| Ismail75 | 30.12.2014 19:12 |
FRST.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-12-2014
Ran by Boss (administrator) on B0SS on 30-12-2014 19:09:25
Running from C:\Users\Boss\Desktop
Loaded Profile: Boss (Available profiles: Boss)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) T:\Programme\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Ryan Conrad) C:\Program Files\Droid Explorer\DroidExplorer.Service.exe
() C:\Users\Boss\Desktop\adt-bundle-windows-x86_64-20140702\sdk\platform-tools\adb.exe
(Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Razer Inc.) T:\Programme\Razer Game Booster\RzKLService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Spotify Ltd) C:\Users\Boss\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Octoshape ApS) C:\Users\Boss\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Users\Boss\AppData\Roaming\Dropbox\bin\Dropbox.exe
(The Pidgin developer community) T:\Programme\Pidgin\pidgin.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(ShareX Developers) T:\Programme\ShareX\ShareX.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AVAST Software) T:\Programme\Avast\avastui.exe
(Disc Soft Ltd) T:\Programme\DAEMON Tools Ultra\DiscSoftBusService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Don HO don.h@free.fr) T:\Programme\Notepad++\notepad++.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_235.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_235.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-11-17] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [WebResearchStartupInit] => C:\Program Files (x86)\Web-Recherche\WRGet.exe [144936 2013-12-01] (macropool GmbH)
HKLM-x32\...\Run: [AvastUI.exe] => T:\Programme\Avast\AvastUI.exe [5227112 2014-12-12] (AVAST Software)
HKLM\...\RunOnce: [PCDrProfiler] => C:\Program Files\PC-Doctor for Windows\RunProfiler.exe [136176 2009-06-26] (PC-Doctor, Inc.)
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Run: [] => [X]
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Run: [Spotify Web Helper] => C:\Users\Boss\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-12] (Spotify Ltd)
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Run: [DAEMON Tools Ultra Agent] => T:\Programme\DAEMON Tools Ultra\DTAgent.exe [3125976 2013-09-23] (Disc Soft Ltd)
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Run: [Octoshape Streaming Services] => C:\Users\Boss\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [107800 2011-03-24] (Octoshape ApS)
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22869088 2014-10-21] (Google)
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Run: [SpiderOak] => C:\Program Files\SpiderOak\SpiderOak.exe --windows_startup
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.EXE [410216 2014-11-03] (CyberGhost S.R.L.)
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: {a9126a1e-b1b5-11e3-a353-e0699581bb35} - L:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: {c86094d9-a531-11e3-bd87-e0699581bb35} - L:\Autorun.exe
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: {e906f004-a454-11e3-914b-e0699581bb35} - J:\setup.exe
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: {f672a82f-1835-11e4-881d-e0699581bb35} - M:\Autorun.exe
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: {f672a866-1835-11e4-881d-e0699581bb35} - M:\Autorun.exe
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: {f672a86b-1835-11e4-881d-e0699581bb35} - N:\Autorun.exe
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: {f672a870-1835-11e4-881d-e0699581bb35} - O:\Autorun.exe
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\MountPoints2: {f672a875-1835-11e4-881d-e0699581bb35} - P:\Autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-03-05] (Microsoft Corporation)
Startup: C:\Users\Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe-BackupByPhotoshopCS6Portable\Calibration\Adobe Gamma Loader.exe (No File)
Startup: C:\Users\Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Pidgin.lnk
ShortcutTarget: Pidgin.lnk -> T:\Programme\Pidgin\pidgin.exe (The Pidgin developer community)
Startup: C:\Users\Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk
ShortcutTarget: ShareX.lnk -> T:\Programme\ShareX\ShareX.exe (ShareX Developers)
Startup: C:\Users\Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\thunderbird.lnk
ShortcutTarget: thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => T:\Programme\Avast\ashShA64.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=securitascout
SearchScopes: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=securitascout
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> T:\Programme\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: Web-Recherche-Browserhilfsobjekt -> {255215E2-87DC-4819-8724-D0B4C94DBEF5} -> C:\Program Files (x86)\Web-Recherche\WRShell.dll (macropool GmbH)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> T:\Programme\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Help the General-Search Project -> {CA4520F3-AE13-4FB1-A513-58E23991C86D} -> C:\Users\Boss\AppData\Roaming\General Downloader\Extensions\GenCrawl.dll ()
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKLM-x32 - Web-Recherche-Symbolleiste - {8F0F47B1-7D4B-4834-A981-91E2A3DCE069} - C:\Program Files (x86)\Web-Recherche\WRShell.dll (macropool GmbH)
Toolbar: HKLM-x32 - Web-Recherche-Bearbeitungsleiste - {5338DF6C-3B3B-4E38-8B31-7B99986627B2} - C:\Program Files (x86)\Web-Recherche\WRShell.dll (macropool GmbH)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> T:\Programme\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll No File
FF Plugin HKU\S-1-5-21-4229827510-1635405372-2453878754-1000: @acestream.net/acestreamplugin,version=2.2.2-next -> C:\Users\Boss\AppData\Roaming\ACEStream\player\npace_plugin.dll (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-4229827510-1635405372-2453878754-1000: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Boss\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1312180-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKU\S-1-5-21-4229827510-1635405372-2453878754-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Boss\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-4229827510-1635405372-2453878754-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Boss\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-4229827510-1635405372-2453878754-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Boss\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-4229827510-1635405372-2453878754-1000: electronicarts.com/GameFacePlugin -> C:\Users\Boss\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts)
FF user.js: detected! => C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\user.js
FF user.js: detected! => C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\Boss\AppData\Roaming\mozilla\plugins\npoctoshape.dll (Octoshape ApS)
FF SearchPlugin: C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\searchplugins\xrelv3.xml
FF Extension: General Downloader plugin - C:\Users\Boss\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\@generaldownloader.com [2014-06-27]
FF Extension: General Crawler - C:\Users\Boss\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com [2014-06-27]
FF Extension: YouTube Unblocker - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\youtubeunblocker@unblocker.yt [2014-11-21]
FF Extension: FireShot - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2014-12-09]
FF Extension: iMacros for Firefox - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2014-12-17]
FF Extension: Live HTTP Headers - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a} [2014-03-20]
FF Extension: Download videos and MP3s from YouTube - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-12-10]
FF Extension: DownloadHelper - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-09-21]
FF Extension: Cookies Manager+ - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d} [2014-04-16]
FF Extension: Firebug - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\firebug@software.joehewitt.com.xpi [2014-06-24]
FF Extension: MEGA - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\firefox@mega.co.nz.xpi [2014-11-28]
FF Extension: convert2mp3.net YouTube2MP3 Converter - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\info@convert2mp3.net.xpi [2014-03-05]
FF Extension: Magic Actions for YouTube™ - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi [2014-03-04]
FF Extension: AffiliateFox - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{5274f9d8-138e-462e-8437-1d790141a7da}.xpi [2014-09-06]
FF Extension: Download Status Bar - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2014-03-06]
FF Extension: {a6687736-4030-4ea7-9474-ad91966c15c0} - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{a6687736-4030-4ea7-9474-ad91966c15c0}.xpi [2014-07-24]
FF Extension: Adblock Plus - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-04]
FF Extension: Greasemonkey - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\opolmenw.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-07-10]
