|
Plagegeister aller Art und deren Bekämpfung: Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
05.07.2015, 22:19 | #1 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Kaspersky Internet Security meldet seit kurzer Zeit unter Objekttyp das Problem "Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen". Unter Objektname steht "not-a-virus:RemoteAdmin.Win32.FastViewer.s" Weiter steht da "Gefundenes Objekt (Datei) wurde nicht verarbeitet". Es handelt sich um die Datei C:\Windows\System32\fsvk.exe.exe Bin sehr unsicher, ob das überhaupt einen Virus darstellt, bzw. wie das Problem zu beheben ist. Zeitgleich habe ich seit wenigen Tagen Probleme mit meiner USB Maus und Tastatur und einigen anderen USB Geräten, die teilweise aussetzen, so z. Bsp seit neuestem auch die Internetverbindung über den USB W-Lan-Stick, die abbricht, aber nach dem erneuten Eingeben des Sicherheitsschlüssels wieder geht. Weiß nicht, ob das etwas mit dem vermeintlichen Virus zu tun haben könnte. Vielen Dank im Voraus. |
05.07.2015, 22:27 | #2 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Hallo und
__________________Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Lesestoff: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
05.07.2015, 23:01 | #3 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Habe leider keine älteren Log-Daten. Könnte nur mit weiteren Anti-Viren Programmen weitere Scans durchführen.
__________________Wegen des FRST Scans, hier die frst.txt: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-07-2015 Ran by Max (administrator) on MAX-PC on 05-07-2015 23:41:07 Running from C:\Users\Max\Downloads Loaded Profiles: Max & (Available Profiles: Max) Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (The Eraser Project) C:\Program Files\Eraser\Eraser.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe () C:\Program Files (x86)\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (hp) C:\Program Files (x86)\HP\HP Bluetooth Mouse Z6000\Hp Bluetooth Mouse Z6000.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamresearch.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\update.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\updrgui.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\update.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.OE.Systray.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-05-15] (Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1085512 2015-01-12] (The Eraser Project) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1174816 2015-02-25] (Intel Corporation) HKLM-x32\...\Run: [HP Bluetooth Mouse Z6000] => C:\Program Files (x86)\HP\HP Bluetooth Mouse Z6000\HP Bluetooth Mouse Z6000.exe [1728512 2013-09-18] (hp) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [730416 2015-06-16] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.OE.Systray.exe [128760 2015-05-07] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-4079794754-1071503449-825400108-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation) HKU\S-1-5-21-4079794754-1071503449-825400108-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000 HKU\S-1-5-21-4079794754-1071503449-825400108-1000\...\MountPoints2: {71ce9d46-1f21-11e5-bdb3-fcaa1423c16f} - G:\pushinst.exe HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation) HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000 HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {71ce9d46-1f21-11e5-bdb3-fcaa1423c16f} - G:\pushinst.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK-Konfigurationstool.lnk [2015-07-02] ShortcutTarget: TP-LINK-Konfigurationstool.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe () ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{23667E7C-15AF-45B1-8233-800632092227}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{E9743E18-41F1-4191-AFBA-6B1462623045}: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\4r1r0sww.default FF Homepage: https://de-de.facebook.com/ FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-02-25] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-02-25] (Intel Corporation) FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-07-01] () FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-07-01] () FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-07-01] () FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-4079794754-1071503449-825400108-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-06-05] () FF Plugin HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-06-05] () FF user.js: detected! => C:\Users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\4r1r0sww.default\user.js [2015-07-01] FF Extension: Adblock Plus - C:\Users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\4r1r0sww.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-01] FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-07-01] FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-07-01] FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-07-01] Chrome: ======= CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [827184 2015-06-16] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [450808 2015-06-16] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [450808 2015-06-16] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1188360 2015-06-16] (Avira Operations GmbH & Co. KG) R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [206584 2015-05-07] (Avira Operations GmbH & Co. KG) R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-01] (Kaspersky Lab ZAO) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1141248 2015-06-30] () R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-05-29] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2014-10-03] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [156960 2015-02-25] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [153256 2015-06-16] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132656 2015-06-16] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-06-16] (Avira Operations GmbH & Co. KG) S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-22] (AVM Berlin) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-06-16] (Avira Operations GmbH & Co. KG) R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-01] (Kaspersky Lab UK Ltd) S3 E100B; C:\Windows\System32\DRIVERS\efe5b32e.sys [192256 2009-06-10] (Intel Corporation) S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH) R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28008 2014-05-02] (Intel Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-01] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [64368 2015-07-01] (Kaspersky Lab ZAO) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [159960 2015-07-01] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [225976 2015-07-01] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [850608 2015-07-01] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [39280 2015-07-01] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [40304 2015-07-01] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [39280 2015-07-01] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-01] (Kaspersky Lab ZAO) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-07-01] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [85360 2015-07-01] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [190648 2015-07-01] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-07-05] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\drivers\TeeDriverx64.sys [129312 2014-11-10] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-06-24] (NVIDIA Corporation) S3 NVSWCFilter; C:\Windows\system32\drivers\nvswcfilter.sys [19616 2015-05-28] (Windows (R) Win 7 DDK provider) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation) R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [926824 2012-10-25] (Realtek Semiconductor Corporation ) R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [192344 2015-07-01] (IDRIX) U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-05 23:42 - 2015-07-05 23:42 - 00001136 _____ C:\Users\Public\Desktop\Avira.lnk 2015-07-05 23:41 - 2015-07-05 23:42 - 00018103 _____ C:\Users\Max\Downloads\FRST.txt 2015-07-05 23:40 - 2015-07-05 23:40 - 00000000 ____D C:\Users\Max\AppData\Roaming\Avira 2015-07-05 23:39 - 2015-07-05 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-07-05 23:39 - 2015-07-05 23:41 - 00000000 ____D C:\FRST 2015-07-05 23:39 - 2015-06-16 09:36 - 00153256 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2015-07-05 23:39 - 2015-06-16 09:36 - 00132656 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2015-07-05 23:39 - 2015-06-16 09:36 - 00044088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2015-07-05 23:39 - 2015-06-16 09:36 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys 2015-07-05 23:38 - 2015-07-05 23:41 - 00000000 ____D C:\Program Files (x86)\Avira 2015-07-05 23:38 - 2015-07-05 23:40 - 00000000 ____D C:\ProgramData\Avira 2015-07-05 23:37 - 2015-07-05 23:37 - 02112512 _____ (Farbar) C:\Users\Max\Downloads\FRST64.exe 2015-07-05 23:34 - 2015-07-05 23:37 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-07-05 23:34 - 2015-07-05 23:36 - 226530192 _____ C:\Users\Max\Downloads\avira_antivirus_de-de.exe 2015-07-05 23:33 - 2015-07-05 23:37 - 00001118 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-07-05 23:33 - 2015-07-05 23:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-07-05 23:33 - 2015-07-05 23:37 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-07-05 23:33 - 2015-07-05 23:33 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-07-05 23:33 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-07-05 23:33 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-07-05 23:33 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-07-05 22:58 - 2015-07-05 22:58 - 00050477 _____ C:\Users\Max\Downloads\Defogger.exe 2015-07-05 22:37 - 2015-07-05 22:37 - 00000000 ____D C:\Users\Max\AppData\Local\GWX 2015-07-05 11:11 - 2015-07-05 11:11 - 00000000 ____D C:\Program Files (x86)\HP 2015-07-05 11:10 - 2015-07-05 11:10 - 00000000 ____D C:\swsetup 2015-07-04 20:08 - 2015-07-04 20:08 - 00000000 ____D C:\Users\Max\AppData\Roaming\NVIDIA 2015-07-03 20:48 - 2015-07-03 20:48 - 00000000 ____D C:\Users\Max\AppData\Roaming\.mono 2015-07-03 20:48 - 2015-07-03 20:48 - 00000000 ____D C:\Users\Max\AppData\Local\Colossal Order 2015-07-03 20:48 - 2015-07-03 20:48 - 00000000 ____D C:\ProgramData\.mono 2015-07-03 20:26 - 2015-07-03 20:27 - 155834672 _____ (Apple Inc.) C:\Users\Max\Downloads\itunes6464setup.exe 2015-07-03 20:24 - 2015-07-03 20:24 - 00833900 _____ (CasaPortale.de ) C:\Users\Max\Downloads\PosteRazor-1.5.2-Win32-Installer.exe 2015-07-03 20:23 - 2015-07-03 20:23 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Max\Downloads\winamp5666_full_de-de_b3516.exe 2015-07-03 17:56 - 2015-06-17 08:03 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2015-07-03 17:44 - 2015-07-03 17:44 - 00000000 ____D C:\NVIDIA 2015-07-03 15:18 - 2015-07-03 18:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-07-03 14:26 - 2015-07-05 14:38 - 00000000 ____D C:\Users\Max\Documents\The Witcher 3 2015-07-03 14:17 - 2010-10-22 02:00 - 00480632 ____N (AVM Berlin) C:\Windows\instwcli.dex 2015-07-02 21:43 - 2015-07-03 16:09 - 00000000 ____D C:\Users\Max\AppData\Roaming\TP-LINK 2015-07-02 21:43 - 2015-07-02 21:43 - 00002175 _____ C:\Users\Public\Desktop\TP-LINK-Konfigurationstool.lnk 2015-07-02 21:43 - 2015-07-02 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK 2015-07-02 21:43 - 2015-07-02 21:43 - 00000000 ____D C:\Program Files (x86)\TP-LINK 2015-07-02 21:42 - 2012-10-25 16:20 - 00926824 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\rtl8192cu.sys 2015-07-02 21:42 - 2012-10-25 16:20 - 00926824 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\RTL8192cu.sys 2015-07-02 21:42 - 2012-10-25 16:20 - 00007540 _____ C:\Windows\system32\net8192cu.cat 2015-07-02 21:41 - 2015-07-02 21:43 - 00000000 ____D C:\ProgramData\TP-LINK 2015-07-02 21:12 - 2015-07-02 21:13 - 02058768 _____ C:\Users\Max\Downloads\winrar-x64-521d.exe 2015-07-02 16:02 - 2015-07-02 16:09 - 91931728 _____ (The GIMP Team ) C:\Users\Max\Downloads\gimp-2.8.14-setup-1.exe 2015-07-02 15:59 - 2015-07-04 16:23 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-07-02 15:59 - 2015-07-02 15:59 - 00002035 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk 2015-07-02 15:18 - 2015-07-02 15:21 - 00000000 ____D C:\Users\Max\AppData\Roaming\VeraCrypt 2015-07-02 09:27 - 2015-07-02 09:27 - 00000000 ____D C:\Users\Max\AppData\Local\Eraser 6 2015-07-02 08:04 - 2015-07-02 08:04 - 00000000 ____D C:\Users\Max\AppData\Local\Microsoft_Corporation 2015-07-02 07:42 - 2015-07-02 07:42 - 00000000 ____D C:\Users\Max\Documents\Dokumente 2015-07-01 19:00 - 2015-07-01 19:00 - 00001769 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eraser.lnk 2015-07-01 19:00 - 2015-07-01 19:00 - 00000000 ____D C:\Program Files\Eraser 2015-07-01 15:41 - 2015-07-01 15:41 - 00192344 _____ (IDRIX) C:\Windows\system32\Drivers\veracrypt.sys 2015-07-01 15:41 - 2015-07-01 15:41 - 00000857 _____ C:\Users\Max\Desktop\VeraCrypt.lnk 2015-07-01 15:41 - 2015-07-01 15:41 - 00000000 ____D C:\Program Files\VeraCrypt 2015-07-01 14:16 - 2015-07-01 15:43 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-07-01 14:15 - 2015-07-02 15:59 - 00000000 ____D C:\ProgramData\Adobe 2015-07-01 14:15 - 2015-07-02 15:59 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-07-01 14:12 - 2015-07-02 15:31 - 00000000 ____D C:\Users\Max\AppData\Local\Adobe 2015-07-01 12:06 - 2015-07-01 12:12 - 00000000 ____D C:\Users\Max\Documents\DayZ 2015-07-01 11:20 - 2015-07-01 11:20 - 00000000 ____D C:\Users\Max\Documents\Games 2015-07-01 11:12 - 2015-07-01 11:12 - 00002346 _____ C:\Users\Max\Desktop\Sicherer Zahlungsverkehr.lnk 2015-07-01 11:07 - 2015-07-05 23:36 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2015-07-01 11:07 - 2015-07-01 11:07 - 00002156 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2015-07-01 11:07 - 2015-07-01 11:07 - 00000000 ____D C:\Windows\ELAMBKUP 2015-07-01 11:07 - 2015-07-01 11:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2015-07-01 11:07 - 2015-07-01 11:07 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab 2015-07-01 11:07 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2015-07-01 08:20 - 2015-07-01 08:20 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Brother 2015-07-01 08:20 - 2015-07-01 08:20 - 00000000 ____D C:\ProgramData\Brother 2015-07-01 00:54 - 2015-07-01 00:54 - 00001217 _____ C:\Users\Max\Desktop\Uplay.lnk 2015-07-01 00:54 - 2015-07-01 00:54 - 00000000 ____D C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2015-07-01 00:04 - 2015-07-01 00:04 - 00012590 _____ C:\Users\Max\Documents\DayZcfg.odt 2015-07-01 00:03 - 2015-07-01 00:03 - 00001188 _____ C:\Users\Max\Desktop\OpenOffice 4.1.1.lnk 2015-07-01 00:03 - 2015-07-01 00:03 - 00000000 ___SD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2015-07-01 00:03 - 2015-07-01 00:03 - 00000000 ____D C:\Users\Max\AppData\Roaming\OpenOffice 2015-07-01 00:03 - 2015-07-01 00:03 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4 2015-06-30 23:53 - 2015-06-30 23:53 - 00000000 ____D C:\Users\Max\AppData\Roaming\Thunderbird 2015-06-30 23:53 - 2015-06-30 23:53 - 00000000 ____D C:\Users\Max\AppData\Local\Thunderbird 2015-06-30 23:44 - 2015-07-01 00:55 - 00000000 ____D C:\Users\Max\AppData\Local\Ubisoft Game Launcher 2015-06-30 23:42 - 2015-06-30 23:42 - 00000000 ____D C:\ProgramData\Solidshield 2015-06-30 23:41 - 2015-06-30 23:41 - 00000000 ____D C:\Users\Max\AppData\Roaming\Ubisoft 2015-06-30 23:41 - 2015-06-30 23:41 - 00000000 ____D C:\Program Files (x86)\Ubisoft 2015-06-30 23:40 - 2015-07-01 00:04 - 00000000 ____D C:\Users\Max\AppData\Roaming\Notepad++ 2015-06-30 23:40 - 2015-06-30 23:40 - 00000000 ____D C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-06-30 23:40 - 2015-06-30 23:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-06-30 23:40 - 2015-06-30 23:40 - 00000000 ____D C:\Program Files (x86)\Notepad++ 2015-06-30 23:28 - 2015-07-01 00:08 - 00000000 ____D C:\Users\Max\AppData\Local\DayZ 2015-06-30 23:27 - 2015-06-30 23:40 - 00027370 _____ C:\Windows\DirectX.log 2015-06-30 23:27 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2015-06-30 23:27 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2015-06-30 23:27 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2015-06-30 23:27 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2015-06-30 23:27 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2015-06-30 23:27 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2015-06-30 23:27 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2015-06-30 23:27 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2015-06-30 23:27 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2015-06-30 23:27 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2015-06-30 23:27 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2015-06-30 23:27 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2015-06-30 23:27 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2015-06-30 23:27 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2015-06-30 23:27 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2015-06-30 23:27 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2015-06-30 23:27 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2015-06-30 23:27 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2015-06-30 23:27 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2015-06-30 23:27 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2015-06-30 23:27 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2015-06-30 23:27 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2015-06-30 23:27 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2015-06-30 23:27 