml [2012-12-16]
FF SearchPlugin: C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\searchplugins\gmx-suche.xml [2012-12-16]
FF SearchPlugin: C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\searchplugins\lastminute.xml [2012-12-16]
FF SearchPlugin: C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\searchplugins\webde-suche.xml [2012-12-16]
FF Extension: German Dictionary - C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\Extensions\de-DE@dictionaries.addons.mozilla.org [2015-01-14]
FF Extension: Unity Web Player HD Free - C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\Extensions\{04487413-c3aa-4335-b145-585704d337de}.xpi [2015-01-14]
FF Extension: {873bdd74-797d-47eb-ad9d-f9502157c354} - C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\Extensions\{873bdd74-797d-47eb-ad9d-f9502157c354}.xpi [2015-01-14]
FF Extension: Adblock Plus - C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-14]
FF Extension: Tab Mix Plus - C:\Users\Michael Wolff\AppData\Roaming\Mozilla\Firefox\Profiles\3zxs4tsx.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-01-14]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-06-02]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_6418E0D362104DADA084DC312DFA8ABC@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com [2015-01-13]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com [2015-01-13]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com [2015-01-13]

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Aqua Computer Service; C:\Program Files\aquasuite\AquaComputerService.exe [597664 2015-01-05] (Aqua Computer GmbH & Co. KG)
S4 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] ()
S4 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-28] () [File not signed]
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [955856 2015-04-07] (AVG Technologies CZ, s.r.o.)
R2 AVP15.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe [234520 2014-08-30] (Kaspersky Lab ZAO)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-01-13] (Broadcom Corporation.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1718840 2015-07-04] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6677048 2015-07-04] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-04-03] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-03] (Intel Corporation)
S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-05-03] (Electronic Arts)
S4 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [998640 2015-01-12] (Overwolf LTD)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2968376 2015-05-27] (AVG Technologies)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [34136 2015-06-20] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
S3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2015-01-13] (Broadcom Corporation.)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [238288 2013-01-14] (Kaspersky Lab UK Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [457496 2014-03-14] (Intel Corporation)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2015-01-13] (Acronis International GmbH)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2015-06-27] (REALiX(tm))
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [468576 2014-03-31] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [46144 2014-07-02] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [150536 2015-01-13] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [247480 2014-08-12] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [800440 2015-03-10] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [68616 2015-01-13] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [77512 2015-01-13] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [179776 2014-07-09] (Kaspersky Lab ZAO)
S3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S3 NVFLASH; C:\Windows\system32\drivers\nvflash.sys [14480 2015-06-22] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-06-24] (NVIDIA Corporation)
S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-06-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation)
R3 Said2215; C:\Windows\System32\drivers\Said2215.sys [25280 2014-03-06] (Saitek)
R3 Saida215; C:\Windows\System32\drivers\Saida215.sys [25280 2014-03-06] (Saitek)
R3 SaiG2215; C:\Windows\System32\drivers\SaiG2215.sys [179904 2014-03-06] (Saitek)
R3 SaiGa215; C:\Windows\System32\drivers\SaiGa215.sys [179904 2014-03-06] (Saitek)
R3 SaiK2215; C:\Windows\system32\DRIVERS\SaiK2215.sys [179904 2014-03-06] (Saitek)
R3 SaiKa215; C:\Windows\system32\DRIVERS\SaiKa215.sys [179904 2014-03-06] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [24040 2014-03-06] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51560 2014-03-06] (Saitek)
R3 STXIIService; C:\Windows\system32\drivers\STXII.sys [2736640 2015-01-13] (C-Media Inc)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1328928 2015-01-13] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [234784 2015-01-13] (Acronis International GmbH)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2015-04-13] (TuneUp Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-09-24] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-05 16:17 - 2015-07-05 16:17 - 00012714 _____ C:\Windows\PFRO.log
2015-07-05 01:49 - 2015-07-05 01:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2015-07-05 00:18 - 2015-07-05 00:18 - 00852662 _____ C:\Users\Michael Wolff\Downloads\SecurityCheck.exe
2015-07-05 00:16 - 2015-07-05 00:16 - 00892928 _____ (Farbar) C:\Users\Michael Wolff\Downloads\MiniToolBox.exe
2015-07-04 23:08 - 2015-07-04 23:08 - 00002238 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015.lnk
2015-07-04 23:08 - 2015-05-27 16:04 - 00041784 _____ (AVG Technologies) C:\Windows\system32\TURegOpt.exe
2015-07-04 23:08 - 2015-05-27 16:04 - 00030520 _____ (AVG Technologies) C:\Windows\system32\authuitu.dll
2015-07-04 23:08 - 2015-05-27 16:04 - 00025912 _____ (AVG Technologies) C:\Windows\SysWOW64\authuitu.dll
2015-07-04 23:07 - 2015-07-04 23:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2015-07-04 23:01 - 2015-07-05 04:40 - 00086508 _____ C:\Windows\WindowsUpdate.log
2015-07-04 22:56 - 2015-07-05 16:17 - 00000696 _____ C:\Windows\setupact.log
2015-07-04 22:56 - 2015-07-04 22:56 - 00000000 _____ C:\Windows\setuperr.log
2015-07-04 22:54 - 2015-07-04 22:54 - 00011894 _____ C:\Users\Michael Wolff\Documents\cc_20150704_225448.reg
2015-07-04 20:30 - 2015-07-04 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-07-04 20:30 - 2015-07-04 20:30 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-07-04 20:27 - 2015-07-04 20:27 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\GWX
