| Zoombeer | 23.12.2014 15:31 |
Fehlermeldung RunDLL C:\.....\User\Appdata\Roaming\HomeTab\TBUpdater.DLL
Servus,
ich habe vor kurzem maleware entfernt und habe jetzt das Problem mit dieser DLL Datei, aber ich bin mir auch nicht 100% sicher ob ich alles entfernt habe :S wäre schön wenn ihr mal über meine Logs schauen könntet.
Gruß
FRST.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-12-2014 01
Ran by Ace (administrator) on ACE-PC on 23-12-2014 15:23:45
Running from C:\Users\Ace\Desktop\Virus entfernen
Loaded Profile: Ace (Available profiles: Ace)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Englisch (USA)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Realtek Semiconductor) C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-17] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2014-11-21] (AVAST Software)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1014736 2014-07-22] (MSI)
HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\RunOnce: [Adobe Speed Launcher] => 1419343787
HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\MountPoints2: {011de7b2-b58d-11e3-be98-8c89a5e1837f} - H:\Startme.exe
HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\MountPoints2: {c2844cb0-d9be-11e2-b4dd-8c89a5e1837f} - I:\Autorun.exe
HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\MountPoints2: {fea2fd8c-68b5-11e2-b5a7-8c89a5e1837f} - F:\setup.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-366123985-799912792-3159495333-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:57592;https=127.0.0.1:57592
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-366123985-799912792-3159495333-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-366123985-799912792-3159495333-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKU\S-1-5-21-366123985-799912792-3159495333-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default
FF Homepage: about:home
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fnew.songza.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*'))%20%7B%20return%20'PROXY%20us05.sq.proxmate.me%3A8000%3B%20PROXY%20us08.sq.proxmate.me%3A8000%3B%20PROXY%20us03.sq.proxmate.me%3A8000%3B%20PROXY%20us07.sq.proxmate.me%3A8000%3B%20PROXY%20us09.sq.proxmate.me%3A8000%3B%20PROXY%20us04.sq.proxmate.me%3A8000%3B%20PROXY%20us06.sq.proxmate.me%3A8000%3B%20PROXY%20us10.sq.proxmate.me%3A8000%3B%20PROXY%20us01.sq.proxmate.me%3A8000%3B%20PROXY%20us02.sq.proxmate.me%3A8000%3B%20PROXY%20us11.sq.proxmate.me%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1214154.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKU\S-1-5-21-366123985-799912792-3159495333-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-366123985-799912792-3159495333-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Ace\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-366123985-799912792-3159495333-1000: electronicarts.com/GameFacePlugin -> C:\Users\Ace\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts)
FF Plugin HKU\S-1-5-21-366123985-799912792-3159495333-1000: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
FF Plugin HKU\S-1-5-21-366123985-799912792-3159495333-1000: ubisoft.com/uplaypc -> E:\Uplay\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Extension: YouTube Unblocker - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\youtubeunblocker@unblocker.yt [2014-11-05]
FF Extension: ProxTube - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\ich@maltegoetz.de.xpi [2014-09-11]
FF Extension: ProxMate - Proxy on steroids! - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi [2014-06-02]
FF Extension: ShareMeNot - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\sharemenot@franziroesner.com.xpi [2013-09-06]
FF Extension: Turn Off the Lights - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\stefanvandamme@stefanvd.net.xpi [2013-09-06]
FF Extension: All-in-One Sidebar - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2013-09-06]
FF Extension: html updater pro - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\{174556e0-7c9f-47e6-a5bb-da8b8064fcae}.xpi [2014-11-14]
FF Extension: FlashGot - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2013-11-10]
FF Extension: Speed Dial - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2013-09-06]
FF Extension: Adblock Plus - C:\Users\Ace\AppData\Roaming\Mozilla\Firefox\Profiles\if7ta62a.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-06]
FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2014-11-18]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-17]
FF HKLM-x32\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-10-05]
FF HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: No Name - {B64D9B05-48E1-4CEB-BF58-E0643994E900} [Not Found]
FF Extension: No Name - wrc@avast.com [Not Found]
Chrome:
=======
CHR HomePage: Default -> https://www.google.de/
CHR StartupUrls: Default -> "https://www.google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-11]
CHR Extension: (Google Drive) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-11]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-03]
CHR Extension: (Turn Off the Lights) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2014-06-04]
CHR Extension: (YouTube) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-11]
CHR Extension: (Adblock Plus) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-05-11]
CHR Extension: (Google-Suche) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-11]
CHR Extension: (AdBlock) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-11]
CHR Extension: (Avast Online Security) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-29]
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe [2014-05-12]
CHR Extension: (Earth) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\jieopfhnlbjmbpckpdhfdedccdmngdac [2014-06-04]
CHR Extension: (Speed Dial 2) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2014-06-04]
CHR Extension: (Google Wallet) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-11]
CHR Extension: (ShareMeNot) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\peeecebkcdlibcfllbpmmkhggflcppem [2014-06-04]
CHR Extension: (Google Mail) - C:\Users\Ace\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-21]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-21] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-11-21] (Avast Software)
S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
S4 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S4 Intel(R) Small Business Advantage; C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [49376 2012-02-27] (Intel Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-17] (Intel Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S4 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1732048 2014-11-27] (Micro-Star International)
S4 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
S4 Origin Client Service; E:\Origin\OriginClientService.exe [1903472 2014-12-16] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-09-25] ()
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-21] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-21] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-06-29] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-06-20] (DT Soft Ltd)
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [44744 2014-06-26] (AnchorFree Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-06-29] ()
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-12-23] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-17] (Intel Corporation)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