FF Extension: CloudShare plugin for Firefox - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\itst-firefox-plugin@itstructures.com [2014-04-25]
FF Extension: Twitter App - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{12b6fdcd-4423-4276-82a3-73fdbff5f7e4} [2014-04-25]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7} [2014-04-25]
FF Extension: Live HTTP Headers - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a} [2014-04-25]
FF Extension: Download videos and MP3s from YouTube - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-12-10]
FF Extension: DownloadHelper - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-04-25]
FF Extension: Cookies Manager+ - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d} [2014-04-25]
FF Extension: No Name - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\ddlw@ddlw.org.xpi [2014-04-25]
FF Extension: No Name - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\DivXWebPlayer@divx.com.xpi [2014-04-25]
FF Extension: No Name - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\firebug@software.joehewitt.com.xpi [2014-04-25]
FF Extension: No Name - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\info@convert2mp3.net.xpi [2014-04-25]
FF Extension: AdF.ly Skipper - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\jid0-hyjN250ZzTOOX3evFwwAQBxE4ik@jetpack.xpi [2014-04-25]
FF Extension: No Name - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\jid0-k75TfRGfOXPHfEZmJ9cKu5eCgLc@jetpack.xpi [2014-04-25]
FF Extension: No Name - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi [2014-04-25]
FF Extension: 9kw Client - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\jid0-XwUKlRBfcA5HtCB5ObIXvDKSy4c@jetpack.xpi [2014-04-25]
FF Extension: MozRepl - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\mozrepl@hyperstruct.net.xpi [2014-04-25]
FF Extension: gTranslate - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi [2014-04-25]
FF Extension: Adblock Plus - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-25]
FF Extension: Download Statusbar - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2014-04-25]
FF Extension: Greasemonkey - C:\Users\Boss\AppData\Roaming\Mozilla\Firefox\Profiles\92xakd4q.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-04-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - T:\Programme\Avast\WebRep\FF
FF Extension: Avast Online Security - T:\Programme\Avast\WebRep\FF [2014-09-05]
FF HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Boss\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Boss\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org [2014-04-01]
FF HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-12-10]
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default ->
CHR StartupUrls: Default -> ""
CHR Profile: C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-05]
CHR Extension: (Google Drive) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-05]
CHR Extension: (iTim Text (+MMS)) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfndjnhpopclkbidgimpggjdbkedogo [2014-10-05]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-03]
CHR Extension: (Rumola - bypass CAPTCHA) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjjgbdlbgjeoankjijbmheneoekbghcg [2014-09-04]
CHR Extension: (YouTube) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-05]
CHR Extension: (Adblock Plus) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-06-22]
CHR Extension: (Google-Suche) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-05]
CHR Extension: (iMacros for Chrome) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\cplklnmnlbnpmjogncfgfijoopmnlemp [2014-09-04]
CHR Extension: (save oN) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebpfckbpljcpkaepnimffhnbfbcnioen [2014-06-27]
CHR Extension: (Avast Online Security) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-06]
CHR Extension: (Live HTTP Headers) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaiioopjkcekapmldfgbebdclcnpgnlo [2014-03-17]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-13]
CHR Extension: (Premiumize.me) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\lojbjecfjcnaledoelddkcjlifhhfebm [2014-08-02]
CHR Extension: (Securita Scout) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfkilfadjoneaheacgmkahfgcjchkpad [2014-07-31]
CHR Extension: (Google Wallet) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-05]
CHR Extension: (Amazon) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocbnpbkmjpgbdcgiflkgkpnkinifpgpj [2014-07-31]
CHR Extension: (Facebook - Delete My Timeline) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\olpgdigakalagbnckjmnhajofccbbeaf [2014-09-19]
CHR Extension: (Google Mail) - C:\Users\Boss\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-05]
CHR HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Chrome\Extension: [kpckgflgdapkpabemgkielbefdildaio] - C:\Users\Boss\AppData\Roaming\ACEStream\extensions\chrome_new\magicplayer.crx [2014-01-28]
CHR HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - No Path
CHR HKLM-x32\...\Chrome\Extension: [gkcbebbklfkjeocpmoamnopdllfekind] - C:\Users\Boss\AppData\Roaming\General Downloader\Extensions\gdchrome.crx [2014-06-27]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - T:\Programme\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-23]
CHR HKLM-x32\...\Chrome\Extension: [ocbnpbkmjpgbdcgiflkgkpnkinifpgpj] - C:\Users\Boss\ChromeExtensions\ocbnpbkmjpgbdcgiflkgkpnkinifpgpj\amazon-icon-2.crx [2014-07-31]
CHR HKLM-x32\...\Chrome\Extension: [pcidejejpblipcjpnkfkddlkmgndblch] - C:\Users\Boss\AppData\Roaming\General Downloader\Extensions\GenCrawler.crx [2014-06-27]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-11-17] (Adobe Systems) [File not signed]
R2 avast! Antivirus; T:\Programme\Avast\AvastSvc.exe [50344 2014-11-23] (AVAST Software)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-03-13] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-03-13] (BlueStack Systems, Inc.)
S2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [770832 2014-03-13] (BlueStack Systems, Inc.)
S2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64616 2014-11-03] (CyberGhost S.R.L)
R3 Disc Soft Bus Service; T:\Programme\DAEMON Tools Ultra\DiscSoftBusService.exe [654552 2013-09-23] (Disc Soft Ltd)
R2 DroidExplorerService; C:\Program Files\Droid Explorer\DroidExplorer.Service.exe [254976 2013-08-25] (Ryan Conrad) [File not signed]
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
S4 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [47416 2014-02-05] (Hewlett-Packard Company)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1615192 2014-04-02] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20541216 2014-04-02] (NVIDIA Corporation)
S3 OpenVPNService; T:\Programme\OpenVPN\bin\openvpnserv.exe [38200 2014-10-21] (The OpenVPN Project)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-18] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 RzKLService; T:\Programme\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S4 SbieSvc; T:\Programme\Sandboxie\SbieSvc.exe [187592 2014-01-17] (Sandboxie Holdings, LLC)
S3 VsEtwService120; T:\Programme\Visual Studio\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
S3 wampapache; T:\wamp\bin\apache\apache2.4.4\bin\httpd.exe [24576 2013-06-23] (Apache Software Foundation) [File not signed]
S3 wampmysqld; T:\wamp\bin\mysql\mysql5.6.12\bin\mysqld.exe [12867584 2013-06-23] () [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-23] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-23] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-23] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-23] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-23] ()
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [121616 2014-03-13] (BlueStack Systems)
R3 cleanhlp; C:\EEK\bin\cleanhlp64.sys [57024 2014-12-30] (Emsisoft GmbH)
R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2014-03-05] (Disc Soft Ltd)
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [42016 2013-11-27] (Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35232 2013-12-06] (Visicom Media Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-21] (NVIDIA Corporation)
S3 SbieDrv; T:\Programme\Sandboxie\SbieDrv.sys [202600 2014-01-17] (Sandboxie Holdings, LLC)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 EverestDriver; \??\C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-30 19:09 - 2014-12-30 19:10 - 00033215 _____ () C:\Users\Boss\Desktop\FRST.txt
2014-12-30 19:09 - 2014-12-30 19:09 - 00000000 ____D () C:\FRST
2014-12-30 19:08 - 2014-12-30 19:09 - 02123264 _____ (Farbar) C:\Users\Boss\Desktop\FRST64.exe
2014-12-30 15:48 - 2014-12-30 15:49 - 00000000 ____D () C:\EEK
2014-12-30 15:48 - 2014-12-30 15:48 - 00000745 _____ () C:\Users\Boss\Desktop\Start Emsisoft Emergency Kit.lnk
2014-12-30 15:46 - 2014-12-30 15:47 - 165141136 _____ () C:\Users\Boss\Downloads\EmsisoftEmergencyKit.exe
2014-12-29 15:56 - 2014-12-29 15:58 - 59961947 _____ () C:\Users\Boss\Downloads\Learn Swedish.7z