2015-07-04 18:01 - 2015-07-04 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2015-07-04 18:01 - 2015-07-04 18:01 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2015-07-04 04:24 - 2015-07-04 04:24 - 00002734 _____ C:\Users\Michael Wolff\Documents\cc_20150704_042416.reg
2015-07-04 04:12 - 2015-07-04 04:12 - 00070224 _____ C:\Users\Michael Wolff\Documents\cc_20150704_041216.reg
2015-07-04 04:09 - 2015-07-04 23:11 - 00002802 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-07-04 04:09 - 2015-07-04 04:29 - 00000000 ____D C:\Program Files\Google
2015-07-04 04:09 - 2015-07-04 04:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-07-04 04:09 - 2015-07-04 04:09 - 00000000 ____D C:\Program Files\CCleaner
2015-07-04 04:00 - 2015-07-04 04:00 - 00000207 _____ C:\Windows\tweaking.com-regbackup-COBRA-Windows-8.1-Pro-with-Media-Center-(64-bit).dat
2015-07-04 04:00 - 2015-07-04 04:00 - 00000000 ____D C:\RegBackup
2015-07-04 03:32 - 2015-07-04 03:32 - 00008378 _____ C:\proxy3.reg
2015-07-04 03:10 - 2015-07-05 16:24 - 00000000 ____D C:\FRST
2015-07-01 01:45 - 2015-07-01 01:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PantsOff
2015-07-01 01:45 - 2015-07-01 01:48 - 00000000 ____D C:\Program Files (x86)\PantsOff
2015-07-01 01:40 - 2015-07-01 01:40 - 00575218 _____ (Christoph Bünger Software ) C:\Users\Michael Wolff\Downloads\pantsoff.exe
2015-06-29 22:56 - 2015-06-29 22:56 - 00000000 ____D C:\Users\Michael Wolff\AppData\Roaming\NVIDIA
2015-06-29 21:40 - 2015-06-29 21:40 - 06477032 _____ (Tim Kosse) C:\Users\Michael Wolff\Downloads\FileZilla_3.11.0.2_win64-setup.exe
2015-06-29 20:34 - 2015-07-04 04:29 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-29 20:34 - 2015-07-04 04:19 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\Google
2015-06-29 01:56 - 2015-06-29 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-06-29 01:56 - 2015-06-24 13:36 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-06-29 01:56 - 2015-06-24 13:36 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-06-29 01:56 - 2015-06-24 13:36 - 01320120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-06-29 01:56 - 2015-06-24 13:36 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-06-29 01:55 - 2015-07-05 16:17 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-29 01:55 - 2015-06-24 22:17 - 00113984 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-06-29 01:55 - 2015-06-24 22:17 - 00106304 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-06-29 01:55 - 2015-06-24 15:10 - 06873416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-06-29 01:55 - 2015-06-24 15:10 - 03491984 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-06-29 01:55 - 2015-06-24 15:10 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-06-29 01:55 - 2015-06-24 15:10 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-06-29 01:55 - 2015-06-24 15:10 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-06-29 01:55 - 2015-06-24 15:10 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-06-29 01:55 - 2015-06-24 14:58 - 00571208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-06-29 01:55 - 2015-06-02 19:29 - 04421614 _____ C:\Windows\system32\nvcoproc.bin
2015-06-29 01:53 - 2015-06-25 19:37 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-06-29 01:53 - 2015-06-25 19:37 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-06-29 01:53 - 2015-06-25 19:37 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 42729104 _____ C:\Windows\system32\nvcompiler.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 22946960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 17724792 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 16146208 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 15868192 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 15225984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 13264256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 12856424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 11832048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 11011400 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-06-29 01:53 - 2015-06-24 22:17 - 03395832 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 02997544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 02599568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435338.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435338.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00974992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00879000 _____ C:\Windows\system32\nvmcumd.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00407112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00155464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00151840 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00117576 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-06-29 01:53 - 2015-06-24 22:17 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-06-29 01:53 - 2015-06-24 22:17 - 00030966 _____ C:\Windows\system32\nvinfo.pb
2015-06-29 01:53 - 2015-05-19 05:29 - 00046768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-06-29 01:53 - 2015-05-19 05:14 - 00061616 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-06-29 01:53 - 2015-05-19 05:14 - 00057520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-06-28 17:45 - 2015-06-28 17:45 - 00000000 ___SD C:\Users\Michael Wolff\Documents\My Web Sites
2015-06-28 17:43 - 2015-06-28 17:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2015-06-28 17:43 - 2015-06-28 17:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2015-06-28 17:43 - 2015-06-28 17:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Expression
2015-06-28 17:43 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-06-28 16:39 - 2015-06-28 16:47 - 00026200 _____ C:\Users\Michael Wolff\Documents\Cobra-Controll.ttf
2015-06-27 19:56 - 2015-06-27 19:56 - 00000000 ____D C:\Titan X - Bios
2015-06-27 19:47 - 2015-06-27 19:47 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-06-27 07:05 - 2015-06-29 01:44 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\ALLBenchmark
2015-06-27 06:59 - 2015-06-27 06:59 - 00027552 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS
2015-06-27 06:58 - 2015-06-27 06:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLBenchmark
2015-06-27 06:58 - 2015-06-27 06:58 - 00000000 ____D C:\Program Files\ALLBenchmark
2015-06-25 23:04 - 2015-06-25 23:04 - 00000000 ____D C:\Program Files\Mad Catz
