| schwoader | 16.02.2015 19:31 |
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-02-2015
Ran by Dominic-Pc (administrator) on DOMINIC on 16-02-2015 19:29:51
Running from C:\Users\Dominic-Pc\Downloads
Loaded Profiles: Dominic-Pc (Available profiles: Dominic-Pc)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Windows\SysWOW64\AsHookDevice.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avpui.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\NFC Express Desktops\DTNFCServer.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\ASUS_Manager_Lighting.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
() C:\Program Files (x86)\ASUS\ASUS Manager\NFC Express Desktops\DT_NFCExpressDesktops.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\Built-in UPS\Built-in UPS.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe
() C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIMDE.EXE
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIMDE.EXE
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIMDE.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenSysAudioLauncher.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
() C:\Program Files (x86)\MKJogo\MK IM\Bin\khxjp.exe
() D:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() D:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.237\deploy\LoLLauncher.exe
() D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.21\deploy\LoLPatcher.exe
() D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\LolClient.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
() C:\Program Files (x86)\Elex-tech\YAC\iDesk.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\plugin-nm-server.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() D:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.77\deploy\League of Legends.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [40688 2015-01-15] (Overwolf LTD)
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIMDE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIMDE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\Run: [EPLTarget\P0000000000000002] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIMDE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\Run: [MK LOL] => C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [1092296 2015-02-12] ()
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\MountPoints2: {8e166959-7d47-11e4-8261-54271e5eb256} - "G:\HTC_Sync_Manager_PC.exe"
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Google
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = Google
SearchScopes: HKLM-x32 -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-20 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4129379217-3164728991-1505049785-1001 -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4129379217-3164728991-1505049785-1001 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Content Blocker Plugin -> {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Virtual Keyboard Plugin -> {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Safe Money Plugin -> {E3D96E85-529D-4269-AC6A-97CF9E2221E3} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Virtual Keyboard Plugin -> {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {E3D96E85-529D-4269-AC6A-97CF9E2221E3} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{20385356-FC26-44AC-B216-F0C907078FCB}: [NameServer] 8.8.8.8
FireFox:
========
FF ProfilePath: C:\Users\Dominic-Pc\AppData\Roaming\Mozilla\Firefox\Profiles\StBPJe9G.default
FF Extension: Avira Browser Safety - C:\Users\Dominic-Pc\AppData\Roaming\Mozilla\Firefox\Profiles\StBPJe9G.default\Extensions\abs@avira.com [2015-01-12]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_6418E0D362104DADA084DC312DFA8ABC@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com
FF Extension: Модуль блокування небезпечних веб-сайтів - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com [2015-02-11]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Віртуальна клавіатура - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com [2015-02-11]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com
FF Extension: Безпечні платежі - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com [2015-02-11]
Chrome:
=======
CHR HomePage: Default -> hxxp://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=DE&userid=8c685e03-6035-9985-8393-68e9db5b0c61&searchtype=hp&installDate={installDate}
CHR StartupUrls: Default -> "hxxp://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=DE&userid=8c685e03-6035-9985-8393-68e9db5b0c61&searchtype=hp&installDate={installDate}"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-02-16]
CHR Extension: (Google Docs) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-14]
CHR Extension: (Google Drive) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-14]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-14]
CHR Extension: (YouTube) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-14]
CHR Extension: (Adblock Plus) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-02-16]
CHR Extension: (Google-Suche) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-14]
CHR Extension: (Kaspersky Protection) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-02-14]
CHR Extension: (Google Wallet) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-14]
CHR Extension: (Google Mail) - C:\Users\Dominic-Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-14]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho [Not Found]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-08-28] ()
R2 AVP15.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe [234520 2014-08-30] (Kaspersky Lab ZAO)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [35328 2013-05-07] (Realtek Semiconductor Corporation) [File not signed]
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [59392 2013-09-26] () [File not signed]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2449592 2014-11-12] (Microsoft Corporation)
R2 Device Handle Service; C:\Windows\SysWOW64\AsHookDevice.exe [207160 2013-08-08] ()
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-15] (SEIKO EPSON CORPORATION)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-11-06] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 iSafeService; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [120128 2015-01-19] (Elex do Brasil Participações Ltda)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-19] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-07] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-07] (McAfee, Inc.)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-11-06] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19819848 2014-11-06] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [998640 2015-01-15] (Overwolf LTD)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186048 2014-12-09] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiChargerDT; C:\Windows\SysWow64\drivers\AiChargerDT.sys [14880 2012-10-18] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-08-07] (McAfee, Inc.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [238288 2013-01-14] (Kaspersky Lab UK Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [469264 2013-06-26] (Intel Corporation)
R1 iSafeKrnl; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [249000 2015-01-19] (Elex do Brasil Participações Ltda)
S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [45224 2015-01-19] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlKit; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [99496 2015-01-19] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlMon; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [42152 2015-01-19] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlR3; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [93352 2015-01-19] (Elex do Brasil Participações Ltda)