2014-12-29 15:51 - 2014-12-29 15:54 - 67173369 _____ () C:\Users\Boss\Downloads\JPack.7z
2014-12-29 13:23 - 2010-11-11 15:34 - 00201728 _____ (Freebyte.com) C:\Users\Boss\Desktop\hjsplit.exe
2014-12-29 13:22 - 2014-12-29 13:22 - 00596336 _____ () C:\Users\Boss\Downloads\hjsplit.exe
2014-12-29 13:21 - 2014-12-29 13:21 - 01110476 _____ () C:\Users\Boss\Downloads\7z920.exe
2014-12-29 12:05 - 2014-12-29 12:06 - 46106283 _____ () C:\Users\Boss\Downloads\1418149771.7z
2014-12-24 01:03 - 2014-12-24 01:03 - 00003492 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-B0ss-Boss
2014-12-24 01:01 - 2014-12-24 01:03 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-12-24 01:01 - 2014-12-24 01:01 - 00000034 _____ () C:\Users\Boss\AppData\Roaming\AdobeWLCMCache.dat
2014-12-24 00:57 - 2014-12-24 00:57 - 00001747 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014 (32 Bit).lnk
2014-12-24 00:57 - 2014-12-24 00:57 - 00000000 ____D () C:\ProgramData\ALM
2014-12-24 00:43 - 2014-12-24 00:43 - 00000000 ____D () C:\Users\Boss\Downloads\AICC14x32-DDLW
2014-12-24 00:40 - 2014-12-24 00:42 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part17.rar
2014-12-24 00:40 - 2014-12-24 00:40 - 00524583 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part18.rar
2014-12-24 00:37 - 2014-12-24 00:40 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part16.rar
2014-12-24 00:37 - 2014-12-24 00:40 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part15.rar
2014-12-24 00:34 - 2014-12-24 00:37 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part14.rar
2014-12-24 00:34 - 2014-12-24 00:37 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part13.rar
2014-12-24 00:30 - 2014-12-24 00:34 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part12.rar
2014-12-24 00:30 - 2014-12-24 00:34 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part11.rar
2014-12-24 00:27 - 2014-12-24 00:30 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part10.rar
2014-12-24 00:27 - 2014-12-24 00:30 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part09.rar
2014-12-24 00:23 - 2014-12-24 00:27 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part08.rar
2014-12-24 00:23 - 2014-12-24 00:27 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part07.rar
2014-12-24 00:20 - 2014-12-24 00:23 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part06.rar
2014-12-24 00:20 - 2014-12-24 00:23 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part05.rar
2014-12-24 00:17 - 2014-12-24 00:20 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part04.rar
2014-12-24 00:17 - 2014-12-24 00:20 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part03.rar
2014-12-24 00:13 - 2014-12-24 00:17 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part02.rar
2014-12-24 00:13 - 2014-12-24 00:17 - 105906179 _____ () C:\Users\Boss\Downloads\AICC14x32-DDLW.part01.rar
2014-12-23 23:54 - 2014-12-24 01:03 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Adobe
2014-12-23 23:54 - 2014-12-24 01:02 - 00000000 ____D () C:\Users\Boss\AppData\Local\Adobe
2014-12-23 23:54 - 2014-12-24 00:08 - 00000000 ____D () C:\ProgramData\Adobe
2014-12-23 22:43 - 2014-12-23 22:44 - 11500232 _____ () C:\Users\Boss\Downloads\Letterpress-Logo-MockUp-1.zip
2014-12-23 22:38 - 2014-12-23 22:39 - 08861243 _____ () C:\Users\Boss\Downloads\vintage-label-on-wooden-background.zip
2014-12-23 17:24 - 2014-12-23 17:24 - 00242580 _____ () C:\Users\Boss\Downloads\gp-premium.zip
2014-12-23 16:58 - 2014-12-23 16:58 - 00955640 _____ () C:\Users\Boss\Downloads\generatepress.1.2.4.zip
2014-12-23 16:02 - 2014-12-23 16:02 - 00641876 _____ () C:\Users\Boss\Downloads\uikit-2.15.0.zip
2014-12-23 15:40 - 2014-12-23 15:40 - 00972160 _____ () C:\Users\Boss\Downloads\racho_j.zip
2014-12-23 15:29 - 2014-12-23 15:30 - 68694828 _____ () C:\Users\Boss\Downloads\js_istore_II.rar
2014-12-23 14:16 - 2014-12-23 14:17 - 11443634 _____ () C:\Users\Boss\Downloads\Fresh Store Builder 4.0 Unlimited nulled.rar
2014-12-23 14:00 - 2014-12-23 14:01 - 00000000 ____D () C:\Users\Boss\Desktop\wwc-amz-aff
2014-12-23 13:07 - 2014-12-23 13:10 - 298858015 _____ () C:\Users\Boss\Downloads\Lucy-Cat - SPANNER erwischt im Schwimmbad!.rar
2014-12-23 13:06 - 2014-12-23 13:07 - 44001318 _____ () C:\Users\Boss\Downloads\Lucy-Cat - Schau mir beim Duschen zu.rar
2014-12-23 13:03 - 2014-12-23 13:05 - 131176169 _____ () C:\Users\Boss\Downloads\Lucy-Cat - QUICKFICK mit GESICHTSBESCHUSS.rar
2014-12-23 13:03 - 2014-12-23 13:04 - 62285113 _____ () C:\Users\Boss\Downloads\Lucy-Cat - Wild und spontan! So liebe ich es privat!.rar
2014-12-18 12:43 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-18 12:43 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-12 22:43 - 2014-12-12 22:43 - 00019240 _____ () C:\Users\Boss\Downloads\Arrow.S03E09.HDTV.x264-LOL.de-SubCentral.rar
2014-12-12 13:16 - 2014-12-12 13:16 - 06126536 _____ (Tim Kosse) C:\Users\Boss\Downloads\FileZilla_3.9.0.6_win32-setup.exe
2014-12-12 11:40 - 2014-12-12 11:40 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-11 16:34 - 2014-10-18 03:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-11 16:34 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-11 16:34 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-11 16:34 - 2014-07-07 03:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-11 16:34 - 2014-07-07 03:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-11 16:34 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-11 16:34 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-12-11 16:34 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-12-11 16:34 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-12-11 16:34 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-12-11 14:22 - 2014-12-04 03:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-11 14:22 - 2014-12-04 03:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-11 14:22 - 2014-12-04 03:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-11 14:22 - 2014-12-04 03:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-11 14:22 - 2014-12-04 03:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-11 14:22 - 2014-12-04 03:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-11 14:22 - 2014-12-04 03:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-11 14:22 - 2014-12-02 00:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-11 14:22 - 2014-11-11 04:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-11 14:21 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-11 14:20 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-11 14:20 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-11 14:20 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-11 14:20 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-11 14:20 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 14:20 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-11 14:20 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-11 14:20 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-11 14:20 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-11 14:20 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-11 14:20 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-11 14:20 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-11 14:20 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-11 14:20 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-11 14:20 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-11 14:20 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-11 14:20 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 14:20 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-11 14:20 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-11 14:20 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-11 14:20 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 14:20 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-11 14:20 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-11 14:20 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-11 14:20 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-11 14:20 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-11 14:20 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-11 14:20 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-11 14:20 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-11 14:20 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-11 14:20 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-11 14:20 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-11 14:20 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-11 14:20 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-11 14:20 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-11 14:20 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-11 14:20 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-11 14:20 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-11 14:20 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-11 14:20 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-11 14:20 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-11 14:20 