2015-06-25 01:23 - 2015-05-11 20:17 - 01201664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-06-25 01:23 - 2015-05-07 19:50 - 22292672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-06-25 01:23 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-06-25 01:23 - 2015-05-07 18:53 - 19734960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-06-25 01:23 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-06-25 01:23 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-06-25 01:23 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2015-06-25 01:23 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-06-25 01:23 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-06-25 01:23 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-06-25 01:23 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-06-25 01:23 - 2015-05-03 02:39 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-06-25 01:23 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-06-25 01:23 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-06-25 01:23 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-06-25 01:23 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2015-06-25 01:23 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-06-25 01:22 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-06-25 01:22 - 2015-05-12 02:24 - 00536920 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-06-25 01:22 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-06-25 01:22 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-06-25 01:22 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-06-25 01:22 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-06-25 01:22 - 2015-05-02 01:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml
2015-06-25 01:22 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\SysWOW64\locale.nls
2015-06-25 01:22 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\system32\locale.nls
2015-06-25 01:22 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-06-25 01:22 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-06-24 00:05 - 2015-06-24 00:05 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\UnrealEngine
2015-06-24 00:05 - 2015-06-24 00:05 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\KiteDemo
2015-06-24 00:02 - 2015-06-24 00:02 - 00000000 ____D C:\Program Files (x86)\KiteDemo_Runtime
2015-06-22 23:43 - 2015-06-22 23:43 - 00000000 ____D C:\Windows\system32\appmgmt
2015-06-22 22:21 - 2015-06-22 22:21 - 00000999 _____ C:\Users\Michael Wolff\Documents\MaxwellBiosTweaker1.36 - Verknüpfung.lnk
2015-06-22 21:36 - 2015-06-22 21:36 - 00000000 ____D C:\Windows\Downloaded Installations
2015-06-22 21:36 - 2015-06-22 21:36 - 00000000 ____D C:\Users\Michael Wolff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
2015-06-22 21:36 - 2015-06-22 21:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-06-21 01:17 - 2015-06-22 23:43 - 00000000 ____D C:\Program Files\Epic Games
2015-06-20 21:48 - 2015-06-20 21:58 - 00440518 _____ C:\Users\Michael Wolff\Downloads\GermanIsStrange_v3__5.zip
2015-06-20 18:48 - 2015-06-02 21:58 - 00156160 _____ C:\Windows\system32\FW1FontWrapper_x64.dll
2015-06-20 18:48 - 2015-06-02 21:58 - 00129536 _____ C:\Windows\SysWOW64\FW1FontWrapper.dll
2015-06-20 18:28 - 2015-06-02 14:29 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435312.dll
2015-06-20 18:28 - 2015-06-02 14:13 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435312.dll
2015-06-20 18:22 - 2015-06-20 18:23 - 291114536 _____ (NVIDIA Corporation) C:\Users\Michael Wolff\Downloads\353.12-desktop-win8-win7-winvista-64bit-international.hf.exe
2015-06-18 15:54 - 2015-06-18 15:58 - 00000000 ____D C:\Users\Michael Wolff\Valley
2015-06-18 15:48 - 2015-06-18 15:53 - 00000000 ____D C:\Users\Michael Wolff\Heaven
2015-06-18 15:47 - 2015-06-27 22:42 - 02128896 _____ C:\Users\Michael Wolff\AppData\Local\file__0.localstorage
2015-06-18 15:38 - 2015-06-22 22:24 - 00014480 _____ C:\Windows\system32\Drivers\nvflash.sys
2015-06-17 04:42 - 2015-06-17 04:42 - 00001000 _____ C:\Users\Michael Wolff\Documents\nvflash_windows_5.134.0.1 - Verknüpfung.lnk
2015-06-15 23:59 - 2015-06-16 00:00 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\BladesOfTimeDemo
2015-06-11 00:28 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-11 00:28 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-11 00:28 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-11 00:28 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-11 00:28 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-11 00:28 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-11 00:28 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-11 00:28 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-11 00:28 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-11 00:28 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-11 00:28 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-06-11 00:28 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-06-11 00:28 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-11 00:28 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-11 00:28 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-11 00:28 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-11 00:28 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-06-11 00:28 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-11 00:28 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-11 00:28 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-11 00:28 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-11 00:28 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-11 00:28 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-11 00:28 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-11 00:28 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-11 00:28 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-11 00:28 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-11 00:28 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-11 00:28 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-11 00:28 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-11 00:28 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-11 00:28 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-11 00:28 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-11 00:28 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-11 00:28 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-11 00:28 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-11 00:28 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-11 00:28 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-11 00:28 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-11 00:28 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-11 00:28 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-11 00:28 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-11 00:28 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-08 21:03 - 2015-06-08 21:03 - 00000000 ____D C:\Program Files (x86)\ruSamsungTVCommunicator
2015-06-08 15:55 - 2015-06-08 15:55 - 00000000 ____D C:\Users\Michael Wolff\Tracing