R1 iSafeNetFilter; C:\Windows\System32\DRIVERS\iSafeNetFilter.sys [52392 2015-01-03] (Elex do Brasil Participações Ltda)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [468576 2014-03-31] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [46144 2014-07-02] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [150536 2015-02-11] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [247480 2014-08-12] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [799944 2015-02-11] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [68616 2015-02-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [77512 2015-02-11] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [179776 2014-07-09] (Kaspersky Lab ZAO)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-08-19] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-07] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-07] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69264 2013-08-07] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-07] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-07] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-07] (McAfee, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2014-11-06] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2014-11-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38216 2014-10-03] (NVIDIA Corporation)
R3 RtkA2dp; C:\Windows\system32\drivers\RtkA2dp.sys [178392 2013-06-27] (Realtek Semiconductor Corporation)
R3 RtkAvrcp; C:\Windows\System32\drivers\RtkAvrcp.sys [57560 2013-08-13] (Realtek Semiconductor Corporation)
R3 RtkAvrcpCtrlr; C:\Windows\System32\drivers\RtkAvrcpCtrlr.sys [69848 2013-06-21] (Realtek Semiconductor Corporation)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [548056 2013-09-05] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2944216 2013-08-21] (Realtek Semiconductor Corporation )
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39592 2014-12-30] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2014-12-09] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2014-11-17] (Razer, Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-08-15] (Apple, Inc.) [File not signed]
R1 vrvd5; C:\Windows\system32\DRIVERS\vrvd5.sys [13344 2014-12-23] (Rsupport Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 rssasnt; \??\C:\Program Files (x86)\Samsung\Remote PC\rssas64.sys [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-16 19:29 - 2015-02-16 19:29 - 00025759 _____ () C:\Users\Dominic-Pc\Downloads\FRST.txt
2015-02-16 19:28 - 2015-02-16 19:29 - 00000000 ____D () C:\FRST
2015-02-16 19:28 - 2015-02-16 19:28 - 02085888 _____ (Farbar) C:\Users\Dominic-Pc\Downloads\FRST64.exe
2015-02-16 18:28 - 2015-02-16 18:28 - 00001935 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\YAC.lnk
2015-02-16 18:28 - 2015-02-16 18:28 - 00001929 _____ () C:\Users\Public\Desktop\YAC.lnk
2015-02-16 18:28 - 2015-02-16 18:28 - 00000000 ____D () C:\Windows\system32\log
2015-02-16 18:28 - 2015-02-16 18:28 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Elex-tech
2015-02-16 18:28 - 2015-02-16 18:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
2015-02-16 18:28 - 2015-02-16 18:28 - 00000000 ____D () C:\Program Files (x86)\Elex-tech
2015-02-16 18:28 - 2015-01-19 12:04 - 00045224 _____ (Elex do Brasil Participações Ltda) C:\Windows\system32\Drivers\iSafeKrnlBoot.sys
2015-02-16 18:28 - 2015-01-03 09:57 - 00052392 _____ (Elex do Brasil Participações Ltda) C:\Windows\system32\Drivers\iSafeNetFilter.sys
2015-02-16 18:27 - 2015-02-16 18:28 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\eCyber
2015-02-16 18:27 - 2015-02-16 18:27 - 01167400 _____ (Elex do Brasil Participações Ltda) C:\Users\Dominic-Pc\Downloads\yet_another_cleaner_sk_256732.exe
2015-02-16 09:30 - 2015-02-16 09:30 - 00000085 _____ () C:\Windows\wininit.ini
2015-02-15 19:16 - 2015-02-15 19:16 - 00002782 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-02-15 19:16 - 2015-02-15 19:16 - 00000841 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-15 19:16 - 2015-02-15 19:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-02-15 19:16 - 2015-02-15 19:16 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-15 19:15 - 2015-02-15 19:17 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Dominic-Pc\Downloads\spybot-2.4.exe
2015-02-15 19:15 - 2015-02-15 19:16 - 05325208 _____ (Piriform Ltd) C:\Users\Dominic-Pc\Downloads\ccsetup502.exe
2015-02-15 19:12 - 2015-02-16 09:30 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-02-15 19:11 - 2015-02-15 19:11 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Dominic-Pc\Downloads\revosetup95.exe
2015-02-15 00:03 - 2015-02-15 00:03 - 00010645 _____ () C:\Users\Dominic-Pc\Downloads\config.cfg
2015-02-15 00:03 - 2015-02-15 00:03 - 00003174 _____ () C:\Users\Dominic-Pc\Downloads\autoexec.cfg
2015-02-14 11:37 - 2015-02-14 11:37 - 01067371 _____ () C:\Users\Dominic-Pc\Downloads\installer_adobe_flash_player_English.exe
2015-02-14 03:17 - 2015-02-14 03:17 - 00002278 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-14 03:17 - 2015-02-14 03:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-14 03:15 - 2015-02-16 19:20 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-14 03:15 - 2015-02-16 09:29 - 00001130 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-14 03:15 - 2015-02-14 03:15 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-14 03:15 - 2015-02-14 03:15 - 00003870 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-14 03:04 - 2015-02-14 03:04 - 00007605 _____ () C:\Users\Dominic-Pc\AppData\Local\Resmon.ResmonCfg
2015-02-12 23:52 - 2015-02-12 23:53 - 00000000 ____D () C:\Users\Dominic-Pc\Documents\MK-LOL
2015-02-12 23:52 - 2015-02-12 23:52 - 00000058 _____ () C:\Windows\JQHApp.dat
2015-02-12 23:52 - 2015-02-12 23:52 - 00000000 ____D () C:\Users\Dominic-Pc\Documents\MKJogo
2015-02-12 23:51 - 2015-02-12 23:51 - 19918024 _____ () C:\Users\Dominic-Pc\Downloads\MKLOL2.0.0.34.exe
2015-02-12 23:51 - 2015-02-12 23:51 - 00001138 _____ () C:\Users\Dominic-Pc\Desktop\MK LOL.lnk
2015-02-12 23:51 - 2015-02-12 23:51 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
2015-02-12 23:51 - 2015-02-12 23:51 - 00000000 ____D () C:\Program Files (x86)\MKJogo
2015-02-12 23:48 - 2015-02-12 23:48 - 00843253 _____ () C:\Users\Dominic-Pc\Downloads\12253.zip
2015-02-12 18:28 - 2015-02-12 18:28 - 00000000 ____D () C:\Users\Dominic-Pc\Desktop\B-Bus+hido - Ca+rlo Cok+xxx Nut+ten 3 (Bonus Tracks Version) (DE, 2015, VOiCE)
2015-02-12 18:24 - 2015-02-12 18:28 - 106468837 _____ () C:\Users\Dominic-Pc\Downloads\B-Bus+hido - Ca+rlo Cok+xxx Nut+ten 3 (Bonus Tracks Version) (DE, 2015, VOiCE).rar
2015-02-12 18:20 - 2015-02-12 18:22 - 00006653 _____ () C:\Users\Dominic-Pc\Downloads\B-Bus+hido_-_Ca+rlo_Cok+xxx_Nut+ten_3_(Bonus_Tracks_Version)_(DE
2015-02-12 06:08 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-12 06:08 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-11 16:32 - 2015-02-11 16:32 - 00002357 _____ () C:\Users\Dominic-Pc\Desktop\Safe Money.lnk
2015-02-11 16:32 - 2015-02-11 16:32 - 00002155 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2015-02-11 16:32 - 2015-02-11 16:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2015-02-11 16:32 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2015-02-11 16:31 - 2015-02-16 09:29 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2015-02-11 16:31 - 2015-02-11 16:33 - 00799944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-02-11 16:31 - 2015-02-11 16:33 - 00150536 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-02-11 16:31 - 2015-02-11 16:31 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2015-02-11 16:31 - 2014-08-12 18:32 - 00247480 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys
2015-02-11 14:43 - 2015-02-11 14:43 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Blizzard
2015-02-11 11:17 - 2015-02-11 11:17 - 06498200 _____ (Microsoft Corporation) C:\Users\Dominic-Pc\Downloads\vcredist_x86-2013.exe
2015-02-11 11:16 - 2015-02-11 11:27 - 00000000 ____D () C:\Users\Dominic-Pc\Documents\RoS-BoT
2015-02-11 11:15 - 2015-02-11 11:16 - 02319508 _____ () C:\Users\Dominic-Pc\Downloads\ros-bot_1.04c.zip
2015-02-11 09:36 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-11 09:36 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-11 09:36 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-02-11 09:36 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-02-11 09:36 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-11 09:36 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-11 09:36 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-11 09:36 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-11 09:36 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-11 09:35 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-02-11 09:35 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-11 09:35 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 09:35 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-11 09:35 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-11 09:35 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-11 09:35 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-11 09:35 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-02-11 09:35 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-11 09:35 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-11 09:35 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-11 09:35 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-11 09:35 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 09:35 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-11 09:35 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-02-11 09:35 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-02-11 09:35 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-02-11 09:35 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-11 09:35 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-11 09:35 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-11 09:35 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-11 09:35 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 09:35 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-11 09:35 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-02-11 09:35 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-02-11 09:35 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-02-11 09:35 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-11 09:35 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-02-11 09:35 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 09:35 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 09:35 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 09:35 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-11 09:35 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-11 09:35 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-11 09:35 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-11 09:35 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-11 09:35 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 09:35 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-11 09:35 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-02-11 09:35 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-02-11 09:35 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-11 09:35 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-11 09:35 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-11 09:35 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 09:35 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 09:35 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-11 09:35 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-11 09:35 - 2014-12-09 00:12 - 00391526 _____ () C:\Windows\system32\ApnDatabase.xml
2015-02-11 09:35 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-02-11 09:35 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-02-11 09:35 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-02-11 09:35 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-02-11 09:35 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-02-11 09:35 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-02-11 09:35 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-02-11 09:35 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-02-10 07:14 - 2014-12-31 12:14 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-02-09 00:41 - 2015-02-09 00:48 - 202841672 _____ (Kaspersky Lab) C:\Users\Dominic-Pc\Downloads\kis15.0.1.415en.exe
2015-02-09 00:41 - 2015-02-09 00:41 - 04197016 _____ (Kaspersky Lab ZAO) C:\Users\Dominic-Pc\Downloads\tdsskiller.exe
2015-02-07 13:36 - 2015-02-07 13:36 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Steam
2015-02-07 03:48 - 2015-02-07 03:48 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Adobe
2015-02-06 17:32 - 2015-02-06 17:32 - 02321892 _____ () C:\Users\Dominic-Pc\Downloads\ros-bot_1.04b_0.zip
2015-02-06 17:29 - 2015-02-06 17:29 - 02843136 _____ (Jappi88) C:\Users\Dominic-Pc\Downloads\Diablo_3_SE.exe
2015-02-06 17:27 - 2015-02-06 17:28 - 02671104 _____ (Jappi88) C:\Users\Dominic-Pc\Downloads\Diablo 3 SE.exe
2015-02-02 16:54 - 2015-02-02 16:58 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-02-02 16:51 - 2015-02-02 16:51 - 00001969 _____ () C:\Users\Dominic-Pc\Downloads\software_removal_tool.log
2015-02-02 02:05 - 2015-02-02 02:05 - 01707939 _____ (Thisisu) C:\Users\Dominic-Pc\Downloads\JRT.exe
2015-02-02 02:05 - 2015-02-02 02:05 - 00000000 ____D () C:\Windows\ERUNT
2015-02-02 01:59 - 2015-02-02 02:01 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Dominic-Pc\Downloads\mbam-setup-2.0.4.1028.exe
2015-02-01 12:09 - 2015-02-15 13:20 - 00000000 ____D () C:\Users\Dominic-Pc\Documents\Heroes of the Storm
2015-02-01 11:48 - 2015-02-01 11:48 - 00001218 _____ () C:\Users\Public\Desktop\Heroes of the Storm.lnk
2015-02-01 11:48 - 2015-02-01 11:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2015-02-01 09:39 - 2015-02-01 09:39 - 00000000 ____D () C:\Users\Dominic-Pc\Documents\Diablo III
2015-02-01 00:14 - 2015-02-15 18:26 - 00000000 ____D () C:\Program Files (x86)\Heroes of the Storm
2015-01-30 13:32 - 2015-01-30 13:32 - 04176437 _____ () C:\Users\Dominic-Pc\Downloads\tdsskiller.zip
2015-01-28 22:36 - 2015-02-02 17:29 - 00000000 ____D () C:\AdwCleaner
2015-01-28 22:35 - 2015-01-28 22:35 - 02194432 _____ () C:\Users\Dominic-Pc\Downloads\AdwCleaner09.exe
2015-01-28 22:33 - 2015-01-28 22:34 - 11225840 _____ (SurfRight B.V.) C:\Users\Dominic-Pc\Downloads\HitmanPro_x64.exe
2015-01-28 01:57 - 2015-01-28 01:58 - 31185021 _____ () C:\Users\Dominic-Pc\Downloads\midori_0.5.9_32_ (1).exe
2015-01-28 01:48 - 2015-01-28 01:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-28 01:44 - 2015-01-28 01:44 - 00000000 ____D () C:\Users\Dominic-Pc\Downloads\backups
2015-01-28 01:42 - 2015-01-28 01:42 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dominic-Pc\Downloads\HiJackThis204.exe
2015-01-28 01:42 - 2015-01-28 01:42 - 00014229 _____ () C:\Users\Dominic-Pc\Downloads\hijackthis.log
2015-01-27 23:18 - 2015-01-29 00:32 - 00000002 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-01-27 23:09 - 2015-01-27 23:10 - 00000000 ____D () C:\Users\Dominic-Pc\Documents\Cross Fire