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-11 14:20 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-11 14:20 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-11 14:20 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-11 14:20 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-11 14:20 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-11 14:20 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-11 14:20 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-11 14:20 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-11 14:20 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-11 14:20 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-11 14:20 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-11 14:20 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-11 14:20 - 2014-11-11 02:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-11 14:19 - 2014-11-08 04:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-11 14:19 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-11 14:19 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-11 14:19 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-11 14:19 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-11 14:19 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 14:19 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-11 14:19 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-11 14:19 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 14:19 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-11 14:19 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-11 14:19 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-11 14:19 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-11 14:19 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-10 20:32 - 2014-12-10 20:32 - 00000000 ____D () C:\Program Files (x86)\Free Codec Pack
2014-12-10 20:30 - 2014-12-10 20:31 - 34647200 _____ (DVDVideoSoft Ltd. ) C:\Users\Boss\Downloads\FreeYouTubeToMP3Converter1122.exe
2014-12-06 11:25 - 2014-12-06 11:29 - 29146872 _____ () C:\Users\Boss\Downloads\deutsch408.flv.~
2014-12-06 11:23 - 2014-12-06 11:23 - 00018664 _____ () C:\Users\Boss\Downloads\[kickass.so]mydirtyhobby.lucy.cat.21.clips.2014.torrent
2014-12-06 11:11 - 2014-12-06 11:14 - 105099924 _____ () C:\Users\Boss\Downloads\hartanalt.rar
2014-12-06 11:10 - 2014-12-06 11:14 - 157286400 _____ () C:\Users\Boss\Downloads\Stiefbrulara.part1.rar
2014-12-06 11:10 - 2014-12-06 11:14 - 139114504 _____ () C:\Users\Boss\Downloads\Stiefbrulara.part2.rar
2014-12-02 20:12 - 2014-12-02 20:13 - 09629976 _____ (CyberGhost S.R.L. ) C:\Users\Boss\Downloads\CG_5.0.14.7.exe
2014-12-01 23:43 - 2014-12-01 23:43 - 00094186 _____ () C:\Users\Boss\Downloads\snowball_fight.jar
2014-11-30 10:30 - 2014-11-30 10:30 - 00002511 _____ () C:\Users\Boss\Desktop\Yandex Alpha.lnk
2014-11-30 10:30 - 2014-11-30 10:30 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Yandex
2014-11-30 10:30 - 2014-11-30 10:30 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yandex Alpha
2014-11-30 10:30 - 2014-11-30 10:30 - 00000000 ____D () C:\Users\Boss\AppData\Local\Yandex
2014-11-30 10:28 - 2014-11-30 10:29 - 101858096 _____ (YANDEX LLC) C:\Users\Boss\Downloads\Yandex.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-30 19:09 - 2014-03-04 06:00 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\.purple
2014-12-30 18:50 - 2014-03-04 06:15 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Skype
2014-12-30 18:47 - 2014-03-05 14:11 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-30 18:44 - 2014-03-04 05:43 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-30 18:28 - 2014-03-20 20:28 - 00000386 _____ () C:\Windows\Tasks\update-sys.job
2014-12-30 18:21 - 2014-06-27 14:53 - 00000000 ____D () C:\ProgramData\savae oan
2014-12-30 18:17 - 2014-05-18 20:59 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4229827510-1635405372-2453878754-1000UA.job
2014-12-30 16:16 - 2014-03-20 20:28 - 00000386 _____ () C:\Windows\Tasks\update-S-1-5-21-4229827510-1635405372-2453878754-1000.job
2014-12-30 14:21 - 2014-03-04 04:18 - 01690085 _____ () C:\Windows\WindowsUpdate.log
2014-12-30 13:20 - 2009-07-14 05:45 - 00024064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-30 13:20 - 2009-07-14 05:45 - 00024064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-30 13:14 - 2014-09-02 20:31 - 00000000 ___RD () C:\Users\Boss\Google Drive
2014-12-30 13:14 - 2014-03-26 19:34 - 00000000 ___RD () C:\Users\Boss\Dropbox
2014-12-30 13:14 - 2014-03-09 22:41 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Dropbox
2014-12-30 13:13 - 2014-09-05 23:18 - 00004144 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-12-30 13:12 - 2014-11-29 00:05 - 00000000 ____D () C:\Users\Boss\AppData\Local\HTC MediaHub
2014-12-30 13:12 - 2014-03-05 14:11 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-30 13:11 - 2014-09-03 22:22 - 00027390 _____ () C:\Windows\setupact.log
2014-12-30 13:11 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-30 13:10 - 2014-09-04 16:32 - 00081978 _____ () C:\Windows\PFRO.log
2014-12-29 15:20 - 2014-03-23 15:24 - 00001456 _____ () C:\Users\Boss\AppData\Local\Adobe Für Web speichern 12.0 Prefs
2014-12-29 11:53 - 2014-03-04 06:15 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-29 11:53 - 2014-03-04 06:14 - 00000000 ____D () C:\ProgramData\Skype
2014-12-29 11:52 - 2014-03-20 20:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2014-12-29 01:47 - 2014-04-26 16:07 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Spotify
2014-12-29 01:32 - 2014-04-26 16:07 - 00000000 ____D () C:\Users\Boss\AppData\Local\Spotify
2014-12-28 19:14 - 2014-06-29 16:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-12-28 19:14 - 2014-06-29 16:58 - 00000000 ____D () C:\ProgramData\DivX
2014-12-28 19:14 - 2014-06-29 16:58 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-12-28 19:14 - 2014-04-30 15:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-12-28 19:11 - 2014-07-23 17:58 - 00000566 _____ () C:\Users\Boss\Desktop\GoT.html
2014-12-25 01:14 - 2014-03-04 14:50 - 00000000 ____D () C:\ProgramData\Origin
2014-12-25 01:13 - 2014-03-04 18:20 - 00000000 ____D () C:\Users\Boss\Documents\FIFA 14
2014-12-24 22:49 - 2014-03-04 14:49 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-12-24 20:17 - 2014-05-18 20:59 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4229827510-1635405372-2453878754-1000Core.job
2014-12-24 12:50 - 2009-07-14 05:45 - 02278064 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-24 01:02 - 2014-03-31 18:12 - 00000000 ____D () C:\Users\Boss\AppData\Local\CrashDumps
2014-12-24 00:56 - 2014-11-17 16:19 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-12-24 00:53 - 2014-03-23 01:58 - 00001536 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2014-12-24 00:53 - 2014-03-12 19:30 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-24 00:44 - 2014-03-04 15:12 - 00760568 _____ () C:\Users\Boss\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-21 23:50 - 2014-03-04 05:35 - 00023486 _____ () C:\Windows\system32\lvcoinst.log
2014-12-21 01:54 - 2014-07-21 19:41 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Apple Computer
2014-12-20 18:11 - 2014-03-04 06:08 - 00000000 ____D () C:\Users\Boss\AppData\Local\Thunderbird
2014-12-20 12:09 - 2014-03-04 05:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-20 00:05 - 2014-03-04 05:43 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-20 00:05 - 2014-03-04 05:43 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-20 00:05 - 2014-03-04 05:43 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-18 12:55 - 2014-10-17 14:29 - 00097361 _____ () C:\Windows\DirectX.log
2014-12-17 17:51 - 2014-09-17 18:49 - 00003844 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1410976141
2014-12-17 17:51 - 2014-09-17 18:49 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-12-17 11:48 - 2014-03-09 22:42 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-12-13 14:42 - 2014-10-08 19:29 - 00000000 ____D () C:\Program Files (x86)\Darkcoin
2014-12-13 14:38 - 2014-07-31 02:32 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\Security System 2
2014-12-12 23:45 - 2014-03-06 15:40 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-12 23:40 - 2014-05-26 15:02 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\vlc
2014-12-12 13:18 - 2014-10-28 10:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpiderOak
2014-12-12 13:17 - 2014-05-10 03:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-12 12:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-12-12 11:45 - 2014-10-28 10:43 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\SpiderOak
2014-12-12 11:40 - 2014-05-06 23:24 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-12 11:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-12 11:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-11 16:52 - 2014-03-06 15:43 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-12-11 16:49 - 2014-03-04 14:19 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-11 16:42 - 2014-03-04 14:19 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-10 20:33 - 2014-09-21 20:39 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\DVDVideoSoft