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-05 16:24 - 2015-01-13 01:14 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2798653254-3347362527-1621319806-1001
2015-07-05 16:23 - 2014-09-24 08:16 - 01780340 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-05 16:23 - 2014-09-24 07:43 - 00765378 _____ C:\Windows\system32\perfh007.dat
2015-07-05 16:23 - 2014-09-24 07:43 - 00159696 _____ C:\Windows\system32\perfc007.dat
2015-07-05 16:22 - 2015-01-13 01:17 - 00003950 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{76D0D406-4DA7-450E-8442-451A3CBF91F2}
2015-07-05 16:19 - 2015-01-13 22:46 - 00006464 _____ C:\Windows\SysWOW64\Gms.log
2015-07-05 16:19 - 2015-01-13 01:18 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-07-05 16:19 - 2015-01-13 01:16 - 00000000 ___RD C:\Users\Michael Wolff\OneDrive
2015-07-05 16:17 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-05 04:40 - 2013-08-22 15:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2015-07-05 04:21 - 2015-01-18 20:43 - 00000000 ____D C:\Users\Michael Wolff\AppData\Roaming\TS3Client
2015-07-05 04:21 - 2015-01-13 23:57 - 00000000 ___RD C:\Users\Michael Wolff\Desktop\Spiele
2015-07-05 04:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-07-05 03:56 - 2015-01-20 00:06 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-05 03:14 - 2015-05-19 23:10 - 00000000 ____D C:\Users\Michael Wolff\Documents\The Witcher 3
2015-07-05 00:58 - 2015-01-13 23:57 - 00000000 ___RD C:\Users\Michael Wolff\Desktop\Programme
2015-07-04 23:12 - 2015-01-18 20:42 - 00003730 _____ C:\Windows\System32\Tasks\Overwolf Updater Task
2015-07-04 23:12 - 2015-01-13 22:35 - 00003722 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2015-07-04 23:12 - 2015-01-13 22:35 - 00003476 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2015-07-04 23:07 - 2015-01-18 17:54 - 00000000 ____D C:\ProgramData\Avg
2015-07-04 23:07 - 2015-01-18 17:54 - 00000000 ____D C:\Program Files (x86)\AVG
2015-07-04 23:07 - 2015-01-18 17:52 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\AvgSetupLog
2015-07-04 23:00 - 2015-01-19 20:39 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\LogMeIn Hamachi
2015-07-04 22:53 - 2015-01-14 00:43 - 00000000 ____D C:\Program Files (x86)\Steam
2015-07-04 20:45 - 2015-01-18 20:41 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\Overwolf
2015-07-04 20:08 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-07-04 19:03 - 2015-01-19 20:42 - 00000000 ____D C:\Windows\pss
2015-07-04 18:38 - 2015-01-13 01:09 - 00000000 ____D C:\Windows\CSC
2015-07-04 04:11 - 2015-04-18 21:48 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\CrashDumps
2015-07-04 04:11 - 2015-04-07 23:17 - 00000000 ____D C:\Users\Michael Wolff\AppData\Roaming\FileZilla
2015-07-04 04:11 - 2015-02-07 23:49 - 00000000 ____D C:\Users\Michael Wolff\AppData\Roaming\TeamViewer
2015-07-04 03:12 - 2015-01-19 22:53 - 00000000 ____D C:\Users\Michael Wolff\AppData\Roaming\vlc
2015-07-04 02:41 - 2015-01-19 20:51 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\Battle.net
2015-07-04 02:38 - 2015-01-18 16:05 - 00000000 ____D C:\AdwCleaner
2015-06-29 20:33 - 2015-01-13 01:19 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-06-29 20:32 - 2015-01-13 23:19 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\NVIDIA Corporation
2015-06-29 01:56 - 2015-02-10 01:57 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\NVIDIA
2015-06-29 01:56 - 2015-01-13 23:57 - 00000000 ___RD C:\Users\Michael Wolff\Desktop\System
2015-06-29 01:56 - 2015-01-13 01:19 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-06-29 01:56 - 2015-01-13 01:19 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-06-29 01:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2015-06-28 23:59 - 2013-08-22 16:44 - 00411296 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-28 17:33 - 2015-01-14 00:02 - 00000000 ____D C:\Users\Michael Wolff\Documents\3DMark
2015-06-28 17:10 - 2015-01-20 01:23 - 00000022 _____ C:\Windows\GPU-Z.INI
2015-06-28 15:44 - 2015-01-18 19:02 - 00000000 ____D C:\Program Files (x86)\FinalWire
2015-06-28 02:06 - 2015-01-14 00:02 - 00000000 ____D C:\Users\Michael Wolff\Documents\Assassin's Creed Unity
2015-06-27 22:54 - 2015-06-01 20:58 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-06-27 21:20 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-25 23:04 - 2015-06-02 21:32 - 00096256 ___SH C:\Users\Michael Wolff\Desktop\Thumbs.db
2015-06-25 22:21 - 2015-01-18 19:34 - 00000000 ____D C:\Program Files (x86)\Xonar-Switch
2015-06-25 01:24 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-06-25 01:24 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-06-24 23:56 - 2015-01-20 00:06 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-24 01:26 - 2015-01-18 20:28 - 00000000 ____D C:\ProgramData\Futuremark
2015-06-23 23:13 - 2015-01-18 16:11 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-06-22 22:33 - 2015-03-28 02:41 - 00000000 ____D C:\Users\Michael Wolff\AppData\Roaming\Skype
2015-06-22 21:36 - 2015-01-13 22:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-06-22 21:36 - 2015-01-13 01:20 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-06-20 22:13 - 2015-01-18 18:50 - 00000000 ____D C:\Users\Michael Wolff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-06-20 22:06 - 2015-01-14 00:02 - 00000000 ____D C:\Users\Michael Wolff\Documents\My Games
2015-06-20 20:44 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-06-20 19:03 - 2015-01-18 19:04 - 00000000 ____D C:\Program Files (x86)\Futuremark
2015-06-20 18:48 - 2015-01-13 22:14 - 00000000 ____D C:\ProgramData\Package Cache
2015-06-20 05:02 - 2014-09-24 09:43 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-20 05:02 - 2014-09-24 09:43 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-18 15:54 - 2015-01-13 01:09 - 00000000 ____D C:\Users\Michael Wolff
2015-06-16 00:05 - 2015-01-18 15:23 - 00000000 ____D C:\Users\Michael Wolff\AppData\Local\Adobe
2015-06-11 19:45 - 2015-01-13 22:04 - 00000000 __SHD C:\Users\Michael Wolff\AppData\Local\EmieUserList
2015-06-11 19:45 - 2015-01-13 22:04 - 00000000 __SHD C:\Users\Michael Wolff\AppData\Local\EmieSiteList
2015-06-11 19:45 - 2015-01-13 22:04 - 00000000 __SHD C:\Users\Michael Wolff\AppData\Local\EmieBrowserModeList
2015-06-11 01:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-11 01:11 - 2015-01-13 02:09 - 00000000 ____D C:\Windows\system32\MRT
2015-06-11 01:10 - 2015-01-13 02:09 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-08 15:55 - 2015-03-28 02:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-06-08 15:55 - 2015-03-28 02:41 - 00000000 ____D C:\ProgramData\Skype