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2015-06-30 23:27 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2015-06-30 23:27 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2015-06-30 23:27 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2015-06-30 23:27 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2015-06-30 23:27 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2015-06-30 23:27 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2015-06-30 23:27 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2015-06-30 23:27 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2015-06-30 23:27 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2015-06-30 23:27 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2015-06-30 23:27 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2015-06-30 23:27 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2015-06-30 23:27 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2015-06-30 23:27 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2015-06-30 23:27 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2015-06-30 23:27 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2015-06-30 23:27 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2015-06-30 23:27 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2015-06-30 23:27 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2015-06-30 23:27 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2015-06-30 23:27 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2015-06-30 23:27 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2015-06-30 23:27 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2015-06-30 23:27 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2015-06-30 23:27 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2015-06-30 23:27 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2015-06-30 23:27 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2015-06-30 23:27 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2015-06-30 23:27 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2015-06-30 23:27 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2015-06-30 23:27 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2015-06-30 23:27 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2015-06-30 23:27 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2015-06-30 23:27 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2015-06-30 23:27 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2015-06-30 23:27 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2015-06-30 23:27 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2015-06-30 23:27 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2015-06-30 23:27 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2015-06-30 23:27 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2015-06-30 23:27 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2015-06-30 23:27 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2015-06-30 23:27 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2015-06-30 23:27 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2015-06-30 23:27 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2015-06-30 23:27 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2015-06-30 23:27 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2015-06-30 23:27 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2015-06-30 23:27 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2015-06-30 23:27 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2015-06-30 23:27 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2015-06-30 23:27 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2015-06-30 23:27 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2015-06-30 23:27 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2015-06-30 23:27 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2015-06-30 23:27 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2015-06-30 23:27 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2015-06-30 23:27 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2015-06-30 23:27 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2015-06-30 23:27 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2015-06-30 23:27 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2015-06-30 23:27 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2015-06-30 23:27 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2015-06-30 23:27 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2015-06-30 23:27 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2015-06-30 23:27 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2015-06-30 23:27 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2015-06-30 23:27 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2015-06-30 23:27 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2015-06-30 23:27 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2015-06-30 23:27 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2015-06-30 23:27 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2015-06-30 23:27 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2015-06-30 23:27 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 42729104 _____ C:\Windows\system32\nvcompiler.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 22947144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 17724600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 16145200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 15866992 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 15224784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 13263056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 12855416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 11831856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 11011216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-06-30 22:43 - 2015-06-17 11:10 - 02997544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 02599752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435330.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435330.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01060168 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00975176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-06-30 22:43 - 2015-06-17 11:10 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00155280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-06-30 22:31 - 2015-07-02 07:25 - 00000000 ____D C:\Users\Max\Desktop\Programme 2015-06-30 22:31 - 2015-06-30 22:31 - 00000791 _____ C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2015-06-30 22:28 - 2015-05-19 05:29 - 00046768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-06-30 22:28 - 2015-05-19 05:14 - 00057520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-06-30 22:02 - 2015-06-30 22:02 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-06-30 22:02 - 2015-06-30 22:02 - 00000000 ____D C:\Windows\system32\appraiser 2015-06-30 16:19 - 2015-06-30 16:19 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2015-06-30 16:19 - 2015-06-30 16:19 - 00001213 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk 2015-06-30 16:19 - 2015-06-30 16:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2015-06-30 16:13 - 2015-06-30 16:14 - 00000000 ____D C:\Windows\system32\MRT 2015-06-30 16:13 - 2015-05-27 00:04 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-06-30 16:11 - 2015-06-01 21:16 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-06-30 16:11 - 2015-06-01 20:07 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-06-30 16:11 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-06-30 16:11 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-06-30 16:11 - 2015-05-23 05:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-06-30 16:11 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-06-30 16:11 - 2015-05-23 05:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-06-30 16:11 - 2015-05-23 05:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-06-30 16:11 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-06-30 16:11 - 2015-05-23 05:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-06-30 16:11 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-06-30 16:11 - 2015-05-23 05:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-06-30 16:11 - 2015-05-23 05:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-06-30 16:11 - 2015-05-23 05:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-06-30 16:11 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-06-30 16:11 - 2015-05-23 05:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-06-30 16:11 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-06-30 16:11 - 2015-05-23 04:57 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-06-30 16:11 - 2015-05-23 04:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-06-30 16:11 - 2015-05-23 04:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-06-30 16:11 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-06-30 16:11 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-06-30 16:11 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-06-30 16:11 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-06-30 16:11 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-06-30 16:11 - 2015-05-23 04:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-06-30 16:11 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-06-30 16:11 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-06-30 16:11 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-06-30 16:11 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-06-30 16:11 - 2015-05-22 21:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-06-30 16:11 - 2015-05-22 21:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-06-30 16:11 - 2015-05-22 21:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-06-30 16:11 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-06-30 16:11 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-06-30 16:11 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-06-30 16:11 - 2015-05-22 21:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-06-30 16:11 - 2015-05-22 20:59 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-06-30 16:11 - 2015-05-22 20:53 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-06-30 16:11 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-06-30 16:11 - 2015-05-22 20:52 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-06-30 16:11 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-06-30 16:11 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-06-30 16:11 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-06-30 16:11 - 2015-05-22 20:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-06-30 16:11 - 2015-05-22 20:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-06-30 16:11 - 2015-05-22 20:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-06-30 16:11 - 2015-05-22 20:36 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-06-30 16:11 - 2015-05-22 20:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-06-30 16:11 - 2015-05-22 20:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-06-30 16:11 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-06-30 16:11 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-06-30 16:11 - 2015-05-22 20:07 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-06-30 16:11 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-06-30 16:11 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-06-30 16:11 - 2015-05-22 20:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-06-30 16:11 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-06-30 16:11 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-06-30 16:11 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-06-30 16:11 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-06-30 16:08 - 2015-07-05 10:58 - 00000000 ____D C:\Users\Max\Desktop\Spiele 2015-06-30 16:01 - 2015-05-22 20:18 - 01021440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00423424 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-06-30 16:01 - 2015-05-22 20:13 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-06-30 16:01 - 2015-05-21 15:19 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-06-30 16:01 - 2015-01-28 01:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2015-06-30 16:00 - 2015-05-25 20:24 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-06-30 16:00 - 2015-05-25 20:23 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-06-30 16:00 - 2015-05-25 20:23 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-06-30 16:00 - 2015-05-25 20:21 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 01255424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-06-30 16:00 - 2015-05-25 20:18 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-06-30 16:00 - 2015-05-25 20:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-06-30 16:00 - 2015-05-25 20:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-06-30 16:00 - 2015-05-25 20:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe 2015-06-30 16:00 - 2015-05-25 20:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-06-30 16:00 - 2015-05-25 20:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:07 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-06-30 16:00 - 2015-05-25 20:07 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-06-30 16:00 - 2015-05-25 20:04 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-06-30 16:00 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe 2015-06-30 16:00 - 2015-05-25 19:59 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-06-30 16:00 - 2015-05-25 19:59 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-06-30 16:00 - 2015-05-25 19:59 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-06-30 16:00 - 2015-05-25 19:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-06-30 16:00 - 2015-05-25 19:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-06-30 16:00 - 2015-05-25 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-06-30 16:00 - 2015-05-25 18:50 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-06-30 16:00 - 2015-05-25 18:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-06-30 16:00 - 2015-05-25 18:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 18:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 18:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 18:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-06-30 16:00 - 2015-04-29 20:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2015-06-30 16:00 - 2015-04-29 20:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2015-06-30 16:00 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2015-06-30 16:00 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2015-06-30 16:00 - 2015-04-29 20:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2015-06-30 16:00 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2015-06-30 16:00 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2015-06-30 16:00 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2015-06-30 16:00 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2015-06-30 16:00 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2015-06-30 16:00 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2015-06-30 16:00 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-06-30 15:59 - 2015-05-25 19:08 - 03206144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-06-30 15:59 - 2015-04-24 20:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2015-06-30 15:59 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2015-06-30 15:59 - 2015-04-11 05:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys 2015-06-30 15:44 - 2015-06-30 15:44 - 00000000 ____D C:\Users\Max\AppData\Local\Steam 2015-06-30 15:41 - 2015-07-03 18:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-06-30 15:41 - 2015-06-30 15:42 - 00000000 ____D C:\Users\Max\AppData\Roaming\Mozilla 2015-06-30 15:41 - 2015-06-30 15:42 - 00000000 ____D C:\Users\Max\AppData\Local\Mozilla 2015-06-30 15:41 - 2015-06-30 15:41 - 00001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-06-30 15:41 - 2015-06-30 15:41 - 00000000 ____D C:\ProgramData\Mozilla 2015-06-30 15:37 - 2015-07-05 22:36 - 00000000 ____D C:\Program Files (x86)\Steam 2015-06-30 15:37 - 2015-06-30 15:37 - 00000979 _____ C:\Users\Public\Desktop\Steam.lnk 2015-06-30 15:37 - 2015-06-30 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2015-06-30 15:33 - 2015-07-01 14:18 - 00025209 _____ C:\Windows\avmfwlanci.log 2015-06-30 15:33 - 2015-06-30 15:33 - 00000452 _____ C:\Windows\avmacc1.log 2015-06-30 15:30 - 2015-07-03 14:17 - 00035143 _____ C:\Windows\AVMInstall.Log 2015-06-30 15:29 - 2015-07-01 14:19 - 00073045 _____ C:\Windows\avmacc.log 2015-06-30 15:29 - 2015-07-01 14:19 - 00010450 _____ C:\Windows\avmsetup.log 2015-06-30 15:29 - 2015-07-01 14:19 - 00002818 _____ C:\Windows\avmadd32.log 2015-06-30 15:29 - 2015-06-30 15:29 - 00000000 ____D C:\Program Files (x86)\AVM_update 2015-06-30 14:26 - 2015-06-30 14:26 - 00000000 ____D C:\Users\Max\AVM_Driver 2015-06-30 14:25 - 2015-07-03 17:49 - 00000000 ____D C:\Users\Max\AppData\Local\NVIDIA Corporation 2015-06-30 14:25 - 2015-07-01 07:51 - 00064024 _____ C:\Users\Max\AppData\Local\GDIPFONTCACHEV1.DAT 2015-06-30 14:25 - 2015-06-30 14:25 - 00000000 ____D C:\Users\Max\AppData\Roaming\Intel Corporation 2015-06-30 14:24 - 2015-06-30 15:57 - 00000000 ____D C:\Users\Max\AppData\Local\NVIDIA 2015-06-30 14:24 - 2015-06-30 14:24 - 00000118 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2015-06-30 14:23 - 2015-07-05 23:41 - 00956813 _____ C:\Windows\WindowsUpdate.log 2015-06-30 14:23 - 2015-07-02 15:34 - 00000000 ____D C:\Users\Max\AppData\Roaming\Adobe 2015-06-30 14:23 - 2015-06-30 14:26 - 00000000 ____D C:\Users\Max 2015-06-30 14:23 - 2015-06-30 14:24 - 