2014-12-10 20:32 - 2014-09-21 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-12-10 20:32 - 2014-09-21 20:40 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-12-09 16:35 - 2014-03-04 18:21 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\KeePass
2014-12-08 17:48 - 2014-08-02 02:31 - 00000000 ____D () C:\Users\Boss\Downloads\xasdas
2014-12-06 16:27 - 2014-09-03 12:58 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\BitTorrent
2014-12-02 20:15 - 2014-09-06 00:14 - 00000000 ____D () C:\Users\Boss\AppData\Local\CyberGhost
2014-12-02 20:14 - 2014-09-06 00:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5
2014-12-02 20:14 - 2014-09-06 00:14 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-12-02 19:32 - 2014-10-13 19:51 - 00000000 ____D () C:\Users\Boss\AppData\Local\Deployment
2014-12-02 11:22 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-30 17:55 - 2014-11-22 17:34 - 00000000 ____D () C:\Users\Boss\AppData\Roaming\SimpleTV V03
2014-11-30 17:55 - 2014-11-22 17:33 - 00000000 ____D () C:\Program Files (x86)\SimpleTV
2014-11-30 17:36 - 2014-11-28 20:25 - 00000000 ____D () C:\Users\Boss\Desktop\adt-bundle-windows-x86_64-20140702
Some content of TEMP:
====================
C:\Users\Boss\AppData\Local\Temp\avgnt.exe
C:\Users\Boss\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp0yp7rx.dll
C:\Users\Boss\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Boss\AppData\Local\Temp\FreemakeVideoConverter_4.1.4.14.exe
C:\Users\Boss\AppData\Local\Temp\npp.6.6.9.Installer.exe
C:\Users\Boss\AppData\Local\Temp\proxy_vole8098559824041123620.dll
C:\Users\Boss\AppData\Local\Temp\RSPUpgradeInstaller.exe
C:\Users\Boss\AppData\Local\Temp\ShareX-9.3.0-setup.exe
C:\Users\Boss\AppData\Local\Temp\ShareX-9.3.1-setup.exe
C:\Users\Boss\AppData\Local\Temp\ShareX-9.4.0-setup.exe
C:\Users\Boss\AppData\Local\Temp\ShareX-9.4.1-setup.exe
C:\Users\Boss\AppData\Local\Temp\ShareX-9.4.2-setup.exe
C:\Users\Boss\AppData\Local\Temp\ShareX-9.5.0-setup.exe
C:\Users\Boss\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Boss\AppData\Local\Temp\SRLDetectionLibrary2488736171396608749.dll
C:\Users\Boss\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-16 12:33
==================== End Of Log ============================
--- --- ---
Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-12-2014
Ran by Boss at 2014-12-30 19:10:50
Running from C:\Users\Boss\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Ace Stream Media 2.2.2-next (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\AceStream) (Version: 2.2.2-next - Ace Stream Media)
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (32 Bit) (HKLM-x32\...\{8913FAF3-5BFE-45BA-AF57-67AF4BA67898}) (Version: 18.0 - Adobe Systems Incorporated)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1355, 14.07.2014 - AIMP DevTeam)
Akamai NetSession Interface (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Antensiz TV (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\ec26ebe9ad817d8b) (Version: 2.0.0.0 - Antensiz TV)
Apple Application Support (HKLM-x32\...\{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}) (Version: 3.0.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoIt v3.3.10.2 (HKLM-x32\...\AutoItv3) (Version: 3.3.10.2 - AutoIt Team)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
BitTorrent (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\BitTorrent) (Version: 7.9.2.35704 - BitTorrent Inc.)
BitTorrent Sync (HKLM\...\BitTorrent Sync) (Version: 1.4.83 - BitTorrent Inc.)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.6.3059 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{FE5ABB0E-EDEA-4023-B0FB-9DEA39A98D76}) (Version: 0.8.7.3069 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brackets (HKLM-x32\...\{ABCC2682-885E-47D9-9EB8-2785C3FD82E3}) (Version: 1.0 - brackets.io)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Camtasia Studio 8 (HKLM-x32\...\{F5C9BE9A-04C3-4A72-8CD0-BB67C722D608}) (Version: 8.1.2.1344 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 2.0.0.0159 - Disc Soft Ltd)
Darkcoin (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Darkcoin) (Version: 0.10.14.1 - Darkcoin Project)
dBpoweramp [Arrange Audio] Codec (HKLM-x32\...\dBpoweramp [Arrange Audio] Codec) (Version: Release 3 - Illustrate)
dBpoweramp [Length Split] Codec (HKLM-x32\...\dBpoweramp [Length Split] Codec) (Version: - )
dBpoweramp [Multi Encoder] Codec (HKLM-x32\...\dBpoweramp [Multi Encoder] Codec) (Version: Release 4 - Illustrate)
dBpoweramp DSP Effects (HKLM-x32\...\dBpoweramp DSP Effects) (Version: Release 7 - Illustrate)
dBpoweramp m4a Codec (HKLM-x32\...\dBpoweramp m4a Codec) (Version: Release 14 - Illustrate)
dBpoweramp Midi Decoder (HKLM-x32\...\dBpoweramp Midi Decoder) (Version: - )
dBPowerAMP Mp2 and BwfMp2 codec (HKLM-x32\...\dBPowerAMP Mp2 and BwfMp2 codec) (Version: Release 6 - Illustrate)
dBpoweramp mp3 (Fraunhofer IIS) Codec (HKLM-x32\...\dBpoweramp mp3 (Fraunhofer IIS) Codec) (Version: Release 2a (v4.0.3) - Illustrate)
dBpoweramp Musepack Codec (HKLM-x32\...\dBpoweramp Musepack Codec) (Version: - )
dBpoweramp Ogg Vorbis Codec (HKLM-x32\...\dBpoweramp Ogg Vorbis Codec) (Version: Release 21 (Vorbis v1.3.2) - Illustrate)
dBPoweramp tooLame MP2 codec (HKLM-x32\...\dBPoweramp tooLame MP2 codec) (Version: - )
dBpoweramp Windows Media Audio 10 Codec (HKLM-x32\...\dBpoweramp Windows Media Audio 10 Codec) (Version: Release 7 - Illustrate)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.54.95 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Inselparadies (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Wildes Studentenleben (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.31 - DivX, LLC)
Droid Explorer 0.8.8.11 (x64) (HKLM\...\{5876342E-8D21-4ED6-AA03-549AB3170BC4}) (Version: 0.8.8.11 - Ryan Conrad)
Dropbox (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
EA SPORTS FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 9.3.0.58666 - Electronic Arts, Inc.)
EA SPORTS Game Face Browser Plugin 1.8.0.0 (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\EA SPORTS Game Face Browser Plugin) (Version: 1.8.0.0 - Electronic Arts)
Entity Framework Tools for Visual Studio 2013 (HKLM-x32\...\{08AEF86A-1956-4846-B906-B01350E96E30}) (Version: 12.0.20912.0 - Microsoft Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation)
Erforderliche Komponenten für SSDT (HKLM-x32\...\{3FF082A7-A5DE-4BDA-B56A-1D2BEFD617A3}) (Version: 11.1.3000.0 - Microsoft Corporation)
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts)
FileZilla Client 3.8.1 (HKLM-x32\...\FileZilla Client) (Version: 3.8.1 - Tim Kosse)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Football Manager 2015 15.1.3 sürümü (HKLM-x32\...\Football Manager 2015_is1) (Version: 15.1.3 - Sega)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 1.5.129.617 - Foxit Corporation)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.1.5.624 - Foxit Corporation)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Free Video to MP3 Converter version 5.0.47.906 (HKLM-x32\...\Free Video to MP3 Converter_is1) (Version: 5.0.47.906 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.50.1122 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.50.1122 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
Gameforge Live 2.0.0 "Baby Genius" (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.0 - Gameforge)
Genymotion version 2.1.1 (HKLM\...\{6D180286-D4DF-40EF-9227-923B9C07C08A}_is1) (Version: 2.1.1 - Genymobile)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Google+ Auto Backup) (Version: 1.0.25.141 - Google, Inc.)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Hardwarediagnosetools (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5205.31 - PC-Doctor, Inc.)
Havij 1.15 Free (HKLM-x32\...\Havij_is1) (Version: - ITSecTeam)
HP Support Solutions Framework (HKLM-x32\...\{86FD8326-909D-45F5-BB61-0619D0D31293}) (Version: 11.50.0011 - Hewlett-Packard Company)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.14.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.33.0 - HTC)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
ISO to USB (HKLM-x32\...\{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1) (Version: - isotousb.com)
iTunes (HKLM\...\{33E28B58-7BA0-47B7-AA01-9225ABA2B8A9}) (Version: 11.3.0.54 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KeePass Password Safe 2.25 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.25 - Dominik Reichl)
K-Lite Mega Codec Pack 10.3.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.3.5 - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
LINE (HKLM-x32\...\LINE) (Version: 3.5.3.23 - LINE Corporation)
LiveZilla (HKLM-x32\...\LiveZilla) (Version: 5.2.0.0 - LiveZilla GmbH)
LiveZilla (x32 Version: 5.2.0.0 - LiveZilla GmbH) Hidden
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
ManyCam 4.0.77 (HKLM-x32\...\ManyCam) (Version: 4.0.77 - Visicom Media Inc.)