2015-01-27 23:09 - 2015-01-27 23:09 - 00000000 ____D () C:\CFLog
2015-01-26 19:48 - 2015-01-26 19:48 - 00000957 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk
2015-01-24 23:44 - 2015-01-27 00:29 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-01-24 23:41 - 2015-02-16 09:30 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-01-24 23:41 - 2015-02-16 09:30 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-24 23:41 - 2015-01-24 23:41 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2015-01-24 01:23 - 2015-02-16 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
2015-01-24 01:20 - 2015-01-30 16:05 - 00000000 ____D () C:\SG Interactive
2015-01-23 07:44 - 2015-01-23 15:42 - 00000362 _____ () C:\console.log
2015-01-22 22:53 - 2015-01-22 22:53 - 00000000 ____D () C:\Program Files\Sonic Foundry
2015-01-22 22:14 - 2015-01-22 22:14 - 95896720 _____ () C:\Users\Dominic-Pc\Downloads\3D Six Pack.rar
2015-01-22 22:09 - 2015-01-22 22:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CUT
2015-01-22 22:09 - 2015-01-22 22:09 - 00000000 ____D () C:\Dokumente und Einstellungen
2015-01-22 18:04 - 2015-01-22 18:04 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Sony Creative Software Inc
2015-01-22 17:06 - 2015-01-22 17:06 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Publish Providers
2015-01-22 17:04 - 2015-01-22 17:05 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Sony
2015-01-22 17:04 - 2015-01-22 17:04 - 00000000 ____D () C:\ProgramData\Sony
2015-01-22 17:04 - 2015-01-22 17:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-01-22 17:04 - 2015-01-22 17:04 - 00000000 ____D () C:\Program Files\Sony
2015-01-22 17:04 - 2015-01-22 17:04 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-01-22 17:00 - 2015-01-22 17:43 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Sony
2015-01-22 16:44 - 2015-02-10 07:11 - 00000000 ____D () C:\Fraps
2015-01-22 00:34 - 2015-01-24 23:43 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2015-01-22 00:34 - 2015-01-22 00:34 - 00000000 ____D () C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2015-01-22 00:28 - 2015-02-10 07:12 - 00000000 ____D () C:\xampp
2015-01-21 23:27 - 2015-01-25 01:57 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\iMazing
2015-01-21 23:27 - 2015-01-21 23:27 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\DigiDNA
2015-01-21 23:27 - 2015-01-21 23:27 - 00000000 ____D () C:\ProgramData\DigiDNA
2015-01-21 18:16 - 2015-01-21 18:16 - 00000998 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YaTQA.lnk
2015-01-21 18:16 - 2015-01-21 18:16 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\YaTQA
2015-01-21 18:16 - 2015-01-21 18:16 - 00000000 ____D () C:\Program Files (x86)\YaTQA
2015-01-20 17:04 - 2015-01-31 13:17 - 00000100 _____ () C:\Users\Dominic-Pc\Desktop\Neues Textdokument.txt
2015-01-20 14:02 - 2015-01-20 14:02 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\webkit
2015-01-20 14:01 - 2015-01-20 14:01 - 00000859 _____ () C:\Users\Dominic-Pc\AppData\Local\recently-used.xbel
2015-01-20 14:01 - 2015-01-20 14:01 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\gtk-2.0
2015-01-20 14:01 - 2015-01-20 14:01 - 00000000 ____D () C:\Users\Dominic-Pc\.thumbnails
2015-01-20 13:12 - 2015-01-20 14:09 - 00000000 ____D () C:\Users\Dominic-Pc\.gimp-2.8
2015-01-20 13:12 - 2015-01-20 13:12 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\gegl-0.2
2015-01-20 02:12 - 2015-01-22 00:04 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\pangu
2015-01-18 03:47 - 2015-01-18 03:47 - 00022667 _____ () C:\Users\Dominic-Pc\test
2015-01-18 03:37 - 2015-01-18 03:54 - 00000000 ____D () C:\Program Files\Wireshark
2015-01-18 03:17 - 2015-01-18 03:47 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Wireshark
2015-01-18 02:55 - 2015-01-18 02:55 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Charles
2015-01-18 02:08 - 2015-01-18 02:08 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Apple Computer
2015-01-18 02:08 - 2015-01-18 02:08 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Apple Computer
2015-01-18 02:07 - 2015-01-27 00:29 - 00000000 ____D () C:\ProgramData\Apple
2015-01-18 02:07 - 2015-01-18 02:07 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Apple
2015-01-18 02:07 - 2015-01-18 02:07 - 00000000 ____D () C:\ProgramData\Apple Computer
2015-01-17 19:12 - 2015-01-17 19:12 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\phenomedia
2015-01-17 19:12 - 2015-01-17 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\phenomedia
2015-01-17 19:12 - 2015-01-17 19:12 - 00000000 ____D () C:\Program Files (x86)\phenomedia
2015-01-17 19:12 - 2015-01-17 19:12 - 00000000 ____D () C:\Program Files (x86)\Einfach_Spielen
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-16 19:22 - 2014-05-14 23:23 - 02076461 _____ () C:\Windows\WindowsUpdate.log
2015-02-16 19:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-02-16 18:39 - 2014-12-13 17:39 - 00000935 _____ () C:\Windows\Tasks\EPSON WF-2630 Series Update {1F22CE6E-DDF2-4FDC-AF52-FC20EA15291B}.job
2015-02-16 18:39 - 2014-12-13 17:39 - 00000935 _____ () C:\Windows\Tasks\EPSON WF-2630 Series Update {08A9AF5B-806D-46E6-900C-8FBAE97990AA}.job
2015-02-16 18:38 - 2014-12-13 18:38 - 00000935 _____ () C:\Windows\Tasks\EPSON WF-2630 Series Update {BF613F31-FA93-4BAD-BF57-E636831391A4}.job
2015-02-16 18:33 - 2014-05-14 23:56 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4129379217-3164728991-1505049785-1001
2015-02-16 18:29 - 2014-12-27 01:27 - 00000000 ___RD () C:\Users\Dominic-Pc\Desktop\PicS
2015-02-16 18:29 - 2014-05-14 23:51 - 00000000 ___RD () C:\Users\Dominic-Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-16 18:29 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-16 18:28 - 2014-05-14 23:51 - 00002427 _____ () C:\Users\Dominic-Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-02-16 16:17 - 2014-05-15 00:08 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Battle.net
2015-02-16 15:32 - 2014-05-14 23:59 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{38FA4415-EE5A-44F5-8B46-0E043D5433E4}
2015-02-16 11:42 - 2014-12-11 22:17 - 00005152 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Dominic-Dominic-Pc Dominic
2015-02-16 11:21 - 2014-12-11 21:43 - 00000000 ____D () C:\Users\Dominic-Pc\OneDrive
2015-02-16 09:38 - 2014-01-13 11:03 - 07792766 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-16 09:38 - 2013-09-13 22:24 - 00450712 _____ () C:\Windows\system32\prfh0404.dat
2015-02-16 09:38 - 2013-09-13 22:24 - 00135868 _____ () C:\Windows\system32\prfc0404.dat
2015-02-16 09:38 - 2013-09-13 22:07 - 00789596 _____ () C:\Windows\system32\prfh0816.dat
2015-02-16 09:38 - 2013-09-13 22:07 - 00164166 _____ () C:\Windows\system32\prfc0816.dat
2015-02-16 09:38 - 2013-09-13 21:59 - 00798252 _____ () C:\Windows\system32\perfh013.dat
2015-02-16 09:38 - 2013-09-13 21:59 - 00162330 _____ () C:\Windows\system32\perfc013.dat
2015-02-16 09:38 - 2013-09-13 21:52 - 00794000 _____ () C:\Windows\system32\perfh010.dat
2015-02-16 09:38 - 2013-09-13 21:52 - 00156420 _____ () C:\Windows\system32\perfc010.dat
2015-02-16 09:38 - 2013-09-13 21:45 - 00802234 _____ () C:\Windows\system32\perfh00C.dat
2015-02-16 09:38 - 2013-09-13 21:45 - 00159184 _____ () C:\Windows\system32\perfc00C.dat
2015-02-16 09:38 - 2013-09-13 21:38 - 00800660 _____ () C:\Windows\system32\perfh00A.dat
2015-02-16 09:38 - 2013-09-13 21:38 - 00166550 _____ () C:\Windows\system32\perfc00A.dat
2015-02-16 09:38 - 2013-09-13 21:28 - 00542632 _____ () C:\Windows\system32\perfh008.dat
2015-02-16 09:38 - 2013-09-13 21:28 - 00089196 _____ () C:\Windows\system32\perfc008.dat