00001436 _____ C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-06-30 14:23 - 2015-06-30 14:24 - 00000000 ____D C:\Users\Max\AppData\Local\VirtualStore 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Vorlagen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Startmenü 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Netzwerkumgebung 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Lokale Einstellungen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Eigene Dateien 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Druckumgebung 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Documents\Eigene Musik 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Documents\Eigene Bilder 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\AppData\Local\Verlauf 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\AppData\Local\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Vorlagen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Startmenü 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Vorlagen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Startmenü 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Favoriten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Dokumente 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Dokumente und Einstellungen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 __SHD C:\Recovery 2015-06-30 14:23 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Max\AppData\Local\EmieUserList 2015-06-30 14:23 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Max\AppData\Local\EmieSiteList 2015-06-30 14:23 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Max\AppData\Local\EmieBrowserModeList 2015-06-30 14:23 - 2010-11-21 04:50 - 00000020 ___SH C:\Users\Max\ntuser.ini 2015-06-30 14:23 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-06-30 14:23 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-06-26 10:42 - 2010-11-21 05:23 - 00383786 __RSH C:\bootmgr 2015-06-26 10:41 - 2015-06-26 10:43 - 00000000 ____D C:\Windows\OemDrv 2015-06-26 10:01 - 2015-06-26 10:01 - 00001996 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk 2015-06-26 10:01 - 2015-06-26 10:01 - 00000012 _____ C:\Windows\csup.txt 2015-06-26 10:01 - 2015-06-26 10:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2015-06-26 10:00 - 2015-06-30 22:30 - 00001393 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2015-06-26 10:00 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2015-06-26 09:59 - 2015-07-03 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-06-26 09:59 - 2015-06-24 13:36 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-06-26 09:59 - 2015-06-24 13:36 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-06-26 09:59 - 2015-06-24 13:36 - 01320120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-06-26 09:59 - 2015-06-24 13:36 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-06-26 09:58 - 2015-07-05 22:36 - 00000000 ____D C:\ProgramData\NVIDIA 2015-06-26 09:58 - 2015-07-03 17:56 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2015-06-26 09:58 - 2015-06-17 08:48 - 06873232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-06-26 09:58 - 2015-06-17 08:48 - 03492168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-06-26 09:58 - 2015-06-17 08:48 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-06-26 09:58 - 2015-06-17 08:48 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-06-26 09:58 - 2015-06-17 08:48 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-06-26 09:58 - 2015-06-17 08:48 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-06-26 09:58 - 2015-06-02 16:11 - 04421614 _____ C:\Windows\system32\nvcoproc.bin 2015-06-26 09:57 - 2015-07-03 17:57 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-06-26 09:57 - 2015-07-03 17:50 - 00000000 ____D C:\ProgramData\boost_interprocess 2015-06-26 09:57 - 2015-06-26 09:59 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-06-26 09:57 - 2015-06-17 11:10 - 03395648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-06-26 09:57 - 2015-06-17 11:10 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-06-26 09:57 - 2015-06-17 11:10 - 00030966 _____ C:\Windows\system32\nvinfo.pb 2015-06-26 09:57 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435306.dll 2015-06-26 09:57 - 2015-05-28 09:04 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2015-06-26 09:57 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvir3dgenco64.dll 2015-06-26 09:57 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435306.dll 2015-06-26 09:57 - 2015-05-28 09:04 - 00452240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstusb.sys 2015-06-26 09:57 - 2015-05-28 09:04 - 00019616 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\nvswcfilter.sys 2015-06-26 09:57 - 2015-05-19 05:14 - 00061616 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-06-26 09:55 - 2015-07-05 22:38 - 00075632 _____ C:\Windows\SysWOW64\Gms.log 2015-06-26 09:55 - 2015-06-26 09:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-06-26 09:55 - 2015-06-26 09:55 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2015-06-26 09:55 - 2015-06-26 09:55 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2015-06-26 09:55 - 2015-06-26 09:55 - 00000000 ____D C:\ProgramData\Intel 2015-06-26 09:55 - 2015-06-26 09:55 - 00000000 ____D C:\Program Files\Realtek 2015-06-26 09:54 - 2015-07-05 11:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-06-26 09:54 - 2015-06-26 09:55 - 00000000 ___HD C:\Program Files (x86)\Temp 2015-06-26 09:54 - 2015-06-26 09:54 - 00000000 ____D C:\Program Files (x86)\Realtek 2015-06-26 09:54 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-06-26 09:54 - 2015-05-15 18:23 - 04464344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-06-26 09:54 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-06-26 09:54 - 2015-05-15 15:29 - 02847448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2015-06-26 09:54 - 2015-05-15 13:16 - 02048372 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-06-26 09:54 - 2015-05-11 14:01 - 01739992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-06-26 09:54 - 2015-04-13 19:14 - 00168816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-06-26 09:54 - 2015-03-11 18:04 - 02825944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2015-06-26 09:54 - 2015-03-10 18:04 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-06-26 09:54 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2015-06-26 09:54 - 2014-12-02 18:42 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-06-26 09:54 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2015-06-26 09:54 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2015-06-26 09:54 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2015-06-26 09:54 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2015-06-26 09:54 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2015-06-26 09:54 - 2014-05-22 16:24 - 00096568 _____ C:\Windows\system32\audioLibVc.dll 2015-06-26 09:54 - 2013-06-21 11:01 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll 2015-06-26 09:54 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2015-06-26 09:54 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2015-06-26 09:54 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2015-06-26 09:54 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2015-06-26 09:54 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2015-06-26 09:54 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2015-06-26 09:54 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2015-06-26 09:52 - 2015-06-26 09:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2015-06-26 09:52 - 2015-06-26 09:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default\AppData\Local\EmieUserList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default\AppData\Local\EmieSiteList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default\AppData\Local\EmieBrowserModeList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default User\AppData\Local\EmieUserList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default User\AppData\Local\EmieSiteList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default User\AppData\Local\EmieBrowserModeList 2015-06-26 09:50 - 2014-12-29 11:10 - 00001436 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-06-26 09:50 - 2014-12-29 11:10 - 00001436 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-06-26 09:50 - 2014-12-29 11:10 - 00000000 ____D C:\Users\Default\AppData\Roaming\Adobe 2015-06-26 09:50 - 2014-12-29 11:10 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Adobe 2015-06-26 09:50 - 2010-11-21 04:50 - 00000020 ___SH C:\Users\Default\ntuser.ini 2015-06-26 09:48 - 2015-06-26 10:03 - 00000000 ____D C:\Intel 2015-06-26 09:48 - 2015-06-26 09:56 - 00000000 ____D C:\Program Files\Intel 2015-06-26 09:48 - 2015-06-26 09:56 - 00000000 ____D C:\Program Files (x86)\Intel 2015-06-26 09:48 - 2015-05-29 15:49 - 00086528 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL 2015-06-26 09:48 - 2015-05-29 15:49 - 00082432 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL 2015-06-08 07:41 - 2015-05-29 15:49 - 24846712 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 24048456 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 17804608 _____ C:\Windows\system32\igd11dxva64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 17329224 _____ C:\Windows\SysWOW64\igd11dxva32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 15981056 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 10851840 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 09528320 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 09422928 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 08631888 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 07500800 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 06725162 _____ C:\Windows\system32\igdclbif.bin 2015-06-08 07:41 - 2015-05-29 15:49 - 06160424 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 04892088 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys 2015-06-08 07:41 - 2015-05-29 15:49 - 04851848 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 03584512 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 03318272 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa 2015-06-08 07:41 - 2015-05-29 15:49 - 02039296 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01540904 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01402336 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01399240 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01371136 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01196336 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01131008 _____ (Intel Corporation) C:\Windows\system32\GfxResources.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01063936 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01036392 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 01032808 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00698880 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00641530 _____ C:\Windows\system32\FilmModeDetection.wmv 2015-06-08 07:41 - 2015-05-29 15:49 - 00623616 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00460048 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2015-06-08 07:41 - 2015-05-29 15:49 - 00448104 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00424960 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00403671 _____ C:\Windows\system32\ImageStabilization.wmv 2015-06-08 07:41 - 2015-05-29 15:49 - 00392296 _____ C:\Windows\system32\igfxTray.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00385024 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00375173 _____ C:\Windows\system32\ColorImageEnhancement.wmv 2015-06-08 07:41 - 2015-05-29 15:49 - 00373760 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00355328 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00344168 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00338536 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00338024 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00313448 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00290816 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00282696 _____ (Intel Corporation) C:\Windows\system32\igd10idpp64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00279144 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00263120 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10idpp32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00256000 _____ C:\Windows\system32\igfxCPL.cpl 2015-06-08 07:41 - 2015-05-29 15:49 - 00248424 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00229888 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00220432 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00218728 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00213504 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00213192 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00192000 _____ C:\Windows\system32\igdde64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00184352 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00183296 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4222.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00179200 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00178672 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00169984 _____ (Intel Corporation) C:\Windows\system32\igdail64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00156264 _____ (Intel Corporation) C:\Windows\system32\difx64.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00153088 _____ C:\Windows\SysWOW64\igdde32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00152064 _____ (Intel Corporation) C:\Windows\SysWOW64\igdail32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00086528 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00082432 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00073728 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00060416 _____ ( ) C:\Windows\system32\igfxDHLib.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00044025 _____ C:\Windows\system32\iglhxo64.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00043494 _____ C:\Windows\system32\iglhxc64.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00043256 _____ C:\Windows\system32\iglhxg64.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00036616 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00035328 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00010752 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00004008 _____ C:\Windows\system32\iglhxs64.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00001125 _____ C:\Windows\system32\iglhxa64.vp ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-05 23:42 - 2014-12-29 08:46 - 00000000 ____D C:\ProgramData\Package Cache 2015-07-05 22:44 - 2009-07-14 06:45 - 00031344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-07-05 22:44 - 2009-07-14 06:45 - 00031344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-07-05 22:42 - 2011-04-12 09:43 - 00700146 _____ C:\Windows\system32\perfh007.dat 2015-07-05 22:42 - 2011-04-12 09:43 - 00149784 _____ C:\Windows\system32\perfc007.dat 2015-07-05 22:42 - 2009-07-14 07:13 - 01622778 _____ C:\Windows\system32\PerfStringBackup.INI 2015-07-05 22:36 - 2014-12-29 15:11 - 00026456 _____ C:\Windows\setupact.log 2015-07-05 22:36 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-07-03 18:23 - 2010-11-21 05:47 - 00005964 _____ C:\Windows\PFRO.log 2015-07-01 16:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2015-07-01 15:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2015-07-01 15:11 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2015-07-01 14:15 - 2015-05-18 22:16 - 00064368 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kldisk.sys 2015-07-01 14:15 - 2014-11-22 14:12 - 00085360 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwtp.sys 2015-07-01 14:15 - 2014-11-10 17:48 - 00190648 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys 2015-07-01 14:15 - 2014-10-10 17:02 - 00039280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klim6.sys 2015-07-01 14:15 - 2014-10-09 12:31 - 00065208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kltdi.sys 2015-07-01 14:15 - 2014-03-31 10:47 - 00478392 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys 2015-07-01 14:15 - 2013-04-12 14:34 - 00024944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klpd.sys 2015-07-01 11:32 - 2015-05-18 22:16 - 00850608 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys 2015-07-01 11:32 - 2014-11-28 18:19 - 00159960 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys 2015-07-01 11:32 - 2014-10-30 04:22 - 00040304 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys 2015-07-01 11:32 - 2014-10-22 21:13 - 00225976 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys 2015-07-01 11:32 - 2013-08-08 16:11 - 00039280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klmouflt.sys 2015-07-01 11:31 - 2013-01-14 20:10 - 00247016 _____ (Kaspersky Lab UK Ltd) C:\Windows\system32\Drivers\cm_km_w.sys 2015-07-01 07:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat 2015-07-01 07:49 - 2009-07-14 06:45 - 00294640 _____ C:\Windows\system32\FNTCACHE.DAT 2015-06-30 22:02 - 2015-04-16 11:43 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2015-06-30 22:02 - 2015-04-16 11:43 - 00000000 ___SD C:\Windows\system32\GWX 2015-06-30 22:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-06-30 19:48 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-06-30 16:15 - 2014-12-29 10:09 - 01596122 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2015-06-30 16:11 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore 2015-06-30 14:23 - 2014-12-29 08:13 - 00000000 ____D C:\Windows\Panther 2015-06-30 14:23 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default 2015-06-30 14:23 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT 2015-06-30 14:17 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-06-30 14:16 - 2014-12-29 08:16 - 00005949 _____ C:\Windows\TSSysprep.log 2015-06-30 14:16 - 2009-07-14 06:46 - 00004822 _____ C:\Windows\DtcInstall.log 2015-06-26 10:42 - 2009-07-14 07:32 - 00032768 _____ C:\Windows\system32\config\BCD-Template 2015-06-26 10:41 - 2009-07-14 06:45 - 00000000 ____D C:\Windows\Setup 2015-06-26 10:41 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe 2015-06-26 10:41 - 2009-07-14 05:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-06-26 10:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep 2015-06-26 09:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help ==================== Files in the root of some directories ======= 2015-06-26 09:55 - 2015-06-26 09:55 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Max\AppData\Local\Temp\avgnt.exe C:\Users\Max\AppData\Local\Temp\nvStInst.exe C:\Users\Max\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-03 18:54 ==================== End of log ============================ |
05.07.2015, 23:01 | #4 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Und die addition.txt: FRST Additions Logfile: [CODE]Additional FRST Logfile: Code:
ATTFilter scan result of Farbar Recovery Scan Tool (x64) Version:05-07-2015 Ran by Max at 2015-07-05 23:43:06 Running from C:\Users\Max\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-4079794754-1071503449-825400108-500 - Administrator - Disabled) Gast (S-1-5-21-4079794754-1071503449-825400108-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-4079794754-1071503449-825400108-1002 - Limited - Enabled) Max (S-1-5-21-4079794754-1071503449-825400108-1000 - Administrator - Enabled) => C:\Users\Max ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886} AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated) Anno 2070 (HKLM-x32\...\Steam App 48240) (Version: - BlueByte) Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive) Avira (HKLM-x32\...\{0696cc37-db90-4000-be99-4a173ca7c8af}) (Version: 1.1.39.17987 - Avira Operations GmbH & Co. KG) Avira (x32 Version: 1.1.39.17987 - Avira Operations GmbH & Co. KG) Hidden Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.11.579 - Avira Operations GmbH & Co. KG) Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.) DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive) Eraser 6.2.0.2962 (HKLM\...\{C6E287F1-2E47-45F0-BB51-94F815CFFB48}) (Version: 6.2.2962 - The Eraser Project) HP Bluetooth Mouse Z6000 (HKLM-x32\...\InstallShield_{CC9202D3-8CD8-4A2F-A345-69B1C577E9B7}) (Version: 1.03 - Hewlett-Packard) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.39.1003 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4222 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.26 - Intel(R) Corporation) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.361 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 15.0.2.361 - Kaspersky Lab) Hidden Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{4fd02573-5f12-4ae4-8027-c63f8e1115af}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mozilla Firefox 39.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 de)) (Version: 39.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla) Mozilla Thunderbird 38.0.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team) NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation) NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation) NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7512 - Realtek Semiconductor Corp.) SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stranded Deep (HKLM-x32\...\Steam App 313120) (Version: - Beam Team Games) The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version: - CD PROJEKT RED) TP-LINK 300Mbps Wireless USB Adapter Treiber (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK) TP-LINK-Konfigurationstool (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Uplay (HKLM-x32\...\Uplay) (Version: 7.1 - Ubisoft) VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.0f-2 - IDRIX) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) ==================== Restore Points ========================= 02-07-2015 15:52:06 Removed Adobe Acrobat Reader DC - Deutsch. 02-07-2015 15:59:20 Installed Adobe Reader XI - Deutsch. 02-07-2015 21:42:51 Installiert TP-LINK-Konfigurationstool und Treiber 02-07-2015 21:43:14 Installiert TP-LINK-Konfigurationstool 03-07-2015 14:25:50 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 03-07-2015 14:26:00 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 05-07-2015 11:10:54 Installiert HP Bluetooth Mouse Z6000 ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {676FD1AB-595A-48DD-813C-7169F00E72C2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated) Task: {8D03CCA7-F099-4B84-A098-292A06B9405B} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\SYSTEM32\OOBE\SETUPSQM.EXE [2009-07-14] (Microsoft Corporation) ==================== Loaded Modules (Whitelisted) ============== 2015-06-26 09:58 - 2015-06-17 08:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-07-02 21:43 - 2012-10-25 16:19 - 00846848 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe 2014-12-23 16:54 - 2014-12-23 16:54 - 01272616 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\kpcengine.2.3.dll 2015-06-26 09:58 - 2015-06-24 13:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-06-30 15:43 - 2015-04-16 19:40 - 00776192 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2015-06-30 15:43 - 2015-04-23 04:16 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll 2015-06-30 15:43 - 2015-04-23 04:16 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2015-06-30 15:43 - 2015-04-23 04:16 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2015-06-30 15:43 - 2015-06-04 20:56 - 02407104 _____ () C:\Program Files (x86)\Steam\video.dll 2015-06-30 15:43 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2015-06-30 15:43 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2015-06-30 15:43 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2015-06-30 15:43 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2015-06-30 15:43 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2015-06-30 15:43 - 2015-06-04 20:56 - 00703168 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2015-07-02 21:43 - 2012-10-25 16:19 - 01401344 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK-Konfigurationstool\nicLan.dll 2015-07-02 21:43 - 2012-12-04 16:22 - 00193024 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK-Konfigurationstool\DC_WFF.dll 2015-07-02 21:43 - 2012-10-25 16:19 - 00293376 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK-Konfigurationstool\WJRtl.dll 2015-06-30 15:43 - 2015-05-11 21:01 - 36302728 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2014-12-23 16:54 - 2014-12-23 16:54 - 00502056 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com\npcontentblocker.dll 2014-12-23 16:54 - 2014-12-23 16:54 - 00608040 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com\npvkplugin.dll 2014-12-23 16:54 - 2014-12-23 16:54 - 00338216 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com\nponlinebanking.dll 2015-06-30 15:43 - 2015-05-11 21:01 - 08958344 _____ () C:\Program Files (x86)\Steam\bin\pdf.dll 2015-02-25 14:15 - 2015-02-25 14:15 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-4079794754-1071503449-825400108-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Max\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg HKU\S-1-5-21-4079794754-1071503449-825400108-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Max\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: Media is not connected to internet. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{93AB3C00-2FB8-4B9A-969F-552F3D8EF5B5}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{0AA42F8D-B423-4A64-B1A1-636EC66F964A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{62BFF52C-376C-4CAC-855A-000DA8893033}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BB7C7BE2-90C0-477F-B9AD-65C2138A7139}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{F2ACB7E9-AC40-4B2C-8BC4-6E7F03576070}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{426629D7-297E-4F0C-9B0B-B892A7240BD7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{B06DB5E9-98DF-448A-94A6-E1A7121B205E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7DD2DC58-6D6A-4590-9849-BE684F5902F0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{9A33FA53-E33B-4636-B05E-43FBB37DD94E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{97AB03C6-96A5-454D-844E-6AD486334EDF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F22C7960-45E4-4EF1-962C-333C7F345350}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{13EA6A2B-2DD9-4C9B-B483-290489EA087B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{2735587B-1C71-492C-9A7A-93C393BA9E38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{F4AA3BC5-755D-48AD-B2FE-5DE4B27421B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{55A8E63E-8F72-4FA2-8DBB-30B477D928A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe FirewallRules: [{DD3D407A-8A72-4D6D-ADD4-A8834B1BDCCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe FirewallRules: [{A0D50EA6-F00E-4C29-AB65-F817F96B1E16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe FirewallRules: [{BF57A4EA-EDEC-4F09-A93D-310C05BC3CEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe FirewallRules: [TCP Query User{C9F15105-144C-40E9-A19C-84DB8F08B666}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{8BA6F53C-9C51-44E0-A33F-7A9C898A4C56}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe FirewallRules: [{FC7A792D-9F06-4666-BF2D-86F4B545892B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{4A53C130-F371-49F1-BA54-81900A8590CA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{2ADA77ED-57FF-4326-B1A2-8FDCCEFAE6B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe FirewallRules: [{E143E6F4-6401-45A4-9138-C73B49C6A155}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe FirewallRules: [{6D177637-09E1-4ADB-B00E-222A657F239F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 2\arma2.exe FirewallRules: [{82A95E62-6A54-4845-B2B4-EF05E415B94E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 2\arma2.exe FirewallRules: [{AB6D6758-5780-405F-9435-6AE0956BBE09}] => (Allow) D:\Games\steamapps\common\The Witcher 3\bin\x64\witcher3.exe FirewallRules: [{14BDAB56-23E7-4B39-AC78-86B2427E7B20}] => (Allow) D:\Games\steamapps\common\The Witcher 3\bin\x64\witcher3.exe FirewallRules: [{4C21D5C4-C175-4198-8E7B-E4EA151A9EBD}] => (Allow) D:\Games\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{DCC4F70D-4649-4EDB-92D7-EC4B85A12C00}] => (Allow) D:\Games\steamapps\common\Cities_Skylines\Cities.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/05/2015 10:36:35 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 09:19:54 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 10:57:44 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 08:11:07 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 06:24:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 04:22:57 PM) (Source: MsiInstaller) (EventID: 1024) (User: Max-PC) Description: Produkt: Adobe Reader XI (11.0.10) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011011}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127 Error: (07/04/2015 04:09:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 09:37:31 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/03/2015 06:24:10 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/03/2015 04:08:34 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (07/05/2015 10:36:17 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/05/2015 09:19:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/05/2015 10:57:34 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/05/2015 08:10:53 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/04/2015 09:02:39 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/04/2015 06:24:01 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/04/2015 04:08:52 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/04/2015 09:36:48 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/03/2015 07:13:13 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Error: (07/03/2015 06:23:57 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\Rtlihvs.dll Fehlercode: 126 Microsoft Office: ========================= Error: (07/05/2015 10:36:35 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 09:19:54 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 10:57:44 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 08:11:07 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 06:24:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 04:22:57 PM) (Source: MsiInstaller) (EventID: 1024) (User: Max-PC) Description: Adobe Reader XI (11.0.10) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011011}1625(NULL)(NULL)(NULL) Error: (07/04/2015 04:09:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 09:37:31 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/03/2015 06:24:10 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/03/2015 04:08:34 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz Percentage of memory in use: 42% Total physical RAM: 8075.46 MB Available physical RAM: 4642.33 MB Total Virtual: 16149.14 MB Available Virtual: 11967.1 MB ==================== Drives ================================ Drive c: (System) (Fixed) (Total:160 GB) (Free:84.03 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (Data) (Fixed) (Total:771.51 GB) (Free:620.93 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 08E71A8C) Partition 1: (Active) - (Size=160 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=771.5 GB) - (Type=07 NTFS) ==================== End of log ============================ --- --- --- |
06.07.2015, 07:56 | #5 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigenZitat:
Ebenfalls installiert ist bei dir Avira. Das muss runter. Denn Virenscanner wie die von Kaspersky, Avira, Avast usw verwendet man immer nur allein.
__________________ Logfiles bitte immer in CODE-Tags posten |
06.07.2015, 08:32 | #6 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Ok, Avira habe ich deinstalliert und den Malwarebytes Log unten. Beides habe ich erst installiert, nachdem du mir das erste Mal geantwortet hast, das Suchlauf Protokoll von Malwarebytes ist ebenfalls erst von diesem Zeitpunkt. Dass man solche Virenprogramme immer nur einzeln verwendet wusste ich nicht, vielen Dank auf jeden Fall für deine Hilfe. Hier der Malware Bytes Log: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Protection, 05.07.2015 23:34, SYSTEM, MAX-PC, Protection, Malware Protection, Starting, Protection, 05.07.2015 23:34, SYSTEM, MAX-PC, Protection, Malware Protection, Started, Protection, 05.07.2015 23:34, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Starting, Protection, 05.07.2015 23:34, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Started, Update, 05.07.2015 23:35, SYSTEM, MAX-PC, Manual, Remediation Database, 2015.3.9.1, 2015.7.1.2, Update, 05.07.2015 23:35, SYSTEM, MAX-PC, Manual, IP Database, 0.0.0.0, 2015.6.12.1, Update, 05.07.2015 23:35, SYSTEM, MAX-PC, Manual, Domain Database, 0.0.0.0, 2015.6.12.1, Update, 05.07.2015 23:35, SYSTEM, MAX-PC, Manual, Rootkit Database, 2015.2.25.1, 2015.7.5.3, Update, 05.07.2015 23:35, SYSTEM, MAX-PC, Manual, Malware Database, 2015.3.9.5, 2015.7.5.5, Update, 05.07.2015 23:35, SYSTEM, MAX-PC, Manual, program, 2.1.6.1022, 2.1.8.0, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Stopping, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Stopped, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malware Protection, Stopping, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malware Protection, Stopped, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malware Protection, Starting, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malware Protection, Started, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Starting, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Started, Error, 05.07.2015 23:37, SYSTEM, MAX-PC, Update, Bad md5 or size: akadomains, 11, Error, 05.07.2015 23:37, SYSTEM, MAX-PC, Update, Bad md5 or size: akaips, 11, Update, 05.07.2015 23:37, SYSTEM, MAX-PC, Manual, IP Database, 0.0.0.0, 2015.6.12.1, Update, 05.07.2015 23:37, SYSTEM, MAX-PC, Manual, Domain Database, 0.0.0.0, 2015.6.12.1, Update, 05.07.2015 23:37, SYSTEM, MAX-PC, Manual, Remediation Database, 2015.5.13.1, 2015.7.1.2, Update, 05.07.2015 23:37, SYSTEM, MAX-PC, Manual, Rootkit Database, 2015.6.2.1, 2015.7.5.3, Update, 05.07.2015 23:37, SYSTEM, MAX-PC, Manual, AKA IP Database, 0.0.0.0, 2015.6.12.1, Update, 05.07.2015 23:37, SYSTEM, MAX-PC, Manual, AKA Domain Database, 0.0.0.0, 2015.6.12.1, Update, 05.07.2015 23:37, SYSTEM, MAX-PC, Manual, Malware Database, 2015.6.3.3, 2015.7.5.5, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Refresh, Starting, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Stopping, Protection, 05.07.2015 23:37, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Stopped, Protection, 05.07.2015 23:38, SYSTEM, MAX-PC, Protection, Refresh, Success, Protection, 05.07.2015 23:38, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Starting, Protection, 05.07.2015 23:38, SYSTEM, MAX-PC, Protection, Malicious Website Protection, Started, (end) |
06.07.2015, 08:59 | #7 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Adware/Junkware/Toolbars entfernen 1. Schritt: Malwarebytes Downloade Dir bitte Malwarebytes Anti-Malware
(alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!) 2. Schritt: adwCleaner Downloade Dir bitte AdwCleaner auf deinen Desktop.
3. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
4. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ Logfiles bitte immer in CODE-Tags posten |
06.07.2015, 09:38 | #8 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Schritt 1: Malwarebyte Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 06.07.2015 Suchlaufzeit: 10:12 Protokolldatei: Malwarebytes log.txt Administrator: Ja Version: 2.1.8.1057 Malware-Datenbank: v2015.07.06.01 Rootkit-Datenbank: v2015.07.05.03 Lizenz: Testversion Malware-Schutz: Aktiviert Schutz vor bösartigen Websites: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Max Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 348757 Abgelaufene Zeit: 6 Min., 45 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v4.207 - Bericht erstellt 06/07/2015 um 10:25:47 # Aktualisiert 21/06/2015 von Xplode # Datenbank : 2015-07-05.2 [Server] # Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64) # Benutzername : Max - MAX-PC # Gestarted von : C:\Users\Max\Downloads\AdwCleaner_4.207.exe # Option : Löschen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** Datei Gelöscht : C:\Users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\4r1r0sww.default\user.js ***** [ Geplante Tasks ] ***** ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gelöscht : HKCU\Software\OCS Daten Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - fritz.box ***** [ Internetbrowser ] ***** -\\ Internet Explorer v11.0.9600.17840 -\\ Mozilla Firefox v39.0 (x86 de) ************************* AdwCleaner[R0].txt - [1080 Bytes] - [06/07/2015 10:24:11] AdwCleaner[R1].txt - [1140 Bytes] - [06/07/2015 10:25:27] AdwCleaner[S0].txt - [1015 Bytes] - [06/07/2015 10:25:47] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1074 Bytes] ########## Schritt 3: Junk Ware removal Tool JRT Logfile: Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 7.3.2 (07.06.2015:1) OS: Windows 7 Home Premium x64 Ran by Max on 06.07.2015 at 10:29:25,33 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Tasks ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 06.07.2015 at 10:32:13,16 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Schritt 4.1: FRST - frst.txt FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-07-2015 Ran by Max (administrator) on MAX-PC on 06-07-2015 10:32:44 Running from C:\Users\Max\Downloads Loaded Profiles: Max (Available Profiles: Max) Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-05-15] (Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1085512 2015-01-12] (The Eraser Project) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1174816 2015-02-25] (Intel Corporation) HKLM-x32\...\Run: [HP Bluetooth Mouse Z6000] => C:\Program Files (x86)\HP\HP Bluetooth Mouse Z6000\HP Bluetooth Mouse Z6000.exe [1728512 2013-09-18] (hp) HKU\S-1-5-21-4079794754-1071503449-825400108-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation) HKU\S-1-5-21-4079794754-1071503449-825400108-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000 HKU\S-1-5-21-4079794754-1071503449-825400108-1000\...\MountPoints2: {71ce9d46-1f21-11e5-bdb3-fcaa1423c16f} - G:\pushinst.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK-Konfigurationstool.lnk [2015-07-02] ShortcutTarget: TP-LINK-Konfigurationstool.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe () ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{23667E7C-15AF-45B1-8233-800632092227}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{E9743E18-41F1-4191-AFBA-6B1462623045}: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\4r1r0sww.default FF Homepage: https://de-de.facebook.com/ FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-02-25] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-02-25] (Intel Corporation) FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-07-01] () FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-07-01] () FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-07-01] () FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-4079794754-1071503449-825400108-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-06-05] () FF Extension: Adblock Plus - C:\Users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\4r1r0sww.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-01] FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-07-01] FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-07-01] FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-07-01] Chrome: ======= CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-01] (Kaspersky Lab ZAO) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1141248 2015-06-30] () S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation) S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-05-29] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2014-10-03] (Intel(R) Corporation) S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [156960 2015-02-25] (Intel Corporation) S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-22] (AVM Berlin) R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-01] (Kaspersky Lab UK Ltd) S3 E100B; C:\Windows\System32\DRIVERS\efe5b32e.sys [192256 2009-06-10] (Intel Corporation) S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH) R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28008 2014-05-02] (Intel Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-01] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [64368 2015-07-01] (Kaspersky Lab ZAO) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [159960 2015-07-01] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [225976 2015-07-01] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [850608 2015-07-01] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [39280 2015-07-01] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [40304 2015-07-01] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [39280 2015-07-01] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-01] (Kaspersky Lab ZAO) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-07-01] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [85360 2015-07-01] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [190648 2015-07-01] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-07-06] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\drivers\TeeDriverx64.sys [129312 2014-11-10] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-06-24] (NVIDIA Corporation) S3 NVSWCFilter; C:\Windows\system32\drivers\nvswcfilter.sys [19616 2015-05-28] (Windows (R) Win 7 DDK provider) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation) R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [926824 2012-10-25] (Realtek Semiconductor Corporation ) R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [192344 2015-07-01] (IDRIX) U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-06 10:32 - 2015-07-06 10:33 - 00013135 _____ C:\Users\Max\Downloads\FRST.txt 2015-07-06 10:32 - 2015-07-06 10:32 - 00000603 _____ C:\Users\Max\Desktop\JRT.txt 2015-07-06 10:29 - 2015-07-06 10:29 - 00000207 _____ C:\Windows\tweaking.com-regbackup-MAX-PC-Windows-7-Home-Premium-(64-bit).dat 2015-07-06 10:29 - 2015-07-06 10:29 - 00000000 ____D C:\RegBackup 2015-07-06 10:28 - 2015-07-06 10:28 - 02953817 _____ (Malwarebytes Corporation) C:\Users\Max\Downloads\JRT.exe 2015-07-06 10:27 - 2015-07-06 10:27 - 00001154 _____ C:\Users\Max\Desktop\AdwCleaner[S0].txt 2015-07-06 10:24 - 2015-07-06 10:25 - 00000000 ____D C:\AdwCleaner 2015-07-06 10:23 - 2015-07-06 10:28 - 00000000 ____D C:\Users\Max\Desktop\alt 2015-07-06 10:22 - 2015-07-06 10:22 - 00001208 _____ C:\Users\Max\Desktop\Mbam.txt 2015-07-06 10:13 - 2015-07-06 10:13 - 02244096 _____ C:\Users\Max\Downloads\AdwCleaner_4.207.exe 2015-07-05 23:39 - 2015-07-06 10:32 - 00000000 ____D C:\FRST 2015-07-05 23:38 - 2015-07-06 09:25 - 00000000 ____D C:\Program Files (x86)\Avira 2015-07-05 23:37 - 2015-07-05 23:37 - 02112512 _____ (Farbar) C:\Users\Max\Downloads\FRST64.exe 2015-07-05 23:34 - 2015-07-06 10:27 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-07-05 23:33 - 2015-07-05 23:37 - 00001118 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-07-05 23:33 - 2015-07-05 23:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-07-05 23:33 - 2015-07-05 23:37 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-07-05 23:33 - 2015-07-05 23:33 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-07-05 23:33 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-07-05 23:33 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-07-05 23:33 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-07-05 22:58 - 2015-07-05 22:58 - 00050477 _____ C:\Users\Max\Downloads\Defogger.exe 2015-07-05 22:37 - 2015-07-05 22:37 - 00000000 ____D C:\Users\Max\AppData\Local\GWX 2015-07-05 11:11 - 2015-07-05 11:11 - 00000000 ____D C:\Program Files (x86)\HP 2015-07-05 11:10 - 2015-07-05 11:10 - 00000000 ____D C:\swsetup 2015-07-04 20:08 - 2015-07-04 20:08 - 00000000 ____D C:\Users\Max\AppData\Roaming\NVIDIA 2015-07-03 20:48 - 2015-07-03 20:48 - 00000000 ____D C:\Users\Max\AppData\Roaming\.mono 2015-07-03 20:48 - 2015-07-03 20:48 - 00000000 ____D C:\Users\Max\AppData\Local\Colossal Order 2015-07-03 20:48 - 2015-07-03 20:48 - 00000000 ____D C:\ProgramData\.mono 2015-07-03 20:26 - 2015-07-03 20:27 - 155834672 _____ (Apple Inc.) C:\Users\Max\Downloads\itunes6464setup.exe 2015-07-03 20:24 - 2015-07-03 20:24 - 00833900 _____ (CasaPortale.de ) C:\Users\Max\Downloads\PosteRazor-1.5.2-Win32-Installer.exe 2015-07-03 20:23 - 2015-07-03 20:23 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Max\Downloads\winamp5666_full_de-de_b3516.exe 2015-07-03 17:56 - 2015-06-17 08:03 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2015-07-03 17:44 - 2015-07-03 17:44 - 00000000 ____D C:\NVIDIA 2015-07-03 15:18 - 2015-07-03 18:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-07-03 14:26 - 2015-07-05 14:38 - 00000000 ____D C:\Users\Max\Documents\The Witcher 3 2015-07-03 14:17 - 2010-10-22 02:00 - 00480632 ____N (AVM Berlin) C:\Windows\instwcli.dex 2015-07-02 21:43 - 2015-07-03 16:09 - 00000000 ____D C:\Users\Max\AppData\Roaming\TP-LINK 2015-07-02 21:43 - 2015-07-02 21:43 - 00002175 _____ C:\Users\Public\Desktop\TP-LINK-Konfigurationstool.lnk 2015-07-02 21:43 - 2015-07-02 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK 2015-07-02 21:43 - 2015-07-02 21:43 - 00000000 ____D C:\Program Files (x86)\TP-LINK 2015-07-02 21:42 - 2012-10-25 16:20 - 00926824 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\rtl8192cu.sys 2015-07-02 21:42 - 2012-10-25 16:20 - 00926824 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\RTL8192cu.sys 2015-07-02 21:42 - 2012-10-25 16:20 - 00007540 _____ C:\Windows\system32\net8192cu.cat 2015-07-02 21:41 - 2015-07-02 21:43 - 00000000 ____D C:\ProgramData\TP-LINK 2015-07-02 21:12 - 2015-07-02 21:13 - 02058768 _____ C:\Users\Max\Downloads\winrar-x64-521d.exe 2015-07-02 16:02 - 2015-07-02 16:09 - 91931728 _____ (The GIMP Team ) C:\Users\Max\Downloads\gimp-2.8.14-setup-1.exe 2015-07-02 15:59 - 2015-07-04 16:23 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-07-02 15:59 - 2015-07-02 15:59 - 00002035 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk 2015-07-02 15:18 - 2015-07-02 15:21 - 00000000 ____D C:\Users\Max\AppData\Roaming\VeraCrypt 2015-07-02 09:27 - 2015-07-02 09:27 - 00000000 ____D C:\Users\Max\AppData\Local\Eraser 6 2015-07-02 08:04 - 2015-07-02 08:04 - 00000000 ____D C:\Users\Max\AppData\Local\Microsoft_Corporation 2015-07-02 07:42 - 2015-07-02 07:42 - 00000000 ____D C:\Users\Max\Documents\Dokumente 2015-07-01 19:00 - 2015-07-01 19:00 - 00001769 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eraser.lnk 2015-07-01 19:00 - 2015-07-01 19:00 - 00000000 ____D C:\Program Files\Eraser 2015-07-01 15:41 - 2015-07-01 15:41 - 00192344 _____ (IDRIX) C:\Windows\system32\Drivers\veracrypt.sys 2015-07-01 15:41 - 2015-07-01 15:41 - 00000857 _____ C:\Users\Max\Desktop\VeraCrypt.lnk 2015-07-01 15:41 - 2015-07-01 15:41 - 00000000 ____D C:\Program Files\VeraCrypt 2015-07-01 14:16 - 2015-07-01 15:43 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-07-01 14:15 - 2015-07-02 15:59 - 00000000 ____D C:\ProgramData\Adobe 2015-07-01 14:15 - 2015-07-02 15:59 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-07-01 14:12 - 2015-07-02 15:31 - 00000000 ____D C:\Users\Max\AppData\Local\Adobe 2015-07-01 12:06 - 2015-07-01 12:12 - 00000000 ____D C:\Users\Max\Documents\DayZ 2015-07-01 11:20 - 2015-07-01 11:20 - 00000000 ____D C:\Users\Max\Documents\Games 2015-07-01 11:12 - 2015-07-01 11:12 - 00002346 _____ C:\Users\Max\Desktop\Sicherer Zahlungsverkehr.lnk 2015-07-01 11:07 - 2015-07-06 10:27 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2015-07-01 11:07 - 2015-07-01 11:07 - 00002156 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2015-07-01 11:07 - 2015-07-01 11:07 - 00000000 ____D C:\Windows\ELAMBKUP 2015-07-01 11:07 - 2015-07-01 11:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2015-07-01 11:07 - 2015-07-01 11:07 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab 2015-07-01 11:07 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2015-07-01 08:20 - 2015-07-01 08:20 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Brother 2015-07-01 08:20 - 2015-07-01 08:20 - 00000000 ____D C:\ProgramData\Brother 2015-07-01 00:54 - 2015-07-01 00:54 - 00001217 _____ C:\Users\Max\Desktop\Uplay.lnk 2015-07-01 00:54 - 2015-07-01 00:54 - 00000000 ____D C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2015-07-01 00:04 - 2015-07-01 00:04 - 00012590 _____ C:\Users\Max\Documents\DayZcfg.odt 2015-07-01 00:03 - 2015-07-01 00:03 - 00001188 _____ C:\Users\Max\Desktop\OpenOffice 4.1.1.lnk 2015-07-01 00:03 - 2015-07-01 00:03 - 00000000 ___SD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2015-07-01 00:03 - 2015-07-01 00:03 - 00000000 ____D C:\Users\Max\AppData\Roaming\OpenOffice 2015-07-01 00:03 - 2015-07-01 00:03 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4 2015-06-30 23:53 - 2015-06-30 23:53 - 00000000 ____D C:\Users\Max\AppData\Roaming\Thunderbird 2015-06-30 23:53 - 2015-06-30 23:53 - 00000000 ____D C:\Users\Max\AppData\Local\Thunderbird 2015-06-30 23:44 - 2015-07-01 00:55 - 00000000 ____D C:\Users\Max\AppData\Local\Ubisoft Game Launcher 2015-06-30 23:42 - 2015-06-30 23:42 - 00000000 ____D C:\ProgramData\Solidshield 2015-06-30 23:41 - 2015-06-30 23:41 - 00000000 ____D C:\Users\Max\AppData\Roaming\Ubisoft 2015-06-30 23:41 - 2015-06-30 23:41 - 00000000 ____D C:\Program Files (x86)\Ubisoft 2015-06-30 23:40 - 2015-07-01 00:04 - 00000000 ____D C:\Users\Max\AppData\Roaming\Notepad++ 2015-06-30 23:40 - 2015-06-30 23:40 - 00000000 ____D C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-06-30 23:40 - 2015-06-30 23:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-06-30 23:40 - 2015-06-30 23:40 - 00000000 ____D C:\Program Files (x86)\Notepad++ 2015-06-30 23:28 - 2015-07-01 00:08 - 00000000 ____D C:\Users\Max\AppData\Local\DayZ 2015-06-30 23:27 - 2015-06-30 23:40 - 00027370 _____ C:\Windows\DirectX.log 2015-06-30 23:27 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2015-06-30 23:27 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2015-06-30 23:27 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2015-06-30 23:27 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2015-06-30 23:27 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2015-06-30 23:27 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2015-06-30 23:27 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2015-06-30 23:27 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2015-06-30 23:27 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2015-06-30 23:27 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2015-06-30 23:27 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2015-06-30 23:27 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2015-06-30 23:27 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2015-06-30 23:27 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2015-06-30 23:27 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2015-06-30 23:27 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2015-06-30 23:27 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2015-06-30 23:27 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2015-06-30 23:27 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2015-06-30 23:27 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2015-06-30 23:27 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2015-06-30 23:27 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2015-06-30 23:27 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2015-06-30 23:27 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2015-06-30 23:27 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2015-06-30 23:27 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2015-06-30 23:27 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2015-06-30 23:27 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2015-06-30 23:27 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2015-06-30 23:27 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2015-06-30 23:27 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2015-06-30 23:27 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2015-06-30 23:27 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2015-06-30 23:27 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2015-06-30 23:27 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2015-06-30 23:27 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2015-06-30 23:27 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2015-06-30 23:27 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2015-06-30 23:27 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2015-06-30 23:27 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2015-06-30 