S3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-11-21] (Avast Software)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ipadtst; \??\C:\Program Files (x86)\MSI\Super-Charger\ipadtst_64.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-23 14:49 - 2014-12-23 14:49 - 00000197 _____ () C:\Windows\system32\2014-12-23-13-49-47.038-AvastVBoxSVC.exe-1480.log
2014-12-23 14:36 - 2014-12-23 14:36 - 00000197 _____ () C:\Windows\system32\2014-12-23-13-36-37.010-AvastVBoxSVC.exe-4752.log
2014-12-23 04:54 - 2014-12-23 15:23 - 00000000 ____D () C:\FRST
2014-12-23 04:46 - 2014-12-23 04:46 - 00000000 ____D () C:\Windows\ERUNT
2014-12-23 04:45 - 2014-12-23 04:45 - 00000197 _____ () C:\Windows\system32\2014-12-23-03-45-33.015-AvastVBoxSVC.exe-5712.log
2014-12-23 04:34 - 2014-12-23 04:41 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-12-22 20:31 - 2014-12-22 20:31 - 00000247 _____ () C:\Windows\system32\2014-12-22-19-31-03.023-aswFe.exe-5348.log
2014-12-22 20:27 - 2014-12-22 20:30 - 00000247 _____ () C:\Windows\system32\2014-12-22-19-27-11.057-aswFe.exe-5420.log
2014-12-22 20:27 - 2014-12-22 20:27 - 00000197 _____ () C:\Windows\system32\2014-12-22-19-27-04.063-AvastVBoxSVC.exe-2712.log
2014-12-22 20:21 - 2014-12-22 20:21 - 00000247 _____ () C:\Windows\system32\2014-12-22-19-21-46.024-aswFe.exe-1496.log
2014-12-22 20:21 - 2014-12-22 20:21 - 00000197 _____ () C:\Windows\system32\2014-12-22-19-21-42.020-AvastVBoxSVC.exe-4752.log
2014-12-22 20:05 - 2014-12-22 20:05 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-ACE-PC-Microsoft-Windows-7-Ultimate-(64-bit).dat
2014-12-22 20:05 - 2014-12-22 20:05 - 00000000 ____D () C:\RegBackup
2014-12-22 19:55 - 2014-12-23 15:23 - 00000000 ____D () C:\Users\Ace\Desktop\Virus entfernen
2014-12-22 19:36 - 2014-12-22 19:36 - 00000247 _____ () C:\Windows\system32\2014-12-22-18-36-54.008-aswFe.exe-7100.log
2014-12-22 19:33 - 2014-12-22 19:36 - 00000247 _____ () C:\Windows\system32\2014-12-22-18-33-28.075-aswFe.exe-5472.log
2014-12-22 19:33 - 2014-12-22 19:33 - 00000197 _____ () C:\Windows\system32\2014-12-22-18-33-24.088-AvastVBoxSVC.exe-4620.log
2014-12-22 15:36 - 2014-12-22 15:36 - 00000247 _____ () C:\Windows\system32\2014-12-22-14-36-08.067-aswFe.exe-5132.log
2014-12-22 15:32 - 2014-12-22 15:36 - 00000247 _____ () C:\Windows\system32\2014-12-22-14-32-39.032-aswFe.exe-3396.log
2014-12-22 15:32 - 2014-12-22 15:32 - 00000197 _____ () C:\Windows\system32\2014-12-22-14-32-35.039-AvastVBoxSVC.exe-6624.log
2014-12-22 06:34 - 2014-12-22 06:34 - 00000247 _____ () C:\Windows\system32\2014-12-22-05-34-30.006-aswFe.exe-6940.log
2014-12-22 06:29 - 2014-12-22 06:34 - 00000247 _____ () C:\Windows\system32\2014-12-22-05-29-18.030-aswFe.exe-4064.log
2014-12-22 06:29 - 2014-12-22 06:29 - 00000197 _____ () C:\Windows\system32\2014-12-22-05-29-13.045-AvastVBoxSVC.exe-1280.log
2014-12-22 05:55 - 2014-12-23 15:05 - 00003756 _____ () C:\Windows\PFRO.log
2014-12-22 05:47 - 2014-12-22 15:42 - 00000000 ____D () C:\Users\Ace\Downloads\rKill
2014-12-22 05:40 - 2014-12-23 04:42 - 00000000 ____D () C:\AdwCleaner
2014-12-22 02:17 - 2014-12-23 14:37 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-22 02:16 - 2014-12-23 04:34 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-22 02:16 - 2014-12-22 02:16 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-22 02:16 - 2014-12-22 02:16 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-22 02:16 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-22 02:16 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-22 02:15 - 2014-12-22 02:15 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Ace\Downloads\mbam-setup-2.0.4.1028.exe
2014-12-22 02:13 - 2014-12-22 02:13 - 00000247 _____ () C:\Windows\system32\2014-12-22-01-13-46.075-aswFe.exe-4924.log
2014-12-22 02:09 - 2014-12-22 02:13 - 00000247 _____ () C:\Windows\system32\2014-12-22-01-09-56.087-aswFe.exe-4776.log
2014-12-22 02:09 - 2014-12-22 02:09 - 00000197 _____ () C:\Windows\system32\2014-12-22-01-09-53.032-AvastVBoxSVC.exe-2772.log
2014-12-22 01:52 - 2014-12-23 15:05 - 00001792 _____ () C:\Windows\setupact.log
2014-12-22 01:52 - 2014-12-22 01:52 - 00000000 _____ () C:\Windows\setuperr.log
2014-12-22 00:02 - 2014-12-22 00:02 - 00000247 _____ () C:\Windows\system32\2014-12-21-23-02-58.002-aswFe.exe-6168.log
2014-12-21 23:58 - 2014-12-22 00:02 - 00000247 _____ () C:\Windows\system32\2014-12-21-22-58-39.050-aswFe.exe-4940.log
2014-12-21 23:58 - 2014-12-21 23:58 - 00000197 _____ () C:\Windows\system32\2014-12-21-22-58-36.046-AvastVBoxSVC.exe-1552.log
2014-12-21 09:15 - 2014-12-21 09:15 - 00000247 _____ () C:\Windows\system32\2014-12-21-08-15-29.046-aswFe.exe-6832.log
2014-12-21 09:12 - 2014-12-21 09:15 - 00000247 _____ () C:\Windows\system32\2014-12-21-08-12-36.091-aswFe.exe-4064.log
2014-12-21 09:12 - 2014-12-21 09:12 - 00000197 _____ () C:\Windows\system32\2014-12-21-08-12-31.023-AvastVBoxSVC.exe-6208.log
2014-12-21 01:34 - 2014-12-21 01:35 - 308364224 _____ (NVIDIA Corporation) C:\Users\Ace\Downloads\344.75-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-12-21 01:29 - 2014-12-21 01:29 - 00000247 _____ () C:\Windows\system32\2014-12-21-00-29-48.039-aswFe.exe-7020.log
2014-12-21 01:26 - 2014-12-21 01:29 - 00000247 _____ () C:\Windows\system32\2014-12-21-00-26-38.067-aswFe.exe-1828.log
2014-12-21 01:26 - 2014-12-21 01:26 - 00000197 _____ () C:\Windows\system32\2014-12-21-00-26-33.058-AvastVBoxSVC.exe-2880.log
2014-12-21 01:20 - 2014-11-22 11:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-12-21 01:20 - 2014-11-22 11:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-12-20 08:18 - 2014-12-20 08:18 - 00000247 _____ () C:\Windows\system32\2014-12-20-07-18-18.001-aswFe.exe-4812.log
2014-12-20 08:15 - 2014-12-20 08:18 - 00000247 _____ () C:\Windows\system32\2014-12-20-07-15-22.070-aswFe.exe-1616.log
2014-12-20 08:15 - 2014-12-20 08:15 - 00000197 _____ () C:\Windows\system32\2014-12-20-07-15-19.078-AvastVBoxSVC.exe-1272.log
2014-12-19 14:55 - 2014-12-19 14:55 - 00000247 _____ () C:\Windows\system32\2014-12-19-13-55-34.067-aswFe.exe-5220.log
2014-12-19 14:51 - 2014-12-19 14:55 - 00000247 _____ () C:\Windows\system32\2014-12-19-13-51-02.085-aswFe.exe-1100.log
2014-12-19 14:50 - 2014-12-19 14:51 - 00000197 _____ () C:\Windows\system32\2014-12-19-13-50-59.061-AvastVBoxSVC.exe-5928.log
2014-12-19 00:29 - 2014-12-19 00:29 - 00000247 _____ () C:\Windows\system32\2014-12-18-23-29-17.086-aswFe.exe-1288.log
2014-12-19 00:26 - 2014-12-19 00:29 - 00000247 _____ () C:\Windows\system32\2014-12-18-23-26-28.016-aswFe.exe-6256.log
2014-12-19 00:26 - 2014-12-19 00:26 - 00000197 _____ () C:\Windows\system32\2014-12-18-23-26-22.094-AvastVBoxSVC.exe-4312.log
2014-12-18 15:19 - 2014-12-18 15:19 - 00000247 _____ () C:\Windows\system32\2014-12-18-14-19-34.050-aswFe.exe-4912.log
2014-12-18 15:15 - 2014-12-18 15:19 - 00000247 _____ () C:\Windows\system32\2014-12-18-14-15-33.091-aswFe.exe-2284.log
2014-12-18 15:15 - 2014-12-18 15:15 - 00000197 _____ () C:\Windows\system32\2014-12-18-14-15-29.091-AvastVBoxSVC.exe-5220.log
2014-12-17 13:47 - 2014-12-17 13:47 - 00000247 _____ () C:\Windows\system32\2014-12-17-12-47-50.032-aswFe.exe-2208.log
2014-12-17 13:44 - 2014-12-17 13:47 - 00000247 _____ () C:\Windows\system32\2014-12-17-12-44-54.076-aswFe.exe-6408.log
2014-12-17 13:44 - 2014-12-17 13:44 - 00000197 _____ () C:\Windows\system32\2014-12-17-12-44-51.002-AvastVBoxSVC.exe-3168.log
2014-12-16 14:56 - 2014-12-16 14:56 - 00000247 _____ () C:\Windows\system32\2014-12-16-13-56-47.060-aswFe.exe-4300.log
2014-12-16 14:53 - 2014-12-16 14:56 - 00000247 _____ () C:\Windows\system32\2014-12-16-13-53-51.072-aswFe.exe-4788.log
2014-12-16 14:53 - 2014-12-16 14:53 - 00000197 _____ () C:\Windows\system32\2014-12-16-13-53-46.071-AvastVBoxSVC.exe-332.log
2014-12-15 13:46 - 2014-12-15 13:46 - 00000247 _____ () C:\Windows\system32\2014-12-15-12-46-52.067-aswFe.exe-6908.log
2014-12-15 13:44 - 2014-12-15 13:46 - 00000247 _____ () C:\Windows\system32\2014-12-15-12-44-03.065-aswFe.exe-2000.log
2014-12-15 13:43 - 2014-12-15 13:44 - 00000197 _____ () C:\Windows\system32\2014-12-15-12-43-57.081-AvastVBoxSVC.exe-2148.log
2014-12-14 16:29 - 2014-12-14 16:29 - 00000247 _____ () C:\Windows\system32\2014-12-14-15-29-03.042-aswFe.exe-6560.log
2014-12-14 16:26 - 2014-12-14 16:28 - 00000247 _____ () C:\Windows\system32\2014-12-14-15-26-05.023-aswFe.exe-1376.log
2014-12-14 16:26 - 2014-12-14 16:26 - 00000197 _____ () C:\Windows\system32\2014-12-14-15-26-02.020-AvastVBoxSVC.exe-5020.log
2014-12-14 16:21 - 2014-12-14 16:21 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-12-14 16:18 - 2014-12-14 16:18 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-14 16:18 - 2014-12-14 16:18 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-14 15:57 - 2014-12-14 15:57 - 181974983 _____ () C:\Users\Ace\AppData\Local\ACCCx2_8_1_451.zip.aamdownload
2014-12-14 15:57 - 2014-12-14 15:57 - 00002174 _____ () C:\Users\Ace\AppData\Local\ACCCx2_8_1_451.zip.aamdownload.aamd
2014-12-14 15:42 - 2014-12-14 15:42 - 00000247 _____ () C:\Windows\system32\2014-12-14-14-42-12.007-aswFe.exe-2740.log
2014-12-14 15:38 - 2014-12-14 15:42 - 00000247 _____ () C:\Windows\system32\2014-12-14-14-38-52.063-aswFe.exe-6440.log
2014-12-14 15:38 - 2014-12-14 15:38 - 00000197 _____ () C:\Windows\system32\2014-12-14-14-38-46.059-AvastVBoxSVC.exe-3760.log
2014-12-14 02:09 - 2014-12-14 02:09 - 00000247 _____ () C:\Windows\system32\2014-12-14-01-09-35.016-aswFe.exe-5888.log
2014-12-14 02:05 - 2014-12-14 02:09 - 00000247 _____ () C:\Windows\system32\2014-12-14-01-05-41.037-aswFe.exe-4240.log
2014-12-14 02:05 - 2014-12-14 02:05 - 00000197 _____ () C:\Windows\system32\2014-12-14-01-05-38.037-AvastVBoxSVC.exe-2456.log
2014-12-13 10:02 - 2014-12-13 10:02 - 00000247 _____ () C:\Windows\system32\2014-12-13-09-02-10.001-aswFe.exe-3144.log
2014-12-13 09:57 - 2014-12-13 10:02 - 00000247 _____ () C:\Windows\system32\2014-12-13-08-57-56.043-aswFe.exe-4256.log
2014-12-13 09:57 - 2014-12-13 09:57 - 00000197 _____ () C:\Windows\system32\2014-12-13-08-57-53.055-AvastVBoxSVC.exe-4020.log
2014-12-12 20:40 - 2014-12-12 20:40 - 00000247 _____ () C:\Windows\system32\2014-12-12-19-40-00.093-aswFe.exe-2368.log
2014-12-12 20:37 - 2014-12-12 20:39 - 00000247 _____ () C:\Windows\system32\2014-12-12-19-37-00.085-aswFe.exe-3892.log
2014-12-12 20:36 - 2014-12-12 20:36 - 00000197 _____ () C:\Windows\system32\2014-12-12-19-36-55.040-AvastVBoxSVC.exe-5932.log
2014-12-12 08:13 - 2014-12-12 08:14 - 00000247 _____ () C:\Windows\system32\2014-12-12-07-13-58.032-aswFe.exe-4708.log
2014-12-12 08:10 - 2014-12-12 08:13 - 00000247 _____ () C:\Windows\system32\2014-12-12-07-10-09.063-aswFe.exe-3388.log
2014-12-12 08:10 - 2014-12-12 08:10 - 00000197 _____ () C:\Windows\system32\2014-12-12-07-10-06.031-AvastVBoxSVC.exe-3088.log
2014-12-11 13:40 - 2014-12-11 13:40 - 00000247 _____ () C:\Windows\system32\2014-12-11-12-40-47.002-aswFe.exe-4432.log
2014-12-11 13:37 - 2014-12-11 13:40 - 00000247 _____ () C:\Windows\system32\2014-12-11-12-37-06.089-aswFe.exe-1200.log
2014-12-11 13:37 - 2014-12-11 13:37 - 00000197 _____ () C:\Windows\system32\2014-12-11-12-37-03.039-AvastVBoxSVC.exe-3204.log
2014-12-10 13:31 - 2014-12-10 13:31 - 00000247 _____ () C:\Windows\system32\2014-12-10-12-31-54.042-aswFe.exe-7064.log
2014-12-10 13:27 - 2014-12-10 13:31 - 00000247 _____ () C:\Windows\system32\2014-12-10-12-27-18.097-aswFe.exe-1332.log
2014-12-10 13:27 - 2014-12-10 13:27 - 00000197 _____ () C:\Windows\system32\2014-12-10-12-27-15.052-AvastVBoxSVC.exe-180.log
2014-12-09 14:39 - 2014-12-09 14:39 - 00000247 _____ () C:\Windows\system32\2014-12-09-13-39-56.083-aswFe.exe-6824.log
2014-12-09 14:36 - 2014-12-09 14:39 - 00000247 _____ () C:\Windows\system32\2014-12-09-13-36-43.080-aswFe.exe-2184.log
2014-12-09 14:36 - 2014-12-09 14:36 - 00000197 _____ () C:\Windows\system32\2014-12-09-13-36-40.056-AvastVBoxSVC.exe-3256.log
2014-12-08 23:48 - 2014-12-08 23:48 - 00000247 _____ () C:\Windows\system32\2014-12-08-22-48-17.069-aswFe.exe-6436.log
2014-12-08 23:44 - 2014-12-08 23:48 - 00000247 _____ () C:\Windows\system32\2014-12-08-22-44-08.067-aswFe.exe-1256.log
2014-12-08 23:44 - 2014-12-08 23:44 - 00000197 _____ () C:\Windows\system32\2014-12-08-22-44-05.037-AvastVBoxSVC.exe-4192.log
2014-12-08 13:09 - 2014-12-08 13:09 - 00000247 _____ () C:\Windows\system32\2014-12-08-12-09-26.042-aswFe.exe-5276.log
2014-12-08 13:06 - 2014-12-08 13:09 - 00000247 _____ () C:\Windows\system32\2014-12-08-12-06-17.081-aswFe.exe-7396.log
2014-12-08 13:06 - 2014-12-08 13:06 - 00000197 _____ () C:\Windows\system32\2014-12-08-12-06-13.024-AvastVBoxSVC.exe-4984.log
2014-12-08 03:11 - 2014-12-08 03:12 - 00000000 ____D () C:\Users\Ace\Desktop\Sortieren
2014-12-07 16:03 - 2014-12-07 16:04 - 00000247 _____ () C:\Windows\system32\2014-12-07-15-03-45.037-aswFe.exe-3212.log
2014-12-07 16:00 - 2014-12-07 16:03 - 00000247 _____ () C:\Windows\system32\2014-12-07-15-00-27.023-aswFe.exe-7008.log
2014-12-07 16:00 - 2014-12-07 16:00 - 00000197 _____ () C:\Windows\system32\2014-12-07-15-00-23.038-AvastVBoxSVC.exe-4312.log
2014-12-07 15:52 - 2014-12-19 01:21 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\OBS
2014-12-07 15:51 - 2014-12-07 15:51 - 07518634 _____ () C:\Users\Ace\Downloads\OBS_0_638b_Installer.exe
2014-12-07 15:51 - 2014-12-07 15:51 - 00000935 _____ () C:\Users\Ace\Desktop\Open Broadcaster Software.lnk
2014-12-07 15:51 - 2014-12-07 15:51 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-12-07 15:51 - 2014-12-07 15:51 - 00000000 ____D () C:\Program Files\OBS
2014-12-07 15:51 - 2014-12-07 15:51 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-12-07 15:32 - 2014-11-13 01:20 - 31893136 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 24557712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 20922512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 17259664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 14032984 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 13944952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 13213512 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-12-07 15:32 - 2014-11-13 01:20 - 11397744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 11336432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 04292416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 04011208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 01876296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434475.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 01540424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434475.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00964928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00935240 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00923792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00900928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00871648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00500880 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00418112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00393024 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00352016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00348304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00303600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00174856 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-12-07 15:32 - 2014-11-13 01:20 - 00156840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-12-07 13:59 - 2014-12-07 13:59 - 00000247 _____ () C:\Windows\system32\2014-12-07-12-59-24.043-aswFe.exe-1336.log
2014-12-07 13:56 - 2014-12-07 13:59 - 00000247 _____ () C:\Windows\system32\2014-12-07-12-56-27.099-aswFe.exe-6340.log
2014-12-07 13:56 - 2014-12-07 13:56 - 00000197 _____ () C:\Windows\system32\2014-12-07-12-56-23.031-AvastVBoxSVC.exe-4208.log
2014-12-06 12:51 - 2014-12-06 12:51 - 00000247 _____ () C:\Windows\system32\2014-12-06-11-51-07.045-aswFe.exe-1700.log
2014-12-06 12:48 - 2014-12-06 12:51 - 00000247 _____ () C:\Windows\system32\2014-12-06-11-48-14.096-aswFe.exe-4900.log
2014-12-06 12:48 - 2014-12-06 12:48 - 00000197 _____ () C:\Windows\system32\2014-12-06-11-48-09.011-AvastVBoxSVC.exe-432.log
2014-12-06 00:48 - 2014-12-06 00:49 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\Curse Advertising
2014-12-06 00:48 - 2014-12-06 00:48 - 00000318 _____ () C:\Users\Ace\Desktop\Curse Client.appref-ms
2014-12-06 00:48 - 2014-12-06 00:48 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2014-12-06 00:47 - 2014-12-21 01:22 - 00000000 ____D () C:\Users\Ace\AppData\Local\Deployment
2014-12-06 00:47 - 2014-12-06 00:47 - 00000000 ____D () C:\Users\Ace\AppData\Local\Apps\2.0
2014-12-05 22:02 - 2014-12-05 22:02 - 00402696 _____ () C:\Users\Ace\Downloads\setup.exe
2014-12-05 15:36 - 2014-12-05 15:36 - 00000247 _____ () C:\Windows\system32\2014-12-05-14-36-17.053-aswFe.exe-3696.log
2014-12-05 15:33 - 2014-12-05 15:36 - 00000247 _____ () C:\Windows\system32\2014-12-05-14-33-14.041-aswFe.exe-6744.log
2014-12-05 15:33 - 2014-12-05 15:33 - 00000197 _____ () C:\Windows\system32\2014-12-05-14-33-10.039-AvastVBoxSVC.exe-2364.log
2014-12-05 15:16 - 2014-12-05 17:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-12-05 15:16 - 2014-12-05 15:16 - 00000000 ____D () C:\Users\Default\AppData\Local\Google
2014-12-05 15:16 - 2014-12-05 15:16 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google
2014-12-05 15:15 - 2014-12-06 12:28 - 00000000 ____D () C:\Program Files\Google
2014-12-05 15:14 - 2014-12-23 15:09 - 00000278 _____ () C:\Windows\Tasks\RtlNetworkGenieVistaStart.job
2014-12-05 15:14 - 2014-12-05 15:14 - 00002574 _____ () C:\Windows\System32\Tasks\RtlNetworkGenieVistaStart
2014-12-05 15:14 - 2014-12-05 15:14 - 00001991 _____ () C:\Users\Public\Desktop\MSI Super Charger.lnk
2014-12-05 15:14 - 2014-12-05 15:14 - 00001943 _____ () C:\Users\Public\Desktop\VideoGenie.lnk
2014-12-05 15:14 - 2014-12-05 15:14 - 00001073 _____ () C:\Users\Public\Desktop\TeamingGenie.lnk
2014-12-05 15:14 - 2014-12-05 15:14 - 00000000 ___HD () C:\SuperChargerProfile
2014-12-05 15:14 - 2014-12-05 15:14 - 00000000 ____D () C:\IM
2014-12-05 15:14 - 2011-09-14 18:16 - 00032360 _____ (NT Kernel Resources) C:\Windows\system32\Drivers\ndisrd.sys
2014-12-05 15:14 - 2010-04-10 15:05 - 00050720 _____ (Realtek Corporation) C:\Windows\system32\Drivers\RtTeam60.sys
2014-12-05 15:14 - 2009-07-20 10:27 - 00027136 _____ (Realtek ) C:\Windows\system32\Drivers\RtNdPt60.sys
2014-12-05 15:13 - 2014-12-05 15:14 - 00000161 _____ () C:\networkgenie.log
2014-12-05 15:13 - 2014-12-05 15:13 - 00001975 _____ () C:\Users\Public\Desktop\NetworkGenie.lnk
2014-12-05 15:13 - 2014-12-05 15:13 - 00001574 _____ () C:\RHDSetup.log
2014-12-05 15:13 - 2014-12-05 15:13 - 00001110 _____ () C:\Users\Public\Desktop\ControlCenter.lnk
2014-12-05 15:13 - 2014-12-05 15:13 - 00001086 _____ () C:\Users\Public\Desktop\CLICKBIOSII.lnk
2014-12-05 15:13 - 2014-12-05 15:13 - 00000000 ___HD () C:\ControlCenterCount
2014-12-05 15:09 - 2014-12-05 15:09 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-12-05 15:09 - 2013-09-17 03:19 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-12-05 15:09 - 2013-09-17 03:19 - 00099288 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-12-05 15:02 - 2014-12-05 15:02 - 00002031 _____ () C:\Users\Public\Desktop\MSI Live Update 6.lnk
2014-12-05 12:21 - 2014-12-05 12:21 - 00000247 _____ () C:\Windows\system32\2014-12-05-11-21-05.029-aswFe.exe-6544.log
2014-12-05 12:17 - 2014-12-05 12:21 - 00000247 _____ () C:\Windows\system32\2014-12-05-11-17-49.082-aswFe.exe-1936.log
2014-12-05 12:17 - 2014-12-05 12:17 - 00000197 _____ () C:\Windows\system32\2014-12-05-11-17-45.090-AvastVBoxSVC.exe-1968.log
2014-12-04 13:25 - 2014-12-04 13:25 - 00000247 _____ () C:\Windows\system32\2014-12-04-12-25-01.058-aswFe.exe-1264.log
2014-12-04 13:20 - 2014-12-04 13:24 - 00000247 _____ () C:\Windows\system32\2014-12-04-12-20-20.074-aswFe.exe-3124.log
2014-12-04 13:20 - 2014-12-04 13:20 - 00000197 _____ () C:\Windows\system32\2014-12-04-12-20-17.044-AvastVBoxSVC.exe-5024.log
2014-12-03 13:45 - 2014-12-03 13:45 - 00000247 _____ () C:\Windows\system32\2014-12-03-12-45-35.066-aswFe.exe-6044.log
2014-12-03 13:42 - 2014-12-03 13:45 - 00000247 _____ () C:\Windows\system32\2014-12-03-12-42-33.070-aswFe.exe-6440.log
2014-12-03 13:42 - 2014-12-03 13:42 - 00000197 _____ () C:\Windows\system32\2014-12-03-12-42-30.041-AvastVBoxSVC.exe-5344.log
2014-12-02 13:59 - 2014-12-02 13:59 - 00000247 _____ () C:\Windows\system32\2014-12-02-12-59-31.021-aswFe.exe-5108.log
2014-12-02 13:55 - 2014-12-02 13:59 - 00000247 _____ () C:\Windows\system32\2014-12-02-12-55-38.035-aswFe.exe-6660.log
2014-12-02 13:55 - 2014-12-02 13:55 - 00000197 _____ () C:\Windows\system32\2014-12-02-12-55-35.013-AvastVBoxSVC.exe-6736.log
2014-12-01 11:42 - 2014-12-01 11:42 - 00000247 _____ () C:\Windows\system32\2014-12-01-10-42-15.062-aswFe.exe-6900.log
2014-12-01 11:39 - 2014-12-01 11:42 - 00000247 _____ () C:\Windows\system32\2014-12-01-10-39-11.086-aswFe.exe-7176.log
2014-12-01 11:39 - 2014-12-01 11:39 - 00000197 _____ () C:\Windows\system32\2014-12-01-10-39-06.075-AvastVBoxSVC.exe-5300.log
2014-11-30 13:10 - 2014-11-30 13:10 - 00000247 _____ () C:\Windows\system32\2014-11-30-12-10-09.008-aswFe.exe-1684.log
2014-11-30 13:07 - 2014-11-30 13:10 - 00000247 _____ () C:\Windows\system32\2014-11-30-12-07-13.017-aswFe.exe-3100.log
2014-11-30 13:07 - 2014-11-30 13:07 - 00000197 _____ () C:\Windows\system32\2014-11-30-12-07-08.046-AvastVBoxSVC.exe-4936.log
2014-11-29 08:34 - 2014-11-29 08:34 - 00000247 _____ () C:\Windows\system32\2014-11-29-07-34-50.084-aswFe.exe-5504.log
2014-11-29 08:31 - 2014-11-29 08:34 - 00000247 _____ () C:\Windows\system32\2014-11-29-07-31-35.039-aswFe.exe-4428.log
2014-11-29 08:31 - 2014-11-29 08:31 - 00000197 _____ () C:\Windows\system32\2014-11-29-07-31-30.041-AvastVBoxSVC.exe-4720.log
2014-11-28 21:25 - 2014-11-28 21:25 - 00000247 _____ () C:\Windows\system32\2014-11-28-20-25-01.042-aswFe.exe-6868.log
2014-11-28 21:21 - 2014-11-28 21:24 - 00000247 _____ () C:\Windows\system32\2014-11-28-20-21-39.083-aswFe.exe-6444.log
2014-11-28 21:21 - 2014-11-28 21:21 - 00000197 _____ () C:\Windows\system32\2014-11-28-20-21-36.018-AvastVBoxSVC.exe-4440.log
2014-11-28 08:44 - 2014-11-28 08:44 - 00000247 _____ () C:\Windows\system32\2014-11-28-07-44-48.008-aswFe.exe-3848.log
2014-11-28 08:41 - 2014-11-28 08:44 - 00000247 _____ () C:\Windows\system32\2014-11-28-07-41-29.010-aswFe.exe-4972.log
2014-11-28 08:41 - 2014-11-28 08:41 - 00000197 _____ () C:\Windows\system32\2014-11-28-07-41-25.080-AvastVBoxSVC.exe-4816.log
2014-11-27 12:34 - 2014-11-27 12:34 - 00000247 _____ () C:\Windows\system32\2014-11-27-11-34-16.053-aswFe.exe-4676.log
2014-11-27 12:31 - 2014-11-27 12:34 - 00000247 _____ () C:\Windows\system32\2014-11-27-11-31-06.066-aswFe.exe-2356.log
2014-11-27 12:30 - 2014-11-27 12:31 - 00000197 _____ () C:\Windows\system32\2014-11-27-11-30-59.072-AvastVBoxSVC.exe-3500.log
2014-11-26 18:12 - 2014-11-26 18:12 - 00000000 ____D () C:\Users\Ace\Documents\Meine empfangenen Dateien
2014-11-26 17:59 - 2014-11-26 17:59 - 00000247 _____ () C:\Windows\system32\2014-11-26-16-59-22.059-aswFe.exe-4296.log
2014-11-26 17:56 - 2014-11-26 17:59 - 00000247 _____ () C:\Windows\system32\2014-11-26-16-56-12.065-aswFe.exe-6712.log
2014-11-26 17:56 - 2014-11-26 17:56 - 00000197 _____ () C:\Windows\system32\2014-11-26-16-56-05.084-AvastVBoxSVC.exe-1664.log
2014-11-25 13:23 - 2014-11-25 13:23 - 00000247 _____ () C:\Windows\system32\2014-11-25-12-23-26.065-aswFe.exe-6792.log
2014-11-25 13:17 - 2014-11-25 13:23 - 00000247 _____ () C:\Windows\system32\2014-11-25-12-17-38.056-aswFe.exe-4836.log
2014-11-25 13:17 - 2014-11-25 13:17 - 00000197 _____ () C:\Windows\system32\2014-11-25-12-17-33.041-AvastVBoxSVC.exe-3748.log
2014-11-24 14:06 - 2014-11-24 14:06 - 00000247 _____ () C:\Windows\system32\2014-11-24-13-06-58.034-aswFe.exe-4444.log
2014-11-24 14:03 - 2014-11-24 14:06 - 00000247 _____ () C:\Windows\system32\2014-11-24-13-03-40.004-aswFe.exe-7024.log
2014-11-24 14:03 - 2014-11-24 14:03 - 00000197 _____ () C:\Windows\system32\2014-11-24-13-03-34.016-AvastVBoxSVC.exe-4104.log
2014-11-23 11:46 - 2014-11-23 11:46 - 00000247 _____ () C:\Windows\system32\2014-11-23-10-46-13.064-aswFe.exe-3872.log
2014-11-23 11:42 - 2014-11-23 11:46 - 00000247 _____ () C:\Windows\system32\2014-11-23-10-42-53.011-aswFe.exe-4580.log
2014-11-23 11:42 - 2014-11-23 11:42 - 00000197 _____ () C:\Windows\system32\2014-11-23-10-42-47.089-AvastVBoxSVC.exe-4808.log
2014-11-23 01:45 - 2014-11-23 01:45 - 00000247 _____ () C:\Windows\system32\2014-11-23-00-45-28.024-aswFe.exe-1732.log
2014-11-23 01:42 - 2014-11-23 01:45 - 00000247 _____ () C:\Windows\system32\2014-11-23-00-42-15.029-aswFe.exe-6444.log
2014-11-23 01:42 - 2014-11-23 01:42 - 00000197 _____ () C:\Windows\system32\2014-11-23-00-42-11.019-AvastVBoxSVC.exe-2252.log
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-23 15:23 - 2013-01-17 08:58 - 01369926 _____ () C:\Windows\WindowsUpdate.log
2014-12-23 15:23 - 2009-07-14 05:45 - 00022848 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-23 15:23 - 2009-07-14 05:45 - 00022848 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-23 15:17 - 2013-01-20 01:57 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\TS3Client
2014-12-23 15:16 - 2013-01-17 00:38 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-12-23 15:11 - 2013-01-17 09:58 - 00695982 _____ () C:\Windows\system32\perfh007.dat
2014-12-23 15:11 - 2013-01-17 09:58 - 00150146 _____ () C:\Windows\system32\perfc007.dat
2014-12-23 15:11 - 2009-07-14 06:13 - 01649420 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-23 15:09 - 2014-05-11 10:16 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-23 15:06 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-23 15:05 - 2009-07-14 05:45 - 00486472 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-23 14:46 - 2014-05-11 10:16 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-23 02:20 - 2013-02-01 06:20 - 00000000 ____D () C:\ProgramData\Origin
2014-12-22 20:26 - 2013-01-17 09:12 - 00125752 _____ () C:\Users\Ace\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-22 08:07 - 2013-01-20 12:04 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\vlc
2014-12-22 08:06 - 2013-10-25 22:23 - 00000000 ____D () C:\Users\Ace\AppData\Local\Battle.net
2014-12-22 00:06 - 2014-07-24 21:31 - 00000000 ____D () C:\Windows\Minidump
2014-12-22 00:06 - 2013-01-17 08:53 - 00000000 ____D () C:\Windows\Panther
2014-12-20 08:53 - 2013-01-17 09:06 - 00000000 ____D () C:\Users\Ace
2014-12-20 04:56 - 2013-11-10 00:45 - 00000000 ____D () C:\Users\Ace\jDownloader
2014-12-15 14:50 - 2014-02-27 23:57 - 00000000 ____D () C:\Users\Ace\Documents\d11
2014-12-14 16:18 - 2014-07-28 19:44 - 00000000 ____D () C:\Users\Ace\AppData\Local\Adobe
2014-12-13 10:14 - 2014-04-05 00:13 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\MyPhoneExplorer
2014-12-13 01:12 - 2014-06-04 02:36 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-12-13 01:12 - 2014-06-04 02:36 - 01291464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-12-13 01:12 - 2014-05-19 12:56 - 02824504 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-12-13 01:12 - 2014-05-19 12:56 - 02210040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-12-11 13:50 - 2013-11-25 23:12 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-11 00:31 - 2014-11-06 01:33 - 00000000 ____D () C:\Program Files (x86)\Heroes of the Storm
2014-12-09 22:52 - 2014-05-06 10:03 - 00000000 ____D () C:\Users\Ace\Documents\Outlook-Dateien
2014-12-07 15:33 - 2013-01-17 10:08 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-12-06 16:35 - 2014-09-28 15:02 - 00000000 ____D () C:\Users\Ace\Documents\FIFA 15
2014-12-06 15:50 - 2013-01-23 01:48 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\Skype
2014-12-06 13:35 - 2014-11-03 18:43 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-06 13:35 - 2013-01-23 01:48 - 00000000 ____D () C:\ProgramData\Skype
2014-12-06 12:41 - 2013-10-25 22:25 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-12-06 12:31 - 2013-01-23 08:00 - 00000000 ____D () C:\Windows\pss
2014-12-06 12:28 - 2014-05-11 10:16 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-05 15:28 - 2013-01-17 09:10 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-05 15:23 - 2013-09-17 11:35 - 00000000 ____D () C:\Users\Ace\AppData\Local\Google
2014-12-05 15:14 - 2013-01-17 09:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-12-05 15:14 - 2013-01-17 09:14 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-12-05 15:13 - 2013-01-17 09:10 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-12-05 15:13 - 2013-01-17 09:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-05 15:12 - 2013-01-17 09:11 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-12-05 15:02 - 2013-01-17 09:08 - 00000000 ____D () C:\MSI
2014-12-04 13:33 - 2014-04-29 19:00 - 00000000 ____D () C:\Users\Ace\Documents\FM_temp
2014-12-03 16:54 - 2013-02-01 06:04 - 00000000 ____D () C:\Users\Ace\Documents\André Korn Unterlagen
2014-11-28 22:18 - 2013-12-02 23:12 - 00000000 ____D () C:\Users\Ace\AppData\Roaming\TeamViewer
2014-11-27 18:57 - 2014-06-15 15:43 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat
2014-11-27 18:57 - 2014-01-19 18:30 - 00000000 ____D () C:\ProgramData\Tunngle
2014-11-27 17:24 - 2013-02-03 23:17 - 00000000 ____D () C:\Users\Ace\AppData\Local\Paint.NET
2014-11-23 16:23 - 2014-03-27 18:38 - 00002026 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-11-23 16:23 - 2014-03-27 18:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-15 19:15
==================== End Of Log ============================
--- --- ---
Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-12-2014 01
Ran by Ace at 2014-12-23 15:24:25
Running from C:\Users\Ace\Desktop\Virus entfernen
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.4.154 - Adobe Systems, Inc.)
ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft)
Anno 1404 (x32 Version: 1.00.0000 - Ubisoft) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin's Creed III - Complete Edition (HKLM-x32\...\{8B8E431A-A079-4D81-A353-D64BC01E209D}_is1) (Version: 1.05 - RAF)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.0.2208 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
CLICKBIOSII (HKLM-x32\...\{EBCB111F-4907-4B28-BD03-F5BD901106D2}_is1) (Version: 1.0.123 - MSI)
Company of Heroes (HKLM-x32\...\Steam App 4560) (Version: - Relic)
Company of Heroes: Tales of Valor (HKLM-x32\...\Steam App 20540) (Version: - Relic)
concept/design Video Jukebox (HKLM-x32\...\{37569A10-CB38-4615-8B32-0BF9FF5D887D}_is1) (Version: 1.3.0.0 - concept/design GmbH)
ControlCenter (HKLM-x32\...\{AF14F0CD-5307-4134-BDFA-15974473C1EE}_is1) (Version: 2.5.060 - MSI)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.71 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Creation Master 15 Beta 4 (HKLM-x32\...\Creation Master 15_is1) (Version: - FIFA MASTER)
Curse Client (HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.820 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Dropbox (HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
DVS Video Downloader Addon for Mozilla Firefox version 4.3.4.17 (HKLM-x32\...\DVS Video Downloader Addon for Mozilla Firefox_is1) (Version: 4.3.4.17 - DVDVideoSoft Ltd.)
EA SPORTS Game Face Browser Plugin 1.8.0.0 (HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\EA SPORTS Game Face Browser Plugin) (Version: 1.8.0.0 - Electronic Arts)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.4.0.0 - Electronic Arts)
FileZilla Client 3.7.4.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.4.1 - Tim Kosse)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.10.923 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.5 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.5 - Ellora Assets Corporation)
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.17.0 - Futuremark Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version: - Rockstar)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HP Officejet 6500 E710n-z - Grundlegende Software für das Gerät (HKLM\...\{AF43C18E-693D-4126-B190-8F55E3623D5D}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710n-z Hilfe (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
iFunbox (v2.7.2386.747), iFunbox DevTeam (HKLM-x32\...\iFunbox_is1) (Version: v2.7.2386.747 - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: - Intel(R) Corporation)
Intel(R) Update Manager (x32 Version: 1.0.0.34813 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
iTunes (HKLM\...\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}) (Version: 10.7.0.21 - Apple Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
LibreOffice 4.2.3.3 (HKLM-x32\...\{4117DF3C-6677-4A22-90B7-FF06923417E9}) (Version: 4.2.3.3 - The Document Foundation)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mark of the Ninja Special Edition (HKLM-x32\...\Mark of the Ninja Special Edition_is1) (Version: - )
Media Go (HKLM-x32\...\{F66C4A41-C3A8-4523-AB6C-BAA1DB38305C}) (Version: 2.7.357 - Sony)
Media Go Network Downloader (HKLM-x32\...\{5562F05F-908C-4F15-9B3C-98D5FD32DCAB}) (Version: 1.5.19.0 - Sony)
Media Go Video Playback Engine 2.4.132.12090 (HKLM-x32\...\{7C5AEEE1-6D7C-8922-4548-7BF9096077EC}) (Version: 2.4.132.12090 - Sony)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Miranda IM (HKLM-x32\...\Miranda IM) (Version: 0.10.26 - Miranda IM Project)
MKLOL (HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\MKLOL) (Version: - )
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 33.1.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.1.1 (x86 de)) (Version: 33.1.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Live Update (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.012 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.026 - MSI)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
MySQL Connector/ODBC 5.1 (HKLM-x32\...\{29042B1C-0713-4575-B7CA-5C8E7B0899D4}) (Version: 5.1.5 - MySQL AB)
Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - )
NetworkGenie (HKLM-x32\...\{B416A23D-C2BD-4956-8BAE-5C3BAFF1AC1E}) (Version: 1.0.0.8 - MSI)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.75 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version: - Robot Entertainment)
Origin (HKLM-x32\...\Origin) (Version: 9.4.10.297 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - )
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.208.0 - Tracker Software Products Ltd)
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu)
Prince of Persia Warrior Within (HKLM-x32\...\{EE5BC0BB-9EDA-423C-8276-48857B735D68}) (Version: 1.00.999 - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
QuickTime (HKLM-x32\...\{EB900AF8-CC61-4E15-871B-98D1EA3E8025}) (Version: 7.67.75.0 - Apple Inc.)
Razer Imperator (HKLM-x32\...\{C05905B9-775A-4894-A4DF-B57C15250958}) (Version: 2.02.00 - Razer USA Ltd.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7069 - Realtek Semiconductor Corp.)
Resident Evil 5 (HKLM-x32\...\Steam App 21690) (Version: - Capcom)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
RouterControl 2.0 (HKLM-x32\...\RouterControl) (Version: - )
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13091_9 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.0.13091_9 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.100 - Skype Technologies S.A.)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.14.10.201407111005 - Sony Mobile Communications AB)
Sony PC Companion 2.10.235 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.235 - Sony)
SopCast 3.8.2 (HKLM-x32\...\SopCast) (Version: 3.8.2 - www.sopcast.com)
Split/Second (HKLM-x32\...\{28526951-55EF-4901-A0CA-B9AC966D1DD1}) (Version: 1.00.0000 - Disney Interactive Studios)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold Crusader HD (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.30.0003 - Firefly Studios)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamingGenie (HKLM-x32\...\{AF9B9CCF-D1B4-44B4-A030-BFCF5686AA5E}_is1) (Version: 1.0.1.3 - MSI)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
TeraCopy 2.27 (HKLM\...\TeraCopy_is1) (Version: - Code Sector)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.7.0.113 - KMP Media co., Ltd)
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version: - Tunngle.net GmbH)
Unity Web Player (HKU\S-1-5-21-366123985-799912792-3159495333-1000\...\UnityWebPlayer) (Version: 4.5.4f2 - Unity Technologies ApS)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VideoGenie (HKLM-x32\...\{FC54FD8D-789C-406D-BB88-F7C4421B7E83}_is1) (Version: 1.0.0.12 - MSI)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Wanted: Weapons of Fate (HKLM-x32\...\{9312191B-30A5-44E1-8D8D-6936FE06CDE8}) (Version: 1.0.0.0 - Warner Bros. Interactive Entertainment)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Winki (HKLM-x32\...\{81CF5153-38CF-41e2-AC3C-3D477C987D96}_is1) (Version: 3.2.121 - MSI)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Wireshark 1.8.7 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.8.7 - The Wireshark developer community, hxxp://www.wireshark.org)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-366123985-799912792-3159495333-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ace\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-366123985-799912792-3159495333-1000_Classes\CLSID\{02a25f51-36e6-4920-8760-4e65559ba784}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-366123985-799912792-3159495333-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-366123985-799912792-3159495333-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-366123985-799912792-3159495333-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-366123985-799912792-3159495333-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ace\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
==================== Restore Points =========================
21-11-2014 19:48:25 avast! antivirus system restore point
30-11-2014 15:37:20 Removed Dual-Core Optimizer.
05-12-2014 15:13:36 Installiert NetworkGenie
07-12-2014 15:34:40 DirectX wurde installiert
22-12-2014 02:44:35 Scheduled Checkpoint
22-12-2014 20:03:52 Tweaking.com - Windows Repair
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-21 18:31 - 2014-06-11 13:22 - 00001054 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 anchorfree.net
127.0.0.1 rss2search.com
127.0.0.1 techbrowsing.com
127.0.0.1 box.anchorfree.net
127.0.0.1 www.mefeedia.com
127.0.0.3 www.anchorfree.net
127.0.0.2 www.mefeedia.com
127.0.0.1 anchorfree.us
127.0.0.1 a433.com
127.0.0.3 anchorfree.net
127.0.0.1 rpt.anchorfree.net
127.0.0.1 delivery.anchorfree.us/land.php
127.0.0.1 hsselite.com
127.0.0.1 www.hsselite.com
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {085BBA27-D7A3-4558-AC3C-66E816850681} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {0A59DB54-07E0-4049-BA8E-678990A39040} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {33AA3903-3396-476A-AA74-574D50CF3937} - System32\Tasks\{9AD220F1-4DA7-42FD-A8A1-AEDAF6332947} => pcalua.exe -a "C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Intel_Smart_Connect_Technology_3.0.42.1767\Setup.exe" -d "C:\Program Files (x86)\MSI\Live Update 5" -c -s
Task: {35A48EFE-0B67-475D-BDB6-1542A0862739} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {3EB14F5C-BB29-4026-B72A-FCB7BC92FD34} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-11] (Google Inc.)
Task: {5046108A-7E1E-42C0-A776-0048BE297E85} - System32\Tasks\Browser Updater\Browser Updater => Rundll32.exe "C:\Program Files (x86)\HomeTab\TBUpdater.dll",TBCheckForUpdate
Task: {627BD0CD-15A4-4306-AA21-E8F0A9C62664} - System32\Tasks\{41411F95-436B-4C1E-AFC9-7CF24996B3F6} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/go/help.faq.installer?LastError=1603
Task: {6C44BBA0-C4A6-4D14-9C67-C6A4612EEAB9} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files (x86)\HomeTab\ProtectedSearch.exe <==== ATTENTION
Task: {728F15D6-AACD-4F24-8279-9990EC82CFD6} - System32\Tasks\{11E5153C-CAC6-4637-BD6D-023CCA3B87F5} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/go/help.faq.installer?LastError=1603
Task: {75B97187-782D-4862-AF51-B6341A8C8534} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {9B6AED7B-6E6F-4B32-B1DC-4286AC2B8509} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-11] (Google Inc.)
Task: {D23284C4-D175-4EBC-99C0-1C3224F25183} - System32\Tasks\{7043C4E1-A3FE-4992-8F0F-2EF837AA18E2} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/go/help.faq.installer?LastError=1603
Task: {D92A9BE3-B444-4489-B869-F6091AF9DE90} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {E4552F2A-7EE0-4674-8C5B-27B5250F7CBA} - System32\Tasks\{C06BD41A-6863-4CFC-9A73-B4AFCD8F683F} => pcalua.exe -a D:\Driver\Installation\Setup.exe -d D:\Driver\Installation
Task: {F0DD6D55-8310-48B2-912D-CB10B20B7BC6} - System32\Tasks\{84806168-381B-4454-A66C-AB300CC60A8C} => Firefox.exe hxxp://ui.skype.com/ui/0/6.14.0.104/de/abandoninstall?page=tsProgressBar
Task: {F235B0E6-DF1E-4277-A9ED-988ECB86FB59} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-11-21] (AVAST Software)
Task: {F4FC9987-4C0F-4AFD-A528-A931DF40A2A2} - System32\Tasks\{41B47F50-2ABF-4A05-A7C5-E41B1D561283} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {F6403858-3B3A-418C-86AD-EAC494D16071} - System32\Tasks\RtlNetworkGenieVistaStart => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe [2014-04-23] (Realtek Semiconductor)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RtlNetworkGenieVistaStart.job => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe
==================== Loaded Modules (whitelisted) =============
2014-02-14 12:41 - 2014-09-25 12:15 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-11-21 19:49 - 2014-11-21 19:49 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2014-11-21 19:49 - 2014-11-21 19:49 - 05851328 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2010-01-02 15:42 - 2010-01-02 15:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2013-01-20 01:31 - 2011-10-27 02:41 - 00318976 _____ () C:\Program Files\TeraCopy\TeraCopyExt64.dll
2014-03-14 21:32 - 2014-03-14 21:32 - 00173568 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-03-14 21:32 - 2014-03-14 21:32 - 01080832 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-03-14 21:32 - 2014-03-14 21:32 - 00833024 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2012-10-29 11:08 - 2014-08-06 09:56 - 00102344 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2012-10-29 11:08 - 2014-08-06 09:56 - 00108488 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-03-14 21:32 - 2014-03-14 21:32 - 00030208 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-03-14 21:32 - 2014-03-14 21:32 - 00233984 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2012-10-29 11:08 - 2014-08-06 09:56 - 00563656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-09-10 10:58 - 2014-08-06 09:56 - 00579016 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-03-14 21:32 - 2014-03-14 21:32 - 00159232 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2014-12-23 14:35 - 2014-12-23 14:35 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14122300\algo.dll
2014-11-21 19:49 - 2014-11-21 19:49 - 04495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2014-12-05 15:14 - 2014-04-21 15:09 - 00150528 _____ () C:\Program Files (x86)\MSI\NetworkGenie\gep.dll
2014-11-21 19:49 - 2014-11-21 19:49 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-11-18 20:23 - 2014-11-18 20:23 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-12-13 01:50 - 2014-12-06 02:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-13 01:50 - 2014-12-06 02:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-12-13 01:50 - 2014-12-06 02:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-13 01:50 - 2014-12-06 02:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AeLookupSvc => 3
MSCONFIG\Services: ALG => 3
MSCONFIG\Services: AppIDSvc => 3
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: AppMgmt => 3
MSCONFIG\Services: aspnet_state => 3
MSCONFIG\Services: AudioEndpointBuilder => 2
MSCONFIG\Services: AudioSrv => 2
MSCONFIG\Services: AxInstSV => 3
MSCONFIG\Services: BDESVC => 3
MSCONFIG\Services: BITS => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: Browser => 3
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: CertPropSvc => 3
MSCONFIG\Services: clr_optimization_v2.0.50727_32 => 3
MSCONFIG\Services: clr_optimization_v2.0.50727_64 => 3
MSCONFIG\Services: clr_optimization_v4.0.30319_32 => 2
MSCONFIG\Services: clr_optimization_v4.0.30319_64 => 2
MSCONFIG\Services: COMSysApp => 3
MSCONFIG\Services: CryptSvc => 2
MSCONFIG\Services: CscService => 2
MSCONFIG\Services: defragsvc => 3
MSCONFIG\Services: Dhcp => 2
MSCONFIG\Services: Dnscache => 2
MSCONFIG\Services: dot3svc => 3
MSCONFIG\Services: DPS => 2
MSCONFIG\Services: EapHost => 3
MSCONFIG\Services: EFS => 3
MSCONFIG\Services: ehRecvr => 2
MSCONFIG\Services: ehSched => 2
MSCONFIG\Services: eventlog => 2
MSCONFIG\Services: EventSystem => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: fdPHost => 3
MSCONFIG\Services: FDResPub => 2
MSCONFIG\Services: FontCache => 2
MSCONFIG\Services: FontCache3.0.0.0 => 3
MSCONFIG\Services: Futuremark SystemInfo Service => 3
MSCONFIG\Services: GfExperienceService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: hidserv => 3
MSCONFIG\Services: hkmsvc => 3
MSCONFIG\Services: HomeGroupListener => 3
MSCONFIG\Services: HomeGroupProvider => 3
MSCONFIG\Services: ICCS => 3
MSCONFIG\Services: idsvc => 3
MSCONFIG\Services: IEEtwCollectorService => 3
MSCONFIG\Services: IKEEXT => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) Small Business Advantage => 2
MSCONFIG\Services: IPBusEnum => 3
MSCONFIG\Services: iphlpsvc => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: KeyIso => 3
MSCONFIG\Services: KtmRm => 3
MSCONFIG\Services: LanmanServer => 2
MSCONFIG\Services: LanmanWorkstation => 2
MSCONFIG\Services: lltdsvc => 3
MSCONFIG\Services: lmhosts => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: MMCSS => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: MpsSvc => 2
MSCONFIG\Services: MSDTC => 3
MSCONFIG\Services: MSiSCSI => 3
MSCONFIG\Services: msiserver => 3
MSCONFIG\Services: MSI_LiveUpdate_Service => 2
MSCONFIG\Services: MSI_SuperCharger => 2
MSCONFIG\Services: napagent => 3
MSCONFIG\Services: Netlogon => 3
MSCONFIG\Services: Netman => 3
MSCONFIG\Services: netprofm => 3
MSCONFIG\Services: NlaSvc => 2
MSCONFIG\Services: nsi => 2
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: ose64 => 3
MSCONFIG\Services: osppsvc => 3
MSCONFIG\Services: p2pimsvc => 3
MSCONFIG\Services: p2psvc => 3
MSCONFIG\Services: PcaSvc => 2
MSCONFIG\Services: PeerDistSvc => 3
MSCONFIG\Services: PerfHost => 3
MSCONFIG\Services: pla => 3
MSCONFIG\Services: PNRPAutoReg => 3
MSCONFIG\Services: PNRPsvc => 3
MSCONFIG\Services: PolicyAgent => 3
MSCONFIG\Services: Power => 2
MSCONFIG\Services: ProtectedStorage => 3
MSCONFIG\Services: QWAVE => 3
MSCONFIG\Services: RasAuto => 3
MSCONFIG\Services: RasMan => 3
MSCONFIG\Services: RemoteRegistry => 3
MSCONFIG\Services: rpcapd => 3
MSCONFIG\Services: RpcLocator => 3
MSCONFIG\Services: SamSs => 2
MSCONFIG\Services: SCardSvr => 3
MSCONFIG\Services: SCPolicySvc => 3
MSCONFIG\Services: SDRSVC => 3
MSCONFIG\Services: seclogon => 3
MSCONFIG\Services: SENS => 2
MSCONFIG\Services: SensrSvc => 3
MSCONFIG\Services: SessionEnv => 3
MSCONFIG\Services: ShellHWDetection => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: SNMPTRAP => 3
MSCONFIG\Services: Sony PC Companion => 3
MSCONFIG\Services: Spooler => 2
MSCONFIG\Services: sppuinotify => 3
MSCONFIG\Services: SSDPSRV => 3
MSCONFIG\Services: SstpSvc => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: stisvc => 2
MSCONFIG\Services: swprv => 3
MSCONFIG\Services: SysMain => 2
MSCONFIG\Services: TabletInputService => 3
MSCONFIG\Services: TapiSrv => 3
MSCONFIG\Services: TBS => 3
MSCONFIG\Services: TermService => 2
MSCONFIG\Services: Themes => 2
MSCONFIG\Services: THREADORDER => 3
MSCONFIG\Services: TrkWks => 2
MSCONFIG\Services: TrustedInstaller => 3
MSCONFIG\Services: TunngleService => 3
MSCONFIG\Services: UI0Detect => 3
MSCONFIG\Services: UmRdpService => 3
MSCONFIG\Services: upnphost => 3
MSCONFIG\Services: UxSms => 2
MSCONFIG\Services: VaultSvc => 3
MSCONFIG\Services: vds => 3
MSCONFIG\Services: VSS => 3
MSCONFIG\Services: W32Time => 3
MSCONFIG\Services: WatAdminSvc => 3
MSCONFIG\Services: wbengine => 3
MSCONFIG\Services: WbioSrvc => 3
MSCONFIG\Services: wcncsvc => 3
MSCONFIG\Services: WcsPlugInService => 3
MSCONFIG\Services: WdiServiceHost => 3
MSCONFIG\Services: WdiSystemHost => 3
MSCONFIG\Services: WebClient => 3
MSCONFIG\Services: Wecsvc => 3
MSCONFIG\Services: wercplsupport => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: WinDefend => 2
MSCONFIG\Services: WinHttpAutoProxySvc => 3
MSCONFIG\Services: Winmgmt => 2
MSCONFIG\Services: WinRM => 3
MSCONFIG\Services: Wlansvc => 2
MSCONFIG\Services: wlidsvc => 2
MSCONFIG\Services: wmiApSrv => 3
MSCONFIG\Services: WMPNetworkSvc => 2
MSCONFIG\Services: WPCSvc => 3
MSCONFIG\Services: WPDBusEnum => 3
MSCONFIG\Services: wscsvc => 2
MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 2
MSCONFIG\Services: wudfsvc => 3
MSCONFIG\Services: WwanSvc => 3
MSCONFIG\startupfolder: C:^Users^Ace^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip => C:\Windows\pss\CurseClientStartup.ccip.Startup
MSCONFIG\startupfolder: C:^Users^Ace^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Stardock ObjectDock.lnk => C:\Windows\pss\Stardock ObjectDock.lnk.Startup
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: amd_dc_opt => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: IntelSBA => C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\SBALaunchDelay.exe "C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\IntelSmallBusinessAdvantage.exe -minimized" 60
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KiesAirMessage => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
MSCONFIG\startupreg: Live Update 5 => C:\Program Files (x86)\MSI\Live Update 5\BootStartLiveupdate.exe /reminder
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Razer Imperator Driver => C:\Program Files (x86)\Razer\Imperator\RazerImperatorSysTray.exe
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "E:\Steam\steam.exe" -silent
========================= Accounts: ==========================
Ace (S-1-5-21-366123985-799912792-3159495333-1000 - Administrator - Enabled) => C:\Users\Ace
Administrator (S-1-5-21-366123985-799912792-3159495333-500 - Administrator - Disabled)
ASPNET (S-1-5-21-366123985-799912792-3159495333-1003 - Limited - Enabled)
Guest (S-1-5-21-366123985-799912792-3159495333-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-366123985-799912792-3159495333-1047 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/23/2014 03:07:00 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (12/23/2014 03:07:00 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (12/23/2014 03:05:02 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: Vom Kryptografiedienst konnte das VSS-Sicherungsobjekt "System Writer" nicht initialisiert werden.
Details:
Could not query the status of the EventSystem service.
System Error:
A system shutdown is in progress.
.
Error: (12/23/2014 02:39:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: msconfig.exe, Version: 6.1.7601.17514, Zeitstempel: 0x4ce79736
Name des fehlerhaften Moduls: MFC42u.dll, Version: 6.6.8064.0, Zeitstempel: 0x4d79bfc6
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000038cbb
ID des fehlerhaften Prozesses: 0x1ba4
Startzeit der fehlerhaften Anwendung: 0xmsconfig.exe0
Pfad der fehlerhaften Anwendung: msconfig.exe1
Pfad des fehlerhaften Moduls: msconfig.exe2
Berichtskennung: msconfig.exe3
System errors:
=============
Error: (12/23/2014 03:23:44 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "\Device\HarddiskVolumeShadowCopy2" den Befehl "chkdsk" aus.
Error: (12/23/2014 03:23:33 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "\Device\HarddiskVolumeShadowCopy8" den Befehl "chkdsk" aus.
Error: (12/23/2014 03:23:27 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "\Device\HarddiskVolumeShadowCopy12" den Befehl "chkdsk" aus.
Error: (12/23/2014 03:12:20 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.
Error: (12/23/2014 03:10:00 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "HomeGroup Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.
Error: (12/23/2014 03:06:40 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Windows Firewall" wurde mit folgendem dienstspezifischem Fehler beendet: %%5.
Error: (12/23/2014 03:04:28 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "Start" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (12/23/2014 03:04:12 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "Start" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (12/23/2014 02:47:42 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Task Scheduler" ist vom Dienst "Windows Event Log" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (12/23/2014 02:39:09 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "Start" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Microsoft Office Sessions:
=========================
Error: (12/23/2014 03:07:00 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (12/23/2014 03:07:00 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (12/23/2014 03:05:02 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
Could not query the status of the EventSystem service.
System Error:
A system shutdown is in progress.
Error: (12/23/2014 02:39:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: msconfig.exe6.1.7601.175144ce79736MFC42u.dll6.6.8064.04d79bfc6c00000050000000000038cbb1ba401d01eb5c73fc961C:\Windows\system32\msconfig.exeC:\Windows\system32\MFC42u.dll12b66d00-8aa9-11e4-8ec9-8c89a5e1837f
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Percentage of memory in use: 23%
Total physical RAM: 16316.57 MB
Available physical RAM: 12487.39 MB
Total Pagefile: 32631.33 MB
Available Pagefile: 28267.21 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:481.96 GB) (Free:127.08 GB) NTFS
Drive e: (Partition) (Fixed) (Total:439.45 GB) (Free:147.6 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E31182F9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=482 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=439.5 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=10 GB) - (Type=27)
==================== End Of Log ============================
|