2015-02-16 09:38 - 2013-09-13 21:22 - 00765378 _____ () C:\Windows\system32\perfh007.dat
2015-02-16 09:38 - 2013-09-13 21:22 - 00159696 _____ () C:\Windows\system32\perfc007.dat
2015-02-16 09:35 - 2013-08-22 15:46 - 00054724 _____ () C:\Windows\setupact.log
2015-02-16 09:29 - 2014-05-14 23:51 - 00683106 _____ () C:\Users\Dominic-Pc\AppData\Local\BTServer.log
2015-02-16 09:27 - 2014-05-14 23:35 - 00000025 ___SH () C:\Windows\SysWOW64\ReadTag.ini
2015-02-16 09:27 - 2014-05-14 23:24 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-16 09:27 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-16 00:25 - 2014-05-14 23:51 - 00000000 ____D () C:\Users\Dominic-Pc
2015-02-15 13:17 - 2014-05-15 00:08 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Battle.net
2015-02-15 09:19 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-02-14 13:17 - 2014-12-01 22:46 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\TS3Client
2015-02-14 08:59 - 2014-05-15 00:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-02-14 08:59 - 2014-05-14 23:26 - 00172704 _____ () C:\Windows\DPINST.LOG
2015-02-14 08:30 - 2014-01-13 10:53 - 00169608 _____ () C:\Windows\PFRO.log
2015-02-14 08:30 - 2013-08-22 15:44 - 00569928 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-14 03:17 - 2014-05-15 00:05 - 00000000 ____D () C:\Program Files (x86)\Google
2015-02-14 03:17 - 2014-05-15 00:04 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Google
2015-02-14 03:07 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-02-13 01:16 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-02-12 20:33 - 2014-12-14 02:17 - 00467968 ___SH () C:\Users\Dominic-Pc\Downloads\Thumbs.db
2015-02-12 19:13 - 2014-05-15 00:11 - 00356352 ___SH () C:\Users\Dominic-Pc\Desktop\Thumbs.db
2015-02-12 13:22 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-02-12 13:22 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-02-12 05:39 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2015-02-11 16:33 - 2014-08-13 19:34 - 00077512 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwtp.sys
2015-02-11 16:33 - 2014-07-25 13:13 - 00068616 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwfp.sys
2015-02-11 16:32 - 2014-05-14 23:26 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-11 16:32 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-02-11 16:31 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-02-11 13:18 - 2014-01-13 11:30 - 00000000 ____D () C:\Program Files\CyberLink
2015-02-11 13:18 - 2014-01-13 11:29 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2015-02-11 13:18 - 2014-01-13 10:57 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-02-11 10:20 - 2014-12-01 20:45 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-11 10:18 - 2014-12-01 20:45 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-07 05:01 - 2014-05-14 23:51 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Packages
2015-02-07 03:48 - 2014-05-14 23:51 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\Adobe
2015-02-06 15:27 - 2014-05-15 00:08 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-02-03 20:31 - 2013-08-22 16:38 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-03 20:31 - 2013-08-22 16:38 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-02 16:21 - 2014-05-15 00:04 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\Deployment
2015-02-02 00:28 - 2014-05-14 23:51 - 00000000 ____D () C:\Users\Dominic-Pc\Documents\My Bluetooth
2015-02-01 12:10 - 2014-05-15 00:08 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2015-01-28 01:42 - 2014-05-14 23:51 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Local\VirtualStore
2015-01-25 22:50 - 2014-12-01 22:50 - 00000000 ____D () C:\Program Files (x86)\Overwolf
2015-01-22 17:06 - 2014-05-15 00:08 - 00000000 ____D () C:\Users\Dominic-Pc\AppData\Roaming\NVIDIA
2015-01-18 22:17 - 2014-05-15 00:11 - 00001494 _____ () C:\Users\Dominic-Pc\Desktop\Musik.lnk
2015-01-18 03:54 - 2014-01-13 11:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-01-18 03:54 - 2014-01-13 11:19 - 00000000 ____D () C:\Program Files (x86)\ASUS
==================== Files in the root of some directories =======
2014-05-14 23:51 - 2015-02-16 09:29 - 0683106 _____ () C:\Users\Dominic-Pc\AppData\Local\BTServer.log
2015-01-20 14:01 - 2015-01-20 14:01 - 0000859 _____ () C:\Users\Dominic-Pc\AppData\Local\recently-used.xbel
2015-02-14 03:04 - 2015-02-14 03:04 - 0007605 _____ () C:\Users\Dominic-Pc\AppData\Local\Resmon.ResmonCfg
2014-01-13 11:07 - 2014-01-13 11:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some content of TEMP:
====================
C:\Users\Dominic-Pc\AppData\Local\Temp\1871KrakenDevProps.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-02-15 03:54
==================== End Of Log ============================
--- --- ---
FRST Additions Logfile: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-02-2015
Ran by Dominic-Pc at 2015-02-16 19:30:13
Running from C:\Users\Dominic-Pc\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader X (10.1.3) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{C6B2127C-A9E0-411B-8EF1-2CE0ACDF265D}) (Version: 20.2.6362.11139 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 20.2.6362.11139 - Alcor Micro Corp.) Hidden
ASUS Launcher (HKLM-x32\...\{40376CD0-67E0-4190-86CA-8BD8CBAC331C}) (Version: 2.00.11 - ASUSTeK Computer Inc.)
ASUS Manager - Ai Booting (HKLM-x32\...\{2DCE446C-D090-4458-8782-8F16DF94351E}) (Version: 2.01.11 - ASUSTeK Computer Inc.)
ASUS Manager - Ai Charger II (HKLM-x32\...\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}) (Version: 2.00.09 - ASUSTeK Computer Inc.)
ASUS Manager - Lighting (HKLM-x32\...\{2711E58B-6090-4C1B-9E06-529E4D37DA77}) (Version: 2.00.05 - ASUSTeK Computer Inc.)
ASUS Manager - PC Cleanup (HKLM-x32\...\{E22A19AE-7DDB-4959-B1DB-A0996294352A}) (Version: 2.00.04 - ASUSTeK Computer Inc.)
ASUS Manager - Power Manager (HKLM-x32\...\{DD248BEE-E925-4720-A775-9A42276BB6EA}) (Version: 2.01.03 - ASUSTeK Computer Inc.)
ASUS Manager - Recovery (HKLM-x32\...\{CF4A14CB-C4CB-4241-B659-7C58517515CF}) (Version: 2.00.08 - ASUSTeK Computer Inc.)
ASUS Manager - Update (HKLM-x32\...\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}) (Version: 2.01.05 - ASUSTeK Computer Inc.)
ASUS Manager - USB Lock (HKLM-x32\...\{1931C916-6CB8-4E4D-8561-EA20C426AE19}) (Version: 2.00.10 - ASUSTeK Computer Inc.)
ASUS Manager (HKLM-x32\...\{F5E5AD85-4A90-4604-A887-464D3818D8FD}) (Version: 2.05.04 - ASUSTeK Computer Inc.)
ASUS Music Maker (HKLM-x32\...\MAGIX_{AB515018-7F9D-4047-B0C0-F26BAC30F3E1}) (Version: 18.0.4.1 - MAGIX AG)
ASUS Music Maker (Version: 18.0.4.1 - MAGIX AG) Hidden
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5424.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.5424.52 - CyberLink Corp.) Hidden
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.310 - ASUSTEK)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Built-in UPS (HKLM-x32\...\{8B4EF712-0FF8-4C2E-ADBD-3FF751AB103E}) (Version: 1.00.04 - ASUSTek Computer Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CUT 1.0 (HKLM-x32\...\{F36B0A23-97CE-4F8C-AF82-8BEAE46E3EEF}_is1) (Version: - VegasVideo.de)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Druckerdeinstallation für EPSON Universal Print Driver (HKLM\...\EPSON Universal Print Driver) (Version: - SEIKO EPSON Corporation)
eManual (HKLM-x32\...\{0C84E634-EB68-4A54-B21E-A05EC87A4CC5}) (Version: 1.00.07 - ASUSTeK Computer Inc.)
Epson Event Manager (HKLM-x32\...\{0F13C24A-FFE2-4CD0-8E0B-DC804E0A0E0B}) (Version: 3.10.0035 - Seiko Epson Corporation)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.51.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 2.20.0000 - SEIKO EPSON Corp.)