23:27 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2015-06-30 23:27 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2015-06-30 23:27 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2015-06-30 23:27 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2015-06-30 23:27 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2015-06-30 23:27 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2015-06-30 23:27 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2015-06-30 23:27 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2015-06-30 23:27 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2015-06-30 23:27 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2015-06-30 23:27 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2015-06-30 23:27 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2015-06-30 23:27 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2015-06-30 23:27 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2015-06-30 23:27 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2015-06-30 23:27 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2015-06-30 23:27 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2015-06-30 23:27 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2015-06-30 23:27 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2015-06-30 23:27 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2015-06-30 23:27 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2015-06-30 23:27 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2015-06-30 23:27 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2015-06-30 23:27 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2015-06-30 23:27 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2015-06-30 23:27 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2015-06-30 23:27 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2015-06-30 23:27 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2015-06-30 23:27 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2015-06-30 23:27 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2015-06-30 23:27 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2015-06-30 23:27 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2015-06-30 23:27 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2015-06-30 23:27 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2015-06-30 23:27 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2015-06-30 23:27 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2015-06-30 23:27 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2015-06-30 23:27 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2015-06-30 23:27 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2015-06-30 23:27 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2015-06-30 23:27 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2015-06-30 23:27 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2015-06-30 23:27 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2015-06-30 23:27 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2015-06-30 23:27 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2015-06-30 23:27 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2015-06-30 23:27 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2015-06-30 23:27 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2015-06-30 23:27 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2015-06-30 23:27 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2015-06-30 23:27 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2015-06-30 23:27 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2015-06-30 23:27 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2015-06-30 23:27 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2015-06-30 23:27 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2015-06-30 23:27 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2015-06-30 23:27 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2015-06-30 23:27 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2015-06-30 23:27 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2015-06-30 23:27 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2015-06-30 23:27 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2015-06-30 23:27 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2015-06-30 23:27 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2015-06-30 23:27 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2015-06-30 23:27 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2015-06-30 23:27 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2015-06-30 23:27 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2015-06-30 23:27 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2015-06-30 23:27 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2015-06-30 23:27 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 42729104 _____ C:\Windows\system32\nvcompiler.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 22947144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 17724600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 16145200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 15866992 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 15224784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 13263056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 12855416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 11831856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 11011216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-06-30 22:43 - 2015-06-17 11:10 - 02997544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 02599752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435330.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435330.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01060168 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00975176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-06-30 22:43 - 2015-06-17 11:10 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00155280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-06-30 22:43 - 2015-06-17 11:10 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-06-30 22:31 - 2015-07-02 07:25 - 00000000 ____D C:\Users\Max\Desktop\Programme 2015-06-30 22:31 - 2015-06-30 22:31 - 00000791 _____ C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2015-06-30 22:28 - 2015-05-19 05:29 - 00046768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-06-30 22:28 - 2015-05-19 05:14 - 00057520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-06-30 22:02 - 2015-06-30 22:02 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-06-30 22:02 - 2015-06-30 22:02 - 00000000 ____D C:\Windows\system32\appraiser 2015-06-30 16:19 - 2015-06-30 16:19 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2015-06-30 16:19 - 2015-06-30 16:19 - 00001213 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk 2015-06-30 16:19 - 2015-06-30 16:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2015-06-30 16:13 - 2015-06-30 16:14 - 00000000 ____D C:\Windows\system32\MRT 2015-06-30 16:13 - 2015-05-27 00:04 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-06-30 16:11 - 2015-06-01 21:16 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-06-30 16:11 - 2015-06-01 20:07 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-06-30 16:11 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-06-30 16:11 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-06-30 16:11 - 2015-05-23 05:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-06-30 16:11 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-06-30 16:11 - 2015-05-23 05:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-06-30 16:11 - 2015-05-23 05:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-06-30 16:11 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-06-30 16:11 - 2015-05-23 05:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-06-30 16:11 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-06-30 16:11 - 2015-05-23 05:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-06-30 16:11 - 2015-05-23 05:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-06-30 16:11 - 2015-05-23 05:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-06-30 16:11 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-06-30 16:11 - 2015-05-23 05:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-06-30 16:11 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-06-30 16:11 - 2015-05-23 04:57 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-06-30 16:11 - 2015-05-23 04:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-06-30 16:11 - 2015-05-23 04:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-06-30 16:11 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-06-30 16:11 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-06-30 16:11 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-06-30 16:11 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-06-30 16:11 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-06-30 16:11 - 2015-05-23 04:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-06-30 16:11 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-06-30 16:11 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-06-30 16:11 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-06-30 16:11 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-06-30 16:11 - 2015-05-22 21:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-06-30 16:11 - 2015-05-22 21:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-06-30 16:11 - 2015-05-22 21:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-06-30 16:11 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-06-30 16:11 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-06-30 16:11 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-06-30 16:11 - 2015-05-22 21:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-06-30 16:11 - 2015-05-22 20:59 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-06-30 16:11 - 2015-05-22 20:53 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-06-30 16:11 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-06-30 16:11 - 2015-05-22 20:52 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-06-30 16:11 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-06-30 16:11 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-06-30 16:11 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-06-30 16:11 - 2015-05-22 20:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-06-30 16:11 - 2015-05-22 20:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-06-30 16:11 - 2015-05-22 20:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-06-30 16:11 - 2015-05-22 20:36 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-06-30 16:11 - 2015-05-22 20:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-06-30 16:11 - 2015-05-22 20:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-06-30 16:11 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-06-30 16:11 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-06-30 16:11 - 2015-05-22 20:07 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-06-30 16:11 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-06-30 16:11 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-06-30 16:11 - 2015-05-22 20:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-06-30 16:11 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-06-30 16:11 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-06-30 16:11 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-06-30 16:11 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-06-30 16:08 - 2015-07-05 10:58 - 00000000 ____D C:\Users\Max\Desktop\Spiele 2015-06-30 16:01 - 2015-05-22 20:18 - 01021440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00423424 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-06-30 16:01 - 2015-05-22 20:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-06-30 16:01 - 2015-05-22 20:13 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-06-30 16:01 - 2015-05-21 15:19 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-06-30 16:01 - 2015-01-28 01:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2015-06-30 16:00 - 2015-05-25 20:24 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-06-30 16:00 - 2015-05-25 20:23 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-06-30 16:00 - 2015-05-25 20:23 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-06-30 16:00 - 2015-05-25 20:21 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 01255424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-06-30 16:00 - 2015-05-25 20:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-06-30 16:00 - 2015-05-25 20:18 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-06-30 16:00 - 2015-05-25 20:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-06-30 16:00 - 2015-05-25 20:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-06-30 16:00 - 2015-05-25 20:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-06-30 16:00 - 2015-05-25 20:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe 2015-06-30 16:00 - 2015-05-25 20:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-06-30 16:00 - 2015-05-25 20:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 20:07 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-06-30 16:00 - 2015-05-25 20:07 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-06-30 16:00 - 2015-05-25 20:04 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-06-30 16:00 - 2015-05-25 20:01 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-06-30 16:00 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-06-30 16:00 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe 2015-06-30 16:00 - 2015-05-25 19:59 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-06-30 16:00 - 2015-05-25 19:59 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-06-30 16:00 - 2015-05-25 19:59 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-06-30 16:00 - 2015-05-25 19:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-06-30 16:00 - 2015-05-25 19:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-06-30 16:00 - 2015-05-25 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 19:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-06-30 16:00 - 2015-05-25 18:50 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-06-30 16:00 - 2015-05-25 18:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-06-30 16:00 - 2015-05-25 18:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 18:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 18:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-06-30 16:00 - 2015-05-25 18:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-06-30 16:00 - 2015-04-29 20:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2015-06-30 16:00 - 2015-04-29 20:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2015-06-30 16:00 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2015-06-30 16:00 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2015-06-30 16:00 - 2015-04-29 20:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2015-06-30 16:00 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2015-06-30 16:00 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2015-06-30 16:00 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2015-06-30 16:00 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2015-06-30 16:00 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2015-06-30 16:00 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2015-06-30 16:00 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-06-30 15:59 - 2015-05-25 19:08 - 03206144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-06-30 15:59 - 2015-04-24 20:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2015-06-30 15:59 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2015-06-30 15:59 - 2015-04-11 05:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys 2015-06-30 15:44 - 2015-06-30 15:44 - 00000000 ____D C:\Users\Max\AppData\Local\Steam 2015-06-30 15:41 - 2015-07-03 18:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-06-30 15:41 - 2015-06-30 15:42 - 00000000 ____D C:\Users\Max\AppData\Roaming\Mozilla 2015-06-30 15:41 - 2015-06-30 15:42 - 00000000 ____D C:\Users\Max\AppData\Local\Mozilla 2015-06-30 15:41 - 2015-06-30 15:41 - 00001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-06-30 15:41 - 2015-06-30 15:41 - 00000000 ____D C:\ProgramData\Mozilla 2015-06-30 15:37 - 2015-07-06 10:27 - 00000000 ____D C:\Program Files (x86)\Steam 2015-06-30 15:37 - 2015-06-30 15:37 - 00000979 _____ C:\Users\Public\Desktop\Steam.lnk 2015-06-30 15:37 - 2015-06-30 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2015-06-30 15:33 - 2015-07-01 14:18 - 00025209 _____ C:\Windows\avmfwlanci.log 2015-06-30 15:33 - 2015-06-30 15:33 - 00000452 _____ C:\Windows\avmacc1.log 2015-06-30 15:30 - 2015-07-03 14:17 - 00035143 _____ C:\Windows\AVMInstall.Log 2015-06-30 15:29 - 2015-07-01 14:19 - 00073045 _____ C:\Windows\avmacc.log 2015-06-30 15:29 - 2015-07-01 14:19 - 00010450 _____ C:\Windows\avmsetup.log 2015-06-30 15:29 - 2015-07-01 14:19 - 00002818 _____ C:\Windows\avmadd32.log 2015-06-30 15:29 - 2015-06-30 15:29 - 00000000 ____D C:\Program Files (x86)\AVM_update 2015-06-30 14:26 - 2015-06-30 14:26 - 00000000 ____D C:\Users\Max\AVM_Driver 2015-06-30 14:25 - 2015-07-03 17:49 - 00000000 ____D C:\Users\Max\AppData\Local\NVIDIA Corporation 2015-06-30 14:25 - 2015-07-01 07:51 - 00064024 _____ C:\Users\Max\AppData\Local\GDIPFONTCACHEV1.DAT 2015-06-30 14:25 - 2015-06-30 14:25 - 00000000 ____D C:\Users\Max\AppData\Roaming\Intel Corporation 2015-06-30 14:24 - 2015-06-30 15:57 - 00000000 ____D C:\Users\Max\AppData\Local\NVIDIA 2015-06-30 14:24 - 2015-06-30 14:24 - 00000118 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2015-06-30 14:23 - 2015-07-06 10:30 - 01006948 _____ C:\Windows\WindowsUpdate.log 2015-06-30 14:23 - 2015-07-02 15:34 - 00000000 ____D C:\Users\Max\AppData\Roaming\Adobe 2015-06-30 14:23 - 2015-06-30 14:26 - 00000000 ____D C:\Users\Max 2015-06-30 14:23 - 2015-06-30 14:24 - 00001436 _____ C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-06-30 14:23 - 2015-06-30 14:24 - 00000000 ____D C:\Users\Max\AppData\Local\VirtualStore 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Vorlagen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Startmenü 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Netzwerkumgebung 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Lokale Einstellungen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Eigene Dateien 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Druckumgebung 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Documents\Eigene Musik 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Documents\Eigene Bilder 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\AppData\Local\Verlauf 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\AppData\Local\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Max\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Vorlagen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Startmenü 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Vorlagen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Startmenü 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Favoriten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Dokumente 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 _SHDL C:\Dokumente und Einstellungen 2015-06-30 14:23 - 2015-06-30 14:23 - 00000000 __SHD C:\Recovery 2015-06-30 14:23 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Max\AppData\Local\EmieUserList 2015-06-30 14:23 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Max\AppData\Local\EmieSiteList 2015-06-30 14:23 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Max\AppData\Local\EmieBrowserModeList 2015-06-30 14:23 - 2010-11-21 04:50 - 00000020 ___SH C:\Users\Max\ntuser.ini 2015-06-30 14:23 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-06-30 14:23 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-06-26 10:42 - 2010-11-21 05:23 - 00383786 __RSH C:\bootmgr 2015-06-26 10:41 - 2015-06-26 10:43 - 00000000 ____D C:\Windows\OemDrv 2015-06-26 10:01 - 2015-06-26 10:01 - 00001996 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk 2015-06-26 10:01 - 2015-06-26 10:01 - 00000012 _____ C:\Windows\csup.txt 2015-06-26 10:01 - 2015-06-26 10:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2015-06-26 10:00 - 2015-06-30 22:30 - 00001393 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2015-06-26 10:00 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2015-06-26 10:00 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2015-06-26 09:59 - 2015-07-03 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-06-26 09:59 - 2015-06-24 13:36 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-06-26 09:59 - 2015-06-24 13:36 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-06-26 09:59 - 2015-06-24 13:36 - 01320120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-06-26 09:59 - 2015-06-24 13:36 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-06-26 09:58 - 2015-07-06 10:26 - 00000000 ____D C:\ProgramData\NVIDIA 2015-06-26 09:58 - 2015-07-03 17:56 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2015-06-26 09:58 - 2015-06-17 08:48 - 06873232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-06-26 09:58 - 2015-06-17 08:48 - 03492168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-06-26 09:58 - 2015-06-17 08:48 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-06-26 09:58 - 2015-06-17 08:48 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-06-26 09:58 - 2015-06-17 08:48 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-06-26 09:58 - 2015-06-17 08:48 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-06-26 09:58 - 2015-06-02 16:11 - 04421614 _____ C:\Windows\system32\nvcoproc.bin 2015-06-26 09:57 - 2015-07-03 17:57 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-06-26 09:57 - 2015-07-03 17:50 - 00000000 ____D C:\ProgramData\boost_interprocess 2015-06-26 09:57 - 2015-06-26 09:59 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-06-26 09:57 - 2015-06-17 11:10 - 03395648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-06-26 09:57 - 2015-06-17 11:10 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-06-26 09:57 - 2015-06-17 11:10 - 00030966 _____ C:\Windows\system32\nvinfo.pb 2015-06-26 09:57 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435306.dll 2015-06-26 09:57 - 2015-05-28 09:04 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2015-06-26 09:57 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvir3dgenco64.dll 2015-06-26 09:57 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435306.dll 2015-06-26 09:57 - 2015-05-28 09:04 - 00452240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstusb.sys 2015-06-26 09:57 - 2015-05-28 09:04 - 00019616 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\nvswcfilter.sys 2015-06-26 09:57 - 2015-05-19 05:14 - 00061616 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-06-26 09:55 - 2015-07-06 10:29 - 00065057 _____ C:\Windows\SysWOW64\Gms.log 2015-06-26 09:55 - 2015-06-26 09:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-06-26 09:55 - 2015-06-26 09:55 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2015-06-26 09:55 - 2015-06-26 09:55 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2015-06-26 09:55 - 2015-06-26 09:55 - 00000000 ____D C:\ProgramData\Intel 2015-06-26 09:55 - 2015-06-26 09:55 - 00000000 ____D C:\Program Files\Realtek 2015-06-26 09:54 - 2015-07-05 11:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-06-26 09:54 - 2015-06-26 09:55 - 00000000 ___HD C:\Program Files (x86)\Temp 2015-06-26 09:54 - 2015-06-26 09:54 - 00000000 ____D C:\Program Files (x86)\Realtek 2015-06-26 09:54 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-06-26 09:54 - 2015-05-15 18:23 - 04464344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-06-26 09:54 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-06-26 09:54 - 2015-05-15 15:29 - 02847448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2015-06-26 09:54 - 2015-05-15 13:16 - 02048372 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-06-26 09:54 - 2015-05-11 14:01 - 01739992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-06-26 09:54 - 2015-04-13 19:14 - 00168816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-06-26 09:54 - 2015-03-11 18:04 - 02825944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2015-06-26 09:54 - 2015-03-10 18:04 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-06-26 09:54 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2015-06-26 09:54 - 2014-12-02 18:42 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-06-26 09:54 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2015-06-26 09:54 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2015-06-26 09:54 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2015-06-26 09:54 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2015-06-26 09:54 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2015-06-26 09:54 - 2014-05-22 16:24 - 00096568 _____ C:\Windows\system32\audioLibVc.dll 2015-06-26 09:54 - 2013-06-21 11:01 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll 2015-06-26 09:54 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2015-06-26 09:54 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2015-06-26 09:54 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2015-06-26 09:54 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2015-06-26 09:54 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2015-06-26 09:54 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2015-06-26 09:54 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2015-06-26 09:54 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2015-06-26 09:52 - 2015-06-26 09:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2015-06-26 09:52 - 2015-06-26 09:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default\AppData\Local\EmieUserList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default\AppData\Local\EmieSiteList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default\AppData\Local\EmieBrowserModeList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default User\AppData\Local\EmieUserList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default User\AppData\Local\EmieSiteList 2015-06-26 09:50 - 2014-12-29 11:51 - 00000000 __SHD C:\Users\Default User\AppData\Local\EmieBrowserModeList 2015-06-26 09:50 - 2014-12-29 11:10 - 00001436 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-06-26 09:50 - 2014-12-29 11:10 - 00001436 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-06-26 09:50 - 2014-12-29 11:10 - 00000000 ____D C:\Users\Default\AppData\Roaming\Adobe 2015-06-26 09:50 - 2014-12-29 11:10 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Adobe 2015-06-26 09:50 - 2010-11-21 04:50 - 00000020 ___SH C:\Users\Default\ntuser.ini 2015-06-26 09:48 - 2015-06-26 10:03 - 00000000 ____D C:\Intel 2015-06-26 09:48 - 2015-06-26 09:56 - 00000000 ____D C:\Program Files\Intel 2015-06-26 09:48 - 2015-06-26 09:56 - 00000000 ____D C:\Program Files (x86)\Intel 2015-06-26 09:48 - 2015-05-29 15:49 - 00086528 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL 2015-06-26 09:48 - 2015-05-29 15:49 - 00082432 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL 2015-06-08 07:41 - 2015-05-29 15:49 - 24846712 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 24048456 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 17804608 _____ C:\Windows\system32\igd11dxva64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 17329224 _____ C:\Windows\SysWOW64\igd11dxva32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 15981056 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 10851840 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 09528320 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 09422928 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 08631888 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 07500800 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 06725162 _____ C:\Windows\system32\igdclbif.bin 2015-06-08 07:41 - 2015-05-29 15:49 - 06160424 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 04892088 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys 2015-06-08 07:41 - 2015-05-29 15:49 - 04851848 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 03584512 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 03318272 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa 2015-06-08 07:41 - 2015-05-29 15:49 - 02039296 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01540904 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01402336 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01399240 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01371136 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01196336 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01131008 _____ (Intel Corporation) C:\Windows\system32\GfxResources.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01063936 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 01036392 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 01032808 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00698880 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00641530 _____ C:\Windows\system32\FilmModeDetection.wmv 2015-06-08 07:41 - 2015-05-29 15:49 - 00623616 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00460048 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2015-06-08 07:41 - 2015-05-29 15:49 - 00448104 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00424960 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00403671 _____ C:\Windows\system32\ImageStabilization.wmv 2015-06-08 07:41 - 2015-05-29 15:49 - 00392296 _____ C:\Windows\system32\igfxTray.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00385024 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00375173 _____ C:\Windows\system32\ColorImageEnhancement.wmv 2015-06-08 07:41 - 2015-05-29 15:49 - 00373760 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00355328 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00344168 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00338536 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00338024 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00313448 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00290816 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00282696 _____ (Intel Corporation) C:\Windows\system32\igd10idpp64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00279144 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00263120 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10idpp32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00256000 _____ C:\Windows\system32\igfxCPL.cpl 2015-06-08 07:41 - 2015-05-29 15:49 - 00248424 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00229888 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00220432 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00218728 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00213504 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00213192 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00192000 _____ C:\Windows\system32\igdde64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00184352 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00183296 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4222.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00179200 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00178672 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00169984 _____ (Intel Corporation) C:\Windows\system32\igdail64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00156264 _____ (Intel Corporation) C:\Windows\system32\difx64.exe 2015-06-08 07:41 - 2015-05-29 15:49 - 00153088 _____ C:\Windows\SysWOW64\igdde32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00152064 _____ (Intel Corporation) C:\Windows\SysWOW64\igdail32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00086528 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00082432 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00073728 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00060416 _____ ( ) C:\Windows\system32\igfxDHLib.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00044025 _____ C:\Windows\system32\iglhxo64.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00043494 _____ C:\Windows\system32\iglhxc64.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00043256 _____ C:\Windows\system32\iglhxg64.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00036616 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00035328 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00010752 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll 2015-06-08 07:41 - 2015-05-29 15:49 - 00004008 _____ C:\Windows\system32\iglhxs64.vp 2015-06-08 07:41 - 2015-05-29 15:49 - 00001125 _____ C:\Windows\system32\iglhxa64.vp ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-06 10:32 - 2011-04-12 09:43 - 00700146 _____ C:\Windows\system32\perfh007.dat 2015-07-06 10:32 - 2011-04-12 09:43 - 00149784 _____ C:\Windows\system32\perfc007.dat 2015-07-06 10:32 - 2009-07-14 07:13 - 01622778 _____ C:\Windows\system32\PerfStringBackup.INI 2015-07-06 10:30 - 2009-07-14 06:45 - 00031344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-07-06 10:30 - 2009-07-14 06:45 - 00031344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-07-06 10:26 - 2014-12-29 15:11 - 00026960 _____ C:\Windows\setupact.log 2015-07-06 10:26 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-07-06 09:25 - 2014-12-29 08:46 - 00000000 ____D C:\ProgramData\Package Cache 2015-07-06 09:21 - 2010-11-21 05:47 - 00195450 _____ C:\Windows\PFRO.log 2015-07-01 16:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2015-07-01 15:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2015-07-01 15:11 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2015-07-01 14:15 - 2015-05-18 22:16 - 00064368 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kldisk.sys 2015-07-01 14:15 - 2014-11-22 14:12 - 00085360 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwtp.sys 2015-07-01 14:15 - 2014-11-10 17:48 - 00190648 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys 2015-07-01 14:15 - 2014-10-10 17:02 - 00039280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klim6.sys 2015-07-01 14:15 - 2014-10-09 12:31 - 00065208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kltdi.sys 2015-07-01 14:15 - 2014-03-31 10:47 - 00478392 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys 2015-07-01 14:15 - 2013-04-12 14:34 - 00024944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klpd.sys 2015-07-01 11:32 - 2015-05-18 22:16 - 00850608 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys 2015-07-01 11:32 - 2014-11-28 18:19 - 00159960 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys 2015-07-01 11:32 - 2014-10-30 04:22 - 00040304 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys 2015-07-01 11:32 - 2014-10-22 21:13 - 00225976 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys 2015-07-01 11:32 - 2013-08-08 16:11 - 00039280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klmouflt.sys 2015-07-01 11:31 - 2013-01-14 20:10 - 00247016 _____ (Kaspersky Lab UK Ltd) C:\Windows\system32\Drivers\cm_km_w.sys 2015-07-01 07:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat 2015-07-01 07:49 - 2009-07-14 06:45 - 00294640 _____ C:\Windows\system32\FNTCACHE.DAT 2015-06-30 22:02 - 2015-04-16 11:43 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2015-06-30 22:02 - 2015-04-16 11:43 - 00000000 ___SD C:\Windows\system32\GWX 2015-06-30 22:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-06-30 19:48 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-06-30 16:15 - 2014-12-29 10:09 - 01596122 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2015-06-30 16:11 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore 2015-06-30 14:23 - 2014-12-29 08:13 - 00000000 ____D C:\Windows\Panther 2015-06-30 14:23 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default 2015-06-30 14:23 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT 2015-06-30 14:17 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-06-30 14:16 - 2014-12-29 08:16 - 00005949 _____ C:\Windows\TSSysprep.log 2015-06-30 14:16 - 2009-07-14 06:46 - 00004822 _____ C:\Windows\DtcInstall.log 2015-06-26 10:42 - 2009-07-14 07:32 - 00032768 _____ C:\Windows\system32\config\BCD-Template 2015-06-26 10:41 - 2009-07-14 06:45 - 00000000 ____D C:\Windows\Setup 2015-06-26 10:41 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe 2015-06-26 10:41 - 2009-07-14 05:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-06-26 10:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep 2015-06-26 09:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help ==================== Files in the root of some directories ======= 2015-06-26 09:55 - 2015-06-26 09:55 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Max\AppData\Local\Temp\avgnt.exe C:\Users\Max\AppData\Local\Temp\nvStInst.exe C:\Users\Max\AppData\Local\Temp\Quarantine.exe C:\Users\Max\AppData\Local\Temp\sqlite3.dll C:\Users\Max\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-03 18:54 ==================== End of log ============================ |
06.07.2015, 09:39 | #9 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Schritt 4.2: FRST - addition.txt FRST Additions Logfile: [CODE]Additional FRST Logfile: Code:
ATTFilter scan result of Farbar Recovery Scan Tool (x64) Version:05-07-2015 Ran by Max at 2015-07-06 10:33:17 Running from C:\Users\Max\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-4079794754-1071503449-825400108-500 - Administrator - Disabled) Gast (S-1-5-21-4079794754-1071503449-825400108-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-4079794754-1071503449-825400108-1002 - Limited - Enabled) Max (S-1-5-21-4079794754-1071503449-825400108-1000 - Administrator - Enabled) => C:\Users\Max ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886} AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated) Anno 2070 (HKLM-x32\...\Steam App 48240) (Version: - BlueByte) Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive) Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.) DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive) Eraser 6.2.0.2962 (HKLM\...\{C6E287F1-2E47-45F0-BB51-94F815CFFB48}) (Version: 6.2.2962 - The Eraser Project) HP Bluetooth Mouse Z6000 (HKLM-x32\...\InstallShield_{CC9202D3-8CD8-4A2F-A345-69B1C577E9B7}) (Version: 1.03 - Hewlett-Packard) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.39.1003 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4222 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.26 - Intel(R) Corporation) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.361 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 15.0.2.361 - Kaspersky Lab) Hidden Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{4fd02573-5f12-4ae4-8027-c63f8e1115af}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mozilla Firefox 39.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 de)) (Version: 39.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla) Mozilla Thunderbird 38.0.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team) NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation) NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation) NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7512 - Realtek Semiconductor Corp.) SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stranded Deep (HKLM-x32\...\Steam App 313120) (Version: - Beam Team Games) The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version: - CD PROJEKT RED) TP-LINK 300Mbps Wireless USB Adapter Treiber (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK) TP-LINK-Konfigurationstool (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Uplay (HKLM-x32\...\Uplay) (Version: 7.1 - Ubisoft) VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.0f-2 - IDRIX) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation) CustomCLSID: HKU\S-1-5-21-4079794754-1071503449-825400108-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) ==================== Restore Points ========================= 02-07-2015 15:52:06 Removed Adobe Acrobat Reader DC - Deutsch. 02-07-2015 15:59:20 Installed Adobe Reader XI - Deutsch. 02-07-2015 21:42:51 Installiert TP-LINK-Konfigurationstool und Treiber 02-07-2015 21:43:14 Installiert TP-LINK-Konfigurationstool 03-07-2015 14:25:50 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 03-07-2015 14:26:00 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 05-07-2015 11:10:54 Installiert HP Bluetooth Mouse Z6000 ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {676FD1AB-595A-48DD-813C-7169F00E72C2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated) Task: {8D03CCA7-F099-4B84-A098-292A06B9405B} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\SYSTEM32\OOBE\SETUPSQM.EXE [2009-07-14] (Microsoft Corporation) ==================== Loaded Modules (Whitelisted) ============== 2015-04-15 22:13 - 2015-04-15 22:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2014-12-23 16:54 - 2014-12-23 16:54 - 01272616 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\kpcengine.2.3.dll 2015-02-25 14:15 - 2015-02-25 14:15 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2014-12-23 16:54 - 2014-12-23 16:54 - 00502056 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com\npcontentblocker.dll 2014-12-23 16:54 - 2014-12-23 16:54 - 00608040 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com\npvkplugin.dll 2014-12-23 16:54 - 2014-12-23 16:54 - 00338216 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com\nponlinebanking.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-4079794754-1071503449-825400108-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Max\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.178.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{93AB3C00-2FB8-4B9A-969F-552F3D8EF5B5}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{0AA42F8D-B423-4A64-B1A1-636EC66F964A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{62BFF52C-376C-4CAC-855A-000DA8893033}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BB7C7BE2-90C0-477F-B9AD-65C2138A7139}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{F2ACB7E9-AC40-4B2C-8BC4-6E7F03576070}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{426629D7-297E-4F0C-9B0B-B892A7240BD7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{B06DB5E9-98DF-448A-94A6-E1A7121B205E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7DD2DC58-6D6A-4590-9849-BE684F5902F0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{9A33FA53-E33B-4636-B05E-43FBB37DD94E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{97AB03C6-96A5-454D-844E-6AD486334EDF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F22C7960-45E4-4EF1-962C-333C7F345350}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{13EA6A2B-2DD9-4C9B-B483-290489EA087B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{2735587B-1C71-492C-9A7A-93C393BA9E38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{F4AA3BC5-755D-48AD-B2FE-5DE4B27421B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{55A8E63E-8F72-4FA2-8DBB-30B477D928A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe FirewallRules: [{DD3D407A-8A72-4D6D-ADD4-A8834B1BDCCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe FirewallRules: [{A0D50EA6-F00E-4C29-AB65-F817F96B1E16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe FirewallRules: [{BF57A4EA-EDEC-4F09-A93D-310C05BC3CEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe FirewallRules: [TCP Query User{C9F15105-144C-40E9-A19C-84DB8F08B666}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{8BA6F53C-9C51-44E0-A33F-7A9C898A4C56}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe FirewallRules: [{FC7A792D-9F06-4666-BF2D-86F4B545892B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{4A53C130-F371-49F1-BA54-81900A8590CA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{2ADA77ED-57FF-4326-B1A2-8FDCCEFAE6B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe FirewallRules: [{E143E6F4-6401-45A4-9138-C73B49C6A155}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe FirewallRules: [{6D177637-09E1-4ADB-B00E-222A657F239F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 2\arma2.exe FirewallRules: [{82A95E62-6A54-4845-B2B4-EF05E415B94E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 2\arma2.exe FirewallRules: [{AB6D6758-5780-405F-9435-6AE0956BBE09}] => (Allow) D:\Games\steamapps\common\The Witcher 3\bin\x64\witcher3.exe FirewallRules: [{14BDAB56-23E7-4B39-AC78-86B2427E7B20}] => (Allow) D:\Games\steamapps\common\The Witcher 3\bin\x64\witcher3.exe FirewallRules: [{4C21D5C4-C175-4198-8E7B-E4EA151A9EBD}] => (Allow) D:\Games\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{DCC4F70D-4649-4EDB-92D7-EC4B85A12C00}] => (Allow) D:\Games\steamapps\common\Cities_Skylines\Cities.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/06/2015 10:27:02 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/06/2015 09:22:29 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/06/2015 08:43:00 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 10:36:35 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 09:19:54 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 10:57:44 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 08:11:07 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 06:24:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 04:22:57 PM) (Source: MsiInstaller) (EventID: 1024) (User: Max-PC) Description: Produkt: Adobe Reader XI (11.0.10) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011011}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127 Error: (07/04/2015 04:09:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (07/06/2015 10:32:05 AM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Modules Installer" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: %%1056 Error: (07/06/2015 10:30:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts. Error: (07/06/2015 10:30:05 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (07/06/2015 10:30:05 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Intel(R) Rapid Storage Technology" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (07/06/2015 10:30:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts. Error: (07/06/2015 10:30:05 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (07/06/2015 10:30:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Software Protection" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts. Error: (07/06/2015 10:30:04 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts. Error: (07/06/2015 10:30:03 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "NVIDIA Streamer Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (07/06/2015 10:30:03 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "NVIDIA Network Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Microsoft Office: ========================= Error: (07/06/2015 10:27:02 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/06/2015 09:22:29 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/06/2015 08:43:00 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 10:36:35 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 09:19:54 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 10:57:44 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2015 08:11:07 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 06:24:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/04/2015 04:22:57 PM) (Source: MsiInstaller) (EventID: 1024) (User: Max-PC) Description: Adobe Reader XI (11.0.10) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011011}1625(NULL)(NULL)(NULL) Error: (07/04/2015 04:09:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz Percentage of memory in use: 34% Total physical RAM: 8075.46 MB Available physical RAM: 5281.91 MB Total Virtual: 16149.14 MB Available Virtual: 13502.17 MB ==================== Drives ================================ Drive c: (System) (Fixed) (Total:160 GB) (Free:84.19 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (Data) (Fixed) (Total:771.51 GB) (Free:620.93 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 08E71A8C) Partition 1: (Active) - (Size=160 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=771.5 GB) - (Type=07 NTFS) ==================== End of log ============================ --- --- --- |
06.07.2015, 10:18 | #10 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Okay, dann Kontrollscans mit ESET und SC bitte: ESET Online Scanner
Downloade Dir bitte SecurityCheck und:
__________________ Logfiles bitte immer in CODE-Tags posten |
06.07.2015, 12:28 | #11 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Eset Online Scanner: Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=b71b01dd38c0f44e9c4346bcdb156c9d # end=init # utc_time=2015-07-06 10:52:37 # local_time=2015-07-06 12:52:37 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # osver=6.1.7601 NT Service Pack 1 Update Init Update Download Update Finalize Updated modules version: 24659 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=b71b01dd38c0f44e9c4346bcdb156c9d # end=updated # utc_time=2015-07-06 10:54:52 # local_time=2015-07-06 12:54:52 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # osver=6.1.7601 NT Service Pack 1 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7777 # api_version=3.1.1 # EOSSerial=b71b01dd38c0f44e9c4346bcdb156c9d # engine=24659 # end=finished # remove_checked=true # archives_checked=false # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2015-07-06 11:23:03 # local_time=2015-07-06 01:23:03 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1031 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode_1='Kaspersky Internet Security' # compatibility_mode=1302 16777213 100 100 10568 63760613 0 0 # compatibility_mode_1='' # compatibility_mode=5893 16776573 100 94 13721 187811633 0 0 # scanned=156260 # found=4 # cleaned=4 # scan_time=1690 sh=88D1F263A38832B55FB119171CD9D99D048F7021 ft=1 fh=ff45c3d22275dac3 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\$Recycle.Bin\S-1-5-21-4079794754-1071503449-825400108-1000\$R07VK43.exe" sh=5AC1195726ABC0442543DC8DC9E49B6390BA2258 ft=1 fh=5c11ba2f943b32f6 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\$Recycle.Bin\S-1-5-21-4079794754-1071503449-825400108-1000\$R13SUVB.exe" sh=C8EE4F9DC01FA3C292C7397F5572F5844F58482C ft=1 fh=34f6137c6ce4ba72 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\$Recycle.Bin\S-1-5-21-4079794754-1071503449-825400108-1000\$RUTY55U.exe" sh=4E5E8B54DDA603D7E83F3EDE2BCDD8064D4EDF22 ft=1 fh=895bb0fee970ac49 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\Max\AppData\Local\Temp\DMR\dmr_72.exe" Code:
ATTFilter Results of screen317's Security Check version 1.004 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Kaspersky Internet Security Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Adobe Reader XI Mozilla Firefox (39.0) Mozilla Thunderbird (38.0.1) ````````Process Check: objlist.exe by Laurent```````` Kaspersky Lab Kaspersky Internet Security 15.0.2 avp.exe Kaspersky Lab Kaspersky Internet Security 15.0.2 avpui.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` |
06.07.2015, 13:31 | #12 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen FRST-Fix Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft! Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter EmptyTemp: Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
06.07.2015, 14:17 | #13 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Fixlog: Code:
ATTFilter Fix result of Farbar Recovery Scan Tool (x64) Version:05-07-2015 Ran by Max at 2015-07-06 15:14:19 Run:1 Running from C:\Users\Max\Downloads Loaded Profiles: Max (Available Profiles: Max) Boot Mode: Normal ============================================== fixlist content: ***************** EmptyTemp: ***************** EmptyTemp: => 2 GB temporary data Removed. The system needed a reboot.. ==== End of Fixlog 15:14:27 ==== |
06.07.2015, 14:18 | #14 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Sieht soweit ok aus Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) empfehle ich die Erweiterung Ghostery, diese verhindert weitgehend Usertracking bzw. das Anzeigen von Werbebannern. Info: Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
06.07.2015, 14:33 | #15 |
| Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen Ok, da freut mich. Erstmal rießen Dankeschön für deine Hilfe. Wegen der Cookies, werde den Browser so einstellen, habe aber bereits Adblock Plus. Ist das vergleichbar gut gegen Werbecookies? Ansonsten sieht wieder alles gut aus. Und Kaspersky meldet auch keine Probleme mehr. |
Themen zu Kaspersky meldet: Legales Programm, das von einem Angreifer benutzt werden kann, um den Computer oder die Benutzerdaten zu beschädigen |
anderen, benutzerdaten, beschädigen, c:\windows, computer, datei, interne, internet, internetverbindung, kaspersky, legales programm, maus, maus und tastatur, melde, meldet, neues, not-a-virus, problem, probleme, programm, security, system, system32, tastatur, usb, verbindung, windows, überhaupt |