==================== Files in the root of some directories =======

2015-06-18 15:47 - 2015-06-27 22:42 - 2128896 _____ () C:\Users\Michael Wolff\AppData\Local\file__0.localstorage
2015-01-19 21:15 - 2015-04-29 21:19 - 0007602 _____ () C:\Users\Michael Wolff\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-27 21:47

==================== End of log ============================

--- --- ---

[CODE]Additional
FRST Logfile:

Code:

ATTFilter

scan result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01
Ran by Michael Wolff at 2015-07-04 03:12:51
Running from D:\Cobra x64 - Download
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2798653254-3347362527-1621319806-500 - Administrator - Disabled)
Gast (S-1-5-21-2798653254-3347362527-1621319806-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2798653254-3347362527-1621319806-1003 - Limited - Enabled)
Michael Wolff (S-1-5-21-2798653254-3347362527-1621319806-1001 - Administrator - Enabled) => C:\Users\Michael Wolff

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark (HKLM-x32\...\Steam App 223850) (Version:  - Futuremark)
3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden
3DMark Vantage (HKLM-x32\...\{C40C3C3D-97CF-44B5-836C-766E374464B3}) (Version: 1.1.3 - Futuremark)
3DMark06 (HKLM-x32\...\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}) (Version: 1.2.1 - Futuremark Corporation)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Acronis True Image 2015 (HKLM-x32\...\{08DC7D7A-1CA0-4E96-B12F-9B9577FCF0F8}Visible) (Version: 18.0.6525 - Acronis)
Acronis True Image 2015 (x32 Version: 18.0.6525 - Acronis) Hidden
Acronis Universal Restore Bootable Media Builder (HKLM-x32\...\{21A0454F-5B00-4DA7-81FF-A0B1FA295924}) (Version: 11.5.38938 - Acronis)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)
AIDA64 Extreme v5.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.20 - FinalWire Ltd.)
Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com)
Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com)
Any Video Converter 5.7.7 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AquaMark3 (HKLM-x32\...\AquaMark3) (Version:  - )
aquasuite (HKLM-x32\...\aquasuite5) (Version: 2015/3 - Aqua Computer GmbH & Co. KG)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.15.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.9.0001 - Asmedia Technology)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version:  - Ubisoft)
ASUS Essence STX II Audio Device (HKLM-x32\...\{1A01B996-F7F7-473C-9EA4-B22801713A83}) (Version:   - ASUSTek Computer Inc.)
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.0.3.0 - ASUSTek COMPUTER INC.)
ASUS GPU TweakII (x32 Version: 1.0.3.0 - ASUSTek COMPUTER INC.) Hidden
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
AVG (HKLM\...\AvgZen) (Version: 1.0.547 - AVG Technologies)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.604 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.604 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.604 - AVG Technologies) Hidden
AVG Zen (Version: 1.0.547 - AVG Technologies) Hidden
Avidemux 2.6 - 64bits (HKLM-x32\...\Avidemux 2.6 - 64bits (64-bit)) (Version: 2.6.8.9046 - )
Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catzilla 1.4 (HKLM\...\{41EE0CB2-75DE-4FE0-AEB2-4CBC30624FA6}_is1) (Version: 1.4 - ALLPlayer Group Ltd.)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.5.5571 - CDBurnerXP)
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\CopyTrans Suite) (Version: 3.01 - WindSolutions)
Core Damage 0.8h (HKLM-x32\...\Core Damage 0.8h) (Version:  - )
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version:  - DVD Shrink)
DVDStyler v2.4.3 (HKLM-x32\...\DVDStyler_is1) (Version:  - )
Elite Crossbow Set (HKLM-x32\...\Elite Crossbow Set_is1) (Version: 1.0.0.0 - GOG.com)
Elite Dangerous Launcher version 0.4.2743.0 (HKLM-x32\...\{696F8871-C91D-4CB1-825D-36BE18065575}_is1) (Version: 0.4.2743.0 - Frontier Developments)
EVGA PrecisionX 16 (HKLM-x32\...\Steam App 268850) (Version:  - EVGA)
Exact Audio Copy 1.0beta4 (HKLM-x32\...\Exact Audio Copy) (Version: 1.0beta4 - Andre Wiethoff)
FileZilla Client 3.11.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.11.0.1 - Tim Kosse)
FMW 1 (Version: 1.0.375 - AVG Technologies) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Free Studio version 6.4.2.113 (HKLM-x32\...\Free Studio_is1) (Version: 6.4.2.113 - DVDVideoSoft Ltd.)
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Geeks3D FurMark 1.15.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - Geeks3D)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
HandBrake 0.10.0 (HKLM-x32\...\HandBrake) (Version: 0.10.0 - )
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Hex Workshop v6.8 (HKLM\...\{A36AC685-4435-4C16-861F-221231DE165D}) (Version: 6.8.0.5419 - BreakPoint Software)
HWiNFO64 Version 4.50 (HKLM\...\HWiNFO64_is1) (Version: 4.50 - Martin Malík - REALiX)
ICQ 8.3 (build 7317) (HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\ICQ) (Version: 8.3.7317.0 - ICQ)
iFunbox (v2.92.2440.749), iFunbox DevTeam (HKLM-x32\...\iFunbox_is1) (Version: v2.92.2440.749 - )
Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.1.1000 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.24 - Intel(R) Corporation) Hidden
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}) (Version: 15.0.1.415 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.1.415 - Kaspersky Lab) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LibreOffice 4.2.8.2 (HKLM-x32\...\{2D3234B2-FC7B-41CD-9FC8-4F9C2C20C131}) (Version: 4.2.8.2 - The Document Foundation)
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.291 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.291 - LogMeIn, Inc.) Hidden
MakeMKV v1.9.1 (HKLM-x32\...\MakeMKV) (Version: v1.9.1 - GuinpinSoft inc)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Expression Web 4 (HKLM-x32\...\Web_4.0.1460.0) (Version: 4.0.1460.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0 - Mozilla)
New Quest - Contract - Skellige's Most Wanted (HKLM-x32\...\New Quest - Contract: Skellige's Most Wanted_is1) (Version: 1.0.0.0 - GOG.com)
New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com)
New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com)
New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com)
Nilfgaardian Armor Set (HKLM-x32\...\Nilfgaardian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 353.38 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.38 - NVIDIA Corporation)
NVIDIA FaceWorks: Real-time Performance Capture Demo (HKLM-x32\...\FaceWorks) (Version: 1.0 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.38 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.38 - NVIDIA Corporation)
NVIDIA G-SYNC Pendulum Demo (HKLM-x32\...\G-SYNC) (Version: 1.02 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 353.38 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.38 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OCCT 4.4.1 (HKLM-x32\...\OCCT) (Version: 4.4.1 - Ocbase.com)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.3.636 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.82.104.0 - Overwolf Ltd.)
PCMark Vantage (HKLM-x32\...\{F241EC95-C81A-466E-8006-6B0B364B07A0}) (Version: 1.2.0.0 - Futuremark)
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPER © v2014.build.63+Recorder (2014/11/27) Version v2014.buil (HKLM-x32\...\{8E2A19E2-96BF-8659-4DA7-5C06C90719A4}_is1) (Version: v2014.build.63+Recorder - eRightSoft)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.36897 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.6.0 - GOG.com)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.9860 - Broadcom Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
X-55 Rhino (HKLM\...\{9A5C2A50-D50B-4D21-A128-43FDB36C560C}) (Version: 7.0.38.0 - Mad Catz Inc)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

20-06-2015 18:48:11 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
22-06-2015 21:36:13 Installiert ASUS GPU TweakII
27-06-2015 06:58:57 DirectX wurde installiert
28-06-2015 17:43:38 DirectX wurde installiert
01-07-2015 02:36:34 Installed Microsoft Fix it 50566

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {23DD4ADE-5274-4F0C-B698-CAD3FFB848EF} - System32\Tasks\AIDA64 AutoStart => C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe [2015-06-20] (FinalWire Ltd.)
Task: {3206A7BA-F4CD-4A39-98FF-3F2FBACE89F7} - System32\Tasks\ASUS Live Update Task Schedule => C:\Program Files (x86)\ASUS\XtionLiveUpdate\XtionLiveUpdate.exe
Task: {3E59EB77-3E7B-4EF0-814C-0F4D753DD74D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-06-11] (Microsoft Corporation)
Task: {475F3BCF-3D89-4A80-99D7-6F0B83EB6ED3} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30] (Oracle Corporation)
Task: {4D9D1CEE-4CD0-47B9-97F9-6B6F31BC6B1D} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated)
Task: {53200F95-7DBE-4CCB-A39C-F25C0B6C316A} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-01-12] (Overwolf LTD)
Task: {57FAF925-370B-4F46-BED7-34986290D25E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated)
Task: {65063A7F-2FF3-4FD4-82DC-FF1C25023E93} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {80F054E9-53BB-42DC-A439-C6514B187B20} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-24] (Adobe Systems Incorporated)
Task: {A0E6E322-29FC-4734-9FFC-781FC76F02F7} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {BE51B2C8-D3CF-4D64-8574-9E41D6ABECF1} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-06-29] (AVG Technologies)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-29 01:55 - 2015-06-24 15:10 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-12-15 10:17 - 2014-12-15 10:17 - 00008704 _____ () C:\Program Files\aquasuite\Plugins\PluginExportSHM.dll
2014-12-15 10:17 - 2014-12-15 10:17 - 00008192 _____ () C:\Program Files\aquasuite\Plugins\PluginExportXML.dll
2014-12-15 10:17 - 2014-12-15 10:17 - 00011776 _____ () C:\Program Files\aquasuite\Plugins\PluginImportAida64.dll
2014-12-15 10:17 - 2014-12-15 10:17 - 00011776 _____ () C:\Program Files\aquasuite\Plugins\PluginImportHWiFO.dll
2014-12-15 10:17 - 2014-12-15 10:17 - 00011776 _____ () C:\Program Files\aquasuite\Plugins\PluginImportOHM.dll
2015-01-13 01:20 - 2013-07-04 04:32 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2015-06-29 10:24 - 2015-06-29 10:24 - 00718136 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-06-29 10:24 - 2015-06-29 10:24 - 00862008 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-10-14 20:51 - 2014-10-14 20:51 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-10-14 20:51 - 2014-10-14 20:51 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-01-13 22:52 - 2015-01-13 22:51 - 00200704 _____ () C:\Windows\SysWOW64\HsMgr.exe
2015-01-13 22:52 - 2015-01-13 22:51 - 00282112 _____ () C:\Windows\System\HsMgr64.exe
2015-03-17 17:15 - 2015-03-17 17:15 - 12443648 _____ () C:\Program Files\Mad Catz\X-55 Rhino\Pr0fileEditor_Forms.dll
2015-03-17 17:15 - 2015-03-17 17:15 - 00315392 _____ () C:\Program Files\Mad Catz\X-55 Rhino\de\Pr0fileEditor_Forms.resources.dll
2014-10-11 14:06 - 2014-10-11 14:06 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 14:05 - 2014-10-11 14:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-13 01:20 - 2015-07-04 02:59 - 00043664 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2015-01-13 01:20 - 2013-07-04 04:32 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2014-08-30 18:12 - 2014-08-30 18:12 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\kpcengine.2.3.dll
2015-06-29 01:56 - 2015-06-24 13:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-01-13 22:52 - 2015-01-13 22:51 - 00143360 ____N () C:\Program Files\ASUS Essence STX II Audio Device\Customapp\VmixP8.dll
2014-11-27 11:42 - 2014-11-27 11:42 - 00037696 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2014-11-27 11:42 - 2014-11-27 11:42 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-04-23 22:48 - 2013-09-03 10:40 - 31842816 _____ () C:\Program Files (x86)\AVG\UiDll\1453\libcef.dll
2014-08-30 18:12 - 2015-01-13 01:20 - 00332584 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com\nponlinebanking.dll
2014-08-30 18:12 - 2015-01-13 01:20 - 00459048 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com\npcontentblocker.dll
2014-08-30 18:12 - 2015-01-13 01:20 - 00587048 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com\npvkplugin.dll
2014-04-03 17:48 - 2014-04-03 17:48 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-11-27 11:47 - 2014-11-27 11:47 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2014-11-27 11:44 - 2014-11-27 11:44 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Michael Wolff\OneDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michael Wolff\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\3_marco_müller_-_sonnenlicht_2.jpg
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\StartupApproved\Run: => "icq"
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\StartupApproved\Run: => "SwvUpdtr"
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\...\StartupApproved\Run: => "GalaxyClient"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{E9B44927-58DE-4BA7-A465-DECB662A456F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F64D697F-EBD3-42BB-A486-04D3DD22859C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{256A3C55-E5C0-4B64-8426-79EBE39EDA78}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{85F5A8F0-8E26-484B-ADDA-959E9C5ED74C}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{990C7386-C42E-4665-8C38-DA062C778C38}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B7FE5EEE-6F27-47D9-BCE4-B507911A5E2F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B47209C3-F051-4BA3-852A-3D5469722647}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{84C2FE3C-1E98-4F08-AEFE-CE59D6ED9D83}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CC226663-4B13-4A2A-A6C2-75C9CD60F73C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{E267075D-AAD9-42D8-9195-37FDD6EC0FAB}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{EC87E7AB-76C6-4B95-95D7-3FBAB9B5BC57}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{799C7AD2-5D67-4666-9953-F0C768B868B0}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{D4827BB1-0A76-47DB-A1A2-FCD6C1230383}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A074D466-C5BD-4332-A019-5779C2B8403D}] => (Allow) LPort=2869
FirewallRules: [{5AD09C4E-4343-48D4-9A45-24B1355DFF83}] => (Allow) LPort=1900
FirewallRules: [{E1D02093-C9AC-4EBE-B12B-DB5529BA6247}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A0D12665-B1EC-40C7-9BFB-FB67BE9EFF31}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BF5CBE04-A968-4404-8629-E8216D539845}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{756E74B0-82D4-4ACE-925A-9B029A6D8565}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{835EF3AB-2477-4797-ADC9-0E6260B78992}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{BD42994F-F34E-4776-BCFD-19B2F4192215}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1D43B966-563F-4B65-B250-009E4C09F11B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F4CF831C-822F-42C3-AB46-2089BAA8D66B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{441AA950-4C39-49DA-B11F-12430C6B049D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{05972C96-10E6-4B6C-8C89-BEAA51C54139}] => (Allow) LPort=8743
FirewallRules: [{FD075E18-9B61-4980-B92F-35B97D7A6411}] => (Allow) LPort=8643
FirewallRules: [{B0FE8284-E0CF-46A7-8FB0-BFF1AAB48219}] => (Allow) LPort=7676
FirewallRules: [{47B0796D-20B7-4C29-B40B-3E3DC6BCD91F}] => (Allow) LPort=7679
FirewallRules: [{F77BA42D-08AA-4B76-9CB7-61790FE632A7}] => (Allow) LPort=24234
FirewallRules: [{10AE3991-31F6-44FB-8912-4AC72CD81F27}] => (Allow) LPort=7900
FirewallRules: [{696817A9-E0E1-4521-BE6E-E6EF1ED72E29}] => (Allow) LPort=1900
FirewallRules: [{0506AE74-7F7B-4095-A54C-31522F1604EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{15B09E4F-7C04-4696-94E2-C8305F0CA714}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{9C1399DE-65B6-4AD8-8270-9484CB4879D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EVGA PrecisionX\PrecisionX_x64.exe
FirewallRules: [{E08039FE-6CB7-46E1-9C68-5C45397C5194}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EVGA PrecisionX\PrecisionX_x64.exe
FirewallRules: [{F16FC9EA-2C6D-4E64-A8A8-7E6DBF4E8EEF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{57ADE1EE-CD65-4964-8106-C2D3E83E4D00}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{306B0CA4-4FD6-4789-8253-627B77A93F0D}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{75D7EC3B-A719-4681-9136-701373D36395}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{2AAF6F17-262D-4014-9C1E-2DD7B2E75EDA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe
FirewallRules: [{02661CDA-8C30-4F16-BE1D-8D3A48CECE6B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe
FirewallRules: [{FFF26006-312E-48FC-A6CE-8CF19B0AA5C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EVGA PrecisionX\Skins\UxfTool.exe
FirewallRules: [{5C53E9D5-AEAA-416C-85A8-84F43219E875}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EVGA PrecisionX\Skins\UxfTool.exe
FirewallRules: [{A704AF61-1A29-4F7C-9F44-B365D8872863}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{8417C3BC-6737-4A06-84B7-D716E6CE60EE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{7ECDCB54-43FB-4D8F-A36A-BE9F24938D04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{D2B29D7B-762F-4B26-B3D7-24BFA1122B10}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{FDC9113D-0C98-4AAE-B8CA-C215DCE5FF4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{DC6E51A2-4CFF-4E52-A6E8-B34B7D846D0B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{2E659106-6844-4851-B167-DE5BAD8DFC8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{CA949B3D-26FC-46A2-BFAC-2E54ED051D1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{B733B07D-705C-455D-8AB3-77D085955BD4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{65369A9F-9888-4FA9-B0A6-54F893E1AB45}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3DEA09C9-042B-46B9-8216-0F9C8C373EEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{EC686DFE-4CF9-41FB-A76D-3313D9F53C64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B26D0D2B-38B9-4F85-AE66-0064AB0D6278}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D5B6372E-AAFF-49FE-9087-E24B8D096187}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/04/2015 02:43:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_DiagTrack, Version: 6.3.9600.17415, Zeitstempel: 0x54504177
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.17736, Zeitstempel: 0x550f4336
Ausnahmecode: 0xc000000d
Fehleroffset: 0x0000000000101e60
ID des fehlerhaften Prozesses: 0x848
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_DiagTrack0
Pfad der fehlerhaften Anwendung: svchost.exe_DiagTrack1
Pfad des fehlerhaften Moduls: svchost.exe_DiagTrack2
Berichtskennung: svchost.exe_DiagTrack3
Vollständiger Name des fehlerhaften Pakets: svchost.exe_DiagTrack4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_DiagTrack5