EPSON Scan PDF Extensions (HKLM-x32\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.0001 - SEIKO EPSON Corp.)
EPSON WF-2630 Series Printer Uninstall (HKLM\...\EPSON WF-2630 Series) (Version: - SEIKO EPSON Corporation)
EPSON-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.32.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM\...\{DF5200AB-5AE6-4598-846B-8ABC3AE121B1}) (Version: 3.0.2.0 - SEIKO EPSON Corporation)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free YouTube to MP3 Converter version 3.12.50.1122 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.50.1122 - DVDVideoSoft Ltd.)
Galeria de Fotografias (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}) (Version: 15.0.1.415 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.1.415 - Kaspersky Lab) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4675.1003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
MK LOL (HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\MK LOL) (Version: - )
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation)
MyEpson Portal (x32 Version: 1.1.1.0 - SEIKO EPSON CORPORATION) Hidden
NFC Express Desktops (HKLM-x32\...\{90E075A8-A820-4CFC-8543-FD52A499764A}) (Version: 2.00.02 - ASUSTeK Computer Inc.)
NVIDIA 3D Vision Controller-Treiber 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.75 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.75 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation)
NVIDIA Grafiktreiber 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.75 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 344.75 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.82.106.0 - Overwolf Ltd.)
Raccolta foto (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.19.23944 - Razer Inc.)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.769.769.092613 - REALTEK Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7035 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0224 - REALTEK Semiconductor Corp.)
SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden
Software Updater (HKLM-x32\...\{FA7EE274-7370-43B7-9A45-A39B17CCCDC5}) (Version: 4.3.3 - SEIKO EPSON CORPORATION)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM\...\{386F5740-091D-11E4-B13E-F04DA23A5C58}) (Version: 13.0.373 - Sony)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version: - Blizzard Entertainment)
YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== ATTENTION
Συλλογή φωτογραφιών (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
影像中心 (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
照片库 (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-4129379217-3164728991-1505049785-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Dominic-Pc\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Restore Points =========================
14-02-2015 13:35:36 Geplanter Prüfpunkt
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2015-01-29 00:32 - 00000002 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {13E3C914-F1EC-4411-9826-16B810B54F4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {247D7DD4-EB78-47DB-961C-3CABA34BA2EA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-02-11] (Microsoft Corporation)
Task: {3435965E-AEC2-4107-A0B4-3F4934998BD7} - System32\Tasks\ASUS\ASUS AiCharger_Desktop Execute => C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe [2013-04-03] (ASUSTek Computer Inc.)
Task: {3DF33E55-63AA-405D-B068-812441D28625} - System32\Tasks\ASUS\ASUS Manager - NFC Express Desktops - File Transfer Server => C:\Program Files (x86)\ASUS\ASUS Manager\NFC Express Desktops\DTNFCServer.exe [2013-08-19] (ASUSTeK Computer Inc.)
Task: {3F68A754-BC3A-4E90-8F38-B0EEF5043883} - System32\Tasks\ASUS\ASUS_M Lighting Execute => C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\ASUS_Manager_Lighting.exe [2013-07-22] (ASUSTeK)
Task: {41099EDF-3E3E-4A57-B305-B826AC480C34} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-14] (Google Inc.)
Task: {51B6E8AF-529E-42FC-BA4D-A0FBBAB5B4D6} - System32\Tasks\ASUS\ASUS Manager BackgroundWindow => C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe [2013-08-24] ()
Task: {51B8B49F-6416-460F-9738-CE9DD80103ED} - System32\Tasks\EPSON WF-2630 Series Update {08A9AF5B-806D-46E6-900C-8FBAE97990AA} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSMDE.EXE [2013-11-22] (SEIKO EPSON CORPORATION)
Task: {690AD00E-1D43-4B78-8F71-806B860217AD} - System32\Tasks\ASUS\ASUS AiCharger_II TrayIcon => C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe [2013-08-05] (ASUSTeK)
Task: {7169BEB4-B58D-421B-AFBB-A7A20E0A534A} - System32\Tasks\ASUS\ASUS Manager - NFC Express Desktops - NFC Checker => C:\Program Files (x86)\ASUS\ASUS Manager\NFC Express Desktops\AsNFCChecker.exe [2013-08-20] (ASUSTeK Computer Inc.)
Task: {7F53A710-C4ED-47B7-B769-7C06E6290516} - System32\Tasks\ASUS\ASUS Manager - NFC Express Desktops - NFC Controller => C:\Program Files (x86)\ASUS\ASUS Manager\NFC Express Desktops\DT_NFCExpressDesktops.exe [2013-08-29] ()
Task: {835CE856-0D06-4B2C-9195-BA0D11F10569} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Dominic-Dominic-Pc Dominic => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2014-12-11] (Microsoft Corporation)
Task: {8F807A13-0FF5-4FD0-8B8A-F4A162D985AB} - System32\Tasks\ASUS\Built-in UPS => C:\Program Files\ASUS\Built-in UPS\Built-in UPS.exe [2013-09-10] (ASUSTeK Computer Inc.)
Task: {B61EFF1A-E69C-455C-8A20-992F1685F6A0} - System32\Tasks\GoogleUpdateTaskMachineUA1cf6fc91ad76b3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-14] (Google Inc.)
Task: {D318B1E7-B14B-4EC0-8DB8-8B1B2FFAB4ED} - System32\Tasks\EPSON WF-2630 Series Update {1F22CE6E-DDF2-4FDC-AF52-FC20EA15291B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSMDE.EXE [2013-11-22] (SEIKO EPSON CORPORATION)
Task: {D8C9812C-1F44-44B2-B45A-4AF6C756AE40} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-14] (Google Inc.)
Task: {D99E04A3-2930-43DA-AB1D-97EEDE0B8974} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-01-15] (Overwolf LTD)
Task: {DC836715-67C4-43FF-8777-2FBA93379604} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4129379217-3164728991-1505049785-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {DE70D4C7-92C4-4389-B2B7-88BAB0D67576} - System32\Tasks\EPSON WF-2630 Series Update {BF613F31-FA93-4BAD-BF57-E636831391A4} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSMDE.EXE [2013-11-22] (SEIKO EPSON CORPORATION)
Task: {E5A9DD62-D917-4CCA-9512-DE9FBEAD89E9} - System32\Tasks\ASUS\Power_Manager_background => C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe [2013-09-06] (ASUSTeK)
Task: {E72AA3E3-4428-4ABA-99AB-EB91880BF977} - System32\Tasks\ASUS\ASUS Manager HotKey Service => C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe [2013-09-19] (ASUSTeK Computer Inc.)