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{D4E30517-FE6F-491E-942F-AE10E1B18F38}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{B4EDAE03-DB34-4DD0-BA7E-2ED80DEA50B1}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{269A8DF6-BBDA-441F-932B-233F9B746D72}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{EC75BD20-F9CA-4E77-825F-ABD77E95BE91}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{0BF65908-D137-4A9E-B7C9-78F32F74F6FD}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{93945D16-4C3D-433E-B7E4-3D0D86B284C8}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{6F173435-3F19-4043-BA3D-A46AA8472859}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL-Sprachdienst (HKLM-x32\...\{1D812D86-D8EF-41AC-A518-BA12E1913747}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (12.0.30919.1) (HKLM-x32\...\{7CC03C58-3471-43D2-A251-EC9AE225E772}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (12.0.30919.1) (HKLM-x32\...\{BCB8A870-2B3D-4CC0-87D6-F931E065AC0C}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio Express 2013 für Windows Desktop - DEU (HKLM-x32\...\{31e4d2a5-b246-4c2d-a7fb-aee157c26b02}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft-System-CLR-Typen für SQL Server 2012 (HKLM-x32\...\{43341417-7882-4F34-8390-53DFD00F6C0F}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (HKLM\...\{24440413-490E-41CA-BD33-0B30FD3EBE3A}) (Version: 11.1.3366.16 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 de)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 31.3.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.3.0 (x86 de)) (Version: 31.3.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (x32 Version: 3.8.48.0 - Nokia) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0 - NVIDIA Corporation)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Octoshape Streaming Services (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Octoshape Streaming Services) (Version: - Octoshape ApS)
OpenVPN 2.3.4-I005 (HKLM\...\OpenVPN) (Version: 2.3.4-I005 - )
Opera Stable 26.0.1656.60 (HKLM-x32\...\Opera 26.0.1656.60) (Version: 26.0.1656.60 - Opera Software ASA)
Oracle VM VirtualBox 4.3.8 (HKLM\...\{5D328A41-BFF8-4B78-B45E-5BEE1D133EF5}) (Version: 4.3.8 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.9 - )
pidgin-otr 4.0.0-1 (HKLM-x32\...\pidgin-otr) (Version: 4.0.0-1 - Cypherpunks CA)
Poedit (HKLM-x32\...\{68EB2C37-083A-4303-B5D8-41FA67E50B8F}_is1) (Version: 1.6.9 - Vaclav Slavik)
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.42.0 - Razer Inc.)
SAMSUNG Android USB Modem Software (HKLM\...\SAMSUNG Android USB Modem) (Version: V5.28.2.1 - )
Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC)
savae oan (HKLM-x32\...\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}) (Version: 4.3.0.1718 - save on) <==== ATTENTION
Securita Scout (HKLM-x32\...\Securita Scout) (Version: - ) <==== ATTENTION
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
ShareX 9.5.0 (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 9.5.0 - ShareX Developers)
SHIELD Streaming (Version: 1.8.323 - NVIDIA Corporation) Hidden
Shutdown Timer (HKLM-x32\...\{0B1BBEE3-C10D-44BE-A6BE-EEC867315F87}) (Version: 3.3.4 - Sinvise Systems)
SimpleTV 0.4.7 b2 (HKLM-x32\...\{290A2821-B1F8-4566-B49A-25F349A5B5CB}_is1) (Version: - SergeyVS)
Sims2Pack Clean Installer (HKLM-x32\...\Sims2Pack Clean Installer) (Version: - )
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SmartTurkWebTV (HKLM-x32\...\{9A4CF00F-3E35-4FA4-B061-ED20A94A5671}) (Version: 0.9 - SmartTürk Web TV)
SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
Spotify (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StreamTorrent 1.0 (HKLM-x32\...\StreamTorrent 1.0) (Version: - )
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - )
System Requirements Lab CYRI (HKLM-x32\...\{1110A014-1471-4B66-BFDC-E8EED120CC59}) (Version: 6.0.20.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
TemplateToaster 4 (HKLM-x32\...\TemplateToaster 4_is1) (Version: 4.1.0.5621 - TemplateToaster.com)
Terminplaner .Net (HKLM-x32\...\{AFC4FEEE-6E08-4CC9-815E-5CEDF2C15E2E}_is1) (Version: - Ronny Decke)
The Sims 2 Body Shop (HKLM-x32\...\{438BC259-E54C-4392-008E-2808B9C251CA}) (Version: - )
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
The Sims 4 - Premium Edition (HKLM-x32\...\{46F1375C-3A8C-42E1-9A27-0CE809AD35AC}_is1) (Version: 1.6 - Electronic Arts)
The Sims™ 4 (HKLM-x32\...\{46F1375C-3A8C-42E1-9A27-0CE809AD35AC}) (Version: 1.0.6.0 - Electronic Arts)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Unity Web Player (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VisiPics V1.31 (HKLM-x32\...\VisiPics_is1) (Version: - Ozone)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WampServer 2.4 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL))
WebMoney Agent (HKLM-x32\...\WebMoney Agent) (Version: 3.5 - Softomate)
WebMoney Keeper Classic 3.9.9.1 (HKLM-x32\...\{6D9A7CEE-054A-437D-99EF-DD7C77E001FD}) (Version: 3.9.9.1 - WM Transfer Ltd.)
Web-Recherche 3 (HKLM-x32\...\{C081C7BF-86B9-453D-A91B-1DDC8204E9FA}) (Version: 3.10.4913 - macropool GmbH)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinFF 1.5.3 (Codename EMMA) (HKLM-x32\...\WinFF_is1) (Version: - WinFF.org)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{6F937E75-B6D6-4C2C-B864-90AA91EFF8B2}) (Version: 1.3.1403.1202 - SplitmediaLabs)
Yandex Alpha (HKU\S-1-5-21-4229827510-1635405372-2453878754-1000\...\YandexBrowser Alpha) (Version: 37.0.2062.12544 - YANDEX LLC)
YGOPro DevPro Version 1.9.9 r0 (HKLM-x32\...\{3CF2634F-3F38-4DD3-9201-CB2FE6B5FF23}_is1) (Version: 1.9.9 r0 - YGOPro DevPro Online)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4229827510-1635405372-2453878754-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Boss\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
==================== Restore Points =========================
18-12-2014 12:53:28 DirectX wurde installiert
19-12-2014 00:08:02 Windows Update
23-12-2014 12:34:26 Windows Update
24-12-2014 00:52:35 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
28-12-2014 18:31:38 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2014-11-16 23:16 - 2014-11-16 23:22 - 00001271 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 adscript.sj
127.0.0.1 licensing.ultraedit.com
127.0.0.1 licensing.ultraedit.com
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {07AC61E2-B3B4-49C7-BFD9-1BA90A13EE69} - System32\Tasks\Opera scheduled Autoupdate 1410976141 => C:\Program Files (x86)\Opera\launcher.exe [2014-12-17] (Opera Software)
Task: {1C2B4B6D-0B07-4020-BA25-DD36841B0649} - System32\Tasks\AdobeAAMUpdater-1.0-B0ss-Boss => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {2E2D6FB8-0A88-4508-A84B-DF92F6F98E62} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-02] (Google Inc.)
Task: {35C21B58-66ED-4122-9082-8759CF0FC474} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-02] (Google Inc.)