Error: (07/01/2015 02:36:38 AM) (Source: VSS) (EventID: 12305) (User: )
Description: Volumeschattenkopie-Dienstfehler: Volume bzw. Datenträger ist nicht richtig angeschlossen oder wurde nicht gefunden.
Fehlerkontext: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 000000000000019C,0x00530194,0000000000000000,0,0000004002DD20A0,4096,[0]).


Vorgang:
   Schattenkopien abfragen

Error: (07/01/2015 02:36:34 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (07/01/2015 02:19:33 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:31 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:29 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:27 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:25 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:23 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 01:41:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0xcb4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5


System errors:
=============
Error: (07/04/2015 02:59:40 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/04/2015 02:43:42 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/04/2015 02:43:07 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Diagnostics Tracking Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/04/2015 02:27:31 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/01/2015 02:52:53 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/01/2015 02:42:31 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/01/2015 02:33:19 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/01/2015 02:22:15 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/01/2015 02:14:00 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/01/2015 02:02:02 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "AVG Service" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office:
=========================
Error: (07/04/2015 02:43:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_DiagTrack6.3.9600.1741554504177ntdll.dll6.3.9600.17736550f4336c000000d0000000000101e6084801d0b5f03b5edbf3C:\Windows\System32\svchost.exeC:\Windows\SYSTEM32\ntdll.dlla2854348-21e5-11e5-8324-10c37ba2affd

Error: (07/01/2015 02:36:38 AM) (Source: VSS) (EventID: 12305) (User: )
Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 000000000000019C,0x00530194,0000000000000000,0,0000004002DD20A0,4096,[0])

Vorgang:
   Schattenkopien abfragen

Error: (07/01/2015 02:36:34 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert

Error: (07/01/2015 02:19:33 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:31 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:29 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:27 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:25 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 02:19:23 AM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ProxyError(ProxyError('Cannot connect to proxy. Socket error: [Errno 10061] Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte.',),))

Error: (07/01/2015 01:41:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa1cb401d0b388e49882edC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll89addc4f-1f81-11e5-831b-10c37ba2affd


CodeIntegrity Errors:
===================================
  Date: 2015-07-04 02:36:50.645
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-07-04 02:36:50.594
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-07-04 02:36:18.495
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-07-04 02:36:18.349
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-06-30 22:52:46.138
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-06-30 22:52:46.088
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-06-30 22:52:15.901
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-06-30 22:52:15.790
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-06-29 00:50:19.014
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-06-29 00:50:18.924
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-5960X CPU @ 3.00GHz
Percentage of memory in use: 9%
Total physical RAM: 32637.39 MB
Available physical RAM: 29559.44 MB
Total Pagefile: 32637.39 MB
Available Pagefile: 28733.22 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB

==================== Drives ================================

Drive c: (Cobra) (Fixed) (Total:476.6 GB) (Free:324.39 GB) NTFS
Drive d: (Lager x64) (Fixed) (Total:3725.9 GB) (Free:1827 GB) NTFS
Drive e: (Server x64) (Fixed) (Total:3725.9 GB) (Free:1816.24 GB) NTFS
Drive f: (Temp x64) (Fixed) (Total:931.51 GB) (Free:629.09 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5370E04D)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: EE830812)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=476.6 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: E3FD3DB6)

Partition: GPT Partition Type.

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: 0A2C5009)

Partition: GPT Partition Type.

==================== End of log ============================

--- --- ---

schrauber · 06.07.2015, 05:30

Tune Up bitte anlassen:

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

RemoveProxy:
Emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

wolff1975 · 06.07.2015, 20:43

der Eintrag ist aus der regestry verschwunden Wahnsinn ... du bist echt erstaunlich.

Code:

ATTFilter

Fix result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01
Ran by Michael Wolff at 2015-07-06 21:35:33 Run:2
Running from C:\Users\Michael Wolff\Desktop
Loaded Profiles: Michael Wolff (Available Profiles: Michael Wolff)
Boot Mode: Normal
==============================================

fixlist content:
*****************
RemoveProxy:
Emptytemp:
*****************


========= RemoveProxy: =========

HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value removed successfully
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-2798653254-3347362527-1621319806-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========

EmptyTemp: => 736.4 MB temporary data Removed.


The system needed a reboot.. 

==== End of Fixlog 21:36:03 ====

Bitte erkläre es mir ich hab da bereits tage mit zugebracht ohne Erfolg...

Vielen Herzlichen dank für die Kostbare zeit die du mir geopfert hast !!!!

schrauber · 07.07.2015, 06:22

Das ist einfach ein extra Schalter in dem Tool, der den Prxy an bestimmten Stellen killt, auch an Stellen an die Du so nicht denkst

07.07.2015, 06:22	#6
schrauber /// the machine /// TB-Ausbilder	Eigenartige Proxy einstellungen durch Tune Up Utilities...? Das ist einfach ein extra Schalter in dem Tool, der den Prxy an bestimmten Stellen killt, auch an Stellen an die Du so nicht denkst __________________ --> Eigenartige Proxy einstellungen durch Tune Up Utilities...?

Eigenartige Proxy einstellungen durch Tune Up Utilities...?

Plagegeister aller Art und deren Bekämpfung: Eigenartige Proxy einstellungen durch Tune Up Utilities...?