Task: {F09D5F73-1E8F-4513-8683-4164439849C9} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe [2013-08-09] ()
Task: {F2ED8874-5E0B-4F62-8404-B04DA09BADAB} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-11-04] (Microsoft Corporation)
Task: {F930ACFE-C856-440A-B57D-2F1645B88DDC} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2013-07-10] ()
Task: C:\Windows\Tasks\EPSON WF-2630 Series Update {08A9AF5B-806D-46E6-900C-8FBAE97990AA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSMDE.EXE
Task: C:\Windows\Tasks\EPSON WF-2630 Series Update {1F22CE6E-DDF2-4FDC-AF52-FC20EA15291B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSMDE.EXE
Task: C:\Windows\Tasks\EPSON WF-2630 Series Update {BF613F31-FA93-4BAD-BF57-E636831391A4}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSMDE.EXE
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2014-05-14 23:23 - 2014-11-12 22:56 - 00118080 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-14 23:26 - 2013-09-26 19:15 - 00059392 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2014-12-11 21:52 - 2014-05-20 08:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-05-14 23:30 - 2013-08-08 19:00 - 00207160 _____ () C:\Windows\SysWOW64\AsHookDevice.exe
2014-12-09 23:22 - 2014-12-09 23:22 - 00186048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-05-14 23:29 - 2013-08-29 01:50 - 00894232 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\NFC Express Desktops\DT_NFCExpressDesktops.exe
2014-05-14 23:30 - 2013-08-09 02:33 - 01114768 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe
2015-01-21 03:06 - 2015-01-21 03:06 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-05-14 23:28 - 2013-08-28 16:24 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2015-02-16 18:01 - 2015-02-12 23:51 - 01092296 _____ () C:\Program Files (x86)\MKJogo\MK IM\Bin\khxjp.exe
2013-06-12 17:11 - 2014-09-13 08:23 - 01294336 _____ () D:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
2014-09-13 08:23 - 2015-02-04 07:28 - 02445816 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.237\deploy\LoLLauncher.exe
2015-02-12 21:50 - 2015-02-12 21:50 - 04233720 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.21\deploy\LoLPatcher.exe
2014-09-13 08:56 - 2014-09-13 08:56 - 00074752 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\LolClient.exe
2015-02-16 18:28 - 2015-01-19 12:05 - 00684840 _____ () C:\Program Files (x86)\Elex-tech\YAC\iDesk.exe
2015-02-14 03:17 - 2015-02-04 09:53 - 01450312 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libglesv2.dll
2015-02-14 03:17 - 2015-02-04 09:53 - 00205128 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libegl.dll
2015-02-14 03:17 - 2015-02-04 09:53 - 10864456 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\pdf.dll
2014-09-13 10:31 - 2015-02-13 07:41 - 32767480 _____ () D:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.77\deploy\League of Legends.exe
2014-08-30 17:12 - 2014-08-30 17:12 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\kpcengine.2.3.dll
2015-02-13 07:27 - 2015-02-16 09:29 - 00619312 _____ () C:\Users\Dominic-Pc\AppData\Local\Temp\1871KrakenDevProps.dll
2014-05-14 23:29 - 2013-06-11 20:02 - 00068096 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\NFC Express Desktops\library\ProximityDll_CPP.dll
2014-05-14 23:28 - 2015-02-16 09:29 - 00026624 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2014-05-14 23:28 - 2010-06-29 03:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2014-05-14 23:22 - 2013-08-19 20:10 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-12-11 21:55 - 2014-12-11 22:09 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2015-02-12 23:51 - 2015-02-12 23:51 - 00799232 _____ () C:\Program Files (x86)\MKJogo\MK IM\Bin\sqlite3.dll
2015-02-12 23:51 - 2015-02-12 23:51 - 01721856 _____ () C:\Program Files (x86)\MKJogo\MK IM\Bin\RLib.dll
2015-02-12 23:51 - 2015-02-12 23:51 - 01191936 _____ () C:\Program Files (x86)\MKJogo\MK IM\Bin\ACE.dll
2015-02-12 23:51 - 2015-02-12 23:51 - 00923848 _____ () C:\Program Files (x86)\MKJogo\MK IM\LOL\AddonSkin-LOL.dll
2015-02-12 23:51 - 2015-02-12 23:51 - 00108744 _____ () C:\Program Files (x86)\MKJogo\MK IM\LOL\LauncherTransit.dll
2015-02-12 21:50 - 2015-02-12 21:50 - 01618424 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.21\deploy\RiotLauncher.dll
2015-02-12 23:51 - 2015-02-12 23:51 - 00461000 _____ () C:\Program Files (x86)\MKJogo\MK IM\LOL\AirTransit.dll
2014-09-13 08:55 - 2014-09-13 08:55 - 04774248 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
2015-02-16 18:28 - 2015-01-19 12:00 - 00185656 _____ () C:\Program Files (x86)\Elex-tech\YAC\libpng.dll
2015-02-16 18:28 - 2015-01-19 12:00 - 00065696 _____ () C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll
2015-02-16 18:28 - 2015-01-19 12:05 - 00208680 _____ () C:\Program Files (x86)\Elex-tech\YAC\iddmgr.dll
2014-09-13 10:31 - 2015-02-13 07:41 - 03860472 _____ () D:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.77\deploy\RiotLauncher.dll
2015-02-12 23:51 - 2015-02-12 23:51 - 00402120 _____ () C:\Program Files (x86)\MKJogo\MK IM\LOL\GameTransit.dll
2015-02-12 23:51 - 2015-02-12 23:51 - 02564808 _____ () C:\Program Files (x86)\MKJogo\MK IM\LOL\GameData.dll
2014-09-13 10:31 - 2015-02-12 21:50 - 01712120 _____ () D:\Riot Games\League of Legends\RADS\RiotRadsIO.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Dominic-Pc\OneDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dominic-Pc\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.2.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run: => "BtServer"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKU\S-1-5-21-4129379217-3164728991-1505049785-1001\...\StartupApproved\Run: => "Overwolf"
==================== Accounts: =============================
Administrator (S-1-5-21-4129379217-3164728991-1505049785-500 - Administrator - Disabled)
Dominic-Pc (S-1-5-21-4129379217-3164728991-1505049785-1001 - Administrator - Enabled) => C:\Users\Dominic-Pc
Gast (S-1-5-21-4129379217-3164728991-1505049785-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4129379217-3164728991-1505049785-1003 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/16/2015 06:04:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LolClient.exe, Version: 0.0.0.0, Zeitstempel: 0x515663e0
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17278, Zeitstempel: 0x53eeb460
Ausnahmecode: 0x40010006
Fehleroffset: 0x00012f71
ID des fehlerhaften Prozesses: 0x39b0
Startzeit der fehlerhaften Anwendung: 0xLolClient.exe0
Pfad der fehlerhaften Anwendung: LolClient.exe1
Pfad des fehlerhaften Moduls: LolClient.exe2
Berichtskennung: LolClient.exe3
Vollständiger Name des fehlerhaften Pakets: LolClient.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LolClient.exe5
Error: (02/15/2015 07:25:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LolClient.exe, Version: 0.0.0.0, Zeitstempel: 0x515663e0
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17278, Zeitstempel: 0x53eeb460
Ausnahmecode: 0x40010006
Fehleroffset: 0x00012f71
ID des fehlerhaften Prozesses: 0x1a60
Startzeit der fehlerhaften Anwendung: 0xLolClient.exe0
Pfad der fehlerhaften Anwendung: LolClient.exe1
Pfad des fehlerhaften Moduls: LolClient.exe2
Berichtskennung: LolClient.exe3
Vollständiger Name des fehlerhaften Pakets: LolClient.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LolClient.exe5
Error: (02/15/2015 07:07:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LolClient.exe, Version: 0.0.0.0, Zeitstempel: 0x515663e0
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17278, Zeitstempel: 0x53eeb460
Ausnahmecode: 0x40010006
Fehleroffset: 0x00012f71
ID des fehlerhaften Prozesses: 0x2658