Task: {38F811DF-7471-4899-85BE-3673188BA4E4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {3D04AB2F-B768-4C20-8A52-9AB24DA5F3FA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4229827510-1635405372-2453878754-1000Core => C:\Users\Boss\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {5FB9DC17-5AFA-417F-B038-633F1A6097F0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {62EC0399-2E1D-41CC-A414-75C4E073FC18} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4229827510-1635405372-2453878754-1000UA => C:\Users\Boss\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {65148258-E9D7-4578-9E36-EAAC0D217E0A} - System32\Tasks\4Team updater => C:\Program Files (x86)\4Team Corporation\4Team-Updater\4Team-Updater.exe
Task: {6A2B3A9D-DFEA-4E55-A3AF-E46FA9FAA715} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {7BB759E4-791B-43BF-86FD-B8F004D3E9C8} - System32\Tasks\avast! Emergency Update => T:\Programme\Avast\AvastEmUpdate.exe [2014-11-23] (AVAST Software)
Task: {92BF45A7-D71C-4ED0-B7A9-3310A99B7429} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd)
Task: {B695E96A-9DBB-4566-83B9-CFD2595CF96D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-20] (Adobe Systems Incorporated)
Task: {C883E812-4C1D-47C5-8706-834D25DEBAE3} - System32\Tasks\update-S-1-5-21-4229827510-1635405372-2453878754-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-03-25] ()
Task: {D3DA3D6A-A32D-43AC-9D66-251C33200099} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {D9620FEE-BB91-4E91-BC00-ABC1D6547B96} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-03-25] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4229827510-1635405372-2453878754-1000Core.job => C:\Users\Boss\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4229827510-1635405372-2453878754-1000UA.job => C:\Users\Boss\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\update-S-1-5-21-4229827510-1635405372-2453878754-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Loaded Modules (whitelisted) =============
2014-05-01 20:29 - 2014-05-01 20:29 - 00098304 _____ () T:\Programme\FileZillaPortable\FileZilla FTP Client\fzshellext_64.dll
2014-11-28 20:25 - 2014-06-21 18:13 - 00908800 _____ () C:\Users\Boss\Desktop\adt-bundle-windows-x86_64-20140702\sdk\platform-tools\adb.exe
2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2009-10-14 12:36 - 2009-10-14 12:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2014-12-30 13:12 - 2014-12-30 13:12 - 02908160 _____ () T:\Programme\Avast\defs\14123000\algo.dll
2014-07-03 12:20 - 2014-07-03 12:20 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-03 12:19 - 2014-07-03 12:19 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-11-03 11:04 - 2014-11-03 11:04 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-11-03 11:05 - 2014-11-03 11:05 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-11-03 11:05 - 2014-11-03 11:05 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-11-03 11:05 - 2014-11-03 11:05 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-11-03 11:05 - 2014-11-03 11:05 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-11-03 11:06 - 2014-11-03 11:06 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-11-03 11:07 - 2014-11-03 11:07 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00750080 _____ () C:\Users\Boss\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2014-12-30 13:13 - 2014-12-30 13:13 - 00043008 _____ () c:\users\boss\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp0yp7rx.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00047616 _____ () C:\Users\Boss\AppData\Roaming\Dropbox\bin\libEGL.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00863744 _____ () C:\Users\Boss\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00200704 _____ () C:\Users\Boss\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00036878 _____ () T:\Programme\Pidgin\libssp-0.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00671031 _____ () T:\Programme\Pidgin\exchndl.dll
2014-03-04 06:00 - 2014-03-04 06:00 - 00904525 _____ () T:\Programme\Pidgin\Gtk\bin\libcairo-2.dll
2014-03-04 06:00 - 2014-03-04 06:00 - 00279059 _____ () T:\Programme\Pidgin\Gtk\bin\libfontconfig-1.dll
2014-03-04 06:00 - 2014-03-04 06:00 - 00177586 _____ () T:\Programme\Pidgin\Gtk\bin\libexpat-1.dll
2014-03-04 06:00 - 2014-03-04 06:00 - 00553382 _____ () T:\Programme\Pidgin\Gtk\bin\freetype6.dll
2014-03-04 06:00 - 2014-03-04 06:00 - 00216992 _____ () T:\Programme\Pidgin\Gtk\bin\libpng14-14.dll
2014-03-04 06:00 - 2014-03-04 06:00 - 00100352 _____ () T:\Programme\Pidgin\Gtk\bin\zlib1.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 01274655 _____ () T:\Programme\Pidgin\libxml2-2.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00475580 _____ () T:\Programme\Pidgin\spellcheck\libgtkspell-0.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00020997 _____ () T:\Programme\Pidgin\plugins\autoaccept.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00013253 _____ () T:\Programme\Pidgin\plugins\buddynote.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00024924 _____ () T:\Programme\Pidgin\plugins\convcolors.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00015702 _____ () T:\Programme\Pidgin\plugins\extplacement.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00014147 _____ () T:\Programme\Pidgin\plugins\gtkbuddynote.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00018882 _____ () T:\Programme\Pidgin\plugins\history.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00012865 _____ () T:\Programme\Pidgin\plugins\iconaway.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00019043 _____ () T:\Programme\Pidgin\plugins\idle.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00018555 _____ () T:\Programme\Pidgin\plugins\joinpart.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00015074 _____ () T:\Programme\Pidgin\plugins\libaim.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00310443 _____ () T:\Programme\Pidgin\liboscar.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00092285 _____ () T:\Programme\Pidgin\plugins\libbonjour.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00201726 _____ () T:\Programme\Pidgin\plugins\libgg.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00016005 _____ () T:\Programme\Pidgin\plugins\libicq.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00106712 _____ () T:\Programme\Pidgin\plugins\libirc.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00190464 _____ () T:\Programme\Pidgin\libsasl.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00373657 _____ () T:\Programme\Pidgin\plugins\libmsn.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00150086 _____ () T:\Programme\Pidgin\plugins\libmxit.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00106670 _____ () T:\Programme\Pidgin\plugins\libmyspace.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00123540 _____ () T:\Programme\Pidgin\plugins\libnovell.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00116583 _____ () T:\Programme\Pidgin\plugins\libsametime.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00152852 _____ () T:\Programme\Pidgin\libmeanwhile-1.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00171090 _____ () T:\Programme\Pidgin\plugins\libsilc.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 02097721 _____ () T:\Programme\Pidgin\libsilc-1-1-2.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00818985 _____ () T:\Programme\Pidgin\libsilcclient-1-1-3.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00055804 _____ () T:\Programme\Pidgin\plugins\libsimple.dll
2011-04-06 23:45 - 2011-04-06 23:45 - 00028160 _____ () T:\Programme\Pidgin\plugins\libskype.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00021337 _____ () T:\Programme\Pidgin\plugins\libxmpp.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00416065 _____ () T:\Programme\Pidgin\libjabber.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00022832 _____ () T:\Programme\Pidgin\plugins\libyahoo.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00237138 _____ () T:\Programme\Pidgin\libymsg.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00019793 _____ () T:\Programme\Pidgin\plugins\libyahoojp.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00047391 _____ () T:\Programme\Pidgin\plugins\log_reader.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00021795 _____ () T:\Programme\Pidgin\plugins\markerline.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00013456 _____ () T:\Programme\Pidgin\plugins\newline.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00029225 _____ () T:\Programme\Pidgin\plugins\notify.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00017023 _____ () T:\Programme\Pidgin\plugins\offlinemsg.dll
2012-09-09 14:17 - 2012-09-09 14:17 - 00472576 _____ () T:\Programme\Pidgin\plugins\pidgin-otr.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00029256 _____ () T:\Programme\Pidgin\plugins\pidginrc.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00015380 _____ () T:\Programme\Pidgin\plugins\psychic.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00015429 _____ () T:\Programme\Pidgin\plugins\relnot.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00015045 _____ () T:\Programme\Pidgin\plugins\sendbutton.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00069575 _____ () T:\Programme\Pidgin\plugins\spellchk.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00028276 _____ () T:\Programme\Pidgin\plugins\ssl-nss.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00012004 _____ () T:\Programme\Pidgin\plugins\ssl.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00015978 _____ () T:\Programme\Pidgin\plugins\statenotify.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00030353 _____ () T:\Programme\Pidgin\plugins\themeedit.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00032020 _____ () T:\Programme\Pidgin\plugins\ticker.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00018399 _____ () T:\Programme\Pidgin\plugins\timestamp.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00023851 _____ () T:\Programme\Pidgin\plugins\timestamp_format.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00029791 _____ () T:\Programme\Pidgin\plugins\win2ktrans.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00030771 _____ () T:\Programme\Pidgin\plugins\winprefs.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00037191 _____ () T:\Programme\Pidgin\plugins\xmppconsole.dll