Startzeit der fehlerhaften Anwendung: 0xLolClient.exe0
Pfad der fehlerhaften Anwendung: LolClient.exe1
Pfad des fehlerhaften Moduls: LolClient.exe2
Berichtskennung: LolClient.exe3
Vollständiger Name des fehlerhaften Pakets: LolClient.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LolClient.exe5
Error: (02/15/2015 04:11:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LolClient.exe, Version: 0.0.0.0, Zeitstempel: 0x515663e0
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17278, Zeitstempel: 0x53eeb460
Ausnahmecode: 0x40010006
Fehleroffset: 0x00012f71
ID des fehlerhaften Prozesses: 0xd0c4
Startzeit der fehlerhaften Anwendung: 0xLolClient.exe0
Pfad der fehlerhaften Anwendung: LolClient.exe1
Pfad des fehlerhaften Moduls: LolClient.exe2
Berichtskennung: LolClient.exe3
Vollständiger Name des fehlerhaften Pakets: LolClient.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LolClient.exe5
Error: (02/14/2015 00:15:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LolClient.exe, Version: 0.0.0.0, Zeitstempel: 0x515663e0
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17278, Zeitstempel: 0x53eeb460
Ausnahmecode: 0x40010006
Fehleroffset: 0x00012f71
ID des fehlerhaften Prozesses: 0x705c
Startzeit der fehlerhaften Anwendung: 0xLolClient.exe0
Pfad der fehlerhaften Anwendung: LolClient.exe1
Pfad des fehlerhaften Moduls: LolClient.exe2
Berichtskennung: LolClient.exe3
Vollständiger Name des fehlerhaften Pakets: LolClient.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LolClient.exe5
Error: (02/13/2015 11:39:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 3f84
Startzeit: 01d047dd4655a3c5
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 39d4189b-b3d1-11e4-82b7-54271e5eb257
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (02/13/2015 11:09:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 4300
Startzeit: 01d047d91573027f
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 08f17801-b3cd-11e4-82b7-54271e5eb257
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (02/13/2015 10:56:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LolClient.exe, Version: 0.0.0.0, Zeitstempel: 0x515663e0
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17278, Zeitstempel: 0x53eeb460
Ausnahmecode: 0x40010006
Fehleroffset: 0x00012f71
ID des fehlerhaften Prozesses: 0x107c
Startzeit der fehlerhaften Anwendung: 0xLolClient.exe0
Pfad der fehlerhaften Anwendung: LolClient.exe1
Pfad des fehlerhaften Moduls: LolClient.exe2
Berichtskennung: LolClient.exe3
Vollständiger Name des fehlerhaften Pakets: LolClient.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LolClient.exe5
Error: (02/13/2015 10:39:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 47c4
Startzeit: 01d047d4e490f09a
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: d80e8570-b3c8-11e4-82b7-54271e5eb257
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (02/13/2015 09:39:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 3b0
Startzeit: 01d047cc82cbd116
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 7649685a-b3c0-11e4-82b7-54271e5eb257
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
System errors:
=============
Error: (02/16/2015 09:27:47 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 15.02.2015 um 23:54:36 unerwartet heruntergefahren.
Error: (02/16/2015 09:27:36 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT)
Description: 32212256841156800
Error: (02/14/2015 08:31:00 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 15.02.2015 um 16:44:30 unerwartet heruntergefahren.
Error: (02/14/2015 05:40:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/14/2015 05:40:32 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (02/14/2015 10:15:53 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/14/2015 10:15:53 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (02/13/2015 08:34:49 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (02/13/2015 04:19:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 13.02.2015 um 07:24:37 unerwartet heruntergefahren.
Error: (02/13/2015 04:19:37 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT)
Description: 32212256841155312
Microsoft Office Sessions:
=========================
Error: (02/16/2015 06:04:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LolClient.exe0.0.0.0515663e0KERNELBASE.dll6.3.9600.1727853eeb4604001000600012f7139b001d04a0a4e29dfbbD:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\LolClient.exeC:\Windows\SYSTEM32\KERNELBASE.dlle1418495-b5fd-11e4-82b9-54271e5eb256
Error: (02/15/2015 07:25:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LolClient.exe0.0.0.0515663e0KERNELBASE.dll6.3.9600.1727853eeb4604001000600012f711a6001d0494a5b835b7fD:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\LolClient.exeC:\Windows\SYSTEM32\KERNELBASE.dllf66d71a5-b53f-11e4-82b8-54271e5eb256
Error: (02/15/2015 07:07:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LolClient.exe0.0.0.0515663e0KERNELBASE.dll6.3.9600.1727853eeb4604001000600012f71265801d0494a0b1c1cabD:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\LolClient.exeC:\Windows\SYSTEM32\KERNELBASE.dll72f5ca06-b53d-11e4-82b8-54271e5eb256
Error: (02/15/2015 04:11:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LolClient.exe0.0.0.0515663e0KERNELBASE.dll6.3.9600.1727853eeb4604001000600012f71d0c401d049270d2e04bcD:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\LolClient.exeC:\Windows\SYSTEM32\KERNELBASE.dllf091f5f8-b524-11e4-82b7-54271e5eb257
Error: (02/14/2015 00:15:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LolClient.exe0.0.0.0515663e0KERNELBASE.dll6.3.9600.1727853eeb4604001000600012f71705c01d0484726bcae59D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\LolClient.exeC:\Windows\SYSTEM32\KERNELBASE.dlld55d3b4f-b43a-11e4-82b7-54271e5eb257
Error: (02/13/2015 11:39:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.206893f8401d047dd4655a3c54294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe39d4189b-b3d1-11e4-82b7-54271e5eb257microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (02/13/2015 11:09:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20689430001d047d91573027f4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe08f17801-b3cd-11e4-82b7-54271e5eb257microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (02/13/2015 10:56:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LolClient.exe0.0.0.0515663e0KERNELBASE.dll6.3.9600.1727853eeb4604001000600012f71107c01d047c04a1e7735D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.129\deploy\LolClient.exeC:\Windows\SYSTEM32\KERNELBASE.dll37f6debd-b3cb-11e4-82b7-54271e5eb257
Error: (02/13/2015 10:39:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2068947c401d047d4e490f09a4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exed80e8570-b3c8-11e4-82b7-54271e5eb257microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (02/13/2015 09:39:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.206893b001d047cc82cbd1164294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe7649685a-b3c0-11e4-82b7-54271e5eb257microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Percentage of memory in use: 29%
Total physical RAM: 12227.11 MB
Available physical RAM: 8641.5 MB
Total Pagefile: 14083.11 MB
Available Pagefile: 8389.88 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:102.42 GB) (Free:46.06 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:931.39 GB) (Free:817.91 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: B145473D)
Partition: GPT Partition Type.
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================
--- --- --- |
FRST 32-Bit | FRST 64-Bit
Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
dann auf 
und dann auf 
. 