2014-02-03 01:19 - 2014-02-03 01:19 - 00044494 _____ () T:\Programme\Pidgin\plugins\xmppdisco.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00102400 _____ () T:\Programme\Pidgin\sasl2\saslANONYMOUS.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00115712 _____ () T:\Programme\Pidgin\sasl2\saslCRAMMD5.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00140288 _____ () T:\Programme\Pidgin\sasl2\saslDIGESTMD5.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00102912 _____ () T:\Programme\Pidgin\sasl2\saslLOGIN.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00102912 _____ () T:\Programme\Pidgin\sasl2\saslPLAIN.dll
2014-02-03 01:18 - 2014-02-03 01:18 - 00486400 _____ () T:\Programme\Pidgin\sqlite3.dll
2014-03-04 06:00 - 2014-03-04 06:00 - 00090496 _____ () T:\Programme\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2014-04-30 15:23 - 2014-12-20 00:01 - 03339376 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2014-04-30 15:23 - 2014-12-20 00:01 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2014-04-30 15:23 - 2014-12-20 00:01 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2014-03-04 19:31 - 2012-11-21 06:26 - 00008704 _____ () C:\Users\Boss\AppData\Roaming\Thunderbird\Profiles\d8l9j1jo.default\extensions\mintrayr@tn123.ath.cx\lib\tray_x86-msvc.dll
2014-11-23 19:21 - 2014-11-23 19:21 - 38562088 _____ () T:\Programme\Avast\libcef.dll
2014-05-10 03:38 - 2014-12-12 13:17 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2011-07-18 22:07 - 2011-07-18 22:07 - 00014336 _____ () T:\Programme\Notepad++\plugins\NppExport.dll
2014-01-07 00:42 - 2014-01-07 00:42 - 01611264 _____ () T:\Programme\Notepad++\plugins\NppFTP.dll
2014-12-20 00:05 - 2014-12-20 00:05 - 16843952 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:41ADDB8A
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AntiVirSchedulerService => 2
MSCONFIG\Services: BstHdAndroidSvc => 2
MSCONFIG\Services: BstHdLogRotatorSvc => 2
MSCONFIG\Services: BstHdUpdaterSvc => 2
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: FoxitCloudUpdateService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: SbieSvc => 2
MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\startupreg: AceStream => C:\Users\Boss\AppData\Roaming\ACEStream\engine\ace_engine.exe
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Boss\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: DAEMON Tools Ultra Agent => "T:\Programme\DAEMON Tools Ultra\DTAgent.exe" -autorun
MSCONFIG\startupreg: Google Update => "C:\Users\Boss\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: Google+ Auto Backup => "C:\Users\Boss\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
MSCONFIG\startupreg: KeePass 2 PreLoad => "T:\Programme\KeePass Password Safe 2\KeePass.exe" --preload
MSCONFIG\startupreg: LightShot => C:\Users\Boss\AppData\Local\Skillbrains\lightshot\Lightshot.exe Flags: uninsdeletevalue
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Octoshape Streaming Services => "C:\Users\Boss\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun
MSCONFIG\startupreg: puush => T:\Programme\puush\puush.exe
MSCONFIG\startupreg: SandboxieControl => "T:\Programme\Sandboxie\SbieCtrl.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Spotify => "C:\Users\Boss\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TrueCrypt => "C:\Program Files\TrueCrypt\TrueCrypt.exe" /q preferences /a logon
MSCONFIG\startupreg: wmagent.exe => "C:\Program Files (x86)\WebMoney Agent\wmagent.exe"
========================= Accounts: ==========================
Administrator (S-1-5-21-4229827510-1635405372-2453878754-500 - Administrator - Disabled)
Boss (S-1-5-21-4229827510-1635405372-2453878754-1000 - Administrator - Enabled) => C:\Users\Boss
Gast (S-1-5-21-4229827510-1635405372-2453878754-501 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/30/2014 01:12:32 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/29/2014 07:28:16 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/29/2014 11:49:05 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/29/2014 00:48:08 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/28/2014 06:22:50 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/24/2014 00:51:43 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/24/2014 04:29:18 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2" in Zeile UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (12/24/2014 01:02:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: PDapp.exe, Version: 8.0.0.72, Zeitstempel: 0x535e9c0c
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea8e7
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00038e19
ID des fehlerhaften Prozesses: 0x588
Startzeit der fehlerhaften Anwendung: 0xPDapp.exe0
Pfad der fehlerhaften Anwendung: PDapp.exe1
Pfad des fehlerhaften Moduls: PDapp.exe2
Berichtskennung: PDapp.exe3
Error: (12/24/2014 00:07:23 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Illustrator.exe, Version 12.0.128.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1fdc
Startzeit: 01d01f04c967c656
Endzeit: 19
Anwendungspfad: C:\Program Files (x86)\Adobe\Adobe Illustrator CS2\Support Files\Contents\Windows\Illustrator.exe
Berichts-ID: 6ee70c0d-8af8-11e4-8557-e0699581bb35
Error: (12/24/2014 00:04:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Illustrator.exe, Version 12.0.128.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1e4c
Startzeit: 01d01f04b9729c55
Endzeit: 12
Anwendungspfad: C:\Program Files (x86)\Adobe\Adobe Illustrator CS2\Support Files\Contents\Windows\Illustrator.exe
Berichts-ID: 0011d79a-8af8-11e4-8557-e0699581bb35
System errors:
=============
Error: (12/30/2014 01:13:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CyberGhost 5 Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/30/2014 01:13:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst CyberGhost 5 Client Service erreicht.
Error: (12/30/2014 01:12:32 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064
Error: (12/30/2014 01:11:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BlueStacks Updater Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/30/2014 01:11:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst BlueStacks Updater Service erreicht.
Error: (12/29/2014 07:28:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CyberGhost 5 Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/29/2014 07:28:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst CyberGhost 5 Client Service erreicht.
Error: (12/29/2014 07:28:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064
Error: (12/29/2014 07:28:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "DroidExplorer Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/29/2014 07:28:05 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst DroidExplorer Service erreicht.
Microsoft Office Sessions:
=========================
Error: (12/30/2014 01:12:32 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/29/2014 07:28:16 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/29/2014 11:49:05 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/29/2014 00:48:08 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/28/2014 06:22:50 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/24/2014 00:51:43 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (12/24/2014 04:29:18 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"c:\program files (x86)\microsoft office\Office15\lync.exe.Manifestc:\program files (x86)\microsoft office\Office15\UccApi.DLL1
Error: (12/24/2014 01:02:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: PDapp.exe8.0.0.72535e9c0cntdll.dll6.1.7601.18247521ea8e7c000000500038e1958801d01f0cead1fd18C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exeC:\Windows\SysWOW64\ntdll.dll324c3240-8b00-11e4-8557-e0699581bb35
Error: (12/24/2014 00:07:23 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Illustrator.exe12.0.128.01fdc01d01f04c967c65619C:\Program Files (x86)\Adobe\Adobe Illustrator CS2\Support Files\Contents\Windows\Illustrator.exe6ee70c0d-8af8-11e4-8557-e0699581bb35
Error: (12/24/2014 00:04:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Illustrator.exe12.0.128.01e4c01d01f04b9729c5512C:\Program Files (x86)\Adobe\Adobe Illustrator CS2\Support Files\Contents\Windows\Illustrator.exe0011d79a-8af8-11e4-8557-e0699581bb35
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
Percentage of memory in use: 57%
Total physical RAM: 6126.53 MB
Available physical RAM: 2621.6 MB
Total Pagefile: 12251.23 MB
Available Pagefile: 8756.69 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:817.62 GB) (Free:543.85 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:13.79 GB) (Free:1.7 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive t: (Programme & Games) (Fixed) (Total:100 GB) (Free:40.9 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E9E290B2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=817.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=100 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=13.8 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
FRST 32-Bit | FRST 64-Bit
Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
dann auf 
und dann auf 
. 
WARNUNG an die MITLESER: