Seiten brauchen lange zum Laden, Programme melden keine Verbindung, PC etwas langsam

darkrider78 · 06.09.2015, 07:37

Hallo,
ich habe einige Probleme mit meinem PC und würde gerne einen Befall ausschließen können.
Seit einigen Tagen laden alle Internetseiten langsam und einige Programme melden, dass sie keine Verbindung zum Internet aufbauen können, obwohl ich surfen kann.
Mein PC reagiert allgemein etwas träge und braucht für manche Sachen doch schon zu lange.
Meiner Meinung nach kann es nur ein Virus, o.ä. sein.

Mit freundlichen Grüßen

darkrider78

schrauber · 06.09.2015, 08:31

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

darkrider78 · 06.09.2015, 18:12

Hi Schrauber,
hier die Logs.

FRST.log:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:06-09-2015 01
durchgeführt von darkrider84 (Administrator) auf DARKRIDER84-PC (06-09-2015 19:09:04)
Gestartet von C:\Users\darkrider84\Desktop
Geladene Profile: darkrider84 (Verfügbare Profile: darkrider84 & MIB & Sgt Napoleon)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\Program Files (x86)\ArchiCrypt\ArchiCrypt Shredder 6\ArchiCryptInjector64.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
() C:\Program Files\BeSecure\BeSecure.exe
() C:\Program Files\BeSecure\BeSecure_updater_service.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\System32\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files\USBLogon\usblonsvc.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Users\darkrider84\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(REALiX) C:\Program Files\HWiNFO64\HWiNFO64.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDWebCam.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPictureViewer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMovieViewer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDYT.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(EJIE Technology) C:\Program Files (x86)\Clover\clover.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Farbar) C:\Users\darkrider84\Desktop\FRST64 (1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM\...\Run: [USBLogon] => C:\Program Files\USBLogon\usblondetect.exe [12288 2013-10-01] (Quadsoft)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [851072 2015-01-30] (Qualcomm Atheros)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-08-25] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1442304 2014-05-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-03-24] (Intel Corporation)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2620728 2015-07-22] (Malwarebytes Corporation)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [39175960 2015-08-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132224 2015-01-30] (Atheros Communications)
HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [ArchiCrypt Shredder 6] => [X]
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [ArchiCrypt Scheduler 6] => [X]
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [ArchiCrypt SecureDZone] => [X]
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [Rainlendar2] => C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [2611808 2014-03-16] ()
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [icq] => C:\Users\darkrider84\AppData\Roaming\ICQM\icq.exe [36705800 2015-02-26] (ICQ)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [GoogleChromeAutoLaunch_D3D3FDB76797D0380D6F53572845784B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240 2015-08-28] (Google Inc.)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53737488 2015-08-07] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicyUsers\S-1-5-21-2214554541-3394249910-989620225-1004\User: Beschränkung erkannt <======= ACHTUNG
GroupPolicyUsers\S-1-5-21-2214554541-3394249910-989620225-1003\User: Beschränkung erkannt <======= ACHTUNG
GroupPolicyUsers\S-1-5-21-2214554541-3394249910-989620225-1004\User\Scripts: Gruppenrichtline erkannt <======= ACHTUNG
GroupPolicyUsers\S-1-5-21-2214554541-3394249910-989620225-1003\User\Scripts: Gruppenrichtline erkannt <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

Tcpip\Parameters: [DhcpNameServer] 192.168.44.1 192.168.0.1
Tcpip\..\Interfaces\{AC4ECDC7-8B8C-46DE-934E-89D23EDEFBF5}: [DhcpNameServer] 192.168.44.1 192.168.0.1
Tcpip\..\Interfaces\{C80E5507-C03F-4AAF-B14D-20C8A6FD53FD}: [DhcpNameServer] 192.168.44.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper64.dll [2014-01-23] (EJIE Technology)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\new_plugin\npjp2.dll [Keine Datei]
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-03-24] ()
FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-03-24] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-03-24] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-08-16] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll Keine Datei
FF Plugin HKU\S-1-5-21-2214554541-3394249910-989620225-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\darkrider84\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Extension: Amazon-Icon - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\amazon-icon@giga.de [2015-02-28]
FF Extension: Battlefield Heroes Updater - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\battlefieldheroespatcher@ea.com [2015-02-27]
FF Extension: ColorfulTabs - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2015-07-26]
FF Extension: WOT - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-11]
FF Extension: Ghostery - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\firefox@ghostery.com.xpi [2015-03-01]
FF Extension: Download Manager (S3) - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\s3download@statusbar.xpi [2015-03-01]
FF Extension: ShareMeNot - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\sharemenot@franziroesner.com.xpi [2015-03-01]
FF Extension: Tab Preview - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{1de0de3c-0b5c-4f67-90c6-689623894991}.xpi [2015-03-01]
FF Extension: NoScript - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-03-01]
FF Extension: YouTube High Definition - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2015-03-01]
FF Extension: ReloadEvery - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2015-04-17]
FF Extension: BugMeNot Plugin - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{987311C6-B504-4aa2-90BF-60CC49808D42}.xpi [2015-03-01]
FF Extension: Download YouTube Videos as MP4 - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2015-07-04]
FF Extension: Adblock Plus - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-01]
FF Extension: BetterPrivacy - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2015-03-01]
FF Extension: Tab Mix Plus - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-03-01]
FF Extension: Amazon-Icon - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\amazon-icon@giga.de [2015-03-15]
FF Extension: Battlefield Heroes Updater - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\battlefieldheroespatcher@ea.com [2015-03-15]
FF Extension: ColorfulTabs - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2015-03-18]
FF Extension: WOT - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\firefox@ghostery.com.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\s3download@statusbar.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\sharemenot@franziroesner.com.xpi [2015-03-15]
FF Extension: Tab Preview - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{1de0de3c-0b5c-4f67-90c6-689623894991}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{987311C6-B504-4aa2-90BF-60CC49808D42}.xpi [2015-03-15]
FF Extension: Adblock Plus - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-03-15]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} [2015-08-31]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-03-06]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-03-24]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-03-24]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-03-24]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-26]
CHR Extension: (Google Docs) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-26]
CHR Extension: (Google Drive) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-26]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-02-26]
CHR Extension: (MEGA) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-08-30]
CHR Extension: (YouTube) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-26]
CHR Extension: (Chrome YouTube Downloader) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja [2015-06-28]
CHR Extension: (Battlefield Heroes) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh [2015-02-27]
CHR Extension: (Adblock Plus) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-02-26]
CHR Extension: (Add to Amazon Wish List) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced [2015-06-29]
CHR Extension: (Google Search) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-26]
CHR Extension: (Kaspersky Protection) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-03-24]
CHR Extension: (Google Sheets) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-26]
CHR Extension: (Google Docs Offline) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
CHR Extension: (Super Auto Refresh) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkhjakkgopekjlempoplnjclgedabddk [2015-02-26]
CHR Extension: (Auto HD For YouTube™) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak [2015-02-26]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Skype Click to Call) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-02-27]
CHR Extension: (Ghostery) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-02-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-26]
CHR Extension: (uMatrix) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfcmafjalglgifnmanfmnieipoejdcf [2015-02-26]
CHR Extension: (Gmail) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-26]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [ocbnpbkmjpgbdcgiflkgkpnkinifpgpj] - C:\Users\darkrider84\ChromeExtensions\ocbnpbkmjpgbdcgiflkgkpnkinifpgpj\amazon-icon-2.crx [2015-02-28]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 ArchiCrypt Sichere Loeschzonen; C:\Program Files (x86)\ArchiCrypt\ArchiCrypt Shredder 6\ArchiCryptInjector64.exe [322136 2014-11-27] (Softwareentwicklung Remus - ArchiCrypt)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [317056 2015-01-30] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert]
R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-06-23] (Kaspersky Lab ZAO)
R2 BeSecure; C:\Program Files\BeSecure\BeSecure.exe [16384 2015-04-09] () [Datei ist nicht signiert]
R2 BeSecure_updater_service; C:\Program Files\BeSecure\BeSecure_updater_service.exe [12288 2015-04-10] () [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-25] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-07-05] (EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242880 2015-07-02] (Foxit Software Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-05-06] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] ()
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [402432 2015-07-07] (Rivet Networks) [Datei ist nicht signiert]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [713016 2015-07-22] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2106832 2015-06-29] (MSI)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4048336 2015-08-13] (MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2123216 2015-07-08] (MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4177360 2015-07-07] (MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2002896 2015-07-28] (MSI)
R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2284496 2015-07-30] (MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2072528 2015-06-29] (MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [599504 2015-07-28] (MSI)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1741992 2015-07-30] (Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-02] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-09-02] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-09-01] ()
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2015-02-09] (Micro-Star INT'L CO., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
R2 USBLogonService; C:\Program Files\USBLogon\usblonsvc.exe [12288 2013-10-01] () [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19216 2015-07-07] (Intel(R) Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AcpiCtlDrv; C:\Windows\System32\DRIVERS\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2010-04-29] (Google Inc)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [83792 2015-06-17] (Asmedia Technology)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [117808 2015-06-19] (Rivet Networks, LLC.)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [74368 2015-01-30] (Qualcomm Atheros)
R3 CMfilt; C:\Windows\System32\drivers\CMfilt64.sys [23552 2014-01-27] (Creative Technology Ltd.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-06-23] (Kaspersky Lab UK Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [63064 2015-07-22] ()
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2015-07-27] (Acronis International GmbH)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30960 2014-12-04] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] ()
R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [125488 2015-03-18] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-23] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [64368 2015-06-23] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [159960 2015-06-23] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [225976 2015-06-30] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [850608 2015-06-23] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [39280 2015-06-23] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [40304 2015-06-23] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [39280 2015-06-23] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-06-23] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-23] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [85360 2015-06-23] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [190648 2015-06-23] (Kaspersky Lab ZAO)
R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 MS7926; C:\Windows\System32\DRIVERS\MS7926.SYS [608768 2014-10-06] (C-MEDIA)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 Qcamain; C:\Windows\System32\DRIVERS\Qcamain7x64.sys [2311680 2015-05-29] (Qualcomm Atheros, Inc.)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-05-27] ()
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation)
R2 tib; C:\Windows\System32\DRIVERS\tib.sys [1058632 2015-07-27] (Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [248648 2015-07-27] (Acronis International GmbH)
S1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [102664 2014-05-19] ()
S1 Uim_DEVIM; C:\Windows\System32\DRIVERS\uim_devim.sys [25992 2014-05-19] ()
S1 Uim_IM; C:\Windows\System32\DRIVERS\uim_im.sys [700296 2014-05-19] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
R3 VBAudioVMAUXVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmauxvaio64_win7.sys [41192 2015-04-17] (Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2015-04-17] (Windows (R) Win 7 DDK provider)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [116232 2015-03-16] (Oracle Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [75512 2015-08-04] (VMware, Inc.)
R2 WinDivert64; C:\Windows\system32\drivers\WinDivert64.sys [35376 2013-12-02] (Basil Projects)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2014-07-02] (SplitmediaLabs Limited)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
R3 HWiNFO32; \??\C:\Users\DARKRI~1\AppData\Local\Temp\HWiNFO64A.SYS [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP2b\WNt600x64\Sandra.sys [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-06 19:09 - 2015-09-06 19:09 - 00049627 _____ C:\Users\darkrider84\Desktop\FRST.txt
2015-09-06 19:07 - 2015-09-06 19:07 - 02190336 _____ (Farbar) C:\Users\darkrider84\Desktop\FRST64 (1).exe
2015-09-06 19:04 - 2015-09-06 19:04 - 00000000 ___RD C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-06 10:58 - 2015-09-06 11:00 - 00000000 ____D C:\Users\MIB\AppData\Local\Soccer Manager 2015
2015-09-06 10:56 - 2015-09-06 10:56 - 00000000 ___RD C:\Users\MIB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-06 10:56 - 2015-09-06 10:56 - 00000000 ____D C:\Users\MIB\AppData\Local\Ubisoft Game Launcher
2015-09-06 06:41 - 2015-09-06 07:05 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\VMware
2015-09-06 06:41 - 2015-09-06 07:04 - 00000000 ____D C:\Users\darkrider84\AppData\Local\VMware
2015-09-06 06:40 - 2015-08-14 14:03 - 00934080 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2015-09-06 06:40 - 2015-08-14 14:03 - 00391872 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2015-09-06 06:40 - 2015-08-14 14:03 - 00358080 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2015-09-06 06:40 - 2015-08-14 14:03 - 00066752 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2015-09-06 06:40 - 2015-08-14 14:03 - 00033472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys
2015-09-06 06:40 - 2015-08-14 13:43 - 00026816 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2015-09-06 06:40 - 2015-08-11 19:27 - 00057536 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2015-09-06 06:40 - 2015-08-04 01:10 - 00075512 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2015-09-06 06:40 - 2015-08-04 01:10 - 00068288 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2015-09-06 06:40 - 2015-08-04 01:10 - 00064192 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2015-09-06 06:39 - 2015-09-06 19:04 - 00000000 ____D C:\ProgramData\VMware
2015-09-06 06:39 - 2015-09-06 06:39 - 00001188 _____ C:\Users\Public\Desktop\VMware Workstation 12 Player.lnk
2015-09-06 06:39 - 2015-09-06 06:39 - 00000000 ____D C:\Program Files\Common Files\VMware
2015-09-06 06:39 - 2015-09-06 06:39 - 00000000 ____D C:\Program Files (x86)\VMware
2015-09-06 03:19 - 2015-09-06 03:19 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2015-09-06 03:13 - 2015-09-06 03:13 - 00001264 _____ C:\Users\darkrider84\Desktop\Revo Uninstaller.lnk
2015-09-06 03:13 - 2015-09-06 03:13 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-09-06 03:07 - 2015-09-06 03:07 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\dlg
2015-09-06 03:06 - 2015-09-06 19:08 - 00004208 _____ C:\Windows\System32\Tasks\Software Updater
2015-09-06 03:06 - 2015-09-06 03:06 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Freetec
2015-09-06 03:06 - 2015-09-06 03:06 - 00000000 ____D C:\Users\darkrider84\AppData\Local\DownloadGuide
2015-09-06 03:06 - 2015-09-06 03:06 - 00000000 ____D C:\Program Files (x86)\SoftwareUpdater
2015-09-06 03:00 - 2015-09-06 03:00 - 00000000 ____D C:\Program Files\BeSecure
2015-09-06 03:00 - 2013-12-02 21:01 - 00035376 _____ (Basil Projects) C:\Windows\system32\Drivers\WinDivert64.sys
2015-09-06 02:59 - 2015-09-06 02:59 - 00000000 ____D C:\Users\darkrider84\AppData\Local\StormFall
2015-09-06 02:59 - 2015-09-06 02:59 - 00000000 ____D C:\Users\darkrider84\AppData\Local\InfiniteCrisis
2015-09-06 02:36 - 2015-09-06 02:59 - 00000000 ____D C:\Program Files (x86)\ChrisPC VideoTube Downloader Pro
2015-09-06 02:36 - 2015-09-06 02:36 - 00001190 _____ C:\Users\darkrider84\Desktop\ChrisPC VideoTube Downloader Pro.lnk
2015-09-06 02:36 - 2015-09-06 02:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChrisPC VideoTube Downloader Pro
2015-09-06 02:15 - 2015-09-06 03:01 - 00000000 ____D C:\ProgramData\Freemake
2015-09-06 02:15 - 2015-09-06 03:01 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-09-06 02:15 - 2015-09-06 02:15 - 00000000 ____D C:\Program Files\WinPcap
2015-09-06 02:06 - 2015-09-06 02:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChrisPC Free VideoTube Downloader
2015-09-05 12:14 - 2015-09-05 12:14 - 00000000 ___RD C:\Users\Sgt Napoleon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-03 02:22 - 2015-09-03 02:22 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\Origin
2015-09-03 02:22 - 2015-09-03 02:22 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Origin
2015-09-02 20:32 - 2015-09-02 20:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Gas Powered Games
2015-09-02 16:30 - 2015-09-02 16:30 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Gas Powered Games
2015-09-02 04:42 - 2015-09-02 04:42 - 00000000 ____D C:\Program Files (x86)\DVD Shrink
2015-09-02 03:29 - 2015-09-02 05:00 - 00000000 ____D C:\ProgramData\DVD Shrink
2015-09-02 02:26 - 2015-09-02 02:26 - 00076152 _____ C:\Windows\system32\PnkBstrA.exe
2015-09-01 23:48 - 2015-09-04 19:32 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-09-01 23:48 - 2015-09-01 23:48 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2015-09-01 17:30 - 2015-09-01 21:13 - 00000000 ____D C:\Users\darkrider84\AppData\Local\EA Games
2015-09-01 17:11 - 2015-09-01 17:11 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Daedalic Entertainment
2015-09-01 15:50 - 2015-09-01 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-01 01:15 - 2015-08-25 16:08 - 00574072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-09-01 01:14 - 2015-08-25 20:46 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 37819184 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 16637336 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 14635792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 13661160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 12185152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 11089200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-01 01:14 - 2015-08-25 20:46 - 02940720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 02627704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435582.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01558648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435582.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01106672 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01075320 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01064752 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00945456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00944736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00512904 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00421544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00408184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00364336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-08-31 18:33 - 2015-08-31 18:34 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Foxit Software
2015-08-31 18:33 - 2015-08-31 18:33 - 00001351 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2015-08-31 18:33 - 2015-08-31 18:33 - 00000000 ____D C:\Users\Public\Foxit Software
2015-08-31 18:33 - 2015-08-31 18:33 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2015-08-31 18:29 - 2015-08-31 18:29 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PDF24
2015-08-31 18:12 - 2015-08-31 18:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
2015-08-31 18:12 - 2015-08-31 18:12 - 00000000 ____D C:\Program Files (x86)\MakeMKV
2015-08-31 16:40 - 2015-08-31 21:59 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\FreeFileSync
2015-08-31 16:39 - 2015-08-31 16:39 - 00000932 _____ C:\Users\Public\Desktop\FreeFileSync.lnk
2015-08-31 16:39 - 2015-08-31 16:39 - 00000922 _____ C:\Users\Public\Desktop\RealtimeSync.lnk
2015-08-31 16:39 - 2015-08-31 16:39 - 00000000 ____D C:\Program Files\FreeFileSync
2015-08-31 02:42 - 2015-08-31 00:00 - 00191584 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-08-31 02:42 - 2015-08-31 00:00 - 00191584 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-08-31 02:36 - 2015-08-31 02:43 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Daedalic Entertainment
2015-08-31 02:32 - 2015-08-31 02:43 - 00000000 ____D C:\Users\Sgt Napoleon\.oracle_jre_usage
2015-08-31 02:32 - 2015-08-31 02:32 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\Sun
2015-08-31 00:01 - 2015-08-31 00:00 - 00274016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-08-31 00:00 - 2015-08-31 00:01 - 00000000 ____D C:\Users\darkrider84\.oracle_jre_usage
2015-08-31 00:00 - 2015-08-31 00:00 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Sun
2015-08-30 20:13 - 2015-08-30 20:13 - 00000124 _____ C:\Users\Public\Desktop\WATCH_DOGS.url
2015-08-30 19:35 - 2015-08-30 19:35 - 00000000 ____D C:\Program Files\Ubisoft
2015-08-30 19:33 - 2015-08-30 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\New Technology Studio
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Local\New Technology Studio
2015-08-22 22:02 - 2015-08-22 22:02 - 00000048 _____ C:\Windows\5F1EFF43B629F8D5.log
2015-08-22 20:48 - 2015-08-22 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LCPD First Response
2015-08-22 20:45 - 2015-08-22 20:45 - 00001338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2015-08-22 19:27 - 2015-09-01 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-22 17:34 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-08-22 17:34 - 2015-08-11 06:52 - 00050472 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-08-22 08:15 - 2015-08-22 08:15 - 00000000 ____D C:\Users\MIB\AppData\Local\Daybreak Game Company
2015-08-22 08:04 - 2015-08-22 08:05 - 00000000 ____D C:\Users\MIB\AppData\Local\PAYDAY 2
2015-08-22 07:01 - 2015-08-23 10:28 - 00000000 ____D C:\Users\MIB\AppData\Local\LogMeIn Hamachi
2015-08-22 07:01 - 2015-08-22 07:01 - 00000000 ____D C:\Users\MIB\AppData\Local\LogMeIn
2015-08-21 21:24 - 2015-09-03 15:12 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\LogMeIn Hamachi
2015-08-21 21:24 - 2015-08-21 21:24 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\LogMeIn
2015-08-21 20:34 - 2015-08-21 20:34 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PAYDAY 2
2015-08-21 13:35 - 2015-08-31 02:42 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-21 00:18 - 2015-08-21 00:18 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Unity
2015-08-21 00:18 - 2015-08-21 00:18 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Unity
2015-08-20 21:19 - 2015-09-03 15:44 - 00000000 ____D C:\Users\darkrider84\AppData\Local\LogMeIn Hamachi
2015-08-20 21:19 - 2015-08-20 21:19 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-08-20 21:19 - 2015-08-20 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-08-20 21:19 - 2015-08-20 21:19 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-08-20 20:17 - 2015-08-20 21:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Tunngle
2015-08-20 20:17 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys
2015-08-20 20:10 - 2015-08-20 20:10 - 00000000 ____D C:\Users\darkrider84\AppData\Local\LogMeIn
2015-08-20 20:10 - 2015-08-20 20:10 - 00000000 ____D C:\ProgramData\LogMeIn
2015-08-20 16:18 - 2015-08-20 16:18 - 00000979 _____ C:\Users\Public\Desktop\Mp3tag.lnk
2015-08-20 14:18 - 2015-08-20 14:18 - 00001827 _____ C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-08-19 22:06 - 2015-08-19 22:06 - 00000118 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-19 20:44 - 2015-08-19 21:01 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-19 20:43 - 2015-08-19 20:44 - 00000000 ____D C:\Users\TEMP
2015-08-19 19:48 - 2015-08-19 19:49 - 00000061 _____ C:\Users\darkrider84\Desktop\test.bat
2015-08-19 13:35 - 2015-08-11 03:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-19 13:35 - 2015-08-11 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-19 13:35 - 2015-08-11 02:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-08-19 13:35 - 2015-08-11 02:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-08-19 12:21 - 2015-08-19 12:21 - 00000000 ____H C:\Users\Sgt Napoleon\AppData\Local\BIT3930.tmp
2015-08-19 12:20 - 2015-08-19 12:20 - 00000000 _____ C:\Users\Sgt Napoleon\AppData\Local\{A4A7BF7B-77D5-48C1-9476-0BC3EA810551}
2015-08-19 12:13 - 2015-08-19 12:13 - 00002669 _____ C:\Users\Public\Desktop\MSI(R) Intel(R) Extreme Tuning Utility.lnk
2015-08-19 12:13 - 2015-08-19 12:13 - 00000000 ____D C:\Windows\System32\Tasks\Intel
2015-08-19 12:13 - 2015-08-19 12:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI(R) Intel(R) Extreme Tuning Utility
2015-08-17 22:46 - 2010-04-02 20:04 - 02650112 _____ C:\Users\darkrider84\Desktop\SteamMover.exe
2015-08-16 11:18 - 2015-08-16 11:18 - 00000000 ____D C:\ProgramData\Nexon
2015-08-16 11:06 - 2015-08-16 11:16 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NXEPassportClient
2015-08-16 11:01 - 2015-08-19 10:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2015-08-16 11:00 - 2015-08-16 11:00 - 00000000 ____D C:\Users\darkrider84\Neuer Ordner
2015-08-15 10:30 - 2015-08-15 10:30 - 00001192 _____ C:\Users\Public\Desktop\3DMark.lnk
2015-08-15 10:29 - 2015-08-15 10:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2015-08-15 10:29 - 2015-08-15 10:29 - 00000000 ____D C:\Program Files\Futuremark
2015-08-14 13:43 - 2015-08-14 13:43 - 00081088 _____ (VMware, Inc.) C:\Windows\system32\vmnetbridge.dll
2015-08-14 13:43 - 2015-08-14 13:43 - 00049856 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll
2015-08-14 13:43 - 2015-08-14 13:43 - 00048832 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetbridge.sys
2015-08-14 13:43 - 2015-08-14 13:43 - 00028864 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetadapter.sys
2015-08-14 13:43 - 2015-08-14 13:43 - 00027328 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnet.sys
2015-08-14 07:22 - 2015-08-30 21:31 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-08-14 07:22 - 2015-08-27 02:37 - 01423120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-08-14 07:22 - 2015-08-27 02:37 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-08-14 07:22 - 2015-08-27 02:36 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-08-14 07:22 - 2015-08-27 02:36 - 01710568 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-08-14 07:22 - 2015-08-14 07:22 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NVIDIA
2015-08-14 07:22 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-08-14 07:19 - 2015-09-01 01:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-14 07:16 - 2015-08-07 13:06 - 01898104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435560.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435560.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-08-14 07:16 - 2015-08-07 13:06 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-08-14 04:45 - 2015-08-14 04:50 - 00000000 ____D C:\ProgramData\TrackMania
2015-08-13 21:30 - 2015-08-13 21:32 - 00000000 ____D C:\ProgramData\Killer
2015-08-13 21:30 - 2015-08-13 21:30 - 00002785 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk
2015-08-13 21:30 - 2015-08-13 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
2015-08-13 21:30 - 2015-08-13 21:30 - 00000000 ____D C:\Program Files\Killer Networking
2015-08-13 21:30 - 2015-05-29 13:44 - 02311680 _____ (Qualcomm Atheros, Inc.) C:\Windows\system32\Drivers\Qcamain7x64.sys
2015-08-13 21:19 - 2015-08-19 12:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2015-08-13 21:19 - 2015-08-13 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-13 21:17 - 2015-08-13 21:17 - 00000000 ____D C:\Program Files (x86)\ASM106xSATA
2015-08-13 21:17 - 2015-06-15 21:41 - 02808859 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-08-13 21:17 - 2015-06-15 20:58 - 04493528 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-08-13 21:17 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-08-13 21:17 - 2015-06-05 13:45 - 02848472 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-08-13 21:17 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-08-13 21:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-08-13 21:17 - 2015-05-20 16:14 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-08-13 21:17 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-08-13 21:17 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-08-13 21:17 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-08-13 21:12 - 2015-08-13 21:12 - 00001539 _____ C:\Users\darkrider84\Desktop\FastBoot.exe - Verknüpfung.lnk
2015-08-13 20:51 - 2015-08-13 20:51 - 00043927 _____ C:\Windows\system32\energy-report.html
2015-08-13 15:44 - 2015-08-13 15:44 - 00379375 _____ (hxxp://magiclauncher.com) C:\Users\darkrider84\Desktop\MagicLauncher_1.3.0.exe
2015-08-13 11:05 - 2015-08-13 11:05 - 00000184 _____ C:\Users\darkrider84\Desktop\GTA modden.ucb
2015-08-13 05:02 - 2015-08-31 00:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-12 19:22 - 2015-08-12 19:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 19:22 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 19:22 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 17:33 - 2015-08-12 17:33 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-12 17:33 - 2015-08-12 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-12 14:06 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-12 14:06 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-12 14:06 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-12 14:06 - 2015-07-21 02:39 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-08-12 14:06 - 2015-07-21 02:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-08-12 14:06 - 2015-07-16 22:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-08-12 14:06 - 2015-07-16 22:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-08-12 14:06 - 2015-07-16 22:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-12 14:06 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-12 14:06 - 2015-07-16 22:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-08-12 14:06 - 2015-07-16 22:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-12 14:06 - 2015-07-16 22:35 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-08-12 14:06 - 2015-07-16 22:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-12 14:06 - 2015-07-16 22:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-12 14:06 - 2015-07-16 22:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-08-12 14:06 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-12 14:06 - 2015-07-16 22:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-12 14:06 - 2015-07-16 22:21 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-08-12 14:06 - 2015-07-16 22:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-12 14:06 - 2015-07-16 22:21 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-08-12 14:06 - 2015-07-16 22:12 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-12 14:06 - 2015-07-16 22:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-12 14:06 - 2015-07-16 22:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-12 14:06 - 2015-07-16 21:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-08-12 14:06 - 2015-07-16 21:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-12 14:06 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-08-12 14:06 - 2015-07-16 21:51 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-12 14:06 - 2015-07-16 21:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-08-12 14:06 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-08-12 14:06 - 2015-07-16 21:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-08-12 14:06 - 2015-07-16 21:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-08-12 14:06 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-12 14:06 - 2015-07-16 21:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-08-12 14:06 - 2015-07-16 21:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-08-12 14:06 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-08-12 14:06 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-08-12 14:06 - 2015-07-16 21:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-08-12 14:06 - 2015-07-16 21:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-08-12 14:06 - 2015-07-16 21:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-12 14:06 - 2015-07-16 21:35 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-08-12 14:06 - 2015-07-16 21:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-12 14:06 - 2015-07-16 21:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-08-12 14:06 - 2015-07-16 21:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-12 14:06 - 2015-07-16 21:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-08-12 14:06 - 2015-07-16 21:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-08-12 14:06 - 2015-07-16 21:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-08-12 14:06 - 2015-07-16 21:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-08-12 14:06 - 2015-07-16 21:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-12 14:06 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-12 14:06 - 2015-07-16 21:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-08-12 14:06 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-08-12 14:06 - 2015-07-16 21:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-08-12 14:06 - 2015-07-16 21:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-12 14:06 - 2015-07-16 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-08-12 14:06 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-12 14:06 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-12 14:06 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-08-12 14:06 - 2015-07-15 20:15 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-12 14:06 - 2015-07-15 20:15 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-08-12 14:06 - 2015-07-15 20:15 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-08-12 14:06 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-12 14:06 - 2015-07-15 20:12 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-12 14:06 - 2015-07-15 20:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-08-12 14:06 - 2015-07-15 20:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-08-12 14:06 - 2015-07-15 20:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-08-12 14:06 - 2015-07-15 20:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-08-12 14:06 - 2015-07-15 20:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-08-12 14:06 - 2015-07-15 20:10 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-08-12 14:06 - 2015-07-15 20:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-08-12 14:06 - 2015-07-15 20:10 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-12 14:06 - 2015-07-15 20:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-08-12 14:06 - 2015-07-15 20:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-08-12 14:06 - 2015-07-15 20:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-08-12 14:06 - 2015-07-15 20:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:59 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-08-12 14:06 - 2015-07-15 19:59 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-08-12 14:06 - 2015-07-15 19:56 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-12 14:06 - 2015-07-15 19:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-08-12 14:06 - 2015-07-15 19:55 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-08-12 14:06 - 2015-07-15 19:55 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-08-12 14:06 - 2015-07-15 19:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-08-12 14:06 - 2015-07-15 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-08-12 14:06 - 2015-07-15 19:54 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-08-12 14:06 - 2015-07-15 19:54 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-08-12 14:06 - 2015-07-15 19:54 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-08-12 14:06 - 2015-07-15 19:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-08-12 14:06 - 2015-07-15 19:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-08-12 14:06 - 2015-07-15 19:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-08-12 14:06 - 2015-07-15 19:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-08-12 14:06 - 2015-07-15 19:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-08-12 14:06 - 2015-07-15 19:53 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-08-12 14:06 - 2015-07-15 19:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-08-12 14:06 - 2015-07-15 19:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-08-12 14:06 - 2015-07-15 19:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-08-12 14:06 - 2015-07-15 19:53 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-08-12 14:06 - 2015-07-15 19:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-08-12 14:06 - 2015-07-15 19:48 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 18:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-08-12 14:06 - 2015-07-15 18:46 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-08-12 14:06 - 2015-07-15 18:46 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-08-12 14:06 - 2015-07-15 18:37 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-08-12 14:06 - 2015-07-15 18:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-08-12 14:06 - 2015-07-15 18:34 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 18:34 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 18:34 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 18:34 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-12 14:06 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-12 14:06 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-08-12 14:05 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-08-12 14:05 - 2015-07-30 19:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-08-12 14:05 - 2015-07-30 18:56 - 03208192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-12 14:05 - 2015-07-30 18:52 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-12 14:05 - 2015-07-30 18:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-12 14:05 - 2015-07-20 20:12 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-12 14:05 - 2015-07-20 20:12 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-08-12 14:05 - 2015-07-20 20:12 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-08-12 14:05 - 2015-07-20 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-12 14:05 - 2015-07-20 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-12 14:05 - 2015-07-20 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-12 14:05 - 2015-07-20 19:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-12 14:05 - 2015-07-20 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-08-12 14:05 - 2015-07-15 05:19 - 02004992 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-12 14:05 - 2015-07-15 05:19 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-12 14:05 - 2015-07-15 05:14 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-08-12 14:05 - 2015-07-15 05:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-08-12 14:05 - 2015-07-15 04:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-12 14:05 - 2015-07-15 04:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-12 14:05 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-08-12 14:05 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-08-12 14:05 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-12 14:05 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-12 14:05 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-12 14:05 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-12 14:05 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-12 14:05 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-12 14:05 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-12 14:05 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-12 14:05 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-11 15:32 - 2015-08-11 15:32 - 00001104 _____ C:\Users\darkrider84\Desktop\VirtualBox.exe - Verknüpfung.lnk
2015-08-11 13:37 - 2015-08-11 13:37 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-08-10 06:50 - 2015-08-10 06:50 - 00012942 _____ C:\Users\darkrider84\Desktop\CamtasiaStudio.exe - Verknüpfung.lnk
2015-08-10 06:38 - 2015-08-10 06:38 - 00001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2015-08-09 20:14 - 2015-08-09 20:14 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Tracker Software
2015-08-09 20:00 - 2015-08-31 23:24 - 00000000 ____D C:\Program Files\Tracker Software
2015-08-09 09:02 - 2015-08-09 09:02 - 01293704 _____ (Mojang) C:\Users\darkrider84\AppData\Roaming\Minecraft.exe
2015-08-09 09:02 - 2015-08-09 09:02 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\tools
2015-08-09 02:01 - 2015-08-09 02:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2015-08-09 02:01 - 2014-05-27 11:21 - 00025800 _____ C:\Windows\system32\Drivers\INETMON.sys
2015-08-08 02:48 - 2015-08-08 03:02 - 00000776 _____ C:\Users\darkrider84\Valle normal.reg
2015-08-08 02:48 - 2015-08-08 03:01 - 00000930 _____ C:\Users\darkrider84\Valle gesperrt.reg
2015-08-08 02:40 - 2015-08-08 02:40 - 371477730 _____ C:\Users\darkrider84\Sicherung.reg
2015-08-08 02:27 - 2015-08-08 02:21 - 00000033 _____ C:\Users\Sgt Napoleon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\locked2.cmd
2015-08-08 02:27 - 2015-08-08 02:19 - 00000126 _____ C:\Users\Sgt Napoleon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\locked.vbs
2015-08-07 09:50 - 2015-08-07 09:50 - 00001354 _____ C:\Users\darkrider84\Desktop\Steam.exe - Verknüpfung.lnk
2015-08-07 05:50 - 2015-08-19 13:51 - 01065984 _____ C:\Users\darkrider84\AppData\Local\file__0.localstorage
2015-08-07 05:50 - 2015-08-07 06:04 - 00000000 ____D C:\Users\darkrider84\Heaven
2015-08-07 05:50 - 2015-08-07 05:50 - 00000000 ____D C:\Program Files (x86)\Unigine
2015-08-07 05:38 - 2015-08-07 06:08 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\JAM Software
2015-08-07 03:19 - 2015-09-06 12:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-07 03:06 - 2015-07-23 06:06 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435362.dll
2015-08-07 03:06 - 2015-07-23 06:06 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435362.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-06 19:09 - 2015-03-18 10:56 - 00000000 ____D C:\FRST
2015-09-06 19:08 - 2015-02-26 22:11 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\NetSpeedMonitor
2015-09-06 19:07 - 2015-02-26 20:25 - 01366993 _____ C:\Windows\WindowsUpdate.log
2015-09-06 19:06 - 2015-06-13 03:35 - 00000000 ___RD C:\Users\darkrider84\Dropbox
2015-09-06 19:06 - 2015-06-13 03:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Dropbox
2015-09-06 19:05 - 2015-02-26 22:21 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Skype
2015-09-06 19:04 - 2015-07-08 13:06 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-06 19:04 - 2015-06-13 03:32 - 00001220 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-09-06 19:04 - 2015-05-20 15:03 - 00000000 ____D C:\Users\darkrider84\.rainlendar2
2015-09-06 19:04 - 2015-05-02 02:01 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2015-09-06 19:04 - 2015-03-29 20:29 - 00000000 ____D C:\ProgramData\USBLogon
2015-09-06 19:04 - 2015-03-24 10:05 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2015-09-06 19:04 - 2015-03-24 01:38 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-09-06 19:04 - 2015-02-26 21:17 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-06 19:04 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-06 19:04 - 2009-07-14 06:51 - 00105035 _____ C:\Windows\setupact.log
2015-09-06 17:09 - 2015-06-06 21:30 - 00000000 ____D C:\Users\MIB\AppData\Roaming\NetSpeedMonitor
2015-09-06 17:09 - 2015-03-28 14:15 - 00000000 ____D C:\Users\MIB\AppData\Roaming\TS3Client
2015-09-06 17:09 - 2015-02-26 22:28 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-06 16:47 - 2015-02-26 21:18 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-06 16:43 - 2015-06-13 03:32 - 00001224 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-09-06 16:36 - 2015-03-06 19:36 - 00000911 _____ C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {C11D8B02-EE30-495C-8983-4E88B27B0910}.job
2015-09-06 16:22 - 2015-03-01 20:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-06 15:42 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-06 15:42 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-06 11:26 - 2015-03-29 12:50 - 00000000 ____D C:\Users\MIB\AppData\Local\Arma 3
2015-09-06 11:01 - 2011-04-12 09:43 - 00703644 _____ C:\Windows\system32\perfh007.dat
2015-09-06 11:01 - 2011-04-12 09:43 - 00151550 _____ C:\Windows\system32\perfc007.dat
2015-09-06 11:01 - 2009-07-14 07:13 - 01634064 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-06 10:55 - 2010-11-21 05:47 - 00372988 _____ C:\Windows\PFRO.log
2015-09-06 10:12 - 2015-07-10 15:26 - 00003046 _____ C:\Windows\System32\Tasks\MSIAfterburner
2015-09-06 10:12 - 2015-02-27 01:54 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\SoftGrid Client
2015-09-06 10:12 - 2015-02-26 21:01 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\KeePass
2015-09-06 07:20 - 2015-03-04 00:47 - 00000000 ____D C:\ProgramData\Intel
2015-09-06 07:19 - 2015-02-28 11:15 - 00000000 ____D C:\Users\darkrider84\.VirtualBox
2015-09-06 07:10 - 2015-07-08 04:03 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Sony
2015-09-06 07:10 - 2015-02-26 22:14 - 00000000 ____D C:\Program Files (x86)\WhatPulse2
2015-09-06 06:39 - 2015-02-26 20:28 - 01653956 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-09-06 03:16 - 2015-02-26 20:49 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-06 02:56 - 2015-03-27 20:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\CrashDumps
2015-09-06 02:36 - 2015-05-02 22:55 - 00000000 ____D C:\Program Files (x86)\FFMPEG Addon
2015-09-06 02:06 - 2015-05-02 22:54 - 00001197 _____ C:\Users\darkrider84\Desktop\ChrisPC Free VideoTube Downloader.lnk
2015-09-06 02:06 - 2015-05-02 22:54 - 00000000 ____D C:\Program Files (x86)\ChrisPC Free VideoTube Downloader
2015-09-06 01:49 - 2015-02-27 19:22 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\vlc
2015-09-05 23:21 - 2015-04-14 02:05 - 00000080 _____ C:\Users\darkrider84\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-09-05 16:06 - 2015-04-14 02:05 - 00000000 ____D C:\Program Files\Rockstar Games
2015-09-05 16:06 - 2015-04-14 02:05 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-09-05 16:00 - 2015-05-07 23:00 - 00003897 _____ C:\Users\darkrider84\Desktop\online.bat
2015-09-05 13:40 - 2015-04-08 21:13 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\NetSpeedMonitor
2015-09-04 19:32 - 2015-02-27 00:36 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-09-04 18:01 - 2015-02-27 09:45 - 00000000 ____D C:\ProgramData\Origin
2015-09-04 14:08 - 2015-06-17 20:43 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\Skype
2015-09-03 23:32 - 2015-04-11 01:28 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\CrashDumps
2015-09-03 15:45 - 2015-03-08 01:51 - 00000000 ____D C:\Windows\pss
2015-09-03 10:48 - 2015-02-27 08:02 - 00813782 _____ C:\Windows\DirectX.log
2015-09-03 07:48 - 2015-03-31 16:41 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\VirtualStore
2015-09-02 22:37 - 2015-02-27 09:44 - 00000000 ____D C:\Program Files (x86)\Origin
2015-09-02 20:21 - 2015-02-27 09:46 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-09-02 15:57 - 2015-05-02 02:02 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2015-09-02 13:31 - 2015-05-17 01:17 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2015-09-02 02:16 - 2015-02-27 10:38 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PunkBuster
2015-09-02 00:42 - 2015-06-07 17:31 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\dvdcss
2015-09-01 21:13 - 2015-02-27 10:29 - 00000000 ____D C:\ProgramData\Solidshield
2015-09-01 15:53 - 2015-02-27 09:45 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Origin
2015-09-01 15:51 - 2015-02-26 22:21 - 00000000 ____D C:\ProgramData\Skype
2015-09-01 15:50 - 2015-02-26 22:21 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-01 15:50 - 2015-02-26 22:21 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-01 01:15 - 2015-07-08 13:05 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-01 01:15 - 2015-02-26 21:10 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-31 18:12 - 2015-02-28 15:02 - 00000991 _____ C:\Users\darkrider84\Desktop\MakeMKV.lnk
2015-08-31 17:30 - 2015-03-29 08:44 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Spotify
2015-08-31 17:30 - 2015-03-29 08:44 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Spotify
2015-08-31 17:29 - 2015-03-07 12:56 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Epson
2015-08-31 17:29 - 2015-03-04 15:13 - 00000000 ____D C:\ProgramData\EPSON
2015-08-31 02:32 - 2015-03-31 16:40 - 00000000 ____D C:\Users\Sgt Napoleon
2015-08-31 00:42 - 2015-02-26 21:18 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-31 00:42 - 2015-02-26 21:18 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-31 00:05 - 2015-02-26 23:38 - 00000000 ____D C:\ProgramData\Oracle
2015-08-31 00:01 - 2015-02-26 23:38 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-08-31 00:01 - 2015-02-26 23:38 - 00000000 ____D C:\Program Files\Java
2015-08-31 00:00 - 2015-02-26 20:25 - 00000000 ____D C:\Users\darkrider84
2015-08-30 22:35 - 2015-05-09 15:43 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Ubisoft Game Launcher
2015-08-30 19:33 - 2015-06-13 03:32 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-08-25 20:46 - 2015-07-08 13:05 - 00033025 _____ C:\Windows\system32\nvinfo.pb
2015-08-25 20:46 - 2015-07-08 13:03 - 17082392 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 15512888 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 12515016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 03527696 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 03112904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 03496752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-08-25 16:24 - 2015-07-08 13:05 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-08-25 14:35 - 2015-07-08 13:05 - 05165808 _____ C:\Windows\system32\nvcoproc.bin
2015-08-24 05:36 - 2015-07-14 02:16 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Glyph
2015-08-24 04:38 - 2015-07-14 02:16 - 00000000 ____D C:\Program Files (x86)\Glyph
2015-08-23 00:45 - 2015-07-08 13:07 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NVIDIA Corporation
2015-08-22 21:46 - 2015-05-20 00:38 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2015-08-22 20:45 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-08-22 07:01 - 2015-07-12 08:33 - 00000000 ____D C:\Users\MIB\AppData\Local\NVIDIA Corporation
2015-08-22 07:01 - 2015-03-28 14:11 - 00170048 _____ C:\Users\MIB\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-22 07:01 - 2015-03-28 14:04 - 00007144 __RSH C:\Users\MIB\ntuser.pol
2015-08-22 07:01 - 2015-03-28 14:04 - 00000000 ____D C:\Users\MIB
2015-08-21 21:24 - 2015-03-31 16:41 - 00170048 _____ C:\Users\Sgt Napoleon\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-21 17:26 - 2015-02-26 20:31 - 00170048 _____ C:\Users\darkrider84\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-21 17:26 - 2009-07-14 06:45 - 00571088 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-21 13:19 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-08-20 21:24 - 2015-02-27 00:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\.minecraft
2015-08-20 19:26 - 2015-03-19 19:14 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Mp3tag
2015-08-20 19:19 - 2015-03-18 11:57 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Audacity
2015-08-20 16:18 - 2015-03-04 01:12 - 00000000 ____D C:\Program Files (x86)\Mp3tag
2015-08-20 14:18 - 2015-03-29 08:44 - 00001841 _____ C:\Users\darkrider84\Desktop\Spotify.lnk
2015-08-20 00:43 - 2015-02-27 09:03 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\TS3Client
2015-08-19 12:13 - 2015-05-04 22:13 - 00000000 ____D C:\uninstall
2015-08-19 12:13 - 2015-02-27 19:39 - 00000000 ____D C:\MSI
2015-08-19 12:13 - 2015-02-27 17:47 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-19 10:48 - 2015-02-26 23:41 - 00000000 ____D C:\Spiele
2015-08-18 12:38 - 2015-06-29 14:30 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Intel_Corporation
2015-08-18 11:19 - 2015-03-02 22:13 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Arma 3
2015-08-16 17:14 - 2015-03-04 17:28 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\OBS
2015-08-16 13:18 - 2015-03-04 02:15 - 00000000 ____D C:\Program Files\OBS
2015-08-16 11:18 - 2015-02-28 17:26 - 00000000 ____D C:\ProgramData\NexonEU
2015-08-15 20:47 - 2015-02-27 08:14 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\ftblauncher
2015-08-15 20:47 - 2015-02-27 08:14 - 00000000 ____D C:\Users\darkrider84\AppData\Local\ftblauncher
2015-08-15 20:47 - 2015-02-27 00:08 - 07552083 _____ () C:\Users\darkrider84\Desktop\FTB_Launcher.exe
2015-08-15 11:17 - 2015-05-02 00:54 - 00000022 _____ C:\Windows\GPU-Z.INI
2015-08-15 11:15 - 2015-05-04 23:03 - 00000000 ____D C:\Program Files (x86)\Futuremark
2015-08-15 10:30 - 2015-05-02 00:53 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Futuremark
2015-08-15 10:19 - 2015-07-08 13:31 - 00000000 ____D C:\Program Files (x86)\3DMark
2015-08-15 02:15 - 2015-07-10 00:34 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\NVIDIA Corporation
2015-08-14 20:39 - 2015-03-04 00:43 - 00007602 _____ C:\Users\darkrider84\AppData\Local\Resmon.ResmonCfg
2015-08-14 07:25 - 2015-04-12 08:22 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2015-08-14 07:25 - 2015-03-02 15:09 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\TeamViewer
2015-08-14 07:22 - 2015-07-08 13:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-14 00:29 - 2015-03-31 17:40 - 00012942 __RSH C:\Users\Sgt Napoleon\ntuser.pol
2015-08-13 21:29 - 2015-02-26 20:29 - 00000000 ____D C:\ProgramData\Downloaded Installations
2015-08-13 21:23 - 2015-02-26 20:53 - 00000159 ___RH C:\Windows\ctfile.rfc
2015-08-13 21:23 - 2015-02-26 20:52 - 00000181 _____ C:\SBC2setup.log
2015-08-13 21:19 - 2015-02-26 20:35 - 00202740 _____ C:\Windows\DPINST.LOG
2015-08-13 21:18 - 2015-02-26 20:49 - 00000000 ____D C:\Program Files\Intel
2015-08-13 21:17 - 2015-05-01 14:25 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-08-13 21:17 - 2015-02-26 20:53 - 00000000 ____D C:\Program Files (x86)\ASM104xUSB3
2015-08-13 21:17 - 2015-02-26 20:49 - 00003121 _____ C:\RHDSetup.log
2015-08-13 21:17 - 2015-02-26 20:49 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-13 20:36 - 2015-07-14 19:49 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Glyph
2015-08-12 20:24 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-08-12 19:23 - 2015-02-28 12:15 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-12 19:23 - 2015-02-28 12:15 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-12 19:22 - 2015-02-26 22:59 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 19:22 - 2015-02-26 22:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\Sgt Napoleon\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\MIB\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\darkrider84\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\Administrator\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-03-16 02:57 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-08-12 11:22 - 2015-03-01 20:02 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-12 11:22 - 2015-03-01 20:02 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-12 11:22 - 2015-03-01 20:02 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-11 13:37 - 2015-03-12 21:31 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-11 13:37 - 2015-03-12 21:31 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-08-10 16:48 - 2015-07-30 04:48 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\.technic
2015-08-10 06:38 - 2015-02-26 21:15 - 00001105 _____ C:\Users\darkrider84\Desktop\KeePass 2.lnk
2015-08-10 06:38 - 2015-02-26 20:59 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2
2015-08-09 09:02 - 2015-02-27 00:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\game
2015-08-08 22:37 - 2015-02-27 00:37 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-08-08 02:44 - 2015-05-14 00:18 - 00033280 ___SH C:\Users\darkrider84\Thumbs.db
2015-08-07 06:00 - 2015-03-15 03:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

darkrider78 · 06.09.2015, 18:13

FRST-Fortsetzung:

Code:

ATTFilter

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-03-19 15:25 - 2015-03-09 15:48 - 2508440 _____ (Sysinternals - www.sysinternals.com) C:\Program Files (x86)\procexp.exe
2015-03-04 01:50 - 2015-03-04 01:55 - 38666926 _____ () C:\Users\darkrider84\AppData\Roaming\16.wav
2015-03-04 01:55 - 2015-03-04 01:55 - 0000000 _____ () C:\Users\darkrider84\AppData\Roaming\17.wav
2015-03-04 02:10 - 2015-03-04 02:10 - 0000000 _____ () C:\Users\darkrider84\AppData\Roaming\36.wav
2015-03-04 02:52 - 2015-03-04 02:52 - 0000000 _____ () C:\Users\darkrider84\AppData\Roaming\54.wav
2015-03-22 09:38 - 2015-03-22 09:38 - 0000046 _____ () C:\Users\darkrider84\AppData\Roaming\Camdata.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0000408 _____ () C:\Users\darkrider84\AppData\Roaming\CamLayout.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0000408 _____ () C:\Users\darkrider84\AppData\Roaming\CamShapes.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0004535 _____ () C:\Users\darkrider84\AppData\Roaming\CamStudio.cfg
2015-02-26 20:36 - 2015-02-26 20:36 - 0000000 _____ () C:\Users\darkrider84\AppData\Roaming\gdfw.log
2015-02-26 20:36 - 2015-03-24 00:32 - 0001558 _____ () C:\Users\darkrider84\AppData\Roaming\gdscan.log
2015-08-09 09:02 - 2015-08-09 09:02 - 1293704 _____ (Mojang) C:\Users\darkrider84\AppData\Roaming\Minecraft.exe
2015-02-27 00:12 - 2015-08-20 21:21 - 0000542 _____ () C:\Users\darkrider84\AppData\Roaming\nativelog.txt
2015-03-03 22:49 - 2015-03-04 02:07 - 0000227 _____ () C:\Users\darkrider84\AppData\Roaming\SpotifyRecorderSettings.ini
2015-03-22 09:36 - 2015-03-22 09:36 - 0000096 _____ () C:\Users\darkrider84\AppData\Roaming\version2.xml
2015-04-17 09:29 - 2015-08-04 23:11 - 0002889 _____ () C:\Users\darkrider84\AppData\Roaming\VoiceMeeterDefault.xml
2015-05-23 02:34 - 2015-05-23 02:34 - 0003584 _____ () C:\Users\darkrider84\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-07 05:50 - 2015-08-19 13:51 - 1065984 _____ () C:\Users\darkrider84\AppData\Local\file__0.localstorage
2015-03-18 11:55 - 2015-03-18 11:55 - 0001507 _____ () C:\Users\darkrider84\AppData\Local\RecConfig.xml
2015-04-12 07:50 - 2015-04-12 07:50 - 0005849 _____ () C:\Users\darkrider84\AppData\Local\recently-used.xbel
2015-03-04 00:43 - 2015-08-14 20:39 - 0007602 _____ () C:\Users\darkrider84\AppData\Local\Resmon.ResmonCfg
2015-05-20 00:38 - 2015-05-20 00:38 - 0000085 ___SH () C:\ProgramData\.zreglib
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\darkrider84\OpenAL32.dll
C:\Users\darkrider84\Sicherung.reg
C:\Users\darkrider84\xxx gesperrt.reg
C:\Users\darkrider84\xxx normal.reg


Einige Dateien in TEMP:
====================
C:\Users\darkrider84\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpt7f9a_.dll
C:\Users\darkrider84\AppData\Local\Temp\FreemakeVideoDownloaderFull.exe
C:\Users\darkrider84\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\darkrider84\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\darkrider84\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\darkrider84\AppData\Local\Temp\nvStInst.exe
C:\Users\darkrider84\AppData\Local\Temp\Setup (1)_41BFED90.exe
C:\Users\darkrider84\AppData\Local\Temp\sonarinst.exe
C:\Users\darkrider84\AppData\Local\Temp\TubeBox_Setup.exe
C:\Users\MIB\AppData\Local\Temp\27fff54a706caf16275619fa9b79269c.dll
C:\Users\MIB\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdybtr3.dll
C:\Users\Sgt Napoleon\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp6op6rt.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-01 16:43

==================== Ende von FRST.txt ============================

Addition.txt:

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:06-09-2015 01
durchgeführt von darkrider84 (2015-09-06 19:09:17)
Gestartet von C:\Users\darkrider84\Desktop
Windows 7 Professional Service Pack 1 (X64) (2015-02-26 18:25:25)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2214554541-3394249910-989620225-500 - Administrator - Disabled)
darkrider84 (S-1-5-21-2214554541-3394249910-989620225-1000 - Administrator - Enabled) => C:\Users\darkrider84
Gast (S-1-5-21-2214554541-3394249910-989620225-501 - Limited - Disabled)
MIB (S-1-5-21-2214554541-3394249910-989620225-1003 - Administrator - Enabled) => C:\Users\MIB
Sgt Napoleon (S-1-5-21-2214554541-3394249910-989620225-1004 - Administrator - Enabled) => C:\Users\Sgt Napoleon

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
3DMark (Version: 1.5.915.0 - Futuremark) Hidden
3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden
4K Video Downloader 3.6 (HKLM-x32\...\4K Video Downloader_is1) (Version: 3.6.1.1770 - Open Media LLC)
4K Video to MP3 2.2 (HKLM-x32\...\4K Video to MP3_is1) (Version: 2.2.0.800 - Open Media LLC)
ACPI Driver Installer (HKLM-x32\...\553E35CD-0415-41bc-B39A-410375E88534) (Version: 2.1 - Intel Corporation)
Acronis True Image 2015 (HKLM-x32\...\{2F70A6E6-2F71-4907-8441-BDC5D300310B}Visible) (Version: 18.0.6613 - Acronis)
Acronis True Image 2015 (x32 Version: 18.0.6613 - Acronis) Hidden
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Advanced Renamer (HKLM-x32\...\Advanced Renamer_is1) (Version: 3.65 - Hulubulu Software)
Akamai NetSession Interface (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)
Anti-Twin (Installation 03.05.2015) (HKLM-x32\...\Anti-Twin 2015-05-03 02.59.03) (Version:  - Joerg Rosenthal, Germany)
Any Video Converter 5.8.2 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
ArchiCrypt Shredder Version 6.11.1.5708 (HKLM-x32\...\ACRYSH6_is1) (Version: 6.11.1.5708 - Softwareentwicklung Remus - ArchiCrypt)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Ashampoo Burning Studio 2015 (HKLM-x32\...\{91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1) (Version: 1.15.3 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 6 v.6.0.9 (HKLM-x32\...\{C92AB6F1-770F-EA32-6CF7-8A0792FA1A4B}_is1) (Version: 6.0.9 - Ashampoo GmbH & Co. KG)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
AunPlayer version 1.1.0.990 (HKLM-x32\...\{83AF2B1C-3F1C-4dc6-8237-5B400AAEB58B}_is1) (Version:  - )
AutoHotkey 1.1.20.03 (HKLM\...\AutoHotkey) (Version: 1.1.20.03 - Lexikos)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version:  - Rocksteady Studios)
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version:  - The Behemoth)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.5.2.34169 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BeSecure 1.0.0.0 (HKLM\...\{29007E8C-251B-4F61-A70E-635712477760037070}_is1) (Version: 1.0.0.0 - BeSecure)
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A79B26D7-D6CB-408A-90CF-51508A4B62AB}) (Version: 8.5.2.1999 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
ChrisPC Free VideoTube Downloader 8.10 (HKLM-x32\...\{6006089C-84B5-4F18-8113-1234567890DE}_is1) (Version:  - Chris P.C. srl)
ChrisPC VideoTube Downloader Pro 8.10 (HKLM-x32\...\{6006089C-84B5-4F18-8113-9876543210ED}_is1) (Version:  - Chris P.C. srl)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - )
Clover 3.0 (HKLM-x32\...\Clover) (Version: 3.0 - EJIE Technology)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.26 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CrossFire (HKLM-x32\...\CrossFire_is1) (Version: 1195 - Z8Games.com)
Crossfire Europe (HKLM-x32\...\Crossfire Europe) (Version: 1.172 - SG Europe)
Cry of Fear (HKLM-x32\...\Steam App 223710) (Version:  - Team Psykskallar)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Defiance (HKLM-x32\...\Glyph Defiance) (Version:  - Trion Worlds, Inc.)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
DOOM 3: BFG Edition (HKLM-x32\...\Steam App 208200) (Version:  - id Software)
Driver San Francisco (HKLM-x32\...\Driver San Francisco) (Version: 1.4.0.0 - Ubisoft)
DriverEasy 4.9.1 (HKLM\...\DriverEasy_is1) (Version: 4.9.1.0 - Easeware)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.33 - Dropbox, Inc.) Hidden
Edna & Harvey: Harvey's New Eyes (HKLM-x32\...\Steam App 219910) (Version:  - Daedalic Entertainment)
Edna & Harvey: The Breakout (HKLM-x32\...\Steam App 255320) (Version:  - Daedalic Entertainment)
Epson Event Manager (HKLM-x32\...\{0F13C24A-FFE2-4CD0-8E0B-DC804E0A0E0B}) (Version: 3.10.0035 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{682A3328-9621-4BAD-91FA-873A076610C4}) (Version: 1.21.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON XP-422 423 425 Series Printer Uninstall (HKLM\...\EPSON XP-422 423 425 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM\...\{98D772A5-CDB0-48E7-9DBA-794EA0F68B5C}) (Version: 3.1.0.0 - SEIKO EPSON Corporation)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Euro Truck Simulator (HKLM-x32\...\Steam App 232010) (Version:  - SCS Software)
FalNET G19 Display Manager (HKLM-x32\...\FalNET G19 Display Manager_is1) (Version:  - FalNET)
FFMPEG Addon (HKLM-x32\...\{111124AF-1ED4-44EF-B674-111111985342}_is1) (Version: 1.00 - FFMPEG)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.6.122.702 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.2.0.722 - Foxit Software Inc.)
FreeFileSync 7.3 (HKLM-x32\...\FreeFileSync) (Version: 7.3 - www.FreeFileSync.org)
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Gameforge Live 2.0.6 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.6 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version:  - Coffee Stain Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Grand Theft Auto III (HKLM-x32\...\Steam App 12100) (Version:  - Rockstar Games)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Grand Theft Auto: Episodes from Liberty City (HKLM-x32\...\Steam App 12220) (Version:  - Rockstar North / Toronto)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version:  - Rockstar Games)
Grand Theft Auto: Vice City (HKLM-x32\...\Steam App 12110) (Version:  - Rockstar Games)
Hacker Evolution (HKLM-x32\...\Steam App 70100) (Version:  - exosyphen studios)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
HWiNFO64 Version 5.02 (HKLM\...\HWiNFO64_is1) (Version: 5.02 - Martin Malík - REALiX)
ICQ 8.3 (build 7317) (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\ICQ) (Version: 8.3.7317.0 - ICQ)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4206 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{94A137EA-92EF-441C-A7E2-6757CC08EA82}) (Version: 5.0.10.2907 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.5.69 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\3FD0C489-0F02-481a-A3E1-9754CD396761) (Version:  - Intel Corporation)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java(TM) 7 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217000FF}) (Version: 7.0.0 - Oracle)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.361 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.2.361 - Kaspersky Lab) Hidden
KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl)
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Killer Bandwidth Control Filter Driver (Version: 1.1.54.1095 - Rivet Networks) Hidden
Killer E220x Drivers (Version: 1.1.54.1095 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.54.1095 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.54.1095 - Qualcomm Atheros)
Killer Wireless-AC Drivers (Version: 1.1.54.1095 - Rivet Networks) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LCPD First Response (HKLM-x32\...\LCPD First Response) (Version: 1.0.0.0d - G17 Media)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
MakeMKV v1.9.5 (HKLM-x32\...\MakeMKV) (Version: v1.9.5 - GuinpinSoft inc)
Malwarebytes Anti-Exploit version 1.07.1.1015 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.07.1.1015 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
METAL SLUG (HKLM-x32\...\Steam App 366250) (Version:  - DotEmu)
Metro: Last Light (HKLM-x32\...\Steam App 43160) (Version:  - 4A Games)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Application Compatibility Toolkit 5.6 (HKLM-x32\...\{0F5AEBB0-43F3-4571-ACE7-A7942E8AA179}) (Version: 5.6.7324.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Expression Blend 3 SDK (HKLM-x32\...\{B006B9E9-41DD-4479-9177-3743A53B7735}) (Version: 1.0.1343.0 - Microsoft Corporation)
Microsoft Expression Blend 4 (HKLM-x32\...\Blend_4.0.30816.0) (Version: 4.0.30816.0 - Microsoft Corporation)
Microsoft Expression Blend 4 Add-in for Adobe FXG Import (HKLM-x32\...\{B2D1A01F-82CC-4025-B539-FE62D11C8EC8}) (Version: 1.0.20817.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for .NET 4 (HKLM-x32\...\{0536BCDF-7EF6-48F6-8765-A3C065A065A5}) (Version: 2.0.20621.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for Silverlight 4 (HKLM-x32\...\{B0682940-6FFB-4850-80BA-B2FEF0D64BA8}) (Version: 2.0.20621.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for Windows Phone 7 (HKLM-x32\...\{1762BA00-6EBE-4430-9FBB-16F516B4A46D}) (Version: 2.0.20901.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for Windows Phone OS 7.1 (HKLM-x32\...\{0688DA81-103D-4FEA-B953-FC8F0915A8E2}) (Version: 2.0.30816.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.1 Language Pack - DEU) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM-x32\...\{00160000-001F-0407-0000-0000000FF1CE}) (Version: 16.0.3629.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.7143.5001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Deutsch (HKLM-x32\...\{8EA792A5-38AA-4F0E-8DFE-D1BAF1145431}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft XNA Game Studio Platform Tools (HKLM-x32\...\{89690B51-2E21-4E93-914E-F9CAC5B24A84}) (Version: 1.4.0.0 - Microsoft Corporation)
MiniTool Partition Wizard Free 9.0 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version:  - DICE)
Mozilla Firefox 39.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 de)) (Version: 39.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0a2 - Mozilla)
Mp3tag v2.71 (HKLM-x32\...\Mp3tag) (Version: v2.71 - Florian Heidenreich)
MS7926 USB Audio Driver (HKLM-x32\...\{126CA2C8-404B-412F-A794-A1B5186E6EEE}) (Version: 1.00.0014 - C-Media Electronics, Inc.)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.01 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.5 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.025 - MSI)
MSI Smart Utilities (HKLM-x32\...\{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1) (Version: 2.0.0.11 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.029 - MSI)
MSI(R) Intel(R) Extreme Tuning Utility (HKLM-x32\...\{482c7431-75e2-4124-a453-6a294cd2c6a4}) (Version: 6.0.2.101 - Intel Corporation)
MSI(R) Intel(R) Extreme Tuning Utility (x32 Version: 6.0.2.101 - Intel Corporation) Hidden
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version:  - Gameforge 4D GmbH)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Oracle VM VirtualBox 4.3.30 (HKLM\...\{5E7BEDD4-397D-4537-A290-AB012A45D771}) (Version: 4.3.30 - Oracle Corporation)
Orcs Must Die! (HKLM-x32\...\Steam App 102600) (Version:  - Robot Entertainment)
Origin (HKLM-x32\...\Origin) (Version: 9.5.5.2850 - Electronic Arts, Inc.)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Daybreak Games)
Plants vs. Zombies: Game of the Year (HKLM-x32\...\Steam App 3590) (Version:  - PopCap Games, Inc.)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Prototype (HKLM-x32\...\Steam App 10150) (Version:  - Radical Entertainment)
PROTOTYPE 2 (HKLM-x32\...\Steam App 115320) (Version:  - Radical Entertainment)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Qualcomm Atheros 61x4 Bluetooth Suite (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 4.0.0.493 - Qualcomm Atheros Communications)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7534 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
Roadkil's Unstoppable Copier Version 5.2 (HKLM-x32\...\{A306FD29-7D3A-4287-91AC-9A0180931395}_is1) (Version:  - Roadkil.Net)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.5 - Rockstar Games)
S.T.A.L.K.E.R.: Clear Sky (HKLM-x32\...\Steam App 20510) (Version:  - GSC Game World)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM-x32\...\Steam App 4500) (Version:  - GSC Game World)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.6 - Samsung Electronics)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15044.7 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.0.15044.7 - Samsung Electronics Co., Ltd.) Hidden
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Soccer Manager 2015 (HKLM-x32\...\Steam App 356370) (Version:  - Soccer Manager Ltd)
Software Updater (HKLM-x32\...\{E1BAD1BA-C0E8-4018-9281-E7D2C6B07474}) (Version: 4.3.6 - SEIKO EPSON CORPORATION)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.07 - Creative Technology Limited)
Spotify (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Spotify) (Version: 1.0.12.161.g64b0797c - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Supreme Commander: Forged Alliance (HKLM-x32\...\Steam App 9420) (Version:  - Gas Powered Games)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45471 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
TeraCopy 2.3 (HKLM\...\TeraCopy_is1) (Version:  - Code Sector)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The LEGO® Movie - Videogame (HKLM-x32\...\Steam App 267530) (Version:  - TT Fusion)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)
THW Simulator 2012 (HKLM-x32\...\THW-Simulator) (Version:  - )
Trove North America (HKLM-x32\...\Glyph Trove North America) (Version:  - Trion Worlds, Inc.)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Unity Web Player (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\UnityWebPlayer) (Version: 5.0.3f2 - Unity Technologies ApS)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Uplay (HKLM-x32\...\Uplay) (Version: 6.1 - Ubisoft)
USBLogon 1.6.2.3 (HKLM\...\{E7D9D138-7DFA-441A-B1A9-703193C5D6D3}_is1) (Version: 1.6.2.3 - Quadsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VMware Player (HKLM\...\{DCA4824C-42E8-4911-9C10-5BB43A315625}) (Version: 12.0.0 - VMware, Inc.)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version:  - VB-Audio Software)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version:  - Ubisoft)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (06/26/2014 4.0.0000.00000) (HKLM\...\E9DC49BA23113A1CFEE2EA8CDACFC190C2E7C774) (Version: 06/26/2014 4.0.0000.00000 - Google, Inc.)
Windows-Treiberpaket - MediaTek Inc. (usbser) Ports  (01/05/2012 2.0000.0.1) (HKLM\...\49D9ABA9270C5BDFD7AE1BEB607D36B26BB90235) (Version: 01/05/2012 2.0000.0.1 - MediaTek Inc.)
Windows-Treiberpaket - MediaTek Inc. (usbser) Ports  (06/26/2014 2.0.1136.0) (HKLM\...\5207B50A9A7F622F861EF44EB724202FCD7019B6) (Version: 06/26/2014 2.0.1136.0 - MediaTek Inc.)
Windows-Treiberpaket - MediaTek Inc. (usbser) Ports  (12/24/2011 2.0000.0.0) (HKLM\...\D0E6296D177F42BB31C0200E49412003DB6C4633) (Version: 12/24/2011 2.0000.0.0 - MediaTek Inc.)
Windows-Treiberpaket - MediaTek Inc. Net  (07/14/2011 1.1129.00) (HKLM\...\863799CFE28DE1D92884471DA44DD0A65106B46F) (Version: 07/14/2011 1.1129.00 - MediaTek Inc.)
Windows-Treiberpaket - Microsoft (WUDFRd) WPD  (02/22/2006 5.2.5326.4762) (HKLM\...\FADB1835408DB791D2FE4D4786AD5E1BE6E588A7) (Version: 02/22/2006 5.2.5326.4762 - Microsoft)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WPF Toolkit February 2010 (Version 3.5.50211.1) (HKLM-x32\...\{5EE6E987-1B79-4A93-832B-27472C7D1579}) (Version: 3.5.50211.1 - Microsoft Corporation)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Wiederherstellungspunkte =========================

06-09-2015 03:06:37 TubeBox
06-09-2015 03:15:38 Revo Uninstaller's restore point - TubeBox
06-09-2015 03:15:44 TubeBox
06-09-2015 03:18:54 Removed XSplit Gamecaster
06-09-2015 06:39:52 Installed VMware Player
06-09-2015 07:06:41 Removed Windows Movie Maker 2.6
06-09-2015 07:10:44 Removed Vegas Pro 13.0 (64-bit)
06-09-2015 10:58:45 Windows Update

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {004BAF38-7C58-497B-8A4A-A0DC93C1CF88} - System32\Tasks\{5CF1D7FE-896C-4EE6-A991-710450D92A49} => pcalua.exe -a "C:\Program Files (x86)\ClockworkMod\Universal Adb Driver\UniveralAdbDriverInstaller.exe" -d "C:\Program Files (x86)\ClockworkMod\Universal Adb Driver"
Task: {005F29D6-8ECE-4CED-B41D-D16E429FAE9A} - System32\Tasks\{1B215C9D-0547-4BE7-8B23-EB4B1538E4CD} => C:\Spiele\Need For Speed - Porsche\Updater.exe [2000-07-10] ()
Task: {19869BCE-E970-4240-B3B0-3DD560218A67} - System32\Tasks\{F0A9A4BE-08AB-4E90-B436-E0E121FDE38C} => C:\Spiele\Need For Speed - Porsche\Porsche.exe [2000-07-11] ()
Task: {27E431D7-BA54-45DF-9104-85611198A50D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {2883B98A-9126-48C6-92B0-8ED23F659AAC} - System32\Tasks\Videos löschen Sgt Napoleon => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [2013-09-27] (Microsoft Corporation)
Task: {2EDDB544-E974-4714-AA5A-20F12B4F49ED} - System32\Tasks\{EBE6D00F-BAF4-4609-BE78-12C9714F7E7C} => C:\Program Files (x86)\ClockworkMod\Universal Adb Driver\UniveralAdbDriverInstaller.exe [2013-04-07] ()
Task: {3E5CBA48-A215-4728-A0D3-3493CBF0A85E} - System32\Tasks\Videos löschen MIB => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [2013-09-27] (Microsoft Corporation)
Task: {475DC9A4-3B51-4735-A8B6-E25066ECBBB4} - System32\Tasks\Videos löschen darkrider84 => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [2013-09-27] (Microsoft Corporation)
Task: {4A4B163F-4AEA-4834-A8CE-68F6E8C39A01} - System32\Tasks\{6B905976-0EE1-40CC-B2FC-336CF7C8A559} => pcalua.exe -a C:\Users\darkrider84\Downloads\VirtualBox-4.3.26-98988-Win.exe -d C:\Users\darkrider84\Downloads
Task: {4AD744AE-8893-4884-825A-BC0C939EDD89} - System32\Tasks\HWiNFO => C:\Program Files\HWiNFO64\HWiNFO64.EXE [2015-07-20] (REALiX)
Task: {528E23CB-EDD3-42CA-B05F-409E59F1504E} - System32\Tasks\{8EAC2427-D2CE-4D99-B4B5-165FC9966077} => C:\Program Files (x86)\ClockworkMod\Universal Adb Driver\UniveralAdbDriverInstaller.exe [2013-04-07] ()
Task: {58DBF297-50AE-46EE-ADA5-904E73EAA9DA} - System32\Tasks\{6A59D36A-04AC-4324-AC90-9228A9A683CF} => C:\Spiele\Need For Speed - Porsche\Porsche.exe [2000-07-11] ()
Task: {5AE8A3D9-573D-4D10-BBBD-7E03C103FA67} - System32\Tasks\{BFDBEA7F-4FD6-4705-8EC0-2434B4118F83} => pcalua.exe -a "C:\Program Files (x86)\Xilisoft\Blu-ray to DVD Converter\Blu Ray Ripper\Uninstall.exe"
Task: {63FC9B47-E1F8-4998-8F7E-E01D72CD8B19} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {7A47F3CB-A4EF-4A45-A67E-13BC22B7D3B2} - System32\Tasks\{F33D7871-5331-4C7C-B7F6-114A4E84DB7D} => pcalua.exe -a C:\Windows\IsUn0407.exe -c -fC:\Spiele\NEEDFO~2\uninst.log
Task: {86E72DC9-D733-45FB-B531-9CE89230E191} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {91DFAF7B-B752-42FF-B274-4FA173712A39} - System32\Tasks\{DAB66309-F136-4884-AFE1-1DDD51AF95A9} => C:\Spiele\Need For Speed - Porsche\Porsche.exe [2000-07-11] ()
Task: {943DFA5A-DB14-494D-B246-0563D6479913} - System32\Tasks\{8AAD8ED7-E037-4DFF-8022-E8213D59D1FA} => C:\Spiele\Driver Parallel Lines\DriverParallelLines.exe
Task: {A151004A-219D-4810-B24C-0EBAFCBCAA4A} - System32\Tasks\{559C5BF1-B5C7-47EF-A9B3-A6FFC13D7E22} => C:\Program Files (x86)\ClockworkMod\Universal Adb Driver\UniveralAdbDriverInstaller.exe [2013-04-07] ()
Task: {A5B140EF-5D36-49A2-8982-29878E318197} - System32\Tasks\Software Updater => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-03-12] () <==== ACHTUNG
Task: {A88DA563-F71E-4991-8E77-C8A107CCB666} - System32\Tasks\{219CB7FC-848D-43F0-9D24-509077267C6E} => pcalua.exe -a C:\Windows\IsUn0407.exe -c -fC:\Spiele\NEEDFO~2\uninst.log
Task: {C69F83E8-9781-4011-8509-38AA11AEFC8C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-26] (Google Inc.)
Task: {C7223F99-02E3-49FD-8ECC-9432D1D56CDB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-26] (Google Inc.)
Task: {C8723F19-BA13-4819-8F75-4BEA36E3B253} - System32\Tasks\{9883AC77-A852-4D01-9C93-63CC2CF6E527} => Chrome.exe hxxp://ui.skype.com/ui/0/7.6.0.105/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {CAF6C078-201D-4AF8-B14F-393E7DDF525F} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2015-04-10] (Samsung Electronics.)
Task: {D468F596-CDEF-4241-BD99-AFEE45072F5C} - System32\Tasks\{23D5D106-A36C-4E83-9850-5348330586F7} => C:\Spiele\Airline Tycoon Deluxe\At.exe
Task: {D8A9EA7E-F805-4062-A62C-471DAF091710} - System32\Tasks\{1FB1351C-C794-46DF-80A5-653B52C0C829} => C:\Spiele\Airline Tycoon Deluxe\At.exe
Task: {DAB2A9F0-3BD0-4834-AFDB-80144E776A3F} - System32\Tasks\{E87EB1CA-898F-4F05-BF17-51D87F046540} => Chrome.exe hxxp://ui.skype.com/ui/0/7.6.0.105/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {DBE80E30-E8F2-4AF5-9463-2846CA85ECBF} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-05-27] ()
Task: {E21D448E-D70F-4865-986F-D70B30A9A2D5} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {E22F627D-AA60-483B-9D2D-9BE2D88418E9} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-13] (Dropbox, Inc.)
Task: {EC11C25E-0D0E-4FE9-A1F6-E6B8129CC748} - System32\Tasks\{3C8A9394-0A08-45AC-BC35-B9DA7467D736} => C:\Spiele\Need For Speed - Porsche\Porsche.exe [2000-07-11] ()
Task: {EC7C9DC5-8C94-4673-9C1C-062EBDE0F47C} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-13] (Dropbox, Inc.)
Task: {ECB54B29-6F63-4E33-BEE7-CB9B4D02C2DE} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-05-05] (Intel Corporation)
Task: {F93F02ED-4927-4B67-8A70-889450C423AB} - System32\Tasks\EPSON XP-422 423 425 Series Update {C11D8B02-EE30-495C-8983-4E88B27B0910} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNDE.EXE [2013-11-21] (SEIKO EPSON CORPORATION)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {C11D8B02-EE30-495C-8983-4E88B27B0910}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNDE.EXE:/EXE:{C11D8B02-EE30-495C-8983-4E88B27B0910} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-07-08 13:05 - 2015-08-25 16:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-09-06 03:00 - 2015-04-09 23:00 - 00016384 _____ () C:\Program Files\BeSecure\BeSecure.exe
2015-09-06 03:00 - 2015-09-06 03:00 - 00040960 _____ () C:\Program Files\BeSecure\Utils.dll
2015-09-06 03:00 - 2015-04-10 01:58 - 00147456 _____ () C:\Program Files\BeSecure\NetworkUtil.dll
2015-09-06 03:00 - 2014-11-03 23:40 - 00015872 _____ () C:\Program Files\BeSecure\WinDivert.dll
2015-09-06 03:00 - 2015-04-10 01:58 - 00012288 _____ () C:\Program Files\BeSecure\BeSecure_updater_service.exe
2014-08-25 16:01 - 2014-08-25 16:01 - 00209712 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2014-08-25 16:01 - 2014-08-25 16:01 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2014-08-25 16:01 - 2014-08-25 16:01 - 00037168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2014-08-25 16:01 - 2014-08-25 16:01 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTEncryptionCheck.dll
2015-09-02 02:26 - 2015-09-02 02:26 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-03-29 20:29 - 2013-10-01 17:11 - 00012288 _____ () C:\Program Files\USBLogon\usblonsvc.exe
2014-11-09 13:37 - 2014-11-09 13:37 - 00402432 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll
2015-05-27 12:05 - 2015-05-27 12:05 - 00578272 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2015-08-14 07:22 - 2015-08-27 02:37 - 00708216 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2015-08-14 07:22 - 2015-08-27 02:37 - 00854136 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2015-01-30 13:16 - 2015-01-30 13:16 - 00089728 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2015-02-26 20:53 - 2015-05-29 17:57 - 00089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2015-02-26 20:53 - 2015-05-29 17:56 - 00366080 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2014-09-18 09:23 - 2014-09-18 09:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-10-14 20:51 - 2014-10-14 20:51 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-10-14 20:51 - 2014-10-14 20:51 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-01-30 13:14 - 2015-01-30 13:14 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2015-01-30 13:15 - 2015-01-30 13:15 - 00025216 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2015-02-26 20:59 - 2015-08-09 09:50 - 00385968 _____ () C:\Program Files (x86)\KeePass Password Safe 2\KeePass.XmlSerializers.dll
2014-03-16 19:42 - 2014-03-16 19:42 - 02611808 _____ () C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
2015-09-02 02:48 - 2015-08-28 03:56 - 01868104 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libglesv2.dll
2015-09-02 02:48 - 2015-08-28 03:56 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libegl.dll
2014-11-09 13:37 - 2014-11-09 13:37 - 00197632 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
2014-11-09 13:37 - 2014-11-09 13:37 - 00026112 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
2014-11-09 13:37 - 2014-11-09 13:37 - 00088576 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2015-02-26 22:26 - 2012-01-29 17:55 - 00657920 _____ () C:\Program Files\TeraCopy\TeraCopy64.dll
2014-12-23 17:54 - 2014-12-23 17:54 - 01272616 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\kpcengine.2.3.dll
2015-08-13 21:19 - 2005-07-18 13:43 - 00160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2015-08-14 14:03 - 2015-08-14 14:03 - 01301696 _____ () C:\Program Files (x86)\VMware\VMware Player\libxml2.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00057856 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00218624 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2015-05-22 12:56 - 2015-05-22 12:56 - 00357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2015-05-22 13:36 - 2015-05-22 13:36 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2014-11-09 13:37 - 2014-11-09 13:37 - 00356864 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll
2015-08-14 07:22 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2012-05-16 21:01 - 2012-05-16 21:01 - 00140800 _____ () C:\Program Files (x86)\Rainlendar2\lua52.dll
2014-03-14 12:11 - 2014-03-14 12:11 - 00250368 _____ () C:\Program Files (x86)\Rainlendar2\libical.dll
2014-03-16 19:42 - 2014-03-16 19:42 - 00060512 _____ () C:\Program Files (x86)\Rainlendar2\plugins\iCalendarPlugin.dll
2014-03-14 12:11 - 2014-03-14 12:11 - 00065024 _____ () C:\Program Files (x86)\Rainlendar2\libicalss.dll
2012-06-17 15:22 - 2012-06-17 15:22 - 00012800 _____ () C:\Program Files (x86)\Rainlendar2\lfs.dll
2015-09-06 19:04 - 2015-09-06 19:04 - 00071168 _____ () c:\Users\darkrider84\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpt7f9a_.dll
2015-06-13 03:32 - 2015-08-05 07:26 - 00012800 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll
2015-06-13 03:32 - 2015-08-05 07:26 - 00779776 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-31 14:44 - 2015-08-05 07:26 - 00056320 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-13 03:32 - 2015-08-05 07:26 - 00012288 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll
2014-11-09 13:37 - 2014-11-09 13:37 - 00056832 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2014-11-09 13:37 - 2014-11-09 13:37 - 00353792 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2014-11-09 13:37 - 2014-11-09 13:37 - 00071680 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2015-05-06 21:32 - 2015-04-10 14:33 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
2015-07-20 09:08 - 2015-07-20 09:08 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-07-20 09:15 - 2015-07-20 09:15 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2015-07-20 09:10 - 2015-07-20 09:10 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll
2015-02-26 22:26 - 2012-01-20 15:55 - 00427520 _____ () C:\Program Files\TeraCopy\TeraCopyExt.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\sony.com -> sony.com


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2214554541-3394249910-989620225-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.44.1 - 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Killer Network Manager.lnk => C:\Windows\pss\Killer Network Manager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk => C:\Windows\pss\Secunia PSI Tray.lnk.CommonStartup
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\darkrider84\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: AshSnap => C:\Program Files (x86)\Ashampoo\Ashampoo Snap 6\ashsnap.exe
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Clownfish => "C:\Program Files (x86)\Clownfish\Clownfish.exe"
MSCONFIG\startupreg: Command Center => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EPLTarget => 
MSCONFIG\startupreg: FalNET G19 Display Manager => "C:\Program Files (x86)\FalNET G19 Display Manager\FalNET G19 Display Manager.exe"
MSCONFIG\startupreg: Fast Boot => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
MSCONFIG\startupreg: FireStormStartUpAutoRun => C:\Program Files (x86)\ZotacFireStorm\FireStorm.exe
MSCONFIG\startupreg: GoogleChromeAutoLaunch_D3D3FDB76797D0380D6F53572845784B => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: icq => C:\Users\darkrider84\AppData\Roaming\ICQM\icq.exe -CU
MSCONFIG\startupreg: Information => "G:\Info.vbs"
MSCONFIG\startupreg: KeePass 2 PreLoad => "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
MSCONFIG\startupreg: Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: LWS => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: Malwarebytes Anti-Exploit => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Prime95 => C:\Users\darkrider84\Desktop\prime95.exe
MSCONFIG\startupreg: SandboxieControl => "C:\Program Files\Sandboxie\SbieCtrl.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\darkrider84\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\darkrider84\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Super Charger => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{7F5E398C-26DC-46BC-BEF1-DB5C177B3248}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{552C6980-8E01-4A6E-B117-9912EE001A11}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{E0BF14BE-C26B-471C-8261-7405901AF5EA}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{97C50EC1-1657-438E-91E1-05D8576B1D39}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{04A0DC4F-342D-45B2-98B4-9BA2862FEFAB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{8F9974A7-5AC4-44B5-B457-27E1A68042A0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{91D243EA-BB48-45E6-BF98-6A6EF4803B73}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A4CFA084-D4B6-4CCE-957B-841B9CD37567}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CE531EA1-077B-46BA-9C69-CAB1D6B0041D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{611F1852-2564-43C9-9981-D845C1DC517B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{10329FF8-7EEE-41E7-B0C5-CDDC88FEAAF4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D0D2E99C-580E-4A5E-A29C-D0A512162948}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{7CD3F96B-7E33-4133-981F-DC9B265A3A33}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{F83F2ECB-DCAC-40CA-BF56-69D3F1E8C541}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{AC352BAC-C6FE-46A9-B3C4-25B45C6A155B}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{9CF84803-57D0-4481-9D56-7DE0C7CB3206}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{AC8F14A7-CD4A-4C4A-A9FB-FCA5A0AADB44}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{53F7F024-A4FE-4E7A-9F52-E85F9D674958}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8C00F606-1E03-41AA-A30A-29943B8DF297}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B186A536-5D9E-4EFD-B347-F2C26DB334F5}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{1627A7AE-7D96-41E4-97EE-A8492AA4CA35}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{DCCB9B5A-0229-4270-A719-96FAB632228A}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{F5D0BF8A-3AA2-4979-B68D-6FD9228DDC08}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{E4C81737-8869-4AE0-A50B-656AFD46D398}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [TCP Query User{6449E735-CCAD-4CE7-8799-5AC212EB9A48}C:\users\darkrider84\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\darkrider84\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{8B1BF0B6-6150-49E8-A435-88BFC860705F}C:\users\darkrider84\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\darkrider84\appdata\roaming\spotify\spotify.exe
FirewallRules: [{28E79238-9FDC-4554-918E-DA1AF2146CDB}] => (Block) C:\users\darkrider84\appdata\roaming\spotify\spotify.exe
FirewallRules: [{471A9878-966C-497D-82FD-045C0EB3D540}] => (Block) C:\users\darkrider84\appdata\roaming\spotify\spotify.exe
FirewallRules: [{CAECA831-EA51-444C-9F04-8DA1A3E8FCD1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4D026664-8A49-4894-9EA0-B29539525B29}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8D582414-556B-43A9-9425-2A1B3D7C8886}] => (Allow) C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{A7FEEF96-7F0D-4B1F-B7D1-DCC314C79668}] => (Allow) G:\SteamLibrary\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{50A686F5-8142-422F-B55E-46BCBF5716FA}] => (Allow) G:\SteamLibrary\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{BCA238A9-35F0-40C3-B819-5EA4E10A3B9A}] => (Allow) G:\SteamLibrary\steamapps\common\STALKER Clear Sky\bin\xrEngine.exe
FirewallRules: [{9789413A-AD83-4921-9EEA-C0DDA67C4664}] => (Allow) G:\SteamLibrary\steamapps\common\STALKER Clear Sky\bin\xrEngine.exe
FirewallRules: [{2805DCC8-C311-4FC3-B8BC-2EA8FBC8D38E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{3D846A7D-4BF5-4147-BAA9-23005BBB8BEF}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{12E68F26-2A3F-4E65-97D0-4BC976CA7A4D}] => (Allow) G:\SteamLibrary\steamapps\common\Metro Last Light\MetroLL.exe
FirewallRules: [{B401A963-86F5-4694-ABED-08AF9AE6E74B}] => (Allow) G:\SteamLibrary\steamapps\common\Metro Last Light\MetroLL.exe
FirewallRules: [{CBBF64C4-9F35-4A97-BDE9-9F86907C2EFE}] => (Allow) G:\Spiele\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{7837D8C0-6165-4D8F-B0B0-12523D349C83}] => (Allow) G:\Spiele\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{33FA855F-5DDC-40FA-8900-8B536A30F2FC}] => (Allow) G:\SteamLibrary\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{F22B29A4-BA95-42F3-8C7B-D5E0B1910277}] => (Allow) G:\SteamLibrary\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{AA9AC202-40A0-4593-90B0-672B8CB1606F}] => (Allow) G:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{66FD7688-B14B-4360-A1D9-0B7775B9F503}] => (Allow) G:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{2E6D3335-4271-4350-A834-0454DAE2C48C}] => (Allow) G:\SteamLibrary\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe
FirewallRules: [{C8A36DEE-7A20-48FF-B84B-9D97B9AD3801}] => (Allow) G:\SteamLibrary\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe
FirewallRules: [{5083175E-4571-4A99-B68A-C428A3ADA4CB}] => (Allow) G:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{250DD265-4B78-4A61-991D-5103D722D5E4}] => (Allow) G:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{E9674ADF-9409-478B-B028-8939525932F6}] => (Allow) G:\SteamLibrary\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{21DBBA9F-34A0-45FB-95A0-ADC762DBE0B7}] => (Allow) G:\SteamLibrary\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{9C9A8977-3929-4900-9596-4098A111E7F1}] => (Allow) G:\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{C736FFA1-E342-499A-B5F7-58D4CA7CBF76}] => (Allow) G:\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{0CBE1214-8489-48BE-B714-52415C2FB1FF}] => (Allow) G:\SteamLibrary\steamapps\common\METAL SLUG\mslug1.exe
FirewallRules: [{2383AA62-0BB2-4BC9-9B5B-EA34C2D26850}] => (Allow) G:\SteamLibrary\steamapps\common\METAL SLUG\mslug1.exe
FirewallRules: [{A4955AB1-DF3A-4CB9-A696-8E8451782CF0}] => (Allow) G:\Spiele\Ubisoft\Driver San Francisco\Driver.exe
FirewallRules: [{47B71177-949F-4297-B842-51DF6915C7BD}] => (Allow) G:\Spiele\Ubisoft\Driver San Francisco\Driver.exe
FirewallRules: [{8EA295D2-6945-41AB-8E65-EC0B4C43B298}] => (Allow) G:\SteamLibrary\steamapps\common\Cry of Fear\CoFLaunchApp.exe
FirewallRules: [{EFA66CF6-E97B-4F13-A827-7324A61E7629}] => (Allow) G:\SteamLibrary\steamapps\common\Cry of Fear\CoFLaunchApp.exe
FirewallRules: [{D1C4FC19-CDCF-4683-8601-9C23BF72C88C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{FB424363-1890-45C2-A6A7-E9ECCA48FB9C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{23EA1A11-FD32-4DEA-B8B1-40BB07540641}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{75FB0B59-AB20-44AD-A383-4F91781C1B01}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{7CA41E69-27F1-470C-ACD1-3B70827A8D89}] => (Allow) LPort=8317
FirewallRules: [{D3ABA2DD-15DE-4D3A-974D-8BC31E15BC41}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8D82E29A-72B0-4D8A-B3F7-65668167FC40}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{758A4674-EA30-4534-9F59-B728F9B533B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C3FB7FEA-7F57-4EF1-9A98-D119DB2BC7F9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{2E935E09-4DDA-4AAE-8E4E-D209832879A2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8D34C6B5-A64E-4FC3-B4A2-F671A5F5FDF6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8295E58D-D946-43CA-B31E-415D597E811B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{EAA10EE5-8B1A-4A7C-ADF3-73FE37B27DCE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{181C3830-425B-483B-8947-F62F8B4B9C6D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B4608E2B-D2E1-4E92-B91E-ACA52A643642}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{75BAABB0-A085-47C0-98C0-0C0A6C6C0D2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0A6190E6-107C-4015-80EE-8A7B977402E0}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{978F369D-B9A0-4CE6-9BBB-F5A765DBB3B1}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{AE687A5A-327B-4CD5-9240-F5A24EEF3819}] => (Allow) C:\Spiele\Combat Arms EU\NMService.exe
FirewallRules: [{9F5552E4-7277-41B8-940B-422AFC09E8C9}] => (Allow) C:\Spiele\Combat Arms EU\NMService.exe
FirewallRules: [{C89A8E73-181C-4608-B281-884CC4113B32}] => (Allow) G:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{50DE514E-6B12-42B7-97A6-2BD43E7F0EE2}] => (Allow) G:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{410D1551-820A-4917-84B6-32D0536EE05A}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{4A5D52B2-24BC-41F9-A82C-5C61CF1572C5}] => (Allow) C:\Program Files\Ubisoft\WATCH_DOGS\bin\watch_dogs.exe
FirewallRules: [{08042CB6-265E-4038-8C4C-32139A919E9C}] => (Allow) C:\Program Files\Ubisoft\WATCH_DOGS\bin\watch_dogs.exe
FirewallRules: [{798FCDDD-B0B2-4466-9310-50374330A2FC}] => (Allow) G:\SteamLibrary\steamapps\common\Edna and Harvey Harvey's New Eyes\harvey.exe
FirewallRules: [{7AB355F8-6A79-4EDA-923B-73F8D4D51D05}] => (Allow) G:\SteamLibrary\steamapps\common\Edna and Harvey Harvey's New Eyes\harvey.exe
FirewallRules: [{FBD73423-6D19-42FE-A7F7-54155A27EB75}] => (Allow) G:\SteamLibrary\steamapps\common\Edna and Harvey Harvey's New Eyes\VisionaireConfigurationTool.exe
FirewallRules: [{B07918D1-BE8A-47D2-8B24-8040B77E4930}] => (Allow) G:\SteamLibrary\steamapps\common\Edna and Harvey Harvey's New Eyes\VisionaireConfigurationTool.exe
FirewallRules: [{F9B024E9-FB91-4C72-A5C3-B8482C806410}] => (Allow) G:\SteamLibrary\steamapps\common\Edna & Harvey The Breakout\Edna.exe
FirewallRules: [{1FC7996D-99BE-4233-B017-1C2277FB17D3}] => (Allow) G:\SteamLibrary\steamapps\common\Edna & Harvey The Breakout\Edna.exe
FirewallRules: [{2533FF2A-B168-45F5-852F-D2731BF7675F}] => (Allow) G:\SteamLibrary\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{5ACC0003-F702-4403-AF5E-0413CB064448}] => (Allow) G:\SteamLibrary\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{22693E76-4E4A-4ABF-BFB3-7F1F136D0E9E}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{63940119-12B8-4EBF-B87E-808153F1CFFB}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{19D39094-DEA2-4DE6-9884-A3AE280EB9E3}] => (Allow) G:\SteamLibrary\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{0F6D3CCA-1BD4-411B-BEAC-D9AC2B8C8966}] => (Allow) G:\SteamLibrary\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{4F126F5D-76D8-42FB-80D9-9EF2E681A160}] => (Allow) G:\SteamLibrary\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{FC8CAEBD-7F6E-475C-974A-A2B73C8784C2}] => (Allow) G:\SteamLibrary\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{5BC92F99-C44D-4937-BC63-2BE7864034F5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8340599A-3941-4E67-A6D7-1CAC77C83BA1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{052F7A76-B2E8-4F8A-ACDA-370870207EF9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D1F56AFF-0213-43E7-977B-C846C1A3A322}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{034D21B2-6134-43ED-A085-96546F14BC48}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{2D95F963-38B1-4CA7-9ED7-7C676C57B312}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{AB28691F-74B0-4592-85E1-CA9A70BDCAFB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{B344CD87-8215-4166-87EA-A3389A37DDE8}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{30EA9D8A-DC66-47E9-85FA-C0FA43CB8280}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{EC5F70CB-7AC7-4BFA-9667-167D86372115}] => (Allow) G:\SteamLibrary\steamapps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{D749B238-6D12-4EA6-AD5D-6CC8ED174069}] => (Allow) G:\SteamLibrary\steamapps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{6AE00B4C-84CE-40C7-B6ED-8036498D4CBD}] => (Allow) G:\SteamLibrary\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{7EB8AE38-3C4F-4D95-B06F-DF5206087A88}] => (Allow) G:\SteamLibrary\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{5873CE42-61B6-4459-A79C-95B8E3689FF6}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{73195322-0469-466D-BB11-B9A44D5ED191}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{6C3AC1F2-A022-4A83-9AA2-89F7C33076F7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C13EA81F-9DD8-4543-8F67-D32D9AAD5D84}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
StandardProfile\AuthorizedApplications: [C:\Spiele\Combat Arms EU\CombatArms.exe] => :*Enabled:CombatArms.exe
StandardProfile\AuthorizedApplications: [C:\Spiele\Combat Arms EU\Engine.exe] => :*Enabled:Engine.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Killer Wireless-n/a/ac 1525 Wireless Network Adapter
Description: Killer Wireless-n/a/ac 1525 Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: Qcamain
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/06/2015 07:08:37 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (09/06/2015 07:04:24 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.

Error: (09/06/2015 10:58:45 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {9d868a8a-d62d-47d0-a9fa-789c905a9b3e}

Error: (09/06/2015 10:55:55 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.

Error: (09/06/2015 07:10:44 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {5001bc01-f69c-4b90-8a3f-b51a21bf81be}

Error: (09/06/2015 07:06:41 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {63a6533e-7693-437f-8788-9718b0ab578e}

Error: (09/06/2015 06:39:52 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {4e8d59dc-6d14-404e-b37b-fc37888b8193}

Error: (09/06/2015 03:18:54 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {c9700199-e78f-4768-af86-07d86fb3fee4}

Error: (09/06/2015 03:15:44 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {c9700199-e78f-4768-af86-07d86fb3fee4}

Error: (09/06/2015 03:15:38 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {c9700199-e78f-4768-af86-07d86fb3fee4}


Systemfehler:
=============
Error: (09/06/2015 07:04:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "WinDivert1.1" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (09/06/2015 07:04:20 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UimBus
Uim_DEVIM
Uim_IM

Error: (09/06/2015 10:58:57 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80240020 fehlgeschlagen: Upgrade auf Windows 10 Pro

Error: (09/06/2015 10:55:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "WinDivert1.1" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (09/06/2015 10:55:30 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UimBus
Uim_DEVIM
Uim_IM

Error: (09/06/2015 10:07:16 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort3 gefunden.

Error: (09/06/2015 10:07:16 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort3 gefunden.

Error: (09/06/2015 09:01:46 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort3 gefunden.

Error: (09/06/2015 08:29:54 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort3 gefunden.

Error: (09/05/2015 10:59:24 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UimBus
Uim_DEVIM
Uim_IM


Microsoft Office:
=========================
Error: (09/06/2015 07:08:37 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestG:\Users\darkrider84\Downloads\esetsmartinstaller_deu.exe

Error: (09/06/2015 07:04:24 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/06/2015 10:58:45 AM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {9d868a8a-d62d-47d0-a9fa-789c905a9b3e}

Error: (09/06/2015 10:55:55 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/06/2015 07:10:44 AM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {5001bc01-f69c-4b90-8a3f-b51a21bf81be}

Error: (09/06/2015 07:06:41 AM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {63a6533e-7693-437f-8788-9718b0ab578e}

Error: (09/06/2015 06:39:52 AM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {4e8d59dc-6d14-404e-b37b-fc37888b8193}

Error: (09/06/2015 03:18:54 AM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {c9700199-e78f-4768-af86-07d86fb3fee4}

Error: (09/06/2015 03:15:44 AM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {c9700199-e78f-4768-af86-07d86fb3fee4}

Error: (09/06/2015 03:15:38 AM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {c9700199-e78f-4768-af86-07d86fb3fee4}


CodeIntegrity:
===================================
  Date: 2015-05-16 01:29:37.179
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:29:37.163
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:29:23.753
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:29:23.736
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:28:01.415
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:28:01.399
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:25:40.010
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:25:39.996
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:25:35.055
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:25:35.041
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 27%
Installierter physikalischer RAM: 16332.97 MB
Verfügbarer physikalischer RAM: 11909.62 MB
Summe virtueller Speicher: 32664.14 MB
Verfügbarer virtueller Speicher: 27582.96 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:476.84 GB) (Free:58.69 GB) NTFS
Drive f: (Lokaler Datenträger) (Fixed) (Total:930.41 GB) (Free:107.74 GB) NTFS
Drive g: (Seagate) (Fixed) (Total:2794.39 GB) (Free:1584.98 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: 17A18ECB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=476.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2BD2C32A)
Partition 1: (Not Active) - (Size=930.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1 GB) - (Type=12)

==================== Ende von Addition.txt ============================

schrauber · 07.09.2015, 18:24

hi,

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

darkrider78 · 07.09.2015, 21:45

Hi,
MBAR kann nicht updaten.

Hier der TDSS-Log:

Code:

ATTFilter

22:39:44.0575 0x2c9c  TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
22:39:47.0905 0x2c9c  ============================================================
22:39:47.0905 0x2c9c  Current date / time: 2015/09/07 22:39:47.0905
22:39:47.0906 0x2c9c  SystemInfo:
22:39:47.0906 0x2c9c  
22:39:47.0906 0x2c9c  OS Version: 6.1.7601 ServicePack: 1.0
22:39:47.0906 0x2c9c  Product type: Workstation
22:39:47.0906 0x2c9c  ComputerName: DARKRIDER84-PC
22:39:47.0906 0x2c9c  UserName: darkrider84
22:39:47.0906 0x2c9c  Windows directory: C:\Windows
22:39:47.0906 0x2c9c  System windows directory: C:\Windows
22:39:47.0906 0x2c9c  Running under WOW64
22:39:47.0906 0x2c9c  Processor architecture: Intel x64
22:39:47.0906 0x2c9c  Number of processors: 8
22:39:47.0906 0x2c9c  Page size: 0x1000
22:39:47.0906 0x2c9c  Boot type: Normal boot
22:39:47.0906 0x2c9c  ============================================================
22:39:48.0211 0x2c9c  KLMD registered as C:\Windows\system32\drivers\33179958.sys
22:39:48.0275 0x2c9c  System UUID: {EF0FB6CF-2D85-4983-7F4A-4856A021D453}
22:39:48.0508 0x2c9c  Drive \Device\Harddisk0\DR0 - Size: 0x773C256000 ( 476.94 Gb ), SectorSize: 0x200, Cylinders: 0xF334, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:39:48.0524 0x2c9c  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:39:48.0539 0x2c9c  Drive \Device\Harddisk1\DR1 - Size: 0x2BAA1476000 ( 2794.52 Gb ), SectorSize: 0x200, Cylinders: 0x59101, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:39:48.0552 0x2c9c  ============================================================
22:39:48.0552 0x2c9c  \Device\Harddisk0\DR0:
22:39:48.0553 0x2c9c  MBR partitions:
22:39:48.0553 0x2c9c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:39:48.0553 0x2c9c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3B9AD800
22:39:48.0553 0x2c9c  \Device\Harddisk2\DR2:
22:39:48.0553 0x2c9c  MBR partitions:
22:39:48.0553 0x2c9c  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x744D2800
22:39:48.0553 0x2c9c  \Device\Harddisk1\DR1:
22:39:48.0553 0x2c9c  GPT partitions:
22:39:48.0553 0x2c9c  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {8818D938-BFEA-484C-80AD-480D02DF6824}, Name: Microsoft reserved partition, StartLBA 0x22, BlocksNum 0x40000
22:39:48.0553 0x2c9c  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {917EA19E-4D7E-474F-9CC0-092208381E60}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0x5D4C9800
22:39:48.0553 0x2c9c  MBR partitions:
22:39:48.0553 0x2c9c  ============================================================
22:39:48.0554 0x2c9c  C: <-> \Device\Harddisk0\DR0\Partition2
22:39:48.0574 0x2c9c  F: <-> \Device\Harddisk2\DR2\Partition1
22:39:48.0603 0x2c9c  G: <-> \Device\Harddisk1\DR1\Partition2
22:39:48.0603 0x2c9c  ============================================================
22:39:48.0603 0x2c9c  Initialize success
22:39:48.0603 0x2c9c  ============================================================
22:40:12.0933 0x0944  ============================================================
22:40:12.0933 0x0944  Scan started
22:40:12.0933 0x0944  Mode: Manual; SigCheck; TDLFS; 
22:40:12.0933 0x0944  ============================================================
22:40:12.0933 0x0944  KSN ping started
22:40:18.0473 0x0944  KSN ping finished: true
22:40:18.0932 0x0944  ================ Scan system memory ========================
22:40:18.0932 0x0944  System memory - ok
22:40:18.0932 0x0944  ================ Scan services =============================
22:40:18.0955 0x0944  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:40:18.0997 0x0944  1394ohci - ok
22:40:19.0005 0x0944  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:40:19.0016 0x0944  ACPI - ok
22:40:19.0018 0x0944  [ 2EA3EB3E69B6480AB112E876F3096312, 4A22343D8F261BE90F7287318EAC5B187F49D1C375174E4B526A0F3A27CD8346 ] AcpiCtlDrv      C:\Windows\system32\DRIVERS\AcpiCtlDrv.sys
22:40:19.0026 0x0944  AcpiCtlDrv - ok
22:40:19.0028 0x0944  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:40:19.0040 0x0944  AcpiPmi - ok
22:40:19.0059 0x0944  [ 8EEC0269D86CFADD292C9B05F59F23ED, 779F863563F9F31B102EB7A7C1580281D73F083213B0DD17A82A9EF2886DFD79 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
22:40:19.0078 0x0944  AcrSch2Svc - ok
22:40:19.0082 0x0944  [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:40:19.0089 0x0944  AdobeARMservice - ok
22:40:19.0105 0x0944  [ 368290D0A612D62DA6F3D798B1BB8FE7, D573BF8543F37BC51B88A2473EDFD28AFBCCC446E8CADD54A90FA48D8739D222 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:40:19.0114 0x0944  AdobeFlashPlayerUpdateSvc - ok
22:40:19.0121 0x0944  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:40:19.0138 0x0944  adp94xx - ok
22:40:19.0143 0x0944  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:40:19.0160 0x0944  adpahci - ok
22:40:19.0164 0x0944  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:40:19.0178 0x0944  adpu320 - ok
22:40:19.0181 0x0944  [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:40:19.0191 0x0944  AeLookupSvc - ok
22:40:19.0237 0x0944  [ 3B0908381A28DEFD42F42DBA9F06D39B, 3179AC9F26338D684CB806F29CD37EA75BE7F4553834F682E65ECE6D6D797FD4 ] afcdpsrv        C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
22:40:19.0287 0x0944  afcdpsrv - ok
22:40:19.0297 0x0944  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
22:40:19.0311 0x0944  AFD - ok
22:40:19.0314 0x0944  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
22:40:19.0321 0x0944  agp440 - ok
22:40:19.0324 0x0944  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
22:40:19.0333 0x0944  ALG - ok
22:40:19.0335 0x0944  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:40:19.0346 0x0944  aliide - ok
22:40:19.0348 0x0944  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:40:19.0359 0x0944  amdide - ok
22:40:19.0361 0x0944  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:40:19.0371 0x0944  AmdK8 - ok
22:40:19.0373 0x0944  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
22:40:19.0382 0x0944  AmdPPM - ok
22:40:19.0385 0x0944  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:40:19.0393 0x0944  amdsata - ok
22:40:19.0397 0x0944  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:40:19.0406 0x0944  amdsbs - ok
22:40:19.0408 0x0944  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:40:19.0414 0x0944  amdxata - ok
22:40:19.0416 0x0944  [ 363571BC0C79E394E69300D1F2E3DDAE, 4C9DDB848900081D95C14026B0E7B84419867685506E616E1FDA1B79B1FD224B ] androidusb      C:\Windows\system32\Drivers\androidusb.sys
22:40:19.0429 0x0944  androidusb - ok
22:40:19.0432 0x0944  [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID           C:\Windows\system32\drivers\appid.sys
22:40:19.0442 0x0944  AppID - ok
22:40:19.0444 0x0944  [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:40:19.0452 0x0944  AppIDSvc - ok
22:40:19.0454 0x0944  [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo         C:\Windows\System32\appinfo.dll
22:40:19.0463 0x0944  Appinfo - ok
22:40:19.0467 0x0944  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
22:40:19.0479 0x0944  AppMgmt - ok
22:40:19.0482 0x0944  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
22:40:19.0490 0x0944  arc - ok
22:40:19.0496 0x0944  [ 68D342BCBF3147CB820E6F5C9E95BE6B, 48182137777EBE09380170F49F749CA33F3699DB849DDC621CA431504F95DF89 ] ArchiCrypt Sichere Loeschzonen C:\Program Files (x86)\ArchiCrypt\ArchiCrypt Shredder 6\ArchiCryptInjector64.exe
22:40:19.0505 0x0944  ArchiCrypt Sichere Loeschzonen - ok
22:40:19.0508 0x0944  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:40:19.0516 0x0944  arcsas - ok
22:40:19.0520 0x0944  [ 070633D013447B4DA8D66B23B7BA1C3A, BD2AAFAB01551473729FA23FF5155798B0983FEBC0A64D1C7C30112FACA27988 ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
22:40:19.0527 0x0944  asmthub3 - ok
22:40:19.0534 0x0944  [ AD0476BF351586C2B82509FBD4890A59, 409782A9263B33E0615A5CA7904424ACAB9BCB7EC883CDB873224E147119CA15 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
22:40:19.0545 0x0944  asmtxhci - ok
22:40:19.0554 0x0944  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:40:19.0564 0x0944  aspnet_state - ok
22:40:19.0567 0x0944  [ 2C5E21DF89FEE0B09BDA4D1BABCF44B7, A4B8B2EDC66EE5C244FA6B14E208B17B746747C8AF7DCD5F47AB5D44A8CE3D39 ] asstor64        C:\Windows\system32\DRIVERS\asstor64.sys
22:40:19.0573 0x0944  asstor64 - ok
22:40:19.0575 0x0944  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:40:19.0604 0x0944  AsyncMac - ok
22:40:19.0606 0x0944  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:40:19.0612 0x0944  atapi - ok
22:40:19.0614 0x0944  [ 93C18508CBBB82F601A4732B1F4A846C, 28B4A3C25B2E6DB5FA22855BA4B97381FC359A716C6C9469D8732AC24A03CEFB ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
22:40:19.0625 0x0944  AthBTPort - ok
22:40:19.0632 0x0944  [ 93B038459C1AECBFD5D11DF5EB2B6F48, 44B823A6217B4213121EDA374AB560A624DB2BFC42E3FA7284276C69BBCC674E ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
22:40:19.0640 0x0944  AtherosSvc - detected UnsignedFile.Multi.Generic ( 1 )
22:40:25.0309 0x0944  AtherosSvc ( UnsignedFile.Multi.Generic ) - warning
22:40:30.0794 0x0944  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:40:30.0811 0x0944  AudioEndpointBuilder - ok
22:40:30.0820 0x0944  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:40:30.0835 0x0944  AudioSrv - ok
22:40:30.0843 0x0944  [ 50C3C62FFE6337E6E4F2F01CB07DF63C, CC9C7D2827E872F22A2A79D42195530F61DF6EA6A1C8F520E25DB35537574FAB ] AVP16.0.0       C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
22:40:30.0851 0x0944  AVP16.0.0 - ok
22:40:30.0854 0x0944  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:40:30.0865 0x0944  AxInstSV - ok
22:40:30.0872 0x0944  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:40:30.0887 0x0944  b06bdrv - ok
22:40:30.0892 0x0944  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:40:30.0903 0x0944  b57nd60a - ok
22:40:30.0907 0x0944  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:40:30.0916 0x0944  BDESVC - ok
22:40:30.0918 0x0944  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:40:30.0935 0x0944  Beep - ok
22:40:30.0937 0x0944  [ F27236EBB135363D61D886EC75C2030A, 61A6C817B6FD2ECC26BBBDA2E65C10EDECA8A568C8E67B534EF51DD867FF7F2A ] BeSecure        C:\Program Files\BeSecure\BeSecure.exe
22:40:30.0940 0x0944  BeSecure - detected UnsignedFile.Multi.Generic ( 1 )
22:40:36.0403 0x0944  Detect skipped due to KSN trusted
22:40:36.0403 0x0944  BeSecure - ok
22:40:36.0405 0x0944  [ 9C587BBE71303BD5941E606CC8A3B10C, 2A2A402331265BF8E76DCACFB572F27FEAC0FDFB33397B66A8B2D5281DF51EC8 ] BeSecure_updater_service C:\Program Files\BeSecure\BeSecure_updater_service.exe
22:40:36.0407 0x0944  BeSecure_updater_service - detected UnsignedFile.Multi.Generic ( 1 )
22:40:41.0927 0x0944  Detect skipped due to KSN trusted
22:40:41.0927 0x0944  BeSecure_updater_service - ok
22:40:41.0942 0x0944  [ 56805606D40B1EC96AE8442E21318C13, 3CBCB50EA8D2124B5E322D38F721670B4997F5F6865D3C7D5F819B9EF9620394 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
22:40:41.0963 0x0944  BEService - ok
22:40:41.0974 0x0944  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
22:40:41.0992 0x0944  BFE - ok
22:40:41.0996 0x0944  [ 89A9052AB41622EFD260FE5C1D51F3FC, DB56AC3643DFA0FF1A278C843E5DEBDC580E303C369120B4BECF59889AE050D4 ] BfLwf           C:\Windows\system32\DRIVERS\bflwfx64.sys
22:40:42.0003 0x0944  BfLwf - ok
22:40:42.0015 0x0944  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
22:40:42.0044 0x0944  BITS - ok
22:40:42.0046 0x0944  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:40:42.0055 0x0944  blbdrive - ok
22:40:42.0062 0x0944  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:40:42.0071 0x0944  Bonjour Service - ok
22:40:42.0074 0x0944  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:40:42.0084 0x0944  bowser - ok
22:40:42.0086 0x0944  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:40:42.0095 0x0944  BrFiltLo - ok
22:40:42.0097 0x0944  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:40:42.0105 0x0944  BrFiltUp - ok
22:40:42.0109 0x0944  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
22:40:42.0118 0x0944  Browser - ok
22:40:42.0124 0x0944  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:40:42.0137 0x0944  Brserid - ok
22:40:42.0139 0x0944  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:40:42.0149 0x0944  BrSerWdm - ok
22:40:42.0151 0x0944  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:40:42.0160 0x0944  BrUsbMdm - ok
22:40:42.0162 0x0944  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:40:42.0170 0x0944  BrUsbSer - ok
22:40:42.0175 0x0944  [ DCA3BEB41A5C0DF283D1D883A3ED7B7E, CAC782D262D01E51E390E22B3B70BC6E0483FB450240F580B38F45971487E503 ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
22:40:42.0188 0x0944  BTATH_A2DP - ok
22:40:42.0191 0x0944  [ A5DD55A8BA9A0BB36F11976426F728E6, B6CF2CD533CC90CE6E852D5370AAAEAA006EB4CF47A99EAC5A206EB41A6E6A03 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
22:40:42.0200 0x0944  btath_avdt - ok
22:40:42.0203 0x0944  [ D4902F6448CE33F5EDB4864F13FEB807, 3FC94A2611B0E4E5ECB38423227AF7CCD57F24CCD52F6A028E68B85C52B3623A ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
22:40:42.0212 0x0944  BTATH_BUS - ok
22:40:42.0216 0x0944  [ 500BB13A69F1626DDF68362AE36059DB, 0C76F1F43199D84E4F6A0D026362142AACA6FED03A1C4D1D11EA21B9195D8E7B ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
22:40:42.0227 0x0944  BTATH_HCRP - ok
22:40:42.0229 0x0944  [ 7C66E7B9E3C3AC43C6A54C690BB3DCAA, 72C84BA700337DCC34082FE6192FADE1B1B37D737823250F2A1E2C09A93161DB ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
22:40:42.0239 0x0944  BTATH_LWFLT - ok
22:40:42.0243 0x0944  [ 0305CD01E02D9AC58687055DC17E17A7, 57630FCB69E1576E6E70732E96EB45AB87DF9DC8CC3CA41885FE740D8A29007D ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
22:40:42.0253 0x0944  BTATH_RCP - ok
22:40:42.0263 0x0944  [ F4A83E8A87E810F6B332002DD8CA5E0A, 7F9264295D762578B989504EB7E4923AD05B0A38EA0A379E709F5780A74E7657 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
22:40:42.0275 0x0944  BtFilter - ok
22:40:42.0278 0x0944  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
22:40:42.0286 0x0944  BthEnum - ok
22:40:42.0289 0x0944  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:40:42.0299 0x0944  BTHMODEM - ok
22:40:42.0302 0x0944  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
22:40:42.0313 0x0944  BthPan - ok
22:40:42.0321 0x0944  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
22:40:42.0336 0x0944  BTHPORT - ok
22:40:42.0339 0x0944  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
22:40:42.0357 0x0944  bthserv - ok
22:40:42.0360 0x0944  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
22:40:42.0369 0x0944  BTHUSB - ok
22:40:42.0387 0x0944  [ FECA9F830A5C6BAB9978E6781A26AE2B, CA1681A2F4FA849815B8E823805E078DB9C050CEE86E9E394B2A37B57CC474A6 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
22:40:42.0409 0x0944  c2cautoupdatesvc - ok
22:40:42.0432 0x0944  [ 5B33709F7FE59BB625F113EED86AFC5C, 8D29FE242D55526FDEB2CB4009B5DE19C93972E872BE6328AD3305E360A3D44B ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
22:40:42.0457 0x0944  c2cpnrsvc - ok
22:40:42.0461 0x0944  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:40:42.0479 0x0944  cdfs - ok
22:40:42.0483 0x0944  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:40:42.0492 0x0944  cdrom - ok
22:40:42.0495 0x0944  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:40:42.0512 0x0944  CertPropSvc - ok
22:40:42.0514 0x0944  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
22:40:42.0524 0x0944  circlass - ok
22:40:42.0530 0x0944  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
22:40:42.0540 0x0944  CLFS - ok
22:40:42.0544 0x0944  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:40:42.0552 0x0944  clr_optimization_v2.0.50727_32 - ok
22:40:42.0555 0x0944  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:40:42.0562 0x0944  clr_optimization_v2.0.50727_64 - ok
22:40:42.0569 0x0944  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:40:42.0581 0x0944  clr_optimization_v4.0.30319_32 - ok
22:40:42.0584 0x0944  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:40:42.0594 0x0944  clr_optimization_v4.0.30319_64 - ok
22:40:42.0596 0x0944  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
22:40:42.0604 0x0944  CmBatt - ok
22:40:42.0606 0x0944  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:40:42.0616 0x0944  cmdide - ok
22:40:42.0618 0x0944  [ E5DA87DAB3A32FA03F13FCFAE4255084, B2155BD7A87F5A07FF4E30A9BA6650489519B0BD58B26367856D29C7DDC31981 ] CMfilt          C:\Windows\system32\drivers\CMfilt64.sys
22:40:42.0626 0x0944  CMfilt - ok
22:40:42.0632 0x0944  [ B2A6D2A30E93B6F215F74AC7E1733C9C, 960299F7BF2501B46296EDEA050BF30313C17A9B785574B56B79C070BD1B6E1A ] cm_km           C:\Windows\system32\DRIVERS\cm_km.sys
22:40:42.0644 0x0944  cm_km - ok
22:40:42.0651 0x0944  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
22:40:42.0665 0x0944  CNG - ok
22:40:42.0668 0x0944  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
22:40:42.0674 0x0944  Compbatt - ok
22:40:42.0676 0x0944  [ 0C5B0DF7EF9F719EBAE9F8FE70E083A9, 3C21F5688D7EF748B7D48625E85FB9D5A6A4ABCE1939AF4D6993D3AD5CE71FD2 ] CompFilter64    C:\Windows\system32\DRIVERS\lvbflt64.sys
22:40:42.0687 0x0944  CompFilter64 - ok
22:40:42.0689 0x0944  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:40:42.0698 0x0944  CompositeBus - ok
22:40:42.0700 0x0944  COMSysApp - ok
22:40:42.0716 0x0944  [ AAEB993B517D5D195783851D6B5E54A1, 10B438CBB9F73C68E33FC86F4DF78385803C0CD04FC99DAB1942EB13921D11AE ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
22:40:42.0726 0x0944  cphs - ok
22:40:42.0730 0x0944  cpuz136 - ok
22:40:42.0732 0x0944  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:40:42.0739 0x0944  crcdisk - ok
22:40:42.0743 0x0944  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:40:42.0754 0x0944  CryptSvc - ok
22:40:42.0762 0x0944  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
22:40:42.0776 0x0944  CSC - ok
22:40:42.0786 0x0944  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
22:40:42.0802 0x0944  CscService - ok
22:40:42.0815 0x0944  [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:40:42.0830 0x0944  cvhsvc - ok
22:40:42.0832 0x0944  dbupdate - ok
22:40:42.0833 0x0944  dbupdatem - ok
22:40:42.0842 0x0944  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:40:42.0867 0x0944  DcomLaunch - ok
22:40:42.0872 0x0944  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
22:40:42.0893 0x0944  defragsvc - ok
22:40:42.0897 0x0944  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:40:42.0915 0x0944  DfsC - ok
22:40:42.0918 0x0944  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
22:40:42.0932 0x0944  dg_ssudbus - ok
22:40:42.0937 0x0944  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:40:42.0949 0x0944  Dhcp - ok
22:40:42.0966 0x0944  [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack       C:\Windows\system32\diagtrack.dll
22:40:42.0991 0x0944  DiagTrack - ok
22:40:42.0994 0x0944  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
22:40:43.0011 0x0944  discache - ok
22:40:43.0014 0x0944  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
22:40:43.0020 0x0944  Disk - ok
22:40:43.0023 0x0944  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
22:40:43.0036 0x0944  dmvsc - ok
22:40:43.0040 0x0944  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:40:43.0051 0x0944  Dnscache - ok
22:40:43.0055 0x0944  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:40:43.0076 0x0944  dot3svc - ok
22:40:43.0080 0x0944  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
22:40:43.0099 0x0944  DPS - ok
22:40:43.0101 0x0944  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:40:43.0114 0x0944  drmkaud - ok
22:40:43.0127 0x0944  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:40:43.0143 0x0944  DXGKrnl - ok
22:40:43.0145 0x0944  EagleX64 - ok
22:40:43.0148 0x0944  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
22:40:43.0166 0x0944  EapHost - ok
22:40:43.0168 0x0944  EasyAntiCheat - ok
22:40:43.0206 0x0944  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:40:43.0264 0x0944  ebdrv - ok
22:40:43.0268 0x0944  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] EFS             C:\Windows\System32\lsass.exe
22:40:43.0277 0x0944  EFS - ok
22:40:43.0288 0x0944  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:40:43.0307 0x0944  ehRecvr - ok
22:40:43.0310 0x0944  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
22:40:43.0319 0x0944  ehSched - ok
22:40:43.0327 0x0944  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:40:43.0341 0x0944  elxstor - ok
22:40:43.0345 0x0944  [ D315FF43E23DF424ECEC2F6C930203E4, 68940EDA34DC4945CDD0D8018D96A0DA8F99F16A930946D14E4FECEE033FCB80 ] EpsonScanSvc    C:\Windows\system32\EscSvc64.exe
22:40:43.0352 0x0944  EpsonScanSvc - ok
22:40:43.0353 0x0944  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:40:43.0362 0x0944  ErrDev - ok
22:40:43.0365 0x0944  [ DDF090A1D27D496BA6BFBF7C59693A7F, 4EEB8970B11A64FA2DAE216574C7637541DE9435AD063DB3157ECF0D09D4A94C ] ESProtectionDriver C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys
22:40:43.0371 0x0944  ESProtectionDriver - ok
22:40:43.0378 0x0944  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
22:40:43.0400 0x0944  EventSystem - ok
22:40:43.0404 0x0944  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
22:40:43.0425 0x0944  exfat - ok
22:40:43.0429 0x0944  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:40:43.0450 0x0944  fastfat - ok
22:40:43.0460 0x0944  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
22:40:43.0476 0x0944  Fax - ok
22:40:43.0479 0x0944  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
22:40:43.0487 0x0944  fdc - ok
22:40:43.0489 0x0944  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
22:40:43.0507 0x0944  fdPHost - ok
22:40:43.0509 0x0944  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:40:43.0527 0x0944  FDResPub - ok
22:40:43.0529 0x0944  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:40:43.0536 0x0944  FileInfo - ok
22:40:43.0538 0x0944  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:40:43.0556 0x0944  Filetrace - ok
22:40:43.0561 0x0944  [ 72CC30F0D6DF8D3FBD5CD728259A8F69, F7774D35B38F35E31A8EEE37FF2F203C1CED433FF84EC265CD92B38CBFE3AB8F ] file_tracker    C:\Windows\system32\DRIVERS\file_tracker.sys
22:40:43.0570 0x0944  file_tracker - ok
22:40:43.0572 0x0944  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:40:43.0581 0x0944  flpydisk - ok
22:40:43.0586 0x0944  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:40:43.0596 0x0944  FltMgr - ok
22:40:43.0599 0x0944  [ 9BD0273A5B650CC16E8A54AD9B312BEB, 1AA219C4CC29E8301075537A330CC7FB677CD884AABD8FB3D99CFBEA1AB4CDF2 ] fltsrv          C:\Windows\system32\DRIVERS\fltsrv.sys
22:40:43.0606 0x0944  fltsrv - ok
22:40:43.0622 0x0944  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
22:40:43.0646 0x0944  FontCache - ok
22:40:43.0649 0x0944  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:40:43.0655 0x0944  FontCache3.0.0.0 - ok
22:40:43.0660 0x0944  [ 14B2D4F898F338E9D76C3804C75B31B7, DD2E1E6D168EB7E2D5287B8A6B2B71CCFE4D416844600723089CB69B2E11ED57 ] FoxitCloudUpdateService C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
22:40:43.0669 0x0944  FoxitCloudUpdateService - ok
22:40:43.0671 0x0944  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:40:43.0678 0x0944  FsDepends - ok
22:40:43.0680 0x0944  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:40:43.0686 0x0944  Fs_Rec - ok
22:40:43.0693 0x0944  [ 6807483EF10156362A67CEF0AF2FFDC7, C72E4D62D24324D35E188C038B14D992F0F1213ABBAC34A26584099242D2B7D2 ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
22:40:43.0703 0x0944  Futuremark SystemInfo Service - ok
22:40:43.0708 0x0944  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:40:43.0718 0x0944  fvevol - ok
22:40:43.0720 0x0944  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:40:43.0728 0x0944  gagp30kx - ok
22:40:43.0744 0x0944  [ 21931B9C5FDE6087F47F710AC1BE16E9, A727A8922A9769AAC77F5D85ED3475853655E9483C8DA091653D0B1F3D479398 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
22:40:43.0763 0x0944  GfExperienceService - ok
22:40:43.0774 0x0944  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
22:40:43.0801 0x0944  gpsvc - ok
22:40:43.0803 0x0944  GPUZ - ok
22:40:43.0807 0x0944  [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:40:43.0813 0x0944  gupdate - ok
22:40:43.0815 0x0944  [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:40:43.0821 0x0944  gupdatem - ok
22:40:43.0824 0x0944  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
22:40:43.0829 0x0944  hamachi - ok
22:40:43.0860 0x0944  [ 2ADED86ED9B92885378467CFEE9ABE8F, 78703B6E51C5E7DCFFBA9F15C404DB2A0054FE8F2F92B7AD470B08498995712A ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
22:40:43.0893 0x0944  Hamachi2Svc - ok
22:40:43.0898 0x0944  [ 1854F72C219F72DB49698405520F3638, BEA6C02D947465C9FAE478DF4DCFC08C07B308DD28AA602E2D73690DA669CB1B ] hcmon           C:\Windows\system32\drivers\hcmon.sys
22:40:43.0904 0x0944  hcmon - ok
22:40:43.0906 0x0944  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:40:43.0915 0x0944  hcw85cir - ok
22:40:43.0921 0x0944  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:40:43.0935 0x0944  HdAudAddService - ok
22:40:43.0938 0x0944  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:40:43.0949 0x0944  HDAudBus - ok
22:40:43.0951 0x0944  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:40:43.0960 0x0944  HidBatt - ok
22:40:43.0963 0x0944  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:40:43.0974 0x0944  HidBth - ok
22:40:43.0976 0x0944  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:40:43.0991 0x0944  HidIr - ok
22:40:43.0993 0x0944  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
22:40:44.0012 0x0944  hidserv - ok
22:40:44.0014 0x0944  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:40:44.0023 0x0944  HidUsb - ok
22:40:44.0026 0x0944  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:40:44.0044 0x0944  hkmsvc - ok
22:40:44.0049 0x0944  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:40:44.0060 0x0944  HomeGroupListener - ok
22:40:44.0065 0x0944  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:40:44.0075 0x0944  HomeGroupProvider - ok
22:40:44.0077 0x0944  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:40:44.0089 0x0944  HpSAMD - ok
22:40:44.0100 0x0944  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:40:44.0117 0x0944  HTTP - ok
22:40:44.0130 0x0944  HWiNFO32 - ok
22:40:44.0131 0x0944  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:40:44.0137 0x0944  hwpolicy - ok
22:40:44.0140 0x0944  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:40:44.0153 0x0944  i8042prt - ok
22:40:44.0171 0x0944  [ DD0AA0F01ABCBB2C914765202B5C84AE, C2DD1F646083F8AE0169AC7D73D4520482BB664E83F97FBC475EE125E3FB1D1C ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
22:40:44.0196 0x0944  iaStorA - ok
22:40:44.0198 0x0944  [ F6B412C3ED2F440EF7BE58E98EC9AB38, D40CC31E1807AFAD48CD2224EB1DAD6F1E7A3A2A9F26612A42DDD2D85A7F9304 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
22:40:44.0205 0x0944  iaStorF - ok
22:40:44.0211 0x0944  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:40:44.0224 0x0944  iaStorV - ok
22:40:44.0228 0x0944  [ D8808F658B310B89EEA036FA618A3BD4, FD43C69FC6110614ED5542210F7BC3326A09B73C67144B84194591247844A021 ] ICCS            C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
22:40:44.0236 0x0944  ICCS - ok
22:40:44.0238 0x0944  [ 3B529CA6E6537E89547B4815FCE95A76, 5FCC3D3EFFA50EEEFA38B6137580AFEDC7C3D56BA1BB44658D9CD6AA60A1B4FF ] ICCWDT          C:\Windows\system32\DRIVERS\ICCWDT.sys
22:40:44.0246 0x0944  ICCWDT - ok
22:40:44.0258 0x0944  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:40:44.0275 0x0944  idsvc - ok
22:40:44.0277 0x0944  IEEtwCollectorService - ok
22:40:44.0334 0x0944  [ 4C03EFF5057BD90E797ABE0666BAF2C6, 7DD4DABBEA824752C6D35BD7E4A6735C6E9B15017F4F9F02D1535874971B403B ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:40:44.0423 0x0944  igfx - ok
22:40:44.0431 0x0944  [ C43DD27FD7F58203D2ED4CBF2FAF2D4E, A3FD2BE5A22274799C473F0935BA102B611E83C14822E640ED22B46E16D38C35 ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe
22:40:44.0441 0x0944  igfxCUIService1.0.0.0 - ok
22:40:44.0444 0x0944  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:40:44.0454 0x0944  iirsp - ok
22:40:44.0465 0x0944  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
22:40:44.0483 0x0944  IKEEXT - ok
22:40:44.0487 0x0944  [ 0BBE196EED750C18E5D4B3CB55EB097C, 6A67BF6CD9BBC77034AD1BBDE6FD1DE78440825E317DB7C517BD4D773FEBDA39 ] INETMON         C:\Windows\System32\Drivers\INETMON.sys
22:40:44.0497 0x0944  INETMON - ok
22:40:44.0548 0x0944  [ D172E06EFE08DF148155A59DB716C1B6, F059B0B37C5E944D70626E9F029BC6311029E0A9D778C9C75DDDDC59A5AF1605 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:40:44.0603 0x0944  IntcAzAudAddService - ok
22:40:44.0613 0x0944  [ 9D01DDF5EA8494BBCBB73FF385E35D35, C575DC65275BEA8558A855C7DC6CFA84BD7F48D24BB0C522084E89DDC5CB02A7 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
22:40:44.0631 0x0944  IntcDAud - ok
22:40:44.0634 0x0944  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
22:40:44.0644 0x0944  intelide - ok
22:40:44.0646 0x0944  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:40:44.0655 0x0944  intelppm - ok
22:40:44.0657 0x0944  [ D9B56324C4A13F51A5B22238136C85D0, 52FCE05BF7427E95B3C9AFE0F2EB3A2A6F0BF910ECDC5F6B349DC5EACCDAAD39 ] iocbios2        C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys
22:40:44.0665 0x0944  iocbios2 - ok
22:40:44.0668 0x0944  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:40:44.0687 0x0944  IPBusEnum - ok
22:40:44.0689 0x0944  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:40:44.0707 0x0944  IpFilterDriver - ok
22:40:44.0715 0x0944  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:40:44.0731 0x0944  iphlpsvc - ok
22:40:44.0734 0x0944  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:40:44.0747 0x0944  IPMIDRV - ok
22:40:44.0750 0x0944  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:40:44.0769 0x0944  IPNAT - ok
22:40:44.0771 0x0944  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:40:44.0780 0x0944  IRENUM - ok
22:40:44.0782 0x0944  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:40:44.0793 0x0944  isapnp - ok
22:40:44.0798 0x0944  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:40:44.0814 0x0944  iScsiPrt - ok
22:40:44.0816 0x0944  [ 35C0995BCDB0E45D1EEBE4FB582D1563, 67B44EE25B8FF5778AC58255265536EC4CC444A5A8368D6311DEDAF58357E5ED ] ISCT            C:\Windows\system32\DRIVERS\ISCTD.sys
22:40:44.0828 0x0944  ISCT - ok
22:40:44.0830 0x0944  [ 8CAF9BE17438F875A82FCE36DE4DC634, 8CBD8817D4429D40FA60B9397C7AD33FB3DC342DEEF2E25C1C8B13976E16F42D ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
22:40:44.0836 0x0944  iusb3hcs - ok
22:40:44.0842 0x0944  [ 013AC194D2716C345742B01CDC4A73A7, AF1663A9D13EE892D6EF79C8460BACEAB476821FEAF9418122EB885AF47BC10A ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
22:40:44.0854 0x0944  iusb3hub - ok
22:40:44.0866 0x0944  [ 242C9879365A45E4E0C5E2E13E43E938, 43F5003794D1388B58CA9D8CD126480DE5C8CC63CBA98DFF602F46F616DA5064 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
22:40:44.0884 0x0944  iusb3xhc - ok
22:40:44.0887 0x0944  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:40:44.0893 0x0944  kbdclass - ok
22:40:44.0895 0x0944  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:40:44.0903 0x0944  kbdhid - ok
22:40:44.0906 0x0944  [ 61F33611E3EB17B4A05DDFE837DDB6C0, 05CAF0506041C659204152354D8ACCFB211DED946D01E5AFF3DE30559F0BA4A6 ] Ke2200          C:\Windows\system32\DRIVERS\e22w7x64.sys
22:40:44.0913 0x0944  Ke2200 - ok
22:40:44.0915 0x0944  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] KeyIso          C:\Windows\system32\lsass.exe
22:40:44.0923 0x0944  KeyIso - ok
22:40:44.0929 0x0944  [ A6A4F8CFE0796A691789F02423F1281B, B0BF411A627F890D1B6E11D5CD4A75E2A5655FBCDF8AEA639A17F310AE679737 ] Killer Service V2 C:\Program Files\Killer Networking\Network Manager\KillerService.exe
22:40:44.0937 0x0944  Killer Service V2 - detected UnsignedFile.Multi.Generic ( 1 )
22:40:54.0937 0x0944  Killer Service V2 ( UnsignedFile.Multi.Generic ) - warning
22:41:02.0436 0x0944  [ BEE1682DA217A4AD46C36896769AA580, 4D853D78E459F7BFE4F4217FCAD47CDACFAC19C2F6CF8261FBAA46BDB387FFDC ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
22:41:02.0449 0x0944  kl1 - ok
22:41:02.0452 0x0944  [ 86F40D79CE80ACBE6BEBAC8CE89D75A0, 8B800425160D1AF3C32EF7B5CA794658EE09CD3EE782473D8D38E1C7706076B3 ] klbackupdisk    C:\Windows\system32\DRIVERS\klbackupdisk.sys
22:41:02.0459 0x0944  klbackupdisk - ok
22:41:02.0462 0x0944  [ C80861511ADA03A65DC12FAA207592F8, 2B50E009DB0D050099E558B7510104B930966EE8BB94CC0F62D1BFD765D5C7AD ] klbackupflt     C:\Windows\system32\DRIVERS\klbackupflt.sys
22:41:02.0469 0x0944  klbackupflt - ok
22:41:02.0472 0x0944  [ 1557DF622127972EDB3DD3A61E7763CC, F6E8F31760B549B882180EB6FB45B40CA6CEDC5E61B11E02609C26E053F7C902 ] kldisk          C:\Windows\system32\DRIVERS\kldisk.sys
22:41:02.0479 0x0944  kldisk - ok
22:41:02.0483 0x0944  [ 6D3F864756213A589A86B2E93EBEB3F9, 19B1F21B92E206CAE48AE29EDCFCCA7346E5C8C8F93CA798576D90F112A8B990 ] klflt           C:\Windows\system32\DRIVERS\klflt.sys
22:41:02.0491 0x0944  klflt - ok
22:41:02.0495 0x0944  [ FA4108F8C8067E4CDF01CD33BF372280, 69317362032BC353851A1696689FA4A7CA343737B8C3E4D2799BC0CD7079376F ] klhk            C:\Windows\system32\DRIVERS\klhk.sys
22:41:02.0504 0x0944  klhk - ok
22:41:02.0518 0x0944  [ D4EAEEF7BCB49EC1DF1BFA55C9D68ABC, 7546B7DB9EB8743D976CC0F4C567F367361138168F4A751EA461E81A2D66985E ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
22:41:02.0534 0x0944  KLIF - ok
22:41:02.0537 0x0944  [ 3553584440A11136C899B67ACC8CBE9D, B3D6D2E78B0FF0AF5A98E708D977978EA81E99D78F2E9CA2145B466AB4B11342 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
22:41:02.0547 0x0944  KLIM6 - ok
22:41:02.0549 0x0944  [ 22C4E9381C60DA78161FA042FDBA6873, B6CC05C1401E788BCCC8CF668216D9B78A8B51409D3CFBF419047933195062E0 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
22:41:02.0556 0x0944  klkbdflt - ok
22:41:02.0558 0x0944  [ D792857D47B8DF5BFEC02534C1933BE2, BDD483FA8E2DC50DB4E54D475867455F0D7E115494E2A31CD27A065C7EC26951 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
22:41:02.0565 0x0944  klmouflt - ok
22:41:02.0569 0x0944  [ 55C46046D2EED16C05B237BA2C881207, 91569E97E2F1FC6B74A1D46168E91F5279A1419A4A51DD28A27520C0B59E5285 ] klpd            C:\Windows\system32\DRIVERS\klpd.sys
22:41:02.0575 0x0944  klpd - ok
22:41:02.0578 0x0944  [ B36DEE2A91F9388C4D3ED744592DE81D, 78D64539A375C80250FB9FA5E1DDA208B331A85916E19ED1353623DDF750EC58 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
22:41:02.0585 0x0944  kltdi - ok
22:41:02.0588 0x0944  [ 2AA3537309C2B9A7F120FB9E6A38250A, 6FD904542E0A21C4D6E46FB3EE11789938B90151D24531EB5319E62759D225DF ] Klwtp           C:\Windows\system32\DRIVERS\klwtp.sys
22:41:02.0595 0x0944  Klwtp - ok
22:41:02.0599 0x0944  [ 1686DE8288052316EFDD49EEA8929065, AD43D6ACCD8693BD76F218E1A4EE088BA061C1309A3E7DAA7EC94D875985D895 ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
22:41:02.0607 0x0944  kneps - ok
22:41:02.0610 0x0944  [ 67A1743377EBB5D9A370A8C2086CFDCC, 2F0FD6C1969B1EEEEFFC1A8F972E1E90F1AD9558FF00EC159BC19ED927FD4BF5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:41:02.0617 0x0944  KSecDD - ok
22:41:02.0620 0x0944  [ 522A1595D5701800DD41B2D472F5AAED, B62924AE94A5AC454AD6057BC133D717BB1C6445BE36D6BECAB76E1600F60C33 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:41:02.0628 0x0944  KSecPkg - ok
22:41:02.0630 0x0944  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:41:02.0648 0x0944  ksthunk - ok
22:41:02.0654 0x0944  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:41:02.0677 0x0944  KtmRm - ok
22:41:02.0682 0x0944  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:41:02.0704 0x0944  LanmanServer - ok
22:41:02.0707 0x0944  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:41:02.0727 0x0944  LanmanWorkstation - ok
22:41:02.0730 0x0944  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
22:41:02.0735 0x0944  LGBusEnum - ok
22:41:02.0737 0x0944  [ F705A641C18DF31B48B5DBDA94B425E4, 1F47EE43CAFE5458E56467E127EE99B5FDBFF8B810CF92B232094B475DD42B21 ] LGPBTDD         C:\Windows\system32\Drivers\LGPBTDD.sys
22:41:02.0742 0x0944  LGPBTDD - ok
22:41:02.0745 0x0944  [ 94AF1384A67B9FCF5651E70BC9D4C526, 9C025F7BBB5BBE9DAF3DEF2F6385CE77C8F413912C4D16930814F6D19B62B367 ] LGSHidFilt      C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
22:41:02.0751 0x0944  LGSHidFilt - ok
22:41:02.0753 0x0944  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
22:41:02.0757 0x0944  LGVirHid - ok
22:41:02.0760 0x0944  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:41:02.0778 0x0944  lltdio - ok
22:41:02.0784 0x0944  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:41:02.0805 0x0944  lltdsvc - ok
22:41:02.0807 0x0944  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:41:02.0826 0x0944  lmhosts - ok
22:41:02.0832 0x0944  [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
22:41:02.0842 0x0944  LMIGuardianSvc - ok
22:41:02.0846 0x0944  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:41:02.0858 0x0944  LSI_FC - ok
22:41:02.0860 0x0944  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:41:02.0872 0x0944  LSI_SAS - ok
22:41:02.0875 0x0944  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:41:02.0886 0x0944  LSI_SAS2 - ok
22:41:02.0889 0x0944  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:41:02.0901 0x0944  LSI_SCSI - ok
22:41:02.0904 0x0944  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:41:02.0923 0x0944  luafv - ok
22:41:02.0929 0x0944  [ A401CFF74982D8DF851F20307C806073, 1D7BA90C9E77FAAE59F60AB5310EC41D9C5B98F1F9A89A3CDB9169E6DEF565DA ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
22:41:02.0946 0x0944  LVRS64 - ok
22:41:03.0001 0x0944  [ 13384CB5F5813E65F31078D6ABFAAF38, A6E7374C15CAECC273197BF62F8F926BA30E9509270A8470756F4710E1DEA126 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
22:41:03.0069 0x0944  LVUVC64 - ok
22:41:03.0083 0x0944  [ B2E0C6FD6CA1B5EBC4E8DB8C674A661B, B0B7E41CB28482307CF4A3DD1909D277C661A73AA03E552DB6AAA71F017C9E19 ] MbaeSvc         C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
22:41:03.0095 0x0944  MbaeSvc - ok
22:41:03.0099 0x0944  [ 47701ECA633574E122687693B5C5D35C, 1DB12767462347504956450FAD0D90B6E682E2E8959A6C5DF3792C3C3DA289B1 ] mbamchameleon   C:\Windows\system32\drivers\mbamchameleon.sys
22:41:03.0105 0x0944  mbamchameleon - ok
22:41:03.0108 0x0944  [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
22:41:03.0113 0x0944  MBAMProtector - ok
22:41:03.0128 0x0944  [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService     C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
22:41:03.0148 0x0944  MBAMService - ok
22:41:03.0151 0x0944  [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
22:41:03.0162 0x0944  MBAMWebAccessControl - ok
22:41:03.0164 0x0944  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
22:41:03.0170 0x0944  MBfilt - ok
22:41:03.0172 0x0944  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:41:03.0182 0x0944  Mcx2Svc - ok
22:41:03.0184 0x0944  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:41:03.0194 0x0944  megasas - ok
22:41:03.0199 0x0944  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:41:03.0216 0x0944  MegaSR - ok
22:41:03.0220 0x0944  [ 1BC9159CF58BABD89419072EA180A8F6, 6C9AB779C2355A341800A8F93AAAF9B19FAFF444CD6A7BD27C63D53F379A75EF ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
22:41:03.0228 0x0944  MEIx64 - ok
22:41:03.0231 0x0944  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
22:41:03.0250 0x0944  MMCSS - ok
22:41:03.0252 0x0944  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
22:41:03.0270 0x0944  Modem - ok
22:41:03.0272 0x0944  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:41:03.0281 0x0944  monitor - ok
22:41:03.0283 0x0944  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:41:03.0289 0x0944  mouclass - ok
22:41:03.0291 0x0944  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:41:03.0299 0x0944  mouhid - ok
22:41:03.0304 0x0944  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:41:03.0311 0x0944  mountmgr - ok
22:41:03.0314 0x0944  [ 31A94358EF55B871B1B81ADE3ACEBFF9, 611E9502DC15733F37EEF8EA3D6DCD51434EACE3EBC204197E05A7B299FFC0D4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:41:03.0323 0x0944  MozillaMaintenance - ok
22:41:03.0327 0x0944  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:41:03.0340 0x0944  mpio - ok
22:41:03.0343 0x0944  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:41:03.0362 0x0944  mpsdrv - ok
22:41:03.0373 0x0944  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:41:03.0403 0x0944  MpsSvc - ok
22:41:03.0407 0x0944  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:41:03.0416 0x0944  MRxDAV - ok
22:41:03.0420 0x0944  [ B2081803D510DCE174992BA880EDCA70, 37DB53C9756EC03EB7165DEB58251615D70B7C86DF32A54DE25ADAF30A04D792 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:41:03.0431 0x0944  mrxsmb - ok
22:41:03.0436 0x0944  [ 552FA62B0EFECD22D8D52499324BCA4F, C3A02C9C30C36928AC7B1025496544967187A05BEF5D100B54F2C0155E47145C ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:41:03.0448 0x0944  mrxsmb10 - ok
22:41:03.0452 0x0944  [ 97687971F9CB30E2633DE0F1296B9F61, 865DA87523E4C32D65D55D5475A5CDDFA10699780DA500E6D606384FB3BEB1BE ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:41:03.0461 0x0944  mrxsmb20 - ok
22:41:03.0470 0x0944  [ 80794559DD71520023BA4B982FD21FCA, 1267811095E953A96A2B91FEC1674C61539BE8BFAADE4DAE2770AD413305444D ] MS7926          C:\Windows\system32\DRIVERS\MS7926.SYS
22:41:03.0483 0x0944  MS7926 - ok
22:41:03.0486 0x0944  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:41:03.0492 0x0944  msahci - ok
22:41:03.0495 0x0944  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:41:03.0509 0x0944  msdsm - ok
22:41:03.0512 0x0944  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
22:41:03.0522 0x0944  MSDTC - ok
22:41:03.0529 0x0944  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:41:03.0546 0x0944  Msfs - ok
22:41:03.0548 0x0944  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:41:03.0566 0x0944  mshidkmdf - ok
22:41:03.0593 0x0944  [ 390EA2F54CBEC1AB7BAA51F3294E37A8, BF996E3205D600D88485B9074D23EBF7456EE64007C664C9238D2BFACBB6D4C7 ] MSIBIOSData_CC  C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe
22:41:03.0627 0x0944  MSIBIOSData_CC - ok
22:41:03.0629 0x0944  MSICDSetup - ok
22:41:03.0677 0x0944  [ 7AEE9CBABF45D7A7ED65658FE1236CD8, CE4E711103901899E686C477D9E37C8175318F423FC1E3C8A61275D4A3C88D78 ] MSIClock_CC     C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe
22:41:03.0736 0x0944  MSIClock_CC - ok
22:41:03.0764 0x0944  [ 928F8C7A0ADE7E41B4A05A2672FCBFAF, DE29C92B8BAE43EEFB793160BCA7C51889B7ADAC72EF4D4C1570252B8C24DCD7 ] MSICOMM_CC      C:\Program Files (x86)\MSI\Command Center\MSICommService.exe
22:41:03.0797 0x0944  MSICOMM_CC - ok
22:41:03.0847 0x0944  [ AFF08249D96D797BF1298EE074D4A1B3, 471FA817A3FB1F5C9D4E54C7AB5FA7C49C051EBAB94C3961F0C2ADFFDE1DDA55 ] MSICPU_CC       C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe
22:41:03.0907 0x0944  MSICPU_CC - ok
22:41:03.0935 0x0944  [ 9100DE93D89D3E57A9F585A79C1B70CC, 378FCBAD9ADBE0C268FBDCB68B2FA0265F6A6C200E129A952A58C696AA312EA3 ] MSICTL_CC       C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
22:41:03.0962 0x0944  MSICTL_CC - ok
22:41:03.0990 0x0944  [ D7865975915164D09A6D5409D601E174, 36D0067DDE4395A31013929F8F3DBB7F16AD9638F4AB2D12FAA9017BC63265A9 ] MSIDDR_CC       C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
22:41:04.0021 0x0944  MSIDDR_CC - ok
22:41:04.0024 0x0944  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:41:04.0030 0x0944  msisadrv - ok
22:41:04.0033 0x0944  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:41:04.0053 0x0944  MSiSCSI - ok
22:41:04.0055 0x0944  msiserver - ok
22:41:04.0080 0x0944  [ E83766864194277B13037D80D3A92CC2, D93C793D49CE6B824885D64E80AC91AABFBFBA0AD990BA2950C925948B456DC6 ] MSISMB_CC       C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe
22:41:04.0112 0x0944  MSISMB_CC - ok
22:41:04.0123 0x0944  [ E87777FD1ACA88A77E3330FA50B9A3EF, D8BB8F6F3AD7A73380A9134E696F44E0DB786F0708232E5F7C5397028E724622 ] MSISuperIO_CC   C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe
22:41:04.0136 0x0944  MSISuperIO_CC - ok
22:41:04.0140 0x0944  [ 629CC5BE3BD275ECD8BBDBEC412C3C8A, 8E115809735AB0C578D1CB024D2162FB97EB884C8CF0324D6BCF6CCC0F248E7D ] MSI_FastBoot    C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
22:41:04.0146 0x0944  MSI_FastBoot - ok
22:41:04.0167 0x0944  [ 910D5A4F85EAB1C1552FF61C002CC5DF, 55BE08A59F2FFC02A00BF099B921A97766ECFF5637E13D9195447871EF637ECF ] MSI_LiveUpdate_Service C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
22:41:04.0191 0x0944  MSI_LiveUpdate_Service - ok
22:41:04.0196 0x0944  [ F88CCB54F2B917F03DBFC27E93463035, 30BC49D9EB56652F75994F7EAC0C1F0B7702EC59CEDA59FC506F1869513A3563 ] MSI_SuperCharger C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
22:41:04.0203 0x0944  MSI_SuperCharger - ok
22:41:04.0205 0x0944  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:41:04.0223 0x0944  MSKSSRV - ok
22:41:04.0225 0x0944  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:41:04.0244 0x0944  MSPCLOCK - ok
22:41:04.0246 0x0944  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:41:04.0263 0x0944  MSPQM - ok
22:41:04.0269 0x0944  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:41:04.0280 0x0944  MsRPC - ok
22:41:04.0283 0x0944  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:41:04.0289 0x0944  mssmbios - ok
22:41:04.0291 0x0944  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:41:04.0308 0x0944  MSTEE - ok
22:41:04.0310 0x0944  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:41:04.0321 0x0944  MTConfig - ok
22:41:04.0323 0x0944  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
22:41:04.0329 0x0944  Mup - ok
22:41:04.0337 0x0944  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
22:41:04.0360 0x0944  napagent - ok
22:41:04.0366 0x0944  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:41:04.0379 0x0944  NativeWifiP - ok
22:41:04.0392 0x0944  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:41:04.0411 0x0944  NDIS - ok
22:41:04.0414 0x0944  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:41:04.0432 0x0944  NdisCap - ok
22:41:04.0434 0x0944  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:41:04.0453 0x0944  NdisTapi - ok
22:41:04.0456 0x0944  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:41:04.0473 0x0944  Ndisuio - ok
22:41:04.0477 0x0944  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:41:04.0496 0x0944  NdisWan - ok
22:41:04.0499 0x0944  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:41:04.0516 0x0944  NDProxy - ok
22:41:04.0519 0x0944  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:41:04.0537 0x0944  NetBIOS - ok
22:41:04.0541 0x0944  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:41:04.0562 0x0944  NetBT - ok
22:41:04.0564 0x0944  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] Netlogon        C:\Windows\system32\lsass.exe
22:41:04.0572 0x0944  Netlogon - ok
22:41:04.0578 0x0944  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
22:41:04.0601 0x0944  Netman - ok
22:41:04.0608 0x0944  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:41:04.0619 0x0944  NetMsmqActivator - ok
22:41:04.0622 0x0944  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:41:04.0630 0x0944  NetPipeActivator - ok
22:41:04.0638 0x0944  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
22:41:04.0662 0x0944  netprofm - ok
22:41:04.0665 0x0944  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:41:04.0673 0x0944  NetTcpActivator - ok
22:41:04.0676 0x0944  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:41:04.0683 0x0944  NetTcpPortSharing - ok
22:41:04.0686 0x0944  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:41:04.0697 0x0944  nfrd960 - ok
22:41:04.0708 0x0944  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:41:04.0720 0x0944  NlaSvc - ok
22:41:04.0723 0x0944  [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] npf             C:\Windows\system32\drivers\npf.sys
22:41:04.0728 0x0944  npf - ok
22:41:04.0731 0x0944  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:41:04.0748 0x0944  Npfs - ok
22:41:04.0750 0x0944  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
22:41:04.0769 0x0944  nsi - ok
22:41:04.0771 0x0944  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:41:04.0788 0x0944  nsiproxy - ok
22:41:04.0810 0x0944  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:41:04.0838 0x0944  Ntfs - ok
22:41:04.0840 0x0944  NTIOLib_1_0_C - ok
22:41:04.0842 0x0944  [ 6CCE5BB9C8C2A8293DF2D3B1897941A2, 9254F012009D55F555418FF85F7D93B184AB7CB0E37AECDFDAB62CFE94DEA96B ] NTIOLib_MSIDDR_CC C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys
22:41:04.0848 0x0944  NTIOLib_MSIDDR_CC - ok
22:41:04.0850 0x0944  [ C6F8983DD3D75640C072A8459B8FA55A, 101402D4F5D1AE413DED499C78A5FCBBC7E3BAE9B000D64C1DD64E3C48C37558 ] NTIOLib_MSI_RAID C:\MSI\Smart Utilities\NTIOLib_X64.sys
22:41:04.0855 0x0944  NTIOLib_MSI_RAID - ok
22:41:04.0857 0x0944  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
22:41:04.0874 0x0944  Null - ok
22:41:04.0878 0x0944  [ B9E5A80F646DDFEF158773722A466EA3, 028979FE600D17DA70445F44D81FAE4EDA3478FCC81FA5506133CCAC37C4E2BF ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
22:41:04.0887 0x0944  NVHDA - ok
22:41:05.0011 0x0944  [ DF2213CF2DD81B790B85541D138D93C7, F00AC7991770C22C89C891009CFDCA3A445279235389F67B6412DBE468D70F5F ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:41:05.0139 0x0944  nvlddmkm - ok
22:41:05.0170 0x0944  [ 72DD6225BA6055472522195F96473639, 27C8F847B247645061C0CD6DFCC986DA27638A9DFE686040160DFDCF7B3A6E72 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
22:41:05.0197 0x0944  NvNetworkService - ok
22:41:05.0201 0x0944  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:41:05.0210 0x0944  nvraid - ok
22:41:05.0214 0x0944  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:41:05.0222 0x0944  nvstor - ok
22:41:05.0225 0x0944  [ 4680DDDDDBA1CB1D56D49B4A6134155C, BF6E538BC10B23F6D93143F5C48155245852798D4846F401E0DA70A5BCFC74E1 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
22:41:05.0230 0x0944  NvStreamKms - ok
22:41:05.0292 0x0944  [ E14F52B60581EE71849CD45186892046, 72B3E92CD34489306AB7D794C4C1F67513DE80C72A847DCF7A3EEFE2254762D0 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
22:41:05.0359 0x0944  NvStreamSvc - ok
22:41:05.0376 0x0944  [ F029A2C032B4A50DEBB21312CFF76189, F47F0FC39AF6DFC8A9A3F0A486357BE76B8BD0753135B567FDB6E213D11893FD ] nvsvc           C:\Windows\system32\nvvsvc.exe
22:41:05.0392 0x0944  nvsvc - ok
22:41:05.0395 0x0944  [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
22:41:05.0402 0x0944  nvvad_WaveExtensible - ok
22:41:05.0405 0x0944  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:41:05.0417 0x0944  nv_agp - ok
22:41:05.0420 0x0944  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:41:05.0432 0x0944  ohci1394 - ok
22:41:05.0458 0x0944  [ 4F9FFCF12B6ED0B4DAC95427772C226E, 4A79AEC410ED1034366FAC1388FB29381EE6541AA17E3652BE86265D09541C56 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
22:41:05.0505 0x0944  Origin Client Service - ok
22:41:05.0510 0x0944  [ BD0072BA0F6B241A5168C6A816290E12, 983D49612A45B80959BFCE1ECCA5D45871D93350E5AFE723F99C9AE16D65365B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:41:05.0530 0x0944  ose - ok
22:41:05.0590 0x0944  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:41:05.0662 0x0944  osppsvc - ok
22:41:05.0671 0x0944  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:41:05.0683 0x0944  p2pimsvc - ok
22:41:05.0690 0x0944  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
22:41:05.0704 0x0944  p2psvc - ok
22:41:05.0707 0x0944  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
22:41:05.0720 0x0944  Parport - ok
22:41:05.0723 0x0944  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:41:05.0730 0x0944  partmgr - ok
22:41:05.0734 0x0944  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:41:05.0745 0x0944  PcaSvc - ok
22:41:05.0749 0x0944  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
22:41:05.0758 0x0944  pci - ok
22:41:05.0760 0x0944  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:41:05.0772 0x0944  pciide - ok
22:41:05.0778 0x0944  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:41:05.0793 0x0944  pcmcia - ok
22:41:05.0796 0x0944  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:41:05.0802 0x0944  pcw - ok
22:41:05.0812 0x0944  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:41:05.0828 0x0944  PEAUTH - ok
22:41:05.0846 0x0944  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
22:41:05.0871 0x0944  PeerDistSvc - ok
22:41:05.0885 0x0944  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:41:05.0894 0x0944  PerfHost - ok
22:41:05.0913 0x0944  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
22:41:05.0950 0x0944  pla - ok
22:41:05.0957 0x0944  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:41:05.0970 0x0944  PlugPlay - ok
22:41:05.0973 0x0944  [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
22:41:05.0980 0x0944  PnkBstrA - ok
22:41:05.0982 0x0944  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:41:05.0989 0x0944  PNRPAutoReg - ok
22:41:05.0994 0x0944  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:41:06.0005 0x0944  PNRPsvc - ok
22:41:06.0012 0x0944  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:41:06.0036 0x0944  PolicyAgent - ok
22:41:06.0040 0x0944  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
22:41:06.0060 0x0944  Power - ok
22:41:06.0063 0x0944  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:41:06.0081 0x0944  PptpMiniport - ok
22:41:06.0084 0x0944  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
22:41:06.0096 0x0944  Processor - ok
22:41:06.0101 0x0944  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:41:06.0112 0x0944  ProfSvc - ok
22:41:06.0114 0x0944  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:41:06.0121 0x0944  ProtectedStorage - ok
22:41:06.0124 0x0944  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:41:06.0143 0x0944  Psched - ok
22:41:06.0145 0x0944  [ C32ECB99AD25E9A04F01C8665DF29EF8, 0489B3DEC6A33E50D8A48A8DAD3F5B923A81F7300E4A71358D90D2879BAC9AA2 ] pwdrvio         C:\Windows\system32\pwdrvio.sys
22:41:06.0152 0x0944  pwdrvio - ok
22:41:06.0154 0x0944  [ D619356B955EEFA642F5FF72755E8B3C, 1FD54978A77ACD6FBF1236E177ED074894743A9141E4169FE9AFE28680FC93C5 ] pwdspio         C:\Windows\system32\pwdspio.sys
22:41:06.0165 0x0944  pwdspio - ok
22:41:06.0193 0x0944  [ 6D6B01F4A58EB1EE13E73C377A555DCC, D17936523AC614FFB8EDDA8517E99D71EFC1DDC768799E3A91481C5A7A590552 ] Qcamain         C:\Windows\system32\DRIVERS\Qcamain7x64.sys
22:41:06.0231 0x0944  Qcamain - ok
22:41:06.0252 0x0944  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:41:06.0281 0x0944  ql2300 - ok
22:41:06.0286 0x0944  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:41:06.0298 0x0944  ql40xx - ok
22:41:06.0303 0x0944  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
22:41:06.0317 0x0944  QWAVE - ok
22:41:06.0319 0x0944  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:41:06.0329 0x0944  QWAVEdrv - ok
22:41:06.0331 0x0944  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:41:06.0348 0x0944  RasAcd - ok
22:41:06.0351 0x0944  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:41:06.0368 0x0944  RasAgileVpn - ok
22:41:06.0372 0x0944  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
22:41:06.0391 0x0944  RasAuto - ok
22:41:06.0394 0x0944  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:41:06.0412 0x0944  Rasl2tp - ok
22:41:06.0418 0x0944  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
22:41:06.0439 0x0944  RasMan - ok
22:41:06.0442 0x0944  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:41:06.0460 0x0944  RasPppoe - ok
22:41:06.0463 0x0944  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:41:06.0482 0x0944  RasSstp - ok
22:41:06.0487 0x0944  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:41:06.0508 0x0944  rdbss - ok
22:41:06.0510 0x0944  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
22:41:06.0518 0x0944  rdpbus - ok
22:41:06.0520 0x0944  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:41:06.0538 0x0944  RDPCDD - ok

darkrider78 · 07.09.2015, 21:45

Fortsetzung:

Code:

ATTFilter

22:41:06.0542 0x0944  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
22:41:06.0553 0x0944  RDPDR - ok
22:41:06.0555 0x0944  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:41:06.0573 0x0944  RDPENCDD - ok
22:41:06.0575 0x0944  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:41:06.0593 0x0944  RDPREFMP - ok
22:41:06.0597 0x0944  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:41:06.0606 0x0944  RdpVideoMiniport - ok
22:41:06.0611 0x0944  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:41:06.0621 0x0944  RDPWD - ok
22:41:06.0626 0x0944  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:41:06.0635 0x0944  rdyboost - ok
22:41:06.0637 0x0944  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:41:06.0657 0x0944  RemoteAccess - ok
22:41:06.0661 0x0944  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:41:06.0681 0x0944  RemoteRegistry - ok
22:41:06.0685 0x0944  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
22:41:06.0695 0x0944  RFCOMM - ok
22:41:06.0698 0x0944  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:41:06.0717 0x0944  RpcEptMapper - ok
22:41:06.0719 0x0944  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
22:41:06.0727 0x0944  RpcLocator - ok
22:41:06.0735 0x0944  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
22:41:06.0758 0x0944  RpcSs - ok
22:41:06.0761 0x0944  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:41:06.0780 0x0944  rspndr - ok
22:41:06.0782 0x0944  [ 027E10A5048B135862D638B9085D1402, BAC1CD96BA242CDF29F8FEAC501110739F1524F0DB1C8FCAD59409E77B8928BA ] RTCore64        C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
22:41:06.0788 0x0944  RTCore64 - ok
22:41:06.0789 0x0944  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
22:41:06.0800 0x0944  s3cap - ok
22:41:06.0802 0x0944  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] SamSs           C:\Windows\system32\lsass.exe
22:41:06.0809 0x0944  SamSs - ok
22:41:06.0811 0x0944  SANDRA - ok
22:41:06.0815 0x0944  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:41:06.0827 0x0944  sbp2port - ok
22:41:06.0832 0x0944  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:41:06.0851 0x0944  SCardSvr - ok
22:41:06.0854 0x0944  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:41:06.0871 0x0944  scfilter - ok
22:41:06.0885 0x0944  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
22:41:06.0917 0x0944  Schedule - ok
22:41:06.0920 0x0944  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:41:06.0938 0x0944  SCPolicySvc - ok
22:41:06.0942 0x0944  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:41:06.0953 0x0944  SDRSVC - ok
22:41:06.0955 0x0944  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:41:06.0973 0x0944  secdrv - ok
22:41:06.0975 0x0944  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
22:41:06.0993 0x0944  seclogon - ok
22:41:06.0996 0x0944  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
22:41:07.0014 0x0944  SENS - ok
22:41:07.0017 0x0944  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:41:07.0025 0x0944  SensrSvc - ok
22:41:07.0027 0x0944  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:41:07.0039 0x0944  Serenum - ok
22:41:07.0042 0x0944  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
22:41:07.0055 0x0944  Serial - ok
22:41:07.0058 0x0944  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:41:07.0070 0x0944  sermouse - ok
22:41:07.0075 0x0944  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
22:41:07.0095 0x0944  SessionEnv - ok
22:41:07.0097 0x0944  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:41:07.0111 0x0944  sffdisk - ok
22:41:07.0113 0x0944  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:41:07.0125 0x0944  sffp_mmc - ok
22:41:07.0127 0x0944  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:41:07.0140 0x0944  sffp_sd - ok
22:41:07.0142 0x0944  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:41:07.0154 0x0944  sfloppy - ok
22:41:07.0165 0x0944  [ 9242988D74674C2819D454F001457BAD, D353A30D224940B0C7750161782CE98D4C47ABC5C4E04B100F8ABB6A3402B5AD ] Sftfs           C:\Windows\system32\DRIVERS\Sftfswin7.sys
22:41:07.0179 0x0944  Sftfs - ok
22:41:07.0188 0x0944  [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:41:07.0200 0x0944  sftlist - ok
22:41:07.0206 0x0944  [ 44391FA910901E2B8A2F831340FD707A, 9ACAD655DCCCAF562CEDE9180B187C229FFCAF97BA87D78225253C7868698CB8 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaywin7.sys
22:41:07.0215 0x0944  Sftplay - ok
22:41:07.0217 0x0944  [ 8654DBDC8ED8ED7257618D11B6C590BE, 1A410CCB7CDE99C607662E21054E959D3349647C5BD810CE744DA59EEB9C3FA2 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirwin7.sys
22:41:07.0223 0x0944  Sftredir - ok
22:41:07.0225 0x0944  [ 648F0152A7BAE175905C22E8BD839760, 6E3FC032212FD1F39FEE96D230F47BB25355587E8A73E34776CAEA8C0C1FB58E ] Sftvol          C:\Windows\system32\DRIVERS\Sftvolwin7.sys
22:41:07.0231 0x0944  Sftvol - ok
22:41:07.0235 0x0944  [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:41:07.0243 0x0944  sftvsa - ok
22:41:07.0249 0x0944  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:41:07.0272 0x0944  SharedAccess - ok
22:41:07.0279 0x0944  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:41:07.0302 0x0944  ShellHWDetection - ok
22:41:07.0304 0x0944  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:41:07.0315 0x0944  SiSRaid2 - ok
22:41:07.0318 0x0944  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:41:07.0330 0x0944  SiSRaid4 - ok
22:41:07.0336 0x0944  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:41:07.0347 0x0944  SkypeUpdate - ok
22:41:07.0350 0x0944  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:41:07.0368 0x0944  Smb - ok
22:41:07.0376 0x0944  [ 2F7A6F88A9516EB47B0BF13024434244, 5FC5635D077AAA42853F78306C941995B56E939015CC3F27D376CBD9395C7410 ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
22:41:07.0386 0x0944  snapman - ok
22:41:07.0388 0x0944  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:41:07.0396 0x0944  SNMPTRAP - ok
22:41:07.0398 0x0944  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\Windows\SysWOW64\speedfan.sys
22:41:07.0404 0x0944  speedfan - ok
22:41:07.0406 0x0944  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:41:07.0412 0x0944  spldr - ok
22:41:07.0421 0x0944  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
22:41:07.0437 0x0944  Spooler - ok
22:41:07.0479 0x0944  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:41:07.0543 0x0944  sppsvc - ok
22:41:07.0547 0x0944  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:41:07.0567 0x0944  sppuinotify - ok
22:41:07.0574 0x0944  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:41:07.0588 0x0944  srv - ok
22:41:07.0595 0x0944  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:41:07.0607 0x0944  srv2 - ok
22:41:07.0611 0x0944  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:41:07.0621 0x0944  srvnet - ok
22:41:07.0625 0x0944  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:41:07.0646 0x0944  SSDPSRV - ok
22:41:07.0649 0x0944  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:41:07.0668 0x0944  SstpSvc - ok
22:41:07.0672 0x0944  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
22:41:07.0686 0x0944  ssudmdm - ok
22:41:07.0698 0x0944  [ 2A6EDC2FBB4B9C11BB21BE3881C7A692, 74482CA4EC2B98C069A32C224BA5449AE10A8B41BFC053A4C23B6F65113A97A4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
22:41:07.0713 0x0944  Steam Client Service - ok
22:41:07.0721 0x0944  [ 89123DFAC7E1E6E664D19622D135571B, 6870050EA5B4C0E9091C87FC42767BAD84E726FEC43DB989CE35650ABF9ED09E ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:41:07.0731 0x0944  Stereo Service - ok
22:41:07.0735 0x0944  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:41:07.0744 0x0944  stexstor - ok
22:41:07.0753 0x0944  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
22:41:07.0772 0x0944  stisvc - ok
22:41:07.0775 0x0944  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
22:41:07.0781 0x0944  storflt - ok
22:41:07.0783 0x0944  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
22:41:07.0791 0x0944  StorSvc - ok
22:41:07.0794 0x0944  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
22:41:07.0804 0x0944  storvsc - ok
22:41:07.0807 0x0944  [ 12CA8B23B88A04E83297D855972234AC, F805B7268E3CE6BE50CB45473556B04A7F9C1F3EA1830F969A0EBB62EF43C2BB ] SuperRAIDSvc    C:\MSI\Smart Utilities\SuperRAIDSvc.exe
22:41:07.0813 0x0944  SuperRAIDSvc - ok
22:41:07.0815 0x0944  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:41:07.0821 0x0944  swenum - ok
22:41:07.0828 0x0944  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
22:41:07.0852 0x0944  swprv - ok
22:41:07.0930 0x0944  [ 06A5A15C89E5F2C08D0C595C1DA776AF, EEFC5803E3C76115DF24B00A4BD6F3196D6CD87049802EF58BE6CF2CCB758FBF ] syncagentsrv    C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
22:41:08.0010 0x0944  syncagentsrv - ok
22:41:08.0036 0x0944  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
22:41:08.0067 0x0944  SysMain - ok
22:41:08.0071 0x0944  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:41:08.0082 0x0944  TabletInputService - ok
22:41:08.0088 0x0944  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:41:08.0109 0x0944  TapiSrv - ok
22:41:08.0111 0x0944  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
22:41:08.0130 0x0944  TBS - ok
22:41:08.0153 0x0944  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:41:08.0184 0x0944  Tcpip - ok
22:41:08.0208 0x0944  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:41:08.0235 0x0944  TCPIP6 - ok
22:41:08.0239 0x0944  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:41:08.0247 0x0944  tcpipreg - ok
22:41:08.0250 0x0944  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:41:08.0258 0x0944  TDPIPE - ok
22:41:08.0260 0x0944  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:41:08.0268 0x0944  TDTCP - ok
22:41:08.0272 0x0944  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:41:08.0281 0x0944  tdx - ok
22:41:08.0350 0x0944  [ 8305FB462C325A67628E0556DF244B8B, 4ABD5D14E64BE07DD9332E39C3B902A40BD1E763A075F68F0048A7FAEB3019D5 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
22:41:08.0417 0x0944  TeamViewer - ok
22:41:08.0423 0x0944  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:41:08.0429 0x0944  TermDD - ok
22:41:08.0439 0x0944  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
22:41:08.0456 0x0944  TermService - ok
22:41:08.0459 0x0944  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
22:41:08.0470 0x0944  Themes - ok
22:41:08.0472 0x0944  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
22:41:08.0490 0x0944  THREADORDER - ok
22:41:08.0505 0x0944  [ AEEEB1EE424A8D6F17B3A6461E0FC7E6, 3A5FD27DF6132E84DC03366FB684B31A454C0805A5E4EA0C67B0CE85FF446B93 ] tib             C:\Windows\system32\DRIVERS\tib.sys
22:41:08.0523 0x0944  tib - ok
22:41:08.0529 0x0944  [ 3813F93D8A69EDE68913CC3050640FE3, 4931BC6DA6FD0808C985CD6202FB759F6B8DE8957FB44E6AD8844EA58C891AC1 ] tib_mounter     C:\Windows\system32\DRIVERS\tib_mounter.sys
22:41:08.0538 0x0944  tib_mounter - ok
22:41:08.0541 0x0944  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
22:41:08.0561 0x0944  TrkWks - ok
22:41:08.0566 0x0944  [ 370A6907DDF79532A39319492B1FA38A, 46AECC5160F04FC3FFE4D37B404CCBBD1C5DC1501C2CEEE8284FF544DBDF10F8 ] truecrypt       C:\Windows\system32\drivers\truecrypt.sys
22:41:08.0574 0x0944  truecrypt - ok
22:41:08.0577 0x0944  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:41:08.0597 0x0944  TrustedInstaller - ok
22:41:08.0600 0x0944  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:41:08.0608 0x0944  tssecsrv - ok
22:41:08.0610 0x0944  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:41:08.0618 0x0944  TsUsbFlt - ok
22:41:08.0621 0x0944  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:41:08.0633 0x0944  TsUsbGD - ok
22:41:08.0636 0x0944  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:41:08.0654 0x0944  tunnel - ok
22:41:08.0657 0x0944  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:41:08.0668 0x0944  uagp35 - ok
22:41:08.0674 0x0944  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:41:08.0695 0x0944  udfs - ok
22:41:08.0699 0x0944  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:41:08.0707 0x0944  UI0Detect - ok
22:41:08.0710 0x0944  [ 6E566C1708DDC93ADF9286E9C714B652, AF179BCA9395D51ACDFB5BACE29388E2B4D5587FCAB53898AAA4F4011851B115 ] UimBus          C:\Windows\system32\DRIVERS\UimBus.sys
22:41:08.0717 0x0944  UimBus - ok
22:41:08.0719 0x0944  [ 7DF6A08B0B74C4F9357EFBAE309B87F1, 9A5BB8EA70709519A3599D0818923321AE691CC9EBC1ABC3F5BB008AF18B797B ] Uim_DEVIM       C:\Windows\system32\DRIVERS\uim_devim.sys
22:41:08.0725 0x0944  Uim_DEVIM - ok
22:41:08.0734 0x0944  [ 2DDD63E0948474B91046CF1AB7661189, A91A1F1E646B928C95C30DA4D70220262D3A67C1B66E365C981AA23A401624E9 ] Uim_IM          C:\Windows\system32\DRIVERS\uim_im.sys
22:41:08.0747 0x0944  Uim_IM - ok
22:41:08.0750 0x0944  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:41:08.0762 0x0944  uliagpkx - ok
22:41:08.0764 0x0944  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:41:08.0772 0x0944  umbus - ok
22:41:08.0774 0x0944  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:41:08.0785 0x0944  UmPass - ok
22:41:08.0790 0x0944  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
22:41:08.0801 0x0944  UmRdpService - ok
22:41:08.0803 0x0944  [ 9DC07E73A4ABB9ACF692113B36A5009F, CA7176FC219515D58DCFA66EC61880ECE5617275C9B83701BB74D8B60E733D34 ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
22:41:08.0812 0x0944  UnlockerDriver5 - ok
22:41:08.0818 0x0944  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
22:41:08.0840 0x0944  upnphost - ok
22:41:08.0844 0x0944  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:41:08.0858 0x0944  usbaudio - ok
22:41:08.0861 0x0944  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:41:08.0869 0x0944  usbccgp - ok
22:41:08.0872 0x0944  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:41:08.0881 0x0944  usbcir - ok
22:41:08.0884 0x0944  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:41:08.0891 0x0944  usbehci - ok
22:41:08.0897 0x0944  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:41:08.0908 0x0944  usbhub - ok
22:41:08.0911 0x0944  [ 4E8CBE26FDC1CB0E2BE473B2985324C0, FD2AD423CDAE68F31978263BA29EBE2F8B4EF60698C9D406126DEE2CCA8AB9D6 ] USBLogonService C:\Program Files\USBLogon\usblonsvc.exe
22:41:08.0913 0x0944  USBLogonService - detected UnsignedFile.Multi.Generic ( 1 )
22:41:18.0879 0x0944  Detect skipped due to KSN trusted
22:41:18.0879 0x0944  USBLogonService - ok
22:41:18.0881 0x0944  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:41:18.0892 0x0944  usbohci - ok
22:41:18.0894 0x0944  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:41:18.0908 0x0944  usbprint - ok
22:41:18.0910 0x0944  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:41:18.0923 0x0944  usbscan - ok
22:41:18.0926 0x0944  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:41:18.0935 0x0944  USBSTOR - ok
22:41:18.0937 0x0944  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:41:18.0949 0x0944  usbuhci - ok
22:41:18.0951 0x0944  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
22:41:18.0970 0x0944  UxSms - ok
22:41:18.0973 0x0944  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] VaultSvc        C:\Windows\system32\lsass.exe
22:41:18.0980 0x0944  VaultSvc - ok
22:41:18.0983 0x0944  [ 9F40914CA0D5DBD0CD7B0733FB62DD2E, 2D135288370BD611C96CEBA4622C9AC47D98229C5B052D22F6506095DE589BCB ] VBAudioVMAUXVAIOMME C:\Windows\system32\DRIVERS\vbaudio_vmauxvaio64_win7.sys
22:41:18.0988 0x0944  VBAudioVMAUXVAIOMME - ok
22:41:18.0991 0x0944  [ 57BFF0ADE329BC2596F060A07D3AF2B9, CEC4CE14B8BB5DAB58F30399999703A4FFF601768890DB185D21C2C9EA3A5666 ] VBAudioVMVAIOMME C:\Windows\system32\DRIVERS\vbaudio_vmvaio64_win7.sys
22:41:18.0996 0x0944  VBAudioVMVAIOMME - ok
22:41:19.0009 0x0944  [ F80D852EE1D7B99EF9A0729FD1E7A2D1, 6B76E08EFD96FE8F4B27E0D1DC6E86DF4B5A03953FB3BD133CC7B43DDBB57935 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
22:41:19.0025 0x0944  VBoxDrv - ok
22:41:19.0029 0x0944  [ 9B9F3754DBEB263766D06B0F1556E2B5, A8DF441B9E92942535C0F460EA5FE7A6DD64D521610F93BDCCEEDB0115B385E2 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
22:41:19.0036 0x0944  VBoxNetAdp - ok
22:41:19.0040 0x0944  [ 04B1F78106E0C4B46EFF3538EEB0224C, 82C7F88D97B47FA6581FAAA0356B3FAB8749A55B2512E14C88277FEEE4E2D4DF ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
22:41:19.0047 0x0944  VBoxNetFlt - ok
22:41:19.0050 0x0944  [ 2902A7CDFD170579961EBE7682CA1729, 83859AC337A1F9E33EA90B7098DF7148A18F8AF99110371A4AA56F692666AD8C ] VBoxUSB         C:\Windows\system32\Drivers\VBoxUSB.sys
22:41:19.0062 0x0944  VBoxUSB - ok
22:41:19.0066 0x0944  [ A3F2B9A38B5E2CD01B70174535E1F530, 4A628B8DABC44159AAA7536E75154C5DE718ECEA3F554DC27AB0343DBF0DD338 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
22:41:19.0072 0x0944  VBoxUSBMon - ok
22:41:19.0075 0x0944  [ F257A2737280F0076EAE3AB489C06474, A02E37292D86E675D55C13097E9F107C73DDFD8AAC69310F7D9910A811A541D8 ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
22:41:19.0088 0x0944  VClone - ok
22:41:19.0090 0x0944  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:41:19.0097 0x0944  vdrvroot - ok
22:41:19.0105 0x0944  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
22:41:19.0129 0x0944  vds - ok
22:41:19.0132 0x0944  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:41:19.0152 0x0944  vga - ok
22:41:19.0155 0x0944  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:41:19.0173 0x0944  VgaSave - ok
22:41:19.0178 0x0944  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:41:19.0192 0x0944  vhdmp - ok
22:41:19.0194 0x0944  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:41:19.0205 0x0944  viaide - ok
22:41:19.0208 0x0944  [ C7C74D057890D93C3F9FA13874ED696E, 9532B9F4831293FB7BDEAA1B02372DDB6DC9899395CAC1DAE93EAA459DA4E682 ] VMAuthdService  C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
22:41:19.0215 0x0944  VMAuthdService - ok
22:41:19.0219 0x0944  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
22:41:19.0232 0x0944  vmbus - ok
22:41:19.0235 0x0944  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
22:41:19.0246 0x0944  VMBusHID - ok
22:41:19.0248 0x0944  [ 23B3E571717D59C8B0A6963B79061B57, B41BF84972DE78FDD9FA1D69D0514FEABB238321A29608A5304D97EB6CC02B3F ] vmci            C:\Windows\system32\DRIVERS\vmci.sys
22:41:19.0255 0x0944  vmci - ok
22:41:19.0257 0x0944  [ FCA6E29FB1069B0C8689F26E548BC7FE, F23DF71C5A6E488D0715479DABE10D9930999BC8DDC6701935C0252993E3D164 ] vmkbd           C:\Windows\system32\drivers\VMkbd.sys
22:41:19.0263 0x0944  vmkbd - ok
22:41:19.0265 0x0944  [ A3412EC3FF7A5AC2CA3A3951476BFA9C, 8A3D241168205B6B5348F44DF89875067CDD5B29BE8CF14ADA8403225AE2A379 ] VMnetAdapter    C:\Windows\system32\DRIVERS\vmnetadapter.sys
22:41:19.0270 0x0944  VMnetAdapter - ok
22:41:19.0273 0x0944  [ F76AD463DBE8D30CB715A09DF9FF2BE9, 5B2184582496ED0EE8582C6AD3BCF49674690C585439B6F57B43ADC12DF941F6 ] VMnetBridge     C:\Windows\system32\DRIVERS\vmnetbridge.sys
22:41:19.0278 0x0944  VMnetBridge - ok
22:41:19.0295 0x0944  [ 5AA028983A9E31F166C823213E09D831, E417A2A7E4A77E96F819EF1FCA0156AE01807825C0EE0817E649FE6C0D41A4BE ] VMnetDHCP       C:\Windows\SysWOW64\vmnetdhcp.exe
22:41:19.0304 0x0944  VMnetDHCP - ok
22:41:19.0306 0x0944  [ 3E90D3D63FF1E7C8D96C22C0634FBAE7, 469EB9597FE396FCA4ADA49C66DF0ED0F9D5C780F9321D525A6A2B99B59385DD ] VMnetuserif     C:\Windows\system32\drivers\vmnetuserif.sys
22:41:19.0312 0x0944  VMnetuserif - ok
22:41:19.0324 0x0944  [ 60F09F58C27924548F6627BF3A4111FE, 8357FDFB6574DCB2C036851CAC9A8E4659432FF1CDDBFA8195417CD975B52EF6 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
22:41:19.0339 0x0944  VMUSBArbService - ok
22:41:19.0346 0x0944  [ FE3F73C95BCDBB97CE8AF594C3EEE4CA, 69A722D67B96593CB4DEE59C99A594A1D91B176153AF923A7D4B3CAB98C7F46D ] VMware NAT Service C:\Windows\SysWOW64\vmnat.exe
22:41:19.0356 0x0944  VMware NAT Service - ok
22:41:19.0359 0x0944  [ 9EA0F4084FE4FA67BE7496503C26AA85, F8700AC5B5A02F071ABE6AFFAD3A68D8BFE911C92E0F70E7F4EF8420199F4F5E ] vmx86           C:\Windows\system32\drivers\vmx86.sys
22:41:19.0365 0x0944  vmx86 - ok
22:41:19.0368 0x0944  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:41:19.0374 0x0944  volmgr - ok
22:41:19.0380 0x0944  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:41:19.0390 0x0944  volmgrx - ok
22:41:19.0396 0x0944  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:41:19.0405 0x0944  volsnap - ok
22:41:19.0409 0x0944  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:41:19.0422 0x0944  vsmraid - ok
22:41:19.0425 0x0944  [ 7639A7B4A8E5204BB37B479C2D1C8934, 2A35B3A7B20EE3F5888A089D1E46A7FD7B2D86AB36D3401A224F7CD39ABE7F27 ] vsock           C:\Windows\system32\drivers\vsock.sys
22:41:19.0431 0x0944  vsock - ok
22:41:19.0451 0x0944  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
22:41:19.0489 0x0944  VSS - ok
22:41:19.0497 0x0944  [ 79F4D90FAA0ACC1866F2F3E03E39CA89, EE08BCBF29A7E4AFFF520B8DF067281425F433EC275F8C86CE8F20F000E92E3D ] vssbrigde64     C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe
22:41:19.0505 0x0944  vssbrigde64 - ok
22:41:19.0507 0x0944  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:41:19.0516 0x0944  vwifibus - ok
22:41:19.0519 0x0944  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:41:19.0529 0x0944  vwififlt - ok
22:41:19.0535 0x0944  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
22:41:19.0559 0x0944  W32Time - ok
22:41:19.0562 0x0944  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:41:19.0575 0x0944  WacomPen - ok
22:41:19.0578 0x0944  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:41:19.0596 0x0944  WANARP - ok
22:41:19.0599 0x0944  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:41:19.0617 0x0944  Wanarpv6 - ok
22:41:19.0636 0x0944  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
22:41:19.0664 0x0944  wbengine - ok
22:41:19.0669 0x0944  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:41:19.0682 0x0944  WbioSrvc - ok
22:41:19.0688 0x0944  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:41:19.0703 0x0944  wcncsvc - ok
22:41:19.0706 0x0944  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:41:19.0715 0x0944  WcsPlugInService - ok
22:41:19.0717 0x0944  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
22:41:19.0728 0x0944  Wd - ok
22:41:19.0739 0x0944  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:41:19.0756 0x0944  Wdf01000 - ok
22:41:19.0759 0x0944  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:41:19.0769 0x0944  WdiServiceHost - ok
22:41:19.0771 0x0944  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:41:19.0780 0x0944  WdiSystemHost - ok
22:41:19.0789 0x0944  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
22:41:19.0808 0x0944  WebClient - ok
22:41:19.0812 0x0944  [ 2CA323CF5C24A7DA9AC0FC374AED50A4, BAAA6BC43D7D50CE5F95BFE0B5E56B1032883F662A000CB54D361AE0913C325F ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:41:19.0824 0x0944  Wecsvc - ok
22:41:19.0827 0x0944  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:41:19.0846 0x0944  wercplsupport - ok
22:41:19.0849 0x0944  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:41:19.0868 0x0944  WerSvc - ok
22:41:19.0870 0x0944  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:41:19.0887 0x0944  WfpLwf - ok
22:41:19.0889 0x0944  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:41:19.0895 0x0944  WIMMount - ok
22:41:19.0897 0x0944  WinDefend - ok
22:41:19.0899 0x0944  [ A0D15D8727D0780C51628DF46B7268B3, 5E23F3ED1D6620C39A644F9879404A22DED86B3B076EC4A898B4B6BE244AFD64 ] WinDivert64     C:\Windows\system32\drivers\WinDivert64.sys
22:41:19.0905 0x0944  WinDivert64 - ok
22:41:19.0908 0x0944  WinHttpAutoProxySvc - ok
22:41:19.0915 0x0944  [ 5247036CD851AD73B5FC8E546DF78D4D, 5FC56B1CA516ED9D477AEAC5D06B2F59DF7FA9AFA207616C2E648C8348203F62 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:41:19.0925 0x0944  Winmgmt - ok
22:41:19.0955 0x0944  [ 2639C57F43CDB6B36593083CF3DF92F4, 64EE18B8C344EA67406B51724AC962934275B1769B42A03ECE56895CE8CEF05D ] WinRM           C:\Windows\system32\WsmSvc.dll
22:41:19.0995 0x0944  WinRM - ok
22:41:20.0001 0x0944  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:41:20.0014 0x0944  WinUsb - ok
22:41:20.0026 0x0944  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:41:20.0047 0x0944  Wlansvc - ok
22:41:20.0076 0x0944  [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:41:20.0106 0x0944  wlidsvc - ok
22:41:20.0110 0x0944  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
22:41:20.0117 0x0944  WmiAcpi - ok
22:41:20.0122 0x0944  [ 43FA348D871923CC7FD28F82797AC04D, FDC8BD0732C0B11B11A19E16F75F91D09691AA8D28FB928A7918D2B080DF881A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:41:20.0131 0x0944  wmiApSrv - ok
22:41:20.0133 0x0944  WMPNetworkSvc - ok
22:41:20.0135 0x0944  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:41:20.0143 0x0944  WPCSvc - ok
22:41:20.0146 0x0944  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:41:20.0156 0x0944  WPDBusEnum - ok
22:41:20.0158 0x0944  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:41:20.0175 0x0944  ws2ifsl - ok
22:41:20.0179 0x0944  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
22:41:20.0190 0x0944  wscsvc - ok
22:41:20.0192 0x0944  WSearch - ok
22:41:20.0224 0x0944  [ 499034D7F1F6AF49F9EE12F8822793CB, 55D591C4861AF66C6B9201BF78808B2ECE7B79D95C6BB07FF0ED87EFE63DD99E ] wuauserv        C:\Windows\system32\wuaueng.dll
22:41:20.0266 0x0944  wuauserv - ok
22:41:20.0270 0x0944  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:41:20.0279 0x0944  WudfPf - ok
22:41:20.0283 0x0944  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:41:20.0292 0x0944  WUDFRd - ok
22:41:20.0295 0x0944  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:41:20.0304 0x0944  wudfsvc - ok
22:41:20.0308 0x0944  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:41:20.0320 0x0944  WwanSvc - ok
22:41:20.0322 0x0944  X6va029 - ok
22:41:20.0324 0x0944  X6va031 - ok
22:41:20.0327 0x0944  [ 377F3E3467A8BFA3CDC921AD6425D513, 699271DA1D63E90FE1F9FE8AF3A8789CA588A0B7A2AFF5899EBA443361E041A5 ] XSplit_Dummy    C:\Windows\system32\drivers\xspltspk.sys
22:41:20.0337 0x0944  XSplit_Dummy - ok
22:41:20.0339 0x0944  [ A62B9CD4276E29B8CFDFC7CED92A2CD5, 581EF30AF0D6CAD2D2F3A310B965A7620E0053EB15E518E86F5DCA267EC35F9C ] XTU3SERVICE     C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
22:41:20.0346 0x0944  XTU3SERVICE - ok
22:41:20.0353 0x0944  ================ Scan global ===============================
22:41:20.0355 0x0944  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
22:41:20.0360 0x0944  [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
22:41:20.0367 0x0944  [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
22:41:20.0371 0x0944  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:41:20.0377 0x0944  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
22:41:20.0381 0x0944  [ Global ] - ok
22:41:20.0382 0x0944  ================ Scan MBR ==================================
22:41:20.0382 0x0944  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:41:20.0423 0x0944  \Device\Harddisk0\DR0 - ok
22:41:20.0442 0x0944  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
22:41:20.0510 0x0944  \Device\Harddisk2\DR2 - ok
22:41:20.0511 0x0944  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
22:41:20.0584 0x0944  \Device\Harddisk1\DR1 - ok
22:41:20.0584 0x0944  ================ Scan VBR ==================================
22:41:20.0585 0x0944  [ 90B7831161B5ED2F3325553D70944C40 ] \Device\Harddisk0\DR0\Partition1
22:41:20.0586 0x0944  \Device\Harddisk0\DR0\Partition1 - ok
22:41:20.0587 0x0944  [ 3DEBD807EF93D21C0F67F2E68455F0BC ] \Device\Harddisk0\DR0\Partition2
22:41:20.0588 0x0944  \Device\Harddisk0\DR0\Partition2 - ok
22:41:20.0589 0x0944  [ 741F81DB2856F4B8477CE9B85D09CA96 ] \Device\Harddisk2\DR2\Partition1
22:41:20.0616 0x0944  \Device\Harddisk2\DR2\Partition1 - ok
22:41:20.0617 0x0944  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
22:41:20.0618 0x0944  \Device\Harddisk1\DR1\Partition1 - ok
22:41:20.0619 0x0944  [ B0A148ADB8A8293FA14405D097FE937E ] \Device\Harddisk1\DR1\Partition2
22:41:20.0675 0x0944  \Device\Harddisk1\DR1\Partition2 - ok
22:41:20.0675 0x0944  ================ Scan generic autorun ======================
22:41:20.0678 0x0944  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\RunDLL32.exe
22:41:20.0686 0x0944  MBCfg64 - ok
22:41:20.0826 0x0944  [ 19ECAAEA3CC248489FE987C10B688C0D, 967CB23A8176B3181EE2A55DFBB04A69988AB22105D4C450C5B5E729B91FAD5A ] C:\Program Files\Logitech Gaming Software\LCore.exe
22:41:20.0966 0x0944  Launch LCore - ok
22:41:20.0973 0x0944  [ 7483FB537B3399CB4646025872DC8658, 3C8995A64B9D3001F3C93DCBE271B955C1303ABEEF65E37D7D98947AD021B60B ] C:\Program Files\USBLogon\usblondetect.exe
22:41:20.0976 0x0944  USBLogon - detected UnsignedFile.Multi.Generic ( 1 )
22:41:26.0666 0x0944  Detect skipped due to KSN trusted
22:41:26.0666 0x0944  USBLogon - ok
22:41:26.0678 0x0944  [ 4986E58509A8DCB765AAF00CE5239FB4, 7FD0E586ED7EC08C6E400EDCE8AC8065DDC19326640BD84A4FE8595CC5D33370 ] C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
22:41:26.0693 0x0944  BtTray - detected UnsignedFile.Multi.Generic ( 1 )
22:41:32.0146 0x0944  BtTray ( UnsignedFile.Multi.Generic ) - warning
22:41:37.0635 0x0944  [ 463C40BFC0FB8FF59049E2CA78695A40, 8D693A061A19E47CCADEEC844D4ACF59B5CD3CE97452018807884D2ACBEDA7FF ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
22:41:37.0669 0x0944  NvBackend - ok
22:41:37.0672 0x0944  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
22:41:37.0680 0x0944  ShadowPlay - ok
22:41:37.0781 0x0944  [ 890C5393F1E7775A38FA73DC554A379E, 16A01ABF2E6C070156E0A92642496F33BE9A5A923B41FD538C532A52B92E74C4 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
22:41:37.0876 0x0944  RTHDVCPL - ok
22:41:37.0900 0x0944  [ 67E0ACC605B64401554CFCD0512E0F12, F4C04016381831E0F1AFBC0A7BE0AED9560D71824D50ADDC6DBE3ACB012BDB50 ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
22:41:37.0921 0x0944  Sound Blaster Cinema 2 - detected UnsignedFile.Multi.Generic ( 1 )
22:41:43.0439 0x0944  Detect skipped due to KSN trusted
22:41:43.0439 0x0944  Sound Blaster Cinema 2 - ok
22:41:43.0442 0x0944  [ C419DF63E0121D72411285780C2FC6CC, F47F854D327C589D174D3BB5B55D5C05F5ACA73DF52A6BEF47596B9010190291 ] C:\Windows\UpdReg.EXE
22:41:43.0445 0x0944  UpdReg - detected UnsignedFile.Multi.Generic ( 1 )
22:41:48.0967 0x0944  Detect skipped due to KSN trusted
22:41:48.0967 0x0944  UpdReg - ok
22:41:48.0971 0x0944  [ 2555A094409BD20DAB7A97A5A539F21C, 9227932E394C9AB803C423ED38F58F2D7FBCB193A041FD3975B6F0A927D56B55 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
22:41:48.0980 0x0944  USB3MON - ok
22:41:49.0011 0x0944  [ 90F08C914B0492762B6A8A99703FFA2E, D3EDEF6E285E6FC63E06EA820C1D598AE3574A2AA1567809E1AA073919C82406 ] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
22:41:49.0043 0x0944  Malwarebytes Anti-Exploit - ok
22:41:49.0076 0x0944  [ F1021BD18F1F726DAD6E00398FD1CCB6, A76FC4DFB1E9BFE0B920C78E36C1E77D4AA2224D37A26B26AD843D60949D2214 ] C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
22:41:49.0110 0x0944  KeePass 2 PreLoad - ok
22:41:49.0112 0x0944  Dropbox - ok
22:41:49.0121 0x0944  [ F916BA0DA28A4B4F7B1ADE76EB42F088, FB3C91D44709D039E959B275F6ECE26AF9307D272FE3E25CC41EAC259AA3B596 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
22:41:49.0132 0x0944  SunJavaUpdateSched - ok
22:41:49.0147 0x0944  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:41:49.0171 0x0944  Sidebar - ok
22:41:49.0174 0x0944  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:41:49.0184 0x0944  mctadmin - ok
22:41:49.0199 0x0944  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:41:49.0218 0x0944  Sidebar - ok
22:41:49.0221 0x0944  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:41:49.0232 0x0944  mctadmin - ok
22:41:49.0263 0x0944  [ F1021BD18F1F726DAD6E00398FD1CCB6, A76FC4DFB1E9BFE0B920C78E36C1E77D4AA2224D37A26B26AD843D60949D2214 ] C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
22:41:49.0297 0x0944  KeePass Password Safe 2 - ok
22:41:49.0316 0x0944  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
22:41:49.0341 0x0944  Sidebar - ok
22:41:49.0376 0x0944  [ 79B931F21AC3C9501DE7A9EFCF64D82A, F7768AAD896A6F03C52697732B13746DA9751A1507B923012BFA30DD7307D0B4 ] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
22:41:49.0410 0x0944  Rainlendar2 - ok
22:41:49.0427 0x0944  icq - ok
22:41:49.0439 0x0944  [ 615209C5C8F920648E024A234201A404, 590C55407F824EAC1D92F65D56F0C30B8D6BDF3B2F6DA95446B205FB8927D798 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
22:41:49.0453 0x0944  GoogleChromeAutoLaunch_D3D3FDB76797D0380D6F53572845784B - ok
22:41:49.0455 0x0944  Skype - ok
22:41:49.0489 0x0944  [ 86BF17A265E1B4BA41325623EC132E66, 4414B5F01A78B76BFC1A7C39F595645A09E674FA6DE7991F31BA6673EEB23F9E ] C:\Program Files (x86)\Steam\steam.exe
22:41:49.0525 0x0944  Steam - ok
22:41:49.0629 0x0944  [ FB5B78A3DE88FD3B725DA574497BC225, 0096C3ED0E29153E6A9E84C121B79A170FEDFE521AEA1BC602BC536E1795E5F3 ] C:\Program Files\CCleaner\CCleaner64.exe
22:41:49.0739 0x0944  CCleaner Monitoring - ok
22:41:49.0788 0x0944  [ 8AC47661CD9069EC24EBF1AC261D1112, 3E83EA627BC97FDBD87AC9ACF284F7E9D709DB3BC076CFCF56B63AACC2B756A5 ] C:\Program Files (x86)\Ashampoo\Ashampoo Snap 6\ashsnap.exe
22:41:49.0842 0x0944  AshSnap - ok
22:41:49.0844 0x0944  SandboxieControl - ok
22:41:49.0845 0x0944  MD5 File Hasher - ok
22:41:49.0845 0x0944  Sony PC Companion - ok
22:41:49.0846 0x0944  Waiting for KSN requests completion. In queue: 15
22:41:50.0846 0x0944  Waiting for KSN requests completion. In queue: 15
22:41:51.0846 0x0944  Waiting for KSN requests completion. In queue: 15
22:41:52.0846 0x0944  Waiting for KSN requests completion. In queue: 15
22:41:53.0846 0x0944  Waiting for KSN requests completion. In queue: 15
22:41:54.0846 0x0944  Waiting for KSN requests completion. In queue: 15
22:41:55.0856 0x0944  AV detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\wmiav.exe ( 16.0.0.614 ), 0x41000 ( enabled : updated )
22:41:55.0857 0x0944  FW detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\wmiav.exe ( 16.0.0.614 ), 0x41010 ( enabled )
22:42:01.0314 0x0944  ============================================================
22:42:01.0314 0x0944  Scan finished
22:42:01.0314 0x0944  ============================================================
22:42:01.0318 0x1a10  Detected object count: 3
22:42:01.0318 0x1a10  Actual detected object count: 3
22:42:16.0597 0x1a10  AtherosSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:16.0597 0x1a10  AtherosSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:42:16.0598 0x1a10  Killer Service V2 ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:16.0598 0x1a10  Killer Service V2 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:42:16.0598 0x1a10  BtTray ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:16.0598 0x1a10  BtTray ( UnsignedFile.Multi.Generic ) - User select action: Skip

schrauber · 08.09.2015, 18:07

hi,

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

darkrider78 · 08.09.2015, 20:36

Combofix:

Code:

ATTFilter

ComboFix 15-09-07.01 - darkrider84 08.09.2015  21:20:04.1.8 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.16333.12010 [GMT 2:00]
ausgeführt von:: c:\users\darkrider84\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Updated* {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
FW: Kaspersky Internet Security *Disabled* {8C27F4BD-7F99-4CD1-5651-D3EB97674300}
SP: Kaspersky Internet Security *Disabled/Updated* {0F7D947C-13CC-4207-47BE-41AC12334EC6}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\CFLog
c:\users\DARKRI~1\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpr4r_nr.dll
c:\users\darkrider84\AppData\Local\assembly\tmp
c:\users\darkrider84\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpr4r_nr.dll
c:\users\darkrider84\AppData\Roaming\16.wav
c:\users\darkrider84\AppData\Roaming\17.wav
c:\users\darkrider84\AppData\Roaming\36.wav
c:\users\darkrider84\AppData\Roaming\54.wav
c:\users\darkrider84\AppData\Roaming\Minecraft.exe
c:\users\Public\Documents\pre_fileassoc.tmp
c:\users\Sgt Napoleon\AppData\Roaming\Origin
c:\users\Sgt Napoleon\AppData\Roaming\Origin\Cloud Saves\blacklist
c:\users\Sgt Napoleon\AppData\Roaming\Origin\local.xml
c:\users\Sgt Napoleon\AppData\Roaming\SpeedRunnersLog.txt
c:\windows\IsUn0407.exe
c:\windows\SysWow64\Packet.dll
c:\windows\SysWow64\pthreadVC.dll
c:\windows\SysWow64\wpcap.dll
c:\windows\wininit.ini
.
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_npf
.
.
(((((((((((((((((((((((   Dateien erstellt von 2015-08-08 bis 2015-09-08  ))))))))))))))))))))))))))))))
.
.
2015-09-08 19:24 . 2015-09-08 19:24	--------	d-----w-	c:\users\Sgt Napoleon\AppData\Local\temp
2015-09-08 19:24 . 2015-09-08 19:24	--------	d-----w-	c:\users\MIB\AppData\Local\temp
2015-09-08 06:03 . 2015-09-08 06:03	--------	d-----w-	c:\program files\MiniTool Partition Wizard Free 9.1
2015-09-08 05:48 . 2015-09-08 05:48	--------	d-----w-	c:\users\darkrider84\.dvdcss
2015-09-08 05:47 . 2015-09-08 05:47	--------	d-----w-	c:\programdata\PMS
2015-09-08 05:46 . 2015-09-08 05:46	--------	d-----w-	c:\program files (x86)\PS3 Media Server
2015-09-07 20:34 . 2015-09-07 20:34	--------	d-----w-	c:\program files (x86)\MBAR
2015-09-07 16:34 . 2015-09-07 16:34	--------	d-----w-	c:\program files (x86)\Seagate
2015-09-07 01:44 . 2015-06-04 08:50	600872	----a-w-	c:\windows\system32\drivers\btfilter.sys
2015-09-07 00:28 . 2015-08-26 12:47	55464	----a-w-	c:\program files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
2015-09-07 00:28 . 2015-08-26 14:43	896928	----a-w-	c:\program files (x86)\Mozilla Firefox\uninstall\helper.exe
2015-09-07 00:28 . 2015-08-26 12:47	190120	----a-w-	c:\program files (x86)\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll
2015-09-07 00:27 . 2014-08-11 12:29	19896	----a-w-	c:\windows\SysWow64\xpcom.dll
2015-09-07 00:26 . 2014-08-11 12:29	19896	----a-w-	c:\program files (x86)\Mozilla Firefox\xpcom.dll
2015-09-06 17:40 . 2015-07-04 00:18	227000	----a-w-	c:\windows\system32\drivers\klhk.sys
2015-09-06 17:40 . 2015-06-29 23:05	931000	----a-w-	c:\windows\system32\drivers\klif.sys
2015-09-06 17:40 . 2015-06-29 23:05	171192	----a-w-	c:\windows\system32\drivers\klflt.sys
2015-09-06 08:58 . 2015-09-06 09:00	--------	d-----w-	c:\users\MIB\AppData\Local\Soccer Manager 2015
2015-09-06 08:56 . 2015-09-06 08:56	--------	d-----w-	c:\users\MIB\AppData\Local\Ubisoft Game Launcher
2015-09-06 04:41 . 2015-09-07 05:30	--------	d-----w-	c:\users\darkrider84\AppData\Local\VMware
2015-09-06 04:41 . 2015-09-07 05:31	--------	d-----w-	c:\users\darkrider84\AppData\Roaming\VMware
2015-09-06 04:40 . 2015-08-03 23:10	75512	----a-w-	c:\windows\system32\drivers\vsock.sys
2015-09-06 04:40 . 2015-08-03 23:10	68288	----a-w-	c:\windows\system32\vsocklib.dll
2015-09-06 04:40 . 2015-08-03 23:10	64192	----a-w-	c:\windows\SysWow64\vsocklib.dll
2015-09-06 04:40 . 2015-08-14 12:03	33472	----a-w-	c:\windows\system32\drivers\VMkbd.sys
2015-09-06 04:40 . 2015-08-14 12:03	66752	----a-w-	c:\windows\system32\drivers\vmx86.sys
2015-09-06 04:40 . 2015-08-14 12:03	358080	----a-w-	c:\windows\SysWow64\vmnetdhcp.exe
2015-09-06 04:40 . 2015-08-14 12:03	391872	----a-w-	c:\windows\SysWow64\vmnat.exe
2015-09-06 04:40 . 2015-08-14 11:43	26816	----a-w-	c:\windows\system32\drivers\vmnetuserif.sys
2015-09-06 04:40 . 2015-08-14 12:03	934080	----a-w-	c:\windows\system32\vnetlib64.dll
2015-09-06 04:40 . 2015-08-11 17:27	57536	----a-w-	c:\windows\system32\drivers\hcmon.sys
2015-09-06 04:39 . 2015-09-06 04:39	--------	d-----w-	c:\program files\Common Files\VMware
2015-09-06 04:39 . 2015-09-06 04:39	--------	d-----w-	c:\program files (x86)\Common Files\ThinPrint
2015-09-06 04:39 . 2015-09-08 19:25	--------	d-----w-	c:\programdata\VMware
2015-09-06 04:39 . 2015-09-06 04:39	--------	d-----w-	c:\program files (x86)\VMware
2015-09-06 04:39 . 2015-09-06 04:39	--------	d-----w-	c:\program files (x86)\Common Files\VMware
2015-09-06 01:19 . 2015-09-06 01:19	--------	d-sh--w-	c:\windows\SysWow64\AI_RecycleBin
2015-09-06 01:13 . 2015-09-06 01:13	--------	d-----w-	c:\program files (x86)\VS Revo Group
2015-09-06 01:07 . 2015-09-06 01:07	--------	d-----w-	c:\users\darkrider84\AppData\Roaming\dlg
2015-09-06 01:06 . 2015-09-06 01:06	--------	d-----w-	c:\users\darkrider84\AppData\Local\Freetec
2015-09-06 01:06 . 2015-09-06 01:06	--------	d-----w-	c:\program files (x86)\SoftwareUpdater
2015-09-06 01:06 . 2015-09-06 01:06	--------	d-----w-	c:\users\darkrider84\AppData\Local\DownloadGuide
2015-09-06 01:00 . 2013-12-02 19:01	35376	----a-w-	c:\windows\system32\drivers\WinDivert64.sys
2015-09-06 01:00 . 2015-09-06 01:00	--------	d-----w-	c:\program files\BeSecure
2015-09-06 00:59 . 2015-09-06 00:59	--------	d-----w-	c:\users\darkrider84\AppData\Local\StormFall
2015-09-06 00:59 . 2015-09-06 00:59	--------	d-----w-	c:\users\darkrider84\AppData\Local\InfiniteCrisis
2015-09-06 00:36 . 2015-09-08 06:10	--------	d-----w-	c:\program files (x86)\ChrisPC VideoTube Downloader Pro
2015-09-06 00:15 . 2015-09-06 00:15	--------	d-----w-	c:\program files\WinPcap
2015-09-06 00:15 . 2015-09-06 01:01	--------	d-----w-	c:\programdata\Freemake
2015-09-06 00:15 . 2015-09-06 01:01	--------	d-----w-	c:\program files (x86)\Freemake
2015-09-03 00:22 . 2015-09-03 00:22	--------	d-----w-	c:\users\Sgt Napoleon\AppData\Local\Origin
2015-09-02 18:32 . 2015-09-02 18:32	--------	d-----w-	c:\users\darkrider84\AppData\Local\Gas Powered Games
2015-09-02 14:30 . 2015-09-02 14:30	--------	d-----w-	c:\users\Sgt Napoleon\AppData\Local\Gas Powered Games
2015-09-02 02:42 . 2015-09-02 02:42	--------	d-----w-	c:\program files (x86)\DVD Shrink
2015-09-02 01:29 . 2015-09-02 03:00	--------	d-----w-	c:\programdata\DVD Shrink
2015-09-02 00:26 . 2015-09-02 00:26	76152	----a-w-	c:\windows\system32\PnkBstrA.exe
2015-09-01 21:48 . 2015-09-04 17:32	226168	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2015-09-01 21:48 . 2015-09-01 21:48	76888	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2015-09-01 15:30 . 2015-09-01 19:13	--------	d-----w-	c:\users\darkrider84\AppData\Local\EA Games
2015-09-01 15:11 . 2015-09-08 16:47	--------	d-----w-	c:\users\darkrider84\AppData\Local\Daedalic Entertainment
2015-09-01 13:50 . 2015-09-01 13:50	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2015-08-31 23:15 . 2015-08-25 14:08	574072	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2015-08-31 16:33 . 2015-08-31 16:34	--------	d-----w-	c:\users\darkrider84\AppData\Roaming\Foxit Software
2015-08-31 16:33 . 2015-08-31 16:33	--------	d-----w-	c:\users\Public\Foxit Software
2015-08-31 16:33 . 2015-08-31 16:33	--------	d-----w-	c:\program files (x86)\Foxit Software
2015-08-31 16:29 . 2015-08-31 16:29	--------	d-----w-	c:\users\darkrider84\AppData\Local\PDF24
2015-08-31 16:12 . 2015-08-31 16:12	--------	d-----w-	c:\program files (x86)\MakeMKV
2015-08-31 14:40 . 2015-08-31 19:59	--------	d-----w-	c:\users\darkrider84\AppData\Roaming\FreeFileSync
2015-08-31 14:39 . 2015-08-31 14:39	--------	d-----w-	c:\program files\FreeFileSync
2015-08-31 00:36 . 2015-08-31 00:43	--------	d-----w-	c:\users\Sgt Napoleon\AppData\Local\Daedalic Entertainment
2015-08-31 00:32 . 2015-08-31 00:43	--------	d-----w-	c:\users\Sgt Napoleon\.oracle_jre_usage
2015-08-30 22:01 . 2015-08-30 22:01	--------	d-----w-	c:\program files (x86)\Common Files\Java
2015-08-30 22:01 . 2015-08-30 22:01	--------	d-----w-	c:\windows\system32\config\systemprofile\.oracle_jre_usage
2015-08-30 22:00 . 2015-08-30 22:01	--------	d-----w-	c:\users\darkrider84\.oracle_jre_usage
2015-08-30 22:00 . 2015-08-30 22:00	--------	d-----w-	c:\windows\SysWow64\config\systemprofile\.oracle_jre_usage
2015-08-30 17:35 . 2015-08-30 17:35	--------	d-----w-	c:\program files\Ubisoft
2015-08-22 20:23 . 2015-08-22 20:23	--------	d-----w-	c:\users\darkrider84\AppData\Roaming\New Technology Studio
2015-08-22 20:23 . 2015-08-22 20:23	--------	d-----w-	c:\users\darkrider84\AppData\Local\New Technology Studio
2015-08-22 15:34 . 2015-08-11 04:52	69416	----a-w-	c:\windows\SysWow64\nvaudcap32v.dll
2015-08-22 15:34 . 2015-08-11 04:52	50472	----a-w-	c:\windows\system32\drivers\nvvad64v.sys
2015-08-22 06:15 . 2015-08-22 06:15	--------	d-----w-	c:\users\MIB\AppData\Local\Daybreak Game Company
2015-08-22 06:04 . 2015-08-22 06:05	--------	d-----w-	c:\users\MIB\AppData\Local\PAYDAY 2
2015-08-22 05:01 . 2015-08-23 08:28	--------	d-----w-	c:\users\MIB\AppData\Local\LogMeIn Hamachi
2015-08-22 05:01 . 2015-08-22 05:01	--------	d-----w-	c:\users\MIB\AppData\Local\LogMeIn
2015-08-21 19:24 . 2015-09-03 13:12	--------	d-----w-	c:\users\Sgt Napoleon\AppData\Local\LogMeIn Hamachi
2015-08-21 19:24 . 2015-08-21 19:24	--------	d-----w-	c:\users\Sgt Napoleon\AppData\Local\LogMeIn
2015-08-21 18:34 . 2015-08-21 18:34	--------	d-----w-	c:\users\darkrider84\AppData\Local\PAYDAY 2
2015-08-21 11:35 . 2015-08-31 00:42	--------	d-----w-	c:\program files (x86)\Java
2015-08-20 22:18 . 2015-08-20 22:18	--------	d-----w-	c:\users\darkrider84\AppData\Roaming\Unity
2015-08-20 22:18 . 2015-08-20 22:18	--------	d-----w-	c:\users\darkrider84\AppData\Local\Unity
2015-08-20 19:19 . 2015-09-07 00:36	--------	d-----w-	c:\users\darkrider84\AppData\Local\LogMeIn Hamachi
2015-08-20 19:19 . 2015-08-20 19:19	--------	d-----w-	c:\program files (x86)\LogMeIn Hamachi
2015-08-20 18:17 . 2015-08-20 19:12	--------	d-----w-	c:\users\darkrider84\AppData\Roaming\Tunngle
2015-08-20 18:17 . 2009-09-16 06:02	31232	----a-w-	c:\windows\system32\drivers\tap0901t.sys
2015-08-20 18:10 . 2015-08-20 18:10	--------	d-----w-	c:\users\darkrider84\AppData\Local\LogMeIn
2015-08-20 18:10 . 2015-08-20 18:10	--------	d-----w-	c:\programdata\LogMeIn
2015-08-19 20:06 . 2015-08-19 20:06	118	----a-w-	c:\windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-19 18:43 . 2015-09-06 17:41	--------	d-----w-	c:\users\TEMP
2015-08-19 11:35 . 2015-08-11 01:20	25191936	----a-w-	c:\windows\system32\mshtml.dll
2015-08-19 11:35 . 2015-08-11 01:14	2724864	----a-w-	c:\windows\system32\mshtml.tlb
2015-08-19 11:35 . 2015-08-11 00:33	2724864	----a-w-	c:\windows\SysWow64\mshtml.tlb
2015-08-19 10:21 . 2015-08-19 10:21	0	---ha-w-	c:\users\Sgt Napoleon\AppData\Local\BIT3930.tmp
2015-08-16 09:18 . 2015-08-16 09:18	--------	d-----w-	c:\programdata\Nexon
2015-08-16 09:06 . 2015-08-16 09:16	--------	d-----w-	c:\users\darkrider84\AppData\Local\NXEPassportClient
2015-08-16 09:00 . 2015-08-16 09:00	--------	d-----w-	c:\users\darkrider84\Neuer Ordner
2015-08-15 08:29 . 2015-08-15 08:29	--------	d-----w-	c:\program files\Futuremark
2015-08-14 11:43 . 2015-08-14 11:43	49856	----a-w-	c:\windows\system32\vnetinst.dll
2015-08-14 11:43 . 2015-08-14 11:43	81088	----a-w-	c:\windows\system32\vmnetbridge.dll
2015-08-14 11:43 . 2015-08-14 11:43	48832	----a-w-	c:\windows\system32\drivers\vmnetbridge.sys
2015-08-14 11:43 . 2015-08-14 11:43	28864	----a-w-	c:\windows\system32\drivers\vmnetadapter.sys
2015-08-14 11:43 . 2015-08-14 11:43	27328	----a-w-	c:\windows\system32\drivers\vmnet.sys
2015-08-14 05:22 . 2015-08-14 05:22	--------	d-----w-	c:\users\darkrider84\AppData\Local\NVIDIA
2015-08-14 05:22 . 2015-08-27 00:37	1423120	----a-w-	c:\windows\SysWow64\nvspcap.dll
2015-08-14 05:22 . 2015-08-27 00:37	1316000	----a-w-	c:\windows\SysWow64\nvspbridge.dll
2015-08-14 05:22 . 2015-08-27 00:36	1756424	----a-w-	c:\windows\system32\nvspbridge64.dll
2015-08-14 05:22 . 2015-08-27 00:36	1710568	----a-w-	c:\windows\system32\nvspcap64.dll
2015-08-14 05:22 . 2015-08-11 04:52	72504	----a-w-	c:\windows\system32\nvaudcap64v.dll
2015-08-14 05:16 . 2015-08-07 11:06	40280	----a-w-	c:\windows\system32\nvhdap64.dll
2015-08-14 05:16 . 2015-08-07 11:06	204648	----a-w-	c:\windows\system32\drivers\nvhda64v.sys
2015-08-14 05:16 . 2015-08-07 11:06	1898104	----a-w-	c:\windows\system32\nvdispco6435560.dll
2015-08-14 05:16 . 2015-08-07 11:06	1567576	----a-w-	c:\windows\system32\nvhdagenco6420103.dll
2015-08-14 05:16 . 2015-08-07 11:06	1558832	----a-w-	c:\windows\system32\nvdispgenco6435560.dll
2015-08-14 02:45 . 2015-08-14 02:50	--------	d-----w-	c:\programdata\TrackMania
2015-08-13 19:30 . 2015-08-13 19:32	--------	d-----w-	c:\programdata\Killer
2015-08-13 19:30 . 2015-05-29 11:44	2311680	----a-w-	c:\windows\system32\drivers\Qcamain7x64.sys
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-09-08 05:11 . 2015-03-12 19:31	109272	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2015-09-07 14:45 . 2015-03-12 19:31	113880	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-09-04 17:32 . 2015-02-26 22:36	226168	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2015-08-30 22:01 . 2015-02-26 21:38	110688	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2015-08-25 18:46 . 2015-07-08 11:03	17082392	----a-w-	c:\windows\system32\nvwgf2umx.dll
2015-08-25 18:46 . 2015-07-08 11:02	15512888	----a-w-	c:\windows\system32\nvd3dumx.dll
2015-08-25 18:46 . 2015-07-08 11:02	12515016	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2015-08-25 18:46 . 2015-07-08 11:02	3527696	----a-w-	c:\windows\system32\nvapi64.dll
2015-08-25 18:46 . 2015-07-08 11:02	3112904	----a-w-	c:\windows\SysWow64\nvapi.dll
2015-08-25 14:24 . 2015-07-08 11:05	937776	----a-w-	c:\windows\system32\nvvsvc.exe
2015-08-25 14:24 . 2015-07-08 11:05	62584	----a-w-	c:\windows\system32\nvshext.dll
2015-08-25 14:24 . 2015-07-08 11:05	385144	----a-w-	c:\windows\system32\nvmctray.dll
2015-08-25 14:24 . 2015-07-08 11:05	3496752	----a-w-	c:\windows\system32\nvsvc64.dll
2015-08-25 14:24 . 2015-07-08 11:05	2558584	----a-w-	c:\windows\system32\nvsvcr.dll
2015-08-25 14:24 . 2015-07-08 11:05	6884984	----a-w-	c:\windows\system32\nvcpl.dll
2015-08-25 12:35 . 2015-07-08 11:05	5165808	----a-w-	c:\windows\system32\nvcoproc.bin
2015-08-22 18:46 . 2009-08-18 10:49	564632	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2015-08-22 18:46 . 2009-08-18 09:24	24288	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-08-12 09:22 . 2015-03-01 18:02	778440	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2015-08-12 09:22 . 2015-03-01 18:02	142536	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-08-08 01:02 . 2015-08-08 00:48	776	----a-w-	c:\users\darkrider84\Valle normal.reg
2015-08-08 01:01 . 2015-08-08 00:48	930	----a-w-	c:\users\darkrider84\Valle gesperrt.reg
2015-08-08 00:40 . 2015-08-08 00:40	371477730	----a-w-	c:\users\darkrider84\Sicherung.reg
2015-08-03 23:10 . 2015-08-03 23:10	90816	----a-w-	c:\windows\system32\drivers\vmci.sys
2015-08-03 10:12 . 2015-08-03 10:12	33856	---ha-w-	c:\windows\system32\drivers\hamachi.sys
2015-07-27 19:59 . 2015-07-27 19:59	194112	----a-w-	c:\programdata\Microsoft\VPDExpress\10.0\1031\ResourceCache.dll
2015-07-27 16:08 . 2015-07-27 16:08	296736	----a-w-	c:\windows\system32\drivers\file_tracker.sys
2015-07-27 16:08 . 2015-07-27 16:08	248648	----a-w-	c:\windows\system32\drivers\tib_mounter.sys
2015-07-27 16:08 . 2015-07-27 16:08	1058632	----a-w-	c:\windows\system32\drivers\tib.sys
2015-07-27 16:08 . 2015-07-27 16:08	304416	----a-w-	c:\windows\system32\drivers\snapman.sys
2015-07-27 16:08 . 2015-07-27 16:08	134432	----a-w-	c:\windows\system32\drivers\fltsrv.sys
2015-07-23 04:06 . 2015-08-07 01:06	1898128	----a-w-	c:\windows\system32\nvdispco6435362.dll
2015-07-23 04:06 . 2015-08-07 01:06	1557648	----a-w-	c:\windows\system32\nvdispgenco6435362.dll
2015-07-15 17:54 . 2015-08-12 12:06	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2015-07-11 21:47 . 2015-02-27 09:17	282296	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2015-07-10 11:22 . 2015-07-14 14:37	922704	----a-w-	c:\windows\system32\drivers\VBoxDrv.sys
2015-07-10 11:21 . 2015-07-14 14:37	128592	----a-w-	c:\windows\system32\drivers\VBoxUSBMon.sys
2015-07-10 11:21 . 2015-07-10 11:21	204264	----a-w-	c:\windows\system32\VBoxNetFltNobj.dll
2015-07-10 11:21 . 2015-07-10 11:21	141440	----a-w-	c:\windows\system32\drivers\VBoxNetAdp.sys
2015-07-10 11:21 . 2015-03-16 16:35	158432	----a-w-	c:\windows\system32\drivers\VBoxNetFlt.sys
2015-07-08 02:22 . 2015-07-08 02:22	207872	----a-w-	c:\windows\PAExec.exe
2015-07-07 04:02 . 2015-02-26 20:24	18960	----a-w-	c:\windows\system32\drivers\LNonPnP.sys
2015-07-05 22:10 . 2015-07-05 22:10	389816	----a-w-	c:\windows\system32\drivers\cm_km.sys
2015-07-05 15:10 . 2015-07-05 15:11	238376	----a-w-	c:\windows\SysWow64\EasyAntiCheat.exe
2015-07-04 18:07 . 2015-07-15 14:14	2087424	----a-w-	c:\windows\system32\ole32.dll
2015-07-04 17:48 . 2015-07-15 14:14	1414656	----a-w-	c:\windows\SysWow64\ole32.dll
2015-06-26 23:30 . 2015-06-26 23:30	70000	----a-w-	c:\windows\system32\drivers\klbackupflt.sys
2015-06-23 16:30 . 2015-06-23 16:30	187056	----a-w-	c:\windows\system32\drivers\kneps.sys
2015-06-22 18:40 . 2015-06-22 18:40	478392	----a-w-	c:\windows\system32\drivers\kl1.sys
2015-06-19 13:11 . 2015-06-19 13:11	117808	----a-w-	c:\windows\system32\drivers\bflwfx64.sys
2015-06-18 07:43 . 2015-06-18 07:43	442104	----a-w-	c:\windows\system32\drivers\asmtxhci.sys
2015-06-18 07:43 . 2015-06-18 07:43	149240	----a-w-	c:\windows\system32\drivers\asmthub3.sys
2015-06-18 06:41 . 2015-03-12 19:31	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2015-06-18 06:41 . 2015-03-12 19:31	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
2015-06-17 17:47 . 2015-07-15 14:19	404992	----a-w-	c:\windows\system32\gdi32.dll
2015-06-17 17:37 . 2015-07-15 14:19	312320	----a-w-	c:\windows\SysWow64\gdi32.dll
2015-06-17 09:40 . 2015-06-17 09:40	83792	----a-w-	c:\windows\system32\drivers\asstor64.sys
2015-06-17 09:10 . 2015-07-08 11:12	1898128	----a-w-	c:\windows\system32\nvdispco6435330.dll
2015-06-17 09:10 . 2015-07-08 11:12	1557832	----a-w-	c:\windows\system32\nvdispgenco6435330.dll
2015-06-16 19:56 . 2015-06-16 19:56	103096	----a-w-	c:\windows\system32\drivers\klwtp.sys
2015-06-15 21:50 . 2015-07-15 14:14	112064	----a-w-	c:\windows\system32\consent.exe
2015-06-15 21:45 . 2015-07-15 14:14	504320	----a-w-	c:\windows\system32\msihnd.dll
2015-06-15 21:45 . 2015-07-15 14:14	3242496	----a-w-	c:\windows\system32\msi.dll
2015-06-15 21:45 . 2015-07-15 14:14	70656	----a-w-	c:\windows\system32\appinfo.dll
2015-06-15 21:45 . 2015-07-15 14:14	1941504	----a-w-	c:\windows\system32\authui.dll
2015-06-15 21:44 . 2015-07-15 14:14	128000	----a-w-	c:\windows\system32\msiexec.exe
2015-06-15 21:43 . 2015-07-15 14:14	337408	----a-w-	c:\windows\SysWow64\msihnd.dll
2015-06-15 21:43 . 2015-07-15 14:14	2364416	----a-w-	c:\windows\SysWow64\msi.dll
2015-06-15 21:43 . 2015-07-15 14:14	1805824	----a-w-	c:\windows\SysWow64\authui.dll
2015-06-15 21:42 . 2015-07-15 14:14	73216	----a-w-	c:\windows\SysWow64\msiexec.exe
2015-06-15 21:42 . 2015-07-15 14:14	25088	----a-w-	c:\windows\system32\msimsg.dll
2015-06-15 21:37 . 2015-07-15 14:14	25088	----a-w-	c:\windows\SysWow64\msimsg.dll
2015-06-12 20:37 . 2015-05-26 21:49	401	----a-w-	c:\windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-06-11 23:21 . 2015-05-04 20:48	838864	------w-	c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2015-06-11 17:32 . 2014-10-10 16:02	39096	----a-w-	c:\windows\system32\drivers\klim6.sys
2015-06-11 13:56 . 2015-06-11 13:56	65208	----a-w-	c:\windows\system32\drivers\kltdi.sys
2015-03-09 13:48 . 2015-03-19 13:25	2508440	----a-w-	c:\program files (x86)\procexp.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	189464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	189464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	189464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	189464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	189464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	189464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	189464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	189464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive1]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2015-05-04 20:52	329376	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive2]
@="{5AB7172C-9C11-405C-8DD5-AF20F3606282}"
[HKEY_CLASSES_ROOT\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}]
2015-05-04 20:52	329376	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive3]
@="{A78ED123-AB77-406B-9962-2A5D9D2F7F30}"
[HKEY_CLASSES_ROOT\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}]
2015-05-04 20:52	329376	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive4]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2015-05-04 20:52	329376	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive5]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2015-05-04 20:52	329376	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"KeePass Password Safe 2"="c:\program files (x86)\KeePass Password Safe 2\KeePass.exe" [2015-08-09 2720144]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"Rainlendar2"="c:\program files (x86)\Rainlendar2\Rainlendar2.exe" [2014-03-16 2611808]
"icq"="c:\users\darkrider84\AppData\Roaming\ICQM\icq.exe" [2015-02-26 36705800]
"GoogleChromeAutoLaunch_D3D3FDB76797D0380D6F53572845784B"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2015-08-28 871240]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-08-07 53737488]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2015-08-19 2899136]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2015-08-19 8455960]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema 2"="c:\program files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" [2014-05-29 1442304]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-10 90112]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2015-03-23 296216]
"Malwarebytes Anti-Exploit"="c:\program files (x86)\Malwarebytes Anti-Exploit\mbae.exe" [2015-07-22 2620728]
"KeePass 2 PreLoad"="c:\program files (x86)\KeePass Password Safe 2\KeePass.exe" [2015-08-09 2720144]
"Dropbox"="c:\program files (x86)\Dropbox\Client\Dropbox.exe" [2015-08-14 39175960]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2015-08-04 597552]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0\0sdnclean64.exe
.
R1 Uim_DEVIM;UIM Direct Device Image Plugin;c:\windows\system32\DRIVERS\uim_devim.sys;c:\windows\SYSNATIVE\DRIVERS\uim_devim.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 dbupdate;Dropbox-Update-Service (dbupdate);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\androidusb.sys;c:\windows\SYSNATIVE\Drivers\androidusb.sys [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 CompFilter64;UVCCompositeFilter;c:\windows\system32\DRIVERS\lvbflt64.sys;c:\windows\SYSNATIVE\DRIVERS\lvbflt64.sys [x]
R3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x]
R3 dbupdatem;Dropbox-Update-Service (dbupdatem);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe;c:\windows\SYSNATIVE\EasyAntiCheat.exe [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\SystemInfo\FMSISvc.exe [x]
R3 GPUZ;GPUZ;c:\windows\TEMP\GPUZ.sys;c:\windows\TEMP\GPUZ.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 INETMON;INETMON;c:\windows\System32\Drivers\INETMON.sys;c:\windows\SYSNATIVE\Drivers\INETMON.sys [x]
R3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 LVUVC64;Logitech HD Webcam C615(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 MSIBIOSData_CC;MSIBIOSData_CC;c:\program files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe;c:\program files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 MSIClock_CC;MSIClock_CC;c:\program files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe;c:\program files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [x]
R3 MSICOMM_CC;MSICOMM_CC;c:\program files (x86)\MSI\Command Center\MSICommService.exe;c:\program files (x86)\MSI\Command Center\MSICommService.exe [x]
R3 MSICPU_CC;MSICPU_CC;c:\program files (x86)\MSI\Command Center\CPU\MSICPUService.exe;c:\program files (x86)\MSI\Command Center\CPU\MSICPUService.exe [x]
R3 MSISMB_CC;MSISMB_CC;c:\program files (x86)\MSI\Command Center\SMBus\MSISMBService.exe;c:\program files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [x]
R3 MSISuperIO_CC;MSISuperIO_CC;c:\program files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe;c:\program files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;d:\ntiolib_x64.sys;d:\NTIOLib_X64.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys;c:\windows\SYSNATIVE\pwdspio.sys [x]
R3 Qcamain;Qualcomm Atheros Extensible Wireless LAN 11AC device driver;c:\windows\system32\DRIVERS\Qcamain7x64.sys;c:\windows\SYSNATIVE\DRIVERS\Qcamain7x64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys;c:\windows\SYSNATIVE\Drivers\VBoxUSB.sys [x]
R3 vssbrigde64;vssbrigde64;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [x]
R3 X6va029;X6va029;c:\windows\SysWOW64\Drivers\X6va029;c:\windows\SysWOW64\Drivers\X6va029 [x]
R3 X6va031;X6va031;c:\windows\SysWOW64\Drivers\X6va031;c:\windows\SysWOW64\Drivers\X6va031 [x]
R3 XSplit_Dummy;XSplit  Stream  Audio  Renderer;c:\windows\system32\drivers\xspltspk.sys;c:\windows\SYSNATIVE\drivers\xspltspk.sys [x]
S0 asstor64;asstor64;c:\windows\system32\DRIVERS\asstor64.sys;c:\windows\SYSNATIVE\DRIVERS\asstor64.sys [x]
S0 cm_km;Kaspersky Lab ZAO Cryptographic Module x64 (Weak);c:\windows\system32\DRIVERS\cm_km.sys;c:\windows\SYSNATIVE\DRIVERS\cm_km.sys [x]
S0 file_tracker;file_tracker;c:\windows\system32\DRIVERS\file_tracker.sys;c:\windows\SYSNATIVE\DRIVERS\file_tracker.sys [x]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 klbackupdisk;Kaspersky Lab klbackupdisk;c:\windows\system32\DRIVERS\klbackupdisk.sys;c:\windows\SYSNATIVE\DRIVERS\klbackupdisk.sys [x]
S0 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys;c:\windows\SYSNATIVE\pwdrvio.sys [x]
S0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys;c:\windows\SYSNATIVE\DRIVERS\vmci.sys [x]
S0 vsock;vSockets Driver;c:\windows\system32\drivers\vsock.sys;c:\windows\SYSNATIVE\drivers\vsock.sys [x]
S1 BfLwf;Killer Bandwidth Control;c:\windows\system32\DRIVERS\bflwfx64.sys;c:\windows\SYSNATIVE\DRIVERS\bflwfx64.sys [x]
S1 ESProtectionDriver;Malwarebytes Anti-Exploit;c:\program files (x86)\Malwarebytes Anti-Exploit\mbae64.sys;c:\program files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [x]
S1 klbackupflt;Kaspersky Lab klbackupflt;c:\windows\system32\DRIVERS\klbackupflt.sys;c:\windows\SYSNATIVE\DRIVERS\klbackupflt.sys [x]
S1 klhk;Kaspersky Lab service driver;c:\windows\system32\DRIVERS\klhk.sys;c:\windows\SYSNATIVE\DRIVERS\klhk.sys [x]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
S1 klpd;Kaspersky Lab format recognizer driver;c:\windows\system32\DRIVERS\klpd.sys;c:\windows\SYSNATIVE\DRIVERS\klpd.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 Klwtp;Klwtp;c:\windows\system32\DRIVERS\klwtp.sys;c:\windows\SYSNATIVE\DRIVERS\klwtp.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [x]
S2 ArchiCrypt Sichere Loeschzonen;ArchiCrypt Shredder - Sichere Löschzonen Hilfsservice;c:\program files (x86)\ArchiCrypt\ArchiCrypt Shredder 6\ArchiCryptInjector64.exe;c:\program files (x86)\ArchiCrypt\ArchiCrypt Shredder 6\ArchiCryptInjector64.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 AVP16.0.0;Kaspersky Anti-Virus Service 16.0.0;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [x]
S2 BeSecure;BeSecure;c:\program files\BeSecure\BeSecure.exe;c:\program files\BeSecure\BeSecure.exe [x]
S2 BeSecure_updater_service;BeSecure_updater_service;c:\program files\BeSecure\BeSecure_updater_service.exe;c:\program files\BeSecure\BeSecure_updater_service.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service;c:\windows\system32\igfxCUIService.exe;c:\windows\SYSNATIVE\igfxCUIService.exe [x]
S2 iocbios2;iocbios2;c:\program files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys;c:\program files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [x]
S2 Killer Service V2;Killer Service V2;c:\program files\Killer Networking\Network Manager\KillerService.exe;c:\program files\Killer Networking\Network Manager\KillerService.exe [x]
S2 kldisk;kldisk;c:\windows\system32\DRIVERS\kldisk.sys;c:\windows\SYSNATIVE\DRIVERS\kldisk.sys [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 MbaeSvc;Malwarebytes Anti-Exploit Service;c:\program files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe;c:\program files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [x]
S2 MSI_FastBoot;MSI_FastBoot;c:\program files (x86)\MSI\Fast Boot\FastBootService.exe;c:\program files (x86)\MSI\Fast Boot\FastBootService.exe [x]
S2 MSI_LiveUpdate_Service;MSI_LiveUpdate_Service;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super Charger\ChargeService.exe;c:\program files (x86)\MSI\Super Charger\ChargeService.exe [x]
S2 MSICTL_CC;MSICTL_CC;c:\program files (x86)\MSI\Command Center\MSIControlService.exe;c:\program files (x86)\MSI\Command Center\MSIControlService.exe [x]
S2 MSIDDR_CC;MSIDDR_CC;c:\program files (x86)\MSI\Command Center\DDR\MSIDDRService.exe;c:\program files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 SuperRAIDSvc;SuperRAIDSvc;c:\msi\Smart Utilities\SuperRAIDSvc.exe;c:\msi\Smart Utilities\SuperRAIDSvc.exe [x]
S2 syncagentsrv;Acronis Sync Agent Service;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [x]
S2 tib;Acronis TIB Manager;c:\windows\system32\DRIVERS\tib.sys;c:\windows\SYSNATIVE\DRIVERS\tib.sys [x]
S2 tib_mounter;Acronis TIB Mounter;c:\windows\system32\DRIVERS\tib_mounter.sys;c:\windows\SYSNATIVE\DRIVERS\tib_mounter.sys [x]
S2 USBLogonService;USBLogonService;c:\program files\USBLogon\usblonsvc.exe;c:\program files\USBLogon\usblonsvc.exe [x]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [x]
S2 WinDivert64;WinDivert64;c:\windows\system32\drivers\WinDivert64.sys;c:\windows\SYSNATIVE\drivers\WinDivert64.sys [x]
S2 XTU3SERVICE;Intel(R) Extreme Tuning Utility Service;c:\program files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe;c:\program files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [x]
S3 AcpiCtlDrv;AcpiCtlDrv;c:\windows\system32\DRIVERS\AcpiCtlDrv.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiCtlDrv.sys [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 CMfilt;CMfilt;c:\windows\system32\drivers\CMfilt64.sys;c:\windows\SYSNATIVE\drivers\CMfilt64.sys [x]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 Ke2200;NDIS Miniport Driver for Killer e2201/e2202 PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\e22w7x64.sys;c:\windows\SYSNATIVE\DRIVERS\e22w7x64.sys [x]
S3 klflt;Kaspersky Lab Kernel DLL;c:\windows\system32\DRIVERS\klflt.sys;c:\windows\SYSNATIVE\DRIVERS\klflt.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGPBTDD;LGPBTDD.sys Display Driver;c:\windows\system32\Drivers\LGPBTDD.sys;c:\windows\SYSNATIVE\Drivers\LGPBTDD.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 MS7926;MS7926 USB Audio Driver;c:\windows\system32\DRIVERS\MS7926.SYS;c:\windows\SYSNATIVE\DRIVERS\MS7926.SYS [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys [x]
S3 NTIOLib_FastBoot;NTIOLib_FastBoot;c:\program files (x86)\MSI\Fast Boot\NTIOLib_X64.sys;c:\program files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [x]
S3 NTIOLib_MSI_RAID;NTIOLib_MSI_RAID;c:\msi\Smart Utilities\NTIOLib_X64.sys;c:\msi\Smart Utilities\NTIOLib_X64.sys [x]
S3 NTIOLib_MSIDDR_CC;NTIOLib_MSIDDR_CC;c:\program files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys;c:\program files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys;c:\program files (x86)\MSI Afterburner\RTCore64.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfswin7.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfswin7.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaywin7.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaywin7.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirwin7.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirwin7.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvolwin7.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvolwin7.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 VBAudioVMAUXVAIOMME;VB-Audio VoiceMeeter AUX VAIO (WDM);c:\windows\system32\DRIVERS\vbaudio_vmauxvaio64_win7.sys;c:\windows\SYSNATIVE\DRIVERS\vbaudio_vmauxvaio64_win7.sys [x]
S3 VBAudioVMVAIOMME;VB-Audio VoiceMeeter VAIO (WDM);c:\windows\system32\DRIVERS\vbaudio_vmvaio64_win7.sys;c:\windows\SYSNATIVE\DRIVERS\vbaudio_vmvaio64_win7.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - NTIOLIB_MSI_RAID
*NewlyCreated* - RTCORE64
*Deregistered* - ArchiCryptInjector
.
Inhalt des "geplante Tasks" Ordners
.
2015-09-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-01 09:22]
.
2015-09-08 c:\windows\Tasks\DropboxUpdateTaskMachineCore.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-13 01:32]
.
2015-09-08 c:\windows\Tasks\DropboxUpdateTaskMachineUA.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-13 01:32]
.
2015-09-08 c:\windows\Tasks\EPSON XP-422 423 425 Series Update {C11D8B02-EE30-495C-8983-4E88B27B0910}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_YTSNDE.EXE [2015-03-05 16:30]
.
2015-09-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-02-26 19:17]
.
2015-09-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-02-26 19:17]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	226328	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	226328	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	226328	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	226328	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	226328	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	226328	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	226328	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16	226328	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive1]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2015-05-04 20:52	358064	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive2]
@="{5AB7172C-9C11-405C-8DD5-AF20F3606282}"
[HKEY_CLASSES_ROOT\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}]
2015-05-04 20:52	358064	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive3]
@="{A78ED123-AB77-406B-9962-2A5D9D2F7F30}"
[HKEY_CLASSES_ROOT\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}]
2015-05-04 20:52	358064	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive4]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2015-05-04 20:52	358064	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive5]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2015-05-04 20:52	358064	----a-w-	c:\users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
2014-09-09 09:05	2832680	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
2014-09-09 09:05	2832680	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
2014-09-09 09:05	2832680	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MBCfg64"="c:\windows\system32\MBCfg64.dll" [2014-02-21 41088]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2014-10-14 12697368]
"USBLogon"="c:\program files\USBLogon\usblondetect.exe" [2013-10-01 12288]
"BtTray"="c:\program files (x86)\Bluetooth Suite\BtTray.exe" [2015-01-30 851072]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-08-27 2634872]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-08-27 1710568]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2015-07-07 8497368]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\program files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\program files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
IE: {{c0e8ae32-0758-4c8d-ab71-23b361fe8964} - c:\users\DARKRI~1\AppData\Local\Temp\ie_script.htm
LSP: %windir%\system32\vsocklib.dll
FF - ProfilePath - c:\users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\
FF - prefs.js: browser.startup.homepage - about:home|hxxp://www.giga.de/androidnews/
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-ArchiCrypt Shredder 6 - (no file)
Wow6432Node-HKCU-Run-ArchiCrypt Scheduler 6 - (no file)
Wow6432Node-HKCU-Run-ArchiCrypt SecureDZone - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va029]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va029"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va031]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va031"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,b4,83,91,6b,fb,98,84,4a,b6,b9,ba,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,b4,83,91,6b,fb,98,84,4a,b6,b9,ba,\
.
[HKEY_USERS\S-1-5-21-2214554541-3394249910-989620225-1000\Software\SecuROM\License information*]
"datasecu"=hex:ee,23,f5,33,4a,1b,13,9e,9e,7e,0e,92,62,37,15,4a,8c,bf,db,f6,62,
   95,e1,14,a9,61,91,36,84,6f,2d,43,68,b4,09,f1,6e,9e,c4,da,8c,7d,11,20,69,f6,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_18_0_0_232_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_18_0_0_232_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.18"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\PnkBstrA.exe
c:\program files (x86)\TeamViewer\TeamViewer_Service.exe
c:\windows\SysWOW64\vmnat.exe
c:\program files (x86)\VMware\VMware Player\vmware-authd.exe
c:\windows\SysWOW64\vmnetdhcp.exe
c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
c:\program files (x86)\MSI Afterburner\MSIAfterburner.exe
c:\users\darkrider84\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
c:\program files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2015-09-08  21:30:01 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2015-09-08 19:30
.
Vor Suchlauf: 17 Verzeichnis(se), 64.108.847.104 Bytes frei
Nach Suchlauf: 23 Verzeichnis(se), 65.411.117.056 Bytes frei
.
- - End Of File - - 93D193E09D6ACE864EE165727F1A3586
A36C5E4F47E84449FF07ED3517B43A31

Der Rechner wurde einmal neugestartet.
Danach musste ich ihn nochmal neustarten, da einige Programme nicht ausgeführt werden konnten und nicht alle Autostartobjekte ausgeführt wurden.
Jetzt hängt der Rechner auf einmal beim Schreiben.

Grüße

schrauber · 09.09.2015, 07:46

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

darkrider78 · 09.09.2015, 19:58

Hi,
MBAM:

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 09.09.2015
Suchlaufzeit: 20:28
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.1.8.1057
Malware-Datenbank: v2015.09.09.06
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: darkrider84

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 568132
Abgelaufene Zeit: 5 Min., 48 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 2
PUM.Hijack.CMDPrompt, HKU\S-1-5-21-2214554541-3394249910-989620225-1003\SOFTWARE\POLICIES\MICROSOFT\WINDOWS\SYSTEM|DisableCMD, 1, Gut: (0), Schlecht: (1),Ersetzt,[cb0f96972c5fc472c20d86da71942bd5]
PUM.Hijack.CMDPrompt, HKU\S-1-5-21-2214554541-3394249910-989620225-1004\SOFTWARE\POLICIES\MICROSOFT\WINDOWS\SYSTEM|DisableCMD, 2, Gut: (0), Schlecht: (2),Ersetzt,[04d666c7d9b2c76f4bb80461a0652cd4]

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

AdwCleaner:

Code:

ATTFilter

# AdwCleaner v5.007 - Bericht erstellt am 09/09/2015 um 20:18:19
# Aktualisiert am 08/09/2015 von Xplode
# Datenbank : 2015-09-08.2 [Server]
# Betriebssystem : Windows 7 Professional Service Pack 1 (x64)
# Benutzername : darkrider84 - DARKRIDER84-PC
# Gestartet von : C:\Users\darkrider84\Desktop\AdwCleaner_5.007.exe
# Option : Löschen
# Unterstützung : http://toolslib.net/forum

***** [ Dienste ] *****

[-] Dienst Gelöscht : WinDivert64

***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files (x86)\SoftwareUpdater
[-] Ordner Gelöscht : C:\Users\darkrider84\AppData\Local\DownloadGuide
[-] Ordner Gelöscht : C:\Users\darkrider84\AppData\Local\StormFall

***** [ Dateien ] *****

[-] Datei Gelöscht : C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.spigotmc.org_0.localstorage
[-] Datei Gelöscht : C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_api.ciuvo.com_0.localstorage
[-] Datei Gelöscht : C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_api.ciuvo.com_0.localstorage-journal

***** [ Verknüpfungen ] *****


***** [ Geplante Tasks ] *****

[-] Task Gelöscht : Software Updater

***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
[-] Schlüssel Gelöscht : HKCU\Software\Conduit
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\Conduit

***** [ Internetbrowser ] *****


*************************

:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [2285 Bytes] ##########

JRT:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.1 (09.08.2015:1)
OS: Windows 7 Professional x64
Ran by darkrider84 on 09.09.2015 at 20:21:14,15
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_D3D3FDB76797D0380D6F53572845784B



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer



~~~ Files

Successfully deleted: [File] C:\Users\darkrider84\Appdata\Local\google\chrome\user data\default\local storage\chrome-extension_bigefpfhnfcobdlfbedofhhaibnlghod_0.localstorage
Successfully deleted: [File] C:\Users\darkrider84\Appdata\Local\google\chrome\user data\default\local storage\chrome-extension_bigefpfhnfcobdlfbedofhhaibnlghod_0.localstorage-journal



~~~ Folders

Successfully deleted: [Folder] C:\Users\darkrider84\Appdata\Local\crashrpt
Successfully deleted: [Folder] C:\Windows\SysWOW64\ai_recyclebin



~~~ FireFox

Successfully deleted: [Folder] C:\Users\darkrider84\AppData\Roaming\mozilla\firefox\profiles\z8a826r2.default\extensions\staged
Successfully deleted: [Folder] C:\Users\darkrider84\AppData\Roaming\mozilla\firefox\profiles\zazj8sjl.dev-edition-default\extensions\staged
Emptied folder: C:\Users\darkrider84\AppData\Roaming\mozilla\firefox\profiles\z8a826r2.default\minidumps [2 files]



~~~ Chrome

Successfully deleted: [Folder] C:\Users\darkrider84\Appdata\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod

[C:\Users\darkrider84\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\darkrider84\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
bigefpfhnfcobdlfbedofhhaibnlghod

[C:\Users\darkrider84\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\darkrider84\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
  bigefpfhnfcobdlfbedofhhaibnlghod
]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09.09.2015 at 20:24:24,87
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

EDIT:
Nun konnte auch MBAR updaten.
Hier der Log:

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.2.1008
www.malwarebytes.org

Database version:
  main:    v2015.09.09.06
  rootkit: v2015.08.16.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18015
darkrider84 :: DARKRIDER84-PC [administrator]

09.09.2015 20:42:51
mbar-log-2015-09-09 (20-42-51).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 568115
Time elapsed: 9 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

Hier noch der Log von Kaspersky Internet Security.
Ich hatte bereits einen Scan gemacht, bevor ich diesen Thread hier eröffnet habe.

Log:

Code:

ATTFilter

06.09.2015 10.12.10	Vollständige Untersuchung des Computers	Aufgabe wurde abgeschlossen	Ende: Heute, 06.09.2015, 10:12
06.09.2015 08.59.39	Objekt (Datei) wurde nicht verarbeitet.	G:\Users\darkrider84\Downloads\Mods\GTA IV Mods\1. LCPD First Response 1.0d_2 Automatic Install\LCPD First Response 1.0d_2 Installer.exe//š€\OCSetupHlp.dll	Datei: G:\Users\darkrider84\Downloads\Mods\GTA IV Mods\1. LCPD First Response 1.0d_2 Automatic Install\LCPD First Response 1.0d_2 Installer.exe//š€\OCSetupHlp.dll	Objektname:: not-a-virus:AdWare.Win32.OpenCandy.aa	Grund: Zurückgestellt
06.09.2015 08.59.39	Objekt (Datei) wurde gefunden.	G:\Users\darkrider84\Downloads\Mods\GTA IV Mods\1. LCPD First Response 1.0d_2 Automatic Install\LCPD First Response 1.0d_2 Installer.exe//š€\OCSetupHlp.dll	Datei: G:\Users\darkrider84\Downloads\Mods\GTA IV Mods\1. LCPD First Response 1.0d_2 Automatic Install\LCPD First Response 1.0d_2 Installer.exe//š€\OCSetupHlp.dll	Objektname:: not-a-virus:AdWare.Win32.OpenCandy.aa
06.09.2015 08.51.08	Objekt (Datei) wurde nicht verarbeitet.	G:\Users\darkrider84\Downloads\1. LCPD First Response 1.0d_2 Automatic Install.zip//LCPD First Response 1.0d_2 Installer.exe//š€\OCSetupHlp.dll	Datei: G:\Users\darkrider84\Downloads\1. LCPD First Response 1.0d_2 Automatic Install.zip//LCPD First Response 1.0d_2 Installer.exe//š€\OCSetupHlp.dll	Objektname:: not-a-virus:AdWare.Win32.OpenCandy.aa	Grund: Zurückgestellt
06.09.2015 08.51.08	Objekt (Datei) wurde gefunden.	G:\Users\darkrider84\Downloads\1. LCPD First Response 1.0d_2 Automatic Install.zip//LCPD First Response 1.0d_2 Installer.exe//š€\OCSetupHlp.dll	Datei: G:\Users\darkrider84\Downloads\1. LCPD First Response 1.0d_2 Automatic Install.zip//LCPD First Response 1.0d_2 Installer.exe//š€\OCSetupHlp.dll	Objektname:: not-a-virus:AdWare.Win32.OpenCandy.aa
06.09.2015 08.49.17	Vollständige Untersuchung des Computers (fortgesetzt)		Zeitpunkt:: Heute, 06.09.2015, 08:49
06.09.2015 08.49.14	Vollständige Untersuchung des Computers (angehalten)		Zeitpunkt:: Heute, 06.09.2015, 08:49
06.09.2015 07.32.10	Vollständige Untersuchung des Computers (fortgesetzt)		Zeitpunkt:: Heute, 06.09.2015, 07:32
06.09.2015 07.28.48	Vollständige Untersuchung des Computers (angehalten)		Zeitpunkt:: Heute, 06.09.2015, 07:28
06.09.2015 07.28.24	Vollständige Untersuchung des Computers (fortgesetzt)		Zeitpunkt:: Heute, 06.09.2015, 07:28
06.09.2015 07.25.12	Vollständige Untersuchung des Computers (angehalten)		Zeitpunkt:: Heute, 06.09.2015, 07:25
06.09.2015 07.24.02	Vollständige Untersuchung des Computers (fortgesetzt)		Zeitpunkt:: Heute, 06.09.2015, 07:24
06.09.2015 07.23.29	Vollständige Untersuchung des Computers (angehalten)		Zeitpunkt:: Heute, 06.09.2015, 07:23
06.09.2015 07.02.16	Vollständige Untersuchung des Computers (fortgesetzt)		Zeitpunkt:: Heute, 06.09.2015, 07:02
06.09.2015 07.02.13	Vollständige Untersuchung des Computers (angehalten)		Zeitpunkt:: Heute, 06.09.2015, 07:02
06.09.2015 06.57.34	Vollständige Untersuchung des Computers	Aufgabe wurde gestartet	Zeitpunkt:: Heute, 06.09.2015, 06:57

FRST:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:06-09-2015 01
durchgeführt von darkrider84 (Administrator) auf DARKRIDER84-PC (09-09-2015 20:56:51)
Gestartet von C:\Users\darkrider84\Desktop
Geladene Profile: darkrider84 (Verfügbare Profile: darkrider84 & MIB & Sgt Napoleon)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(EJIE Technology) C:\Program Files (x86)\Clover\clover.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Farbar) C:\Users\darkrider84\Desktop\FRST64 (1).exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM\...\Run: [USBLogon] => C:\Program Files\USBLogon\usblondetect.exe [12288 2013-10-01] (Quadsoft)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [851072 2015-01-30] (Qualcomm Atheros)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-07-07] (Realtek Semiconductor)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1442304 2014-05-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-03-24] (Intel Corporation)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2620728 2015-07-22] (Malwarebytes Corporation)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [39175960 2015-08-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [Rainlendar2] => C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [2611808 2014-03-16] ()
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [icq] => C:\Users\darkrider84\AppData\Roaming\ICQM\icq.exe [36705800 2015-02-26] (ICQ)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53737488 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [GoogleChromeAutoLaunch_D3D3FDB76797D0380D6F53572845784B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240 2015-08-28] (Google Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

Tcpip\Parameters: [DhcpNameServer] 192.168.44.1 192.168.0.1
Tcpip\..\Interfaces\{AC4ECDC7-8B8C-46DE-934E-89D23EDEFBF5}: [DhcpNameServer] 192.168.44.1 192.168.0.1
Tcpip\..\Interfaces\{C80E5507-C03F-4AAF-B14D-20C8A6FD53FD}: [DhcpNameServer] 192.168.44.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper64.dll [2014-01-23] (EJIE Technology)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\new_plugin\npjp2.dll [Keine Datei]
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-08-16] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll Keine Datei
FF Plugin HKU\S-1-5-21-2214554541-3394249910-989620225-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\darkrider84\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Extension: Amazon-Icon - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\amazon-icon@giga.de [2015-02-28]
FF Extension: Battlefield Heroes Updater - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\battlefieldheroespatcher@ea.com [2015-02-27]
FF Extension: ColorfulTabs - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2015-07-26]
FF Extension: WOT - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-11]
FF Extension: Ghostery - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\firefox@ghostery.com.xpi [2015-03-01]
FF Extension: Download Manager (S3) - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\s3download@statusbar.xpi [2015-03-01]
FF Extension: ShareMeNot - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\sharemenot@franziroesner.com.xpi [2015-03-01]
FF Extension: Tab Preview - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{1de0de3c-0b5c-4f67-90c6-689623894991}.xpi [2015-03-01]
FF Extension: NoScript - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-03-01]
FF Extension: YouTube High Definition - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2015-03-01]
FF Extension: ReloadEvery - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2015-04-17]
FF Extension: BugMeNot Plugin - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{987311C6-B504-4aa2-90BF-60CC49808D42}.xpi [2015-03-01]
FF Extension: Download YouTube Videos as MP4 - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2015-07-04]
FF Extension: Adblock Plus - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-01]
FF Extension: BetterPrivacy - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2015-03-01]
FF Extension: Tab Mix Plus - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\z8a826r2.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-03-01]
FF Extension: Amazon-Icon - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\amazon-icon@giga.de [2015-03-15]
FF Extension: Battlefield Heroes Updater - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\battlefieldheroespatcher@ea.com [2015-03-15]
FF Extension: ColorfulTabs - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2015-03-18]
FF Extension: WOT - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\firefox@ghostery.com.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\s3download@statusbar.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\sharemenot@franziroesner.com.xpi [2015-03-15]
FF Extension: Tab Preview - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{1de0de3c-0b5c-4f67-90c6-689623894991}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{987311C6-B504-4aa2-90BF-60CC49808D42}.xpi [2015-03-15]
FF Extension: Adblock Plus - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2015-03-15]
FF Extension: Kein Name - C:\Users\darkrider84\AppData\Roaming\Mozilla\Firefox\Profiles\zazj8sjl.dev-edition-default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-03-15]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-03-06]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2015-09-06]
FF Extension: Kein Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [nicht gefunden]
FF Extension: Kein Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [nicht gefunden]
FF Extension: Kein Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [nicht gefunden]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-26]
CHR Extension: (Google Docs) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-26]
CHR Extension: (Google Drive) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-26]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-02-26]
CHR Extension: (MEGA) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-09-09]
CHR Extension: (YouTube) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-26]
CHR Extension: (Chrome YouTube Downloader) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja [2015-06-28]
CHR Extension: (Battlefield Heroes) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh [2015-02-27]
CHR Extension: (Adblock Plus) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-02-26]
CHR Extension: (Add to Amazon Wish List) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced [2015-06-29]
CHR Extension: (Google Search) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-26]
CHR Extension: (Google Sheets) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-26]
CHR Extension: (Google Docs Offline) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
CHR Extension: (Super Auto Refresh) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkhjakkgopekjlempoplnjclgedabddk [2015-02-26]
CHR Extension: (Auto HD For YouTube™) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak [2015-02-26]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Skype Click to Call) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-02-27]
CHR Extension: (Ghostery) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-02-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-26]
CHR Extension: (uMatrix) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfcmafjalglgifnmanfmnieipoejdcf [2015-02-26]
CHR Extension: (Gmail) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-26]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - https://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - https://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [ocbnpbkmjpgbdcgiflkgkpnkinifpgpj] - C:\Users\darkrider84\ChromeExtensions\ocbnpbkmjpgbdcgiflkgkpnkinifpgpj\amazon-icon-2.crx [2015-02-28]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 ArchiCrypt Sichere Loeschzonen; C:\Program Files (x86)\ArchiCrypt\ArchiCrypt Shredder 6\ArchiCryptInjector64.exe [322136 2014-11-27] (Softwareentwicklung Remus - ArchiCrypt)
S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [317056 2015-01-30] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert]
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2015-09-06] (Kaspersky Lab ZAO)
S2 BeSecure; C:\Program Files\BeSecure\BeSecure.exe [16384 2015-04-09] () [Datei ist nicht signiert]
S2 BeSecure_updater_service; C:\Program Files\BeSecure\BeSecure_updater_service.exe [12288 2015-04-10] () [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-25] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-07-05] (EasyAntiCheat Ltd)
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-05-06] (Intel Corporation)
S2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [402432 2015-07-07] (Rivet Networks) [Datei ist nicht signiert]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
S2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [713016 2015-07-22] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2106832 2015-06-29] (MSI)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4048336 2015-08-13] (MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2123216 2015-07-08] (MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4177360 2015-07-07] (MSI)
S2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2002896 2015-07-28] (MSI)
S2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2284496 2015-07-30] (MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2072528 2015-06-29] (MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [599504 2015-07-28] (MSI)
S2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI)
S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1741992 2015-07-30] (Micro-Star INT'L CO., LTD.)
S2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-02] (Electronic Arts)
S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-09-02] ()
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-09-01] ()
S2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2015-02-09] (Micro-Star INT'L CO., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
S2 USBLogonService; C:\Program Files\USBLogon\usblonsvc.exe [12288 2013-10-01] () [Datei ist nicht signiert]
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19216 2015-07-07] (Intel(R) Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AcpiCtlDrv; C:\Windows\System32\DRIVERS\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2010-04-29] (Google Inc)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [83792 2015-06-17] (Asmedia Technology)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [117808 2015-06-19] (Rivet Networks, LLC.)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [74368 2015-01-30] (Qualcomm Atheros)
R3 CMfilt; C:\Windows\System32\drivers\CMfilt64.sys [23552 2014-01-27] (Creative Technology Ltd.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [63064 2015-07-22] ()
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2015-07-27] (Acronis International GmbH)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30960 2014-12-04] (Intel Corporation)
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation)
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] ()
R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [125488 2015-03-18] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70000 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [171192 2015-06-30] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [227000 2015-07-04] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [931000 2015-06-30] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [39096 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [41144 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [30392 2015-06-08] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [103096 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [109272 2015-09-09] (Malwarebytes)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 MS7926; C:\Windows\System32\DRIVERS\MS7926.SYS [608768 2014-10-06] (C-MEDIA)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 Qcamain; C:\Windows\System32\DRIVERS\Qcamain7x64.sys [2311680 2015-05-29] (Qualcomm Atheros, Inc.)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-05-27] ()
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation)
R2 tib; C:\Windows\System32\DRIVERS\tib.sys [1058632 2015-07-27] (Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [248648 2015-07-27] (Acronis International GmbH)
S1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [102664 2014-05-19] ()
S1 Uim_DEVIM; C:\Windows\System32\DRIVERS\uim_devim.sys [25992 2014-05-19] ()
S1 Uim_IM; C:\Windows\System32\DRIVERS\uim_im.sys [700296 2014-05-19] ()
R3 VBAudioVMAUXVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmauxvaio64_win7.sys [41192 2015-04-17] (Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2015-04-17] (Windows (R) Win 7 DDK provider)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [116232 2015-03-16] (Oracle Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [75512 2015-08-04] (VMware, Inc.)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2014-07-02] (SplitmediaLabs Limited)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
R3 HWiNFO32; \??\C:\Users\DARKRI~1\AppData\Local\Temp\HWiNFO64A.SYS [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP2b\WNt600x64\Sandra.sys [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-09 20:24 - 2015-09-09 20:24 - 00002488 _____ C:\Users\darkrider84\Desktop\JRT.txt
2015-09-09 20:21 - 2015-09-09 20:11 - 01800104 _____ (Malwarebytes Corporation) C:\Users\darkrider84\Desktop\JRT.exe
2015-09-09 20:20 - 2015-09-09 20:20 - 01799392 _____ (Malwarebytes Corporation) C:\Users\darkrider84\Desktop\JRT_7600.exe
2015-09-09 20:14 - 2015-09-09 20:14 - 01660416 _____ C:\Users\darkrider84\Desktop\AdwCleaner_5.007.exe
2015-09-08 23:02 - 2015-09-02 05:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-08 23:02 - 2015-09-02 05:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-08 23:02 - 2015-09-02 05:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-08 23:02 - 2015-09-02 05:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-08 23:02 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-09-08 23:02 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-08 23:02 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-09-08 23:02 - 2015-09-02 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-09-08 23:02 - 2015-09-02 03:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-08 23:02 - 2015-09-02 03:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-08 23:02 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-08 23:02 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-08 23:02 - 2015-08-27 20:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-08 23:02 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-08 23:02 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-08 23:02 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-08 23:02 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-08 23:02 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-09-08 23:02 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-09-08 23:02 - 2015-08-26 20:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-08 23:02 - 2015-08-26 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-09-08 23:02 - 2015-08-26 20:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-08 23:02 - 2015-08-26 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-09-08 23:02 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-08 23:02 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-08 23:02 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-08 23:02 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-09-08 23:02 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-08 23:02 - 2015-08-18 03:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-08 23:02 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-08 23:02 - 2015-08-15 08:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-08 23:02 - 2015-08-15 08:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-08 23:02 - 2015-08-15 08:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-09-08 23:02 - 2015-08-15 08:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-08 23:02 - 2015-08-15 08:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-09-08 23:02 - 2015-08-15 08:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-08 23:02 - 2015-08-15 08:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-08 23:02 - 2015-08-15 08:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-08 23:02 - 2015-08-15 08:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-09-08 23:02 - 2015-08-15 08:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-08 23:02 - 2015-08-15 08:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-08 23:02 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-08 23:02 - 2015-08-15 08:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-08 23:02 - 2015-08-15 08:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-08 23:02 - 2015-08-15 08:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-09-08 23:02 - 2015-08-15 08:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-08 23:02 - 2015-08-15 08:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-09-08 23:02 - 2015-08-15 08:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-08 23:02 - 2015-08-15 07:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-08 23:02 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-08 23:02 - 2015-08-15 07:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-08 23:02 - 2015-08-15 07:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-08 23:02 - 2015-08-15 07:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-08 23:02 - 2015-08-15 07:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-08 23:02 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-08 23:02 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-09-08 23:02 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-09-08 23:02 - 2015-08-15 07:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-08 23:02 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-09-08 23:02 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-09-08 23:02 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-08 23:02 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-09-08 23:02 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-09-08 23:02 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-09-08 23:02 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-08 23:02 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-09-08 23:02 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-09-08 23:02 - 2015-08-15 07:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-08 23:02 - 2015-08-15 07:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-08 23:02 - 2015-08-15 07:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-08 23:02 - 2015-08-15 07:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-08 23:02 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-09-08 23:02 - 2015-08-15 07:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-08 23:02 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-08 23:02 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-09-08 23:02 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-09-08 23:02 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-09-08 23:02 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-08 23:02 - 2015-08-15 07:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-08 23:02 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-08 23:02 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-08 23:02 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-08 23:02 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-09-08 23:02 - 2015-08-15 06:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-08 23:02 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-08 23:02 - 2015-08-15 06:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-08 23:02 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-08 23:02 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-08 23:02 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-08 23:02 - 2015-08-05 19:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-08 23:02 - 2015-08-05 19:56 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-09-08 23:02 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-08 23:02 - 2015-08-04 20:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-08 23:02 - 2015-08-04 20:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-08 23:02 - 2015-08-04 19:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-09-08 23:02 - 2015-08-04 19:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-08 23:02 - 2015-08-04 19:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-08 23:02 - 2015-08-04 19:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-09-08 23:02 - 2015-08-04 19:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-09-08 23:02 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-08 23:02 - 2015-08-04 18:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-09-08 23:02 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-08 23:02 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-09-08 23:02 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-09-08 23:02 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-08 23:02 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-09-08 23:02 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-09-08 23:02 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-09-08 23:02 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-09-08 23:02 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-09-08 23:02 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-09-08 23:02 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-09-08 23:02 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-09-08 23:02 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-09-08 23:02 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-09-08 23:02 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-09-08 23:02 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-09-08 23:02 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-09-08 23:02 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-09-08 23:02 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-09-08 23:02 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-09-08 23:02 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-09-08 23:02 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-08 23:02 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-09-08 23:02 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-09-08 23:02 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-09-08 23:02 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-09-08 23:02 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-09-08 23:02 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-08 23:02 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-08 23:02 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-09-08 23:02 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-08 23:02 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-08 23:02 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-09-08 23:02 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-09-08 23:02 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-08 23:02 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-08 23:02 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-08 23:02 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-08 21:30 - 2015-09-08 21:30 - 00063366 _____ C:\ComboFix.txt
2015-09-08 21:19 - 2015-09-08 21:30 - 00000000 ____D C:\Qoobox
2015-09-08 21:19 - 2015-09-08 21:27 - 00000000 ____D C:\Windows\erdnt
2015-09-08 21:19 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-09-08 21:19 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-09-08 21:19 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-09-08 21:16 - 2015-09-08 21:16 - 05635119 ____R (Swearware) C:\Users\darkrider84\Desktop\ComboFix.exe
2015-09-08 18:00 - 2015-09-08 18:00 - 00000000 ___RD C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-08 08:03 - 2015-09-08 21:48 - 00000000 ____D C:\Program Files\MiniTool Partition Wizard Free 9.1
2015-09-08 08:03 - 2015-09-08 08:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Free 9.1
2015-09-08 07:48 - 2015-09-08 07:48 - 00000000 ____D C:\Users\darkrider84\.dvdcss
2015-09-08 07:47 - 2015-09-08 07:47 - 00000000 ____D C:\ProgramData\PMS
2015-09-08 07:47 - 2015-09-08 07:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS3 Media Server
2015-09-08 07:46 - 2015-09-08 07:46 - 00000000 ____D C:\Program Files (x86)\PS3 Media Server
2015-09-07 22:34 - 2015-09-07 22:34 - 00000000 ____D C:\Program Files (x86)\MBAR
2015-09-07 18:34 - 2015-09-07 18:34 - 00000000 ____D C:\Program Files (x86)\Seagate
2015-09-07 07:27 - 2015-09-07 07:27 - 00096990 _____ C:\SfcDetails.txt
2015-09-07 03:50 - 2015-09-07 03:50 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-09-07 03:50 - 2015-09-07 03:50 - 00000000 ____D C:\Program Files\Realtek
2015-09-07 03:50 - 2015-07-07 19:13 - 04514008 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-09-07 03:50 - 2015-07-07 15:54 - 35222128 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-09-07 03:50 - 2015-07-06 16:05 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-09-07 03:50 - 2015-07-01 18:18 - 01749208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-09-07 03:50 - 2015-06-30 16:04 - 00184688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-09-07 03:50 - 2015-06-26 20:10 - 01310936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-09-07 03:50 - 2015-06-25 15:21 - 01949952 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2015-09-07 03:50 - 2015-06-25 15:21 - 01718528 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2015-09-07 03:50 - 2015-06-22 14:43 - 02702552 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-09-07 03:50 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-09-07 03:50 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-09-07 03:50 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-09-07 03:50 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-09-07 03:50 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-09-07 03:50 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2015-09-07 03:50 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2015-09-07 03:50 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-09-07 03:50 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-09-07 03:50 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-09-07 03:50 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-09-07 03:50 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-09-07 03:50 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-09-07 03:50 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-09-07 03:50 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-09-07 03:50 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-09-07 03:50 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2015-09-07 03:44 - 2015-09-07 03:44 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-07 03:44 - 2015-06-04 10:50 - 00600872 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2015-09-07 02:34 - 2015-09-07 02:34 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-09-07 02:27 - 2014-08-11 14:29 - 00019896 _____ (Mozilla Foundation) C:\Windows\SysWOW64\xpcom.dll
2015-09-07 02:20 - 2015-09-07 02:20 - 10613624 _____ C:\Users\darkrider84\Firefox 40.0.3 (x86 de)lz - 2015-09-07.pcv
2015-09-07 02:19 - 2015-09-07 02:28 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-09-07 02:17 - 2015-09-07 02:17 - 18772889 _____ C:\Users\darkrider84\Firefox 39.0.3 (x86 de) - 2015-09-07.pcv
2015-09-07 02:17 - 2015-09-07 02:17 - 14834843 _____ C:\Users\darkrider84\Firefox 39.0.3 (x86 de) dev - 2015-09-07.pcv
2015-09-07 02:16 - 2015-09-07 02:16 - 00001027 _____ C:\Users\Public\Desktop\MozBackup.lnk
2015-09-07 02:16 - 2015-09-07 02:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2015-09-06 20:19 - 2015-09-06 20:19 - 00000963 _____ C:\Users\Public\Desktop\Steam.lnk
2015-09-06 20:19 - 2015-09-06 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-06 19:42 - 2015-09-06 19:42 - 00002446 _____ C:\Users\darkrider84\Desktop\Sicherer Zahlungsverkehr.lnk
2015-09-06 19:41 - 2015-09-06 19:41 - 00002140 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2015-09-06 19:41 - 2015-09-06 19:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2015-09-06 19:40 - 2015-07-04 02:18 - 00227000 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2015-09-06 19:40 - 2015-06-30 01:05 - 00931000 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-09-06 19:40 - 2015-06-30 01:05 - 00171192 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-09-06 19:09 - 2015-09-09 20:56 - 00041557 _____ C:\Users\darkrider84\Desktop\FRST.txt
2015-09-06 19:07 - 2015-09-06 19:07 - 02190336 _____ (Farbar) C:\Users\darkrider84\Desktop\FRST64 (1).exe
2015-09-06 10:58 - 2015-09-06 11:00 - 00000000 ____D C:\Users\MIB\AppData\Local\Soccer Manager 2015
2015-09-06 10:56 - 2015-09-06 10:56 - 00000000 ___RD C:\Users\MIB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-06 10:56 - 2015-09-06 10:56 - 00000000 ____D C:\Users\MIB\AppData\Local\Ubisoft Game Launcher
2015-09-06 06:41 - 2015-09-08 21:53 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\VMware
2015-09-06 06:41 - 2015-09-08 21:52 - 00000000 ____D C:\Users\darkrider84\AppData\Local\VMware
2015-09-06 06:40 - 2015-08-14 14:03 - 00934080 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2015-09-06 06:40 - 2015-08-14 14:03 - 00391872 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2015-09-06 06:40 - 2015-08-14 14:03 - 00358080 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2015-09-06 06:40 - 2015-08-14 14:03 - 00066752 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2015-09-06 06:40 - 2015-08-14 14:03 - 00033472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys
2015-09-06 06:40 - 2015-08-14 13:43 - 00026816 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2015-09-06 06:40 - 2015-08-11 19:27 - 00057536 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2015-09-06 06:40 - 2015-08-04 01:10 - 00075512 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2015-09-06 06:40 - 2015-08-04 01:10 - 00068288 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2015-09-06 06:40 - 2015-08-04 01:10 - 00064192 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2015-09-06 06:39 - 2015-09-09 20:19 - 00000000 ____D C:\ProgramData\VMware
2015-09-06 06:39 - 2015-09-06 06:39 - 00001188 _____ C:\Users\Public\Desktop\VMware Workstation 12 Player.lnk
2015-09-06 06:39 - 2015-09-06 06:39 - 00000000 ____D C:\Program Files\Common Files\VMware
2015-09-06 06:39 - 2015-09-06 06:39 - 00000000 ____D C:\Program Files (x86)\VMware
2015-09-06 03:13 - 2015-09-06 03:13 - 00001264 _____ C:\Users\darkrider84\Desktop\Revo Uninstaller.lnk
2015-09-06 03:13 - 2015-09-06 03:13 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-09-06 03:07 - 2015-09-06 03:07 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\dlg
2015-09-06 03:06 - 2015-09-06 03:06 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Freetec
2015-09-06 03:00 - 2015-09-06 03:00 - 00000000 ____D C:\Program Files\BeSecure
2015-09-06 03:00 - 2013-12-02 21:01 - 00035376 _____ (Basil Projects) C:\Windows\system32\Drivers\WinDivert64.sys
2015-09-06 02:59 - 2015-09-06 02:59 - 00000000 ____D C:\Users\darkrider84\AppData\Local\InfiniteCrisis
2015-09-06 02:36 - 2015-09-08 08:10 - 00000000 ____D C:\Program Files (x86)\ChrisPC VideoTube Downloader Pro
2015-09-06 02:15 - 2015-09-06 03:01 - 00000000 ____D C:\ProgramData\Freemake
2015-09-06 02:15 - 2015-09-06 03:01 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-09-06 02:15 - 2015-09-06 02:15 - 00000000 ____D C:\Program Files\WinPcap
2015-09-06 02:06 - 2015-09-06 02:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChrisPC Free VideoTube Downloader
2015-09-05 12:14 - 2015-09-05 12:14 - 00000000 ___RD C:\Users\Sgt Napoleon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-03 02:22 - 2015-09-03 02:22 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Origin
2015-09-02 20:32 - 2015-09-02 20:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Gas Powered Games
2015-09-02 16:30 - 2015-09-02 16:30 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Gas Powered Games
2015-09-02 04:42 - 2015-09-02 04:42 - 00000000 ____D C:\Program Files (x86)\DVD Shrink
2015-09-02 03:29 - 2015-09-02 05:00 - 00000000 ____D C:\ProgramData\DVD Shrink
2015-09-02 02:26 - 2015-09-02 02:26 - 00076152 _____ C:\Windows\system32\PnkBstrA.exe
2015-09-01 23:48 - 2015-09-04 19:32 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-09-01 23:48 - 2015-09-01 23:48 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2015-09-01 17:30 - 2015-09-01 21:13 - 00000000 ____D C:\Users\darkrider84\AppData\Local\EA Games
2015-09-01 17:11 - 2015-09-08 18:47 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Daedalic Entertainment
2015-09-01 15:50 - 2015-09-01 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-01 01:15 - 2015-08-25 16:08 - 00574072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-09-01 01:14 - 2015-08-25 20:46 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 37819184 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 16637336 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 14635792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 13661160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 12185152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 11089200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-01 01:14 - 2015-08-25 20:46 - 02940720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 02627704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435582.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01558648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435582.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01106672 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01075320 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01064752 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00945456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00944736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00512904 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00421544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00408184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00364336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-08-31 18:33 - 2015-08-31 18:34 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Foxit Software
2015-08-31 18:33 - 2015-08-31 18:33 - 00001351 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2015-08-31 18:33 - 2015-08-31 18:33 - 00000000 ____D C:\Users\Public\Foxit Software
2015-08-31 18:33 - 2015-08-31 18:33 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2015-08-31 18:29 - 2015-08-31 18:29 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PDF24
2015-08-31 18:12 - 2015-08-31 18:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
2015-08-31 18:12 - 2015-08-31 18:12 - 00000000 ____D C:\Program Files (x86)\MakeMKV
2015-08-31 16:40 - 2015-08-31 21:59 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\FreeFileSync
2015-08-31 16:39 - 2015-08-31 16:39 - 00000932 _____ C:\Users\Public\Desktop\FreeFileSync.lnk
2015-08-31 16:39 - 2015-08-31 16:39 - 00000922 _____ C:\Users\Public\Desktop\RealtimeSync.lnk
2015-08-31 16:39 - 2015-08-31 16:39 - 00000000 ____D C:\Program Files\FreeFileSync
2015-08-31 02:42 - 2015-08-31 00:00 - 00191584 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-08-31 02:42 - 2015-08-31 00:00 - 00191584 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-08-31 02:36 - 2015-08-31 02:43 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Daedalic Entertainment
2015-08-31 02:32 - 2015-08-31 02:43 - 00000000 ____D C:\Users\Sgt Napoleon\.oracle_jre_usage
2015-08-31 02:32 - 2015-08-31 02:32 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\Sun
2015-08-31 00:01 - 2015-08-31 00:00 - 00274016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-08-31 00:00 - 2015-08-31 00:01 - 00000000 ____D C:\Users\darkrider84\.oracle_jre_usage
2015-08-31 00:00 - 2015-08-31 00:00 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Sun
2015-08-30 20:13 - 2015-08-30 20:13 - 00000124 _____ C:\Users\Public\Desktop\WATCH_DOGS.url
2015-08-30 19:35 - 2015-08-30 19:35 - 00000000 ____D C:\Program Files\Ubisoft
2015-08-30 19:33 - 2015-08-30 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\New Technology Studio
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Local\New Technology Studio
2015-08-22 22:02 - 2015-08-22 22:02 - 00000048 _____ C:\Windows\5F1EFF43B629F8D5.log
2015-08-22 20:48 - 2015-08-22 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LCPD First Response
2015-08-22 20:45 - 2015-08-22 20:45 - 00001338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2015-08-22 19:27 - 2015-09-01 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-22 17:34 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-08-22 17:34 - 2015-08-11 06:52 - 00050472 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-08-22 08:15 - 2015-08-22 08:15 - 00000000 ____D C:\Users\MIB\AppData\Local\Daybreak Game Company
2015-08-22 08:04 - 2015-08-22 08:05 - 00000000 ____D C:\Users\MIB\AppData\Local\PAYDAY 2
2015-08-22 07:01 - 2015-08-23 10:28 - 00000000 ____D C:\Users\MIB\AppData\Local\LogMeIn Hamachi
2015-08-22 07:01 - 2015-08-22 07:01 - 00000000 ____D C:\Users\MIB\AppData\Local\LogMeIn
2015-08-21 21:24 - 2015-09-03 15:12 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\LogMeIn Hamachi
2015-08-21 21:24 - 2015-08-21 21:24 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\LogMeIn
2015-08-21 20:34 - 2015-08-21 20:34 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PAYDAY 2
2015-08-21 13:35 - 2015-08-31 02:42 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-21 00:18 - 2015-08-21 00:18 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Unity
2015-08-21 00:18 - 2015-08-21 00:18 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Unity
2015-08-20 21:19 - 2015-09-07 02:36 - 00000000 ____D C:\Users\darkrider84\AppData\Local\LogMeIn Hamachi
2015-08-20 21:19 - 2015-08-20 21:19 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-08-20 21:19 - 2015-08-20 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-08-20 21:19 - 2015-08-20 21:19 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-08-20 20:17 - 2015-08-20 21:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Tunngle
2015-08-20 20:17 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys
2015-08-20 20:10 - 2015-08-20 20:10 - 00000000 ____D C:\Users\darkrider84\AppData\Local\LogMeIn
2015-08-20 20:10 - 2015-08-20 20:10 - 00000000 ____D C:\ProgramData\LogMeIn
2015-08-20 16:18 - 2015-08-20 16:18 - 00000979 _____ C:\Users\Public\Desktop\Mp3tag.lnk
2015-08-20 14:18 - 2015-08-20 14:18 - 00001827 _____ C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-08-19 22:06 - 2015-08-19 22:06 - 00000118 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-19 20:44 - 2015-08-19 21:01 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-19 20:43 - 2015-09-06 19:41 - 00000000 ____D C:\Users\TEMP
2015-08-19 19:48 - 2015-08-19 19:49 - 00000061 _____ C:\Users\darkrider84\Desktop\test.bat
2015-08-19 12:21 - 2015-08-19 12:21 - 00000000 ____H C:\Users\Sgt Napoleon\AppData\Local\BIT3930.tmp
2015-08-19 12:20 - 2015-08-19 12:20 - 00000000 _____ C:\Users\Sgt Napoleon\AppData\Local\{A4A7BF7B-77D5-48C1-9476-0BC3EA810551}
2015-08-19 12:13 - 2015-08-19 12:13 - 00002669 _____ C:\Users\Public\Desktop\MSI(R) Intel(R) Extreme Tuning Utility.lnk
2015-08-19 12:13 - 2015-08-19 12:13 - 00000000 ____D C:\Windows\System32\Tasks\Intel
2015-08-19 12:13 - 2015-08-19 12:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI(R) Intel(R) Extreme Tuning Utility
2015-08-17 22:46 - 2010-04-02 20:04 - 02650112 _____ C:\Users\darkrider84\Desktop\SteamMover.exe
2015-08-16 11:18 - 2015-08-16 11:18 - 00000000 ____D C:\ProgramData\Nexon
2015-08-16 11:06 - 2015-08-16 11:16 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NXEPassportClient
2015-08-16 11:01 - 2015-08-19 10:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2015-08-16 11:00 - 2015-08-16 11:00 - 00000000 ____D C:\Users\darkrider84\Neuer Ordner
2015-08-15 10:30 - 2015-08-15 10:30 - 00001192 _____ C:\Users\Public\Desktop\3DMark.lnk
2015-08-15 10:29 - 2015-08-15 10:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2015-08-15 10:29 - 2015-08-15 10:29 - 00000000 ____D C:\Program Files\Futuremark
2015-08-14 13:43 - 2015-08-14 13:43 - 00081088 _____ (VMware, Inc.) C:\Windows\system32\vmnetbridge.dll
2015-08-14 13:43 - 2015-08-14 13:43 - 00049856 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll
2015-08-14 13:43 - 2015-08-14 13:43 - 00048832 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetbridge.sys
2015-08-14 13:43 - 2015-08-14 13:43 - 00028864 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetadapter.sys
2015-08-14 13:43 - 2015-08-14 13:43 - 00027328 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnet.sys
2015-08-14 07:22 - 2015-08-30 21:31 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-08-14 07:22 - 2015-08-27 02:37 - 01423120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-08-14 07:22 - 2015-08-27 02:37 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-08-14 07:22 - 2015-08-27 02:36 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-08-14 07:22 - 2015-08-27 02:36 - 01710568 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-08-14 07:22 - 2015-08-14 07:22 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NVIDIA
2015-08-14 07:22 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-08-14 07:19 - 2015-09-01 01:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-14 07:16 - 2015-08-07 13:06 - 01898104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435560.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435560.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-08-14 07:16 - 2015-08-07 13:06 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-08-14 04:45 - 2015-08-14 04:50 - 00000000 ____D C:\ProgramData\TrackMania
2015-08-13 21:30 - 2015-08-13 21:32 - 00000000 ____D C:\ProgramData\Killer
2015-08-13 21:30 - 2015-08-13 21:30 - 00002785 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk
2015-08-13 21:30 - 2015-08-13 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
2015-08-13 21:30 - 2015-08-13 21:30 - 00000000 ____D C:\Program Files\Killer Networking
2015-08-13 21:30 - 2015-05-29 13:44 - 02311680 _____ (Qualcomm Atheros, Inc.) C:\Windows\system32\Drivers\Qcamain7x64.sys
2015-08-13 21:19 - 2015-08-19 12:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2015-08-13 21:17 - 2015-08-13 21:17 - 00000000 ____D C:\Program Files (x86)\ASM106xSATA
2015-08-13 21:12 - 2015-08-13 21:12 - 00001539 _____ C:\Users\darkrider84\Desktop\FastBoot.exe - Verknüpfung.lnk
2015-08-13 20:51 - 2015-08-13 20:51 - 00043927 _____ C:\Windows\system32\energy-report.html
2015-08-13 15:44 - 2015-08-13 15:44 - 00379375 _____ (http://magiclauncher.com) C:\Users\darkrider84\Desktop\MagicLauncher_1.3.0.exe
2015-08-13 11:05 - 2015-08-13 11:05 - 00000184 _____ C:\Users\darkrider84\Desktop\GTA modden.ucb
2015-08-13 05:02 - 2015-08-31 00:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-12 19:22 - 2015-08-12 19:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 19:22 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 19:22 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 17:33 - 2015-08-12 17:33 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-12 17:33 - 2015-08-12 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-12 14:06 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-12 14:06 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-12 14:06 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-12 14:06 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-12 14:06 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-12 14:06 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-12 14:06 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-08-12 14:05 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-12 14:05 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-12 14:05 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-12 14:05 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-12 14:05 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-12 14:05 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-12 14:05 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-12 14:05 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-12 14:05 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-12 14:05 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-11 15:32 - 2015-08-11 15:32 - 00001104 _____ C:\Users\darkrider84\Desktop\VirtualBox.exe - Verknüpfung.lnk
2015-08-11 13:37 - 2015-08-11 13:37 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-08-10 06:50 - 2015-08-10 06:50 - 00012942 _____ C:\Users\darkrider84\Desktop\CamtasiaStudio.exe - Verknüpfung.lnk
2015-08-10 06:38 - 2015-08-10 06:38 - 00001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk

darkrider78 · 09.09.2015, 19:59

FRST-Fortsetzung:

Code:

ATTFilter

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-09 20:57 - 2015-02-26 22:11 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\NetSpeedMonitor
2015-09-09 20:56 - 2015-03-18 10:56 - 00000000 ____D C:\FRST
2015-09-09 20:54 - 2015-03-18 21:22 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-09 20:52 - 2015-02-26 20:25 - 01354051 _____ C:\Windows\WindowsUpdate.log
2015-09-09 20:49 - 2015-02-26 21:18 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-09 20:44 - 2015-06-13 03:32 - 00001224 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-09-09 20:42 - 2015-03-27 20:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\CrashDumps
2015-09-09 20:42 - 2015-03-12 21:31 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-09 20:41 - 2015-03-12 21:31 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-09-09 20:36 - 2015-03-06 19:36 - 00000911 _____ C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {C11D8B02-EE30-495C-8983-4E88B27B0910}.job
2015-09-09 20:34 - 2015-03-24 01:38 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-09-09 20:27 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-09 20:27 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-09 20:24 - 2011-04-12 09:43 - 00703644 _____ C:\Windows\system32\perfh007.dat
2015-09-09 20:24 - 2011-04-12 09:43 - 00151550 _____ C:\Windows\system32\perfc007.dat
2015-09-09 20:24 - 2009-07-14 07:13 - 01634064 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-09 20:23 - 2015-02-26 20:25 - 00000000 ____D C:\Users\darkrider84
2015-09-09 20:22 - 2015-03-01 20:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-09 20:21 - 2015-06-13 03:35 - 00000000 ___RD C:\Users\darkrider84\Dropbox
2015-09-09 20:21 - 2015-06-13 03:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Dropbox
2015-09-09 20:20 - 2015-02-26 22:21 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Skype
2015-09-09 20:19 - 2015-07-08 13:06 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-09 20:19 - 2015-06-13 03:32 - 00001220 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-09-09 20:19 - 2015-05-20 15:03 - 00000000 ____D C:\Users\darkrider84\.rainlendar2
2015-09-09 20:19 - 2015-02-26 22:28 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-09 20:19 - 2015-02-26 21:17 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-09 20:19 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-09 20:19 - 2009-07-14 06:51 - 00112253 _____ C:\Windows\setupact.log
2015-09-09 20:18 - 2015-05-19 23:10 - 00000000 ____D C:\AdwCleaner
2015-09-09 02:07 - 2015-07-10 15:26 - 00003046 _____ C:\Windows\System32\Tasks\MSIAfterburner
2015-09-09 02:07 - 2015-02-26 21:01 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\KeePass
2015-09-09 02:04 - 2015-03-24 10:05 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2015-09-09 02:02 - 2009-07-14 06:45 - 00571088 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-09 02:01 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 02:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-08 22:00 - 2015-02-28 11:15 - 00000000 ____D C:\Users\darkrider84\.VirtualBox
2015-09-08 21:32 - 2015-05-02 02:02 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2015-09-08 21:26 - 2015-05-02 02:01 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2015-09-08 21:26 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-09-08 21:25 - 2010-11-21 05:47 - 00393662 _____ C:\Windows\PFRO.log
2015-09-08 21:24 - 2009-07-14 04:34 - 90439680 _____ C:\Windows\system32\config\SOFTWARE.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 44302336 _____ C:\Windows\system32\config\COMPONENTS.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 30932992 _____ C:\Windows\system32\config\SYSTEM.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 02621440 _____ C:\Windows\system32\config\DEFAULT.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2015-09-08 15:27 - 2015-02-27 01:54 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\SoftGrid Client
2015-09-08 08:13 - 2015-07-10 19:47 - 00000000 ____D C:\Program Files (x86)\MiniTool Partition Wizard Free 9.0
2015-09-08 08:09 - 2015-02-26 21:17 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-08 08:04 - 2015-02-26 20:49 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-07 22:53 - 2015-04-14 02:05 - 00000080 _____ C:\Users\darkrider84\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-09-07 22:38 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-09-07 07:36 - 2015-05-07 21:52 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2015-09-07 03:55 - 2015-02-26 20:49 - 00000000 ____D C:\Program Files\Intel
2015-09-07 03:55 - 2015-02-26 20:35 - 00206568 _____ C:\Windows\DPINST.LOG
2015-09-07 03:51 - 2015-02-26 20:49 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-09-07 03:50 - 2015-02-26 20:30 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-07 02:34 - 2015-03-03 18:56 - 00000000 ____D C:\Program Files\CCleaner
2015-09-07 02:28 - 2015-08-07 03:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-09-07 02:16 - 2015-03-15 02:58 - 00000000 ____D C:\Program Files (x86)\MozBackup
2015-09-07 00:11 - 2015-02-27 19:39 - 00000000 ____D C:\MSI
2015-09-06 20:08 - 2015-02-26 22:26 - 00000965 _____ C:\Users\darkrider84\Desktop\TeraCopy.lnk
2015-09-06 19:47 - 2015-03-02 14:59 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-06 19:41 - 2015-03-24 01:38 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-09-06 19:04 - 2015-03-29 20:29 - 00000000 ____D C:\ProgramData\USBLogon
2015-09-06 17:09 - 2015-06-06 21:30 - 00000000 ____D C:\Users\MIB\AppData\Roaming\NetSpeedMonitor
2015-09-06 17:09 - 2015-03-28 14:15 - 00000000 ____D C:\Users\MIB\AppData\Roaming\TS3Client
2015-09-06 11:26 - 2015-03-29 12:50 - 00000000 ____D C:\Users\MIB\AppData\Local\Arma 3
2015-09-06 07:20 - 2015-03-04 00:47 - 00000000 ____D C:\ProgramData\Intel
2015-09-06 07:10 - 2015-07-08 04:03 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Sony
2015-09-06 07:10 - 2015-02-26 22:14 - 00000000 ____D C:\Program Files (x86)\WhatPulse2
2015-09-06 06:39 - 2015-02-26 20:28 - 01653956 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-09-06 02:36 - 2015-05-02 22:55 - 00000000 ____D C:\Program Files (x86)\FFMPEG Addon
2015-09-06 02:06 - 2015-05-02 22:54 - 00001197 _____ C:\Users\darkrider84\Desktop\ChrisPC Free VideoTube Downloader.lnk
2015-09-06 02:06 - 2015-05-02 22:54 - 00000000 ____D C:\Program Files (x86)\ChrisPC Free VideoTube Downloader
2015-09-06 01:49 - 2015-02-27 19:22 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\vlc
2015-09-05 16:06 - 2015-04-14 02:05 - 00000000 ____D C:\Program Files\Rockstar Games
2015-09-05 16:06 - 2015-04-14 02:05 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-09-05 16:00 - 2015-05-07 23:00 - 00003897 _____ C:\Users\darkrider84\Desktop\online.bat
2015-09-05 13:40 - 2015-04-08 21:13 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\NetSpeedMonitor
2015-09-04 19:32 - 2015-02-27 00:36 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-09-04 18:01 - 2015-02-27 09:45 - 00000000 ____D C:\ProgramData\Origin
2015-09-04 14:08 - 2015-06-17 20:43 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\Skype
2015-09-03 23:32 - 2015-04-11 01:28 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\CrashDumps
2015-09-03 15:45 - 2015-03-08 01:51 - 00000000 ____D C:\Windows\pss
2015-09-03 10:48 - 2015-02-27 08:02 - 00813782 _____ C:\Windows\DirectX.log
2015-09-03 07:48 - 2015-03-31 16:41 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\VirtualStore
2015-09-02 22:37 - 2015-02-27 09:44 - 00000000 ____D C:\Program Files (x86)\Origin
2015-09-02 20:21 - 2015-02-27 09:46 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-09-02 13:31 - 2015-05-17 01:17 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2015-09-02 02:16 - 2015-02-27 10:38 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PunkBuster
2015-09-02 00:42 - 2015-06-07 17:31 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\dvdcss
2015-09-01 21:13 - 2015-02-27 10:29 - 00000000 ____D C:\ProgramData\Solidshield
2015-09-01 15:53 - 2015-02-27 09:45 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Origin
2015-09-01 15:51 - 2015-02-26 22:21 - 00000000 ____D C:\ProgramData\Skype
2015-09-01 15:50 - 2015-02-26 22:21 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-01 15:50 - 2015-02-26 22:21 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-01 01:15 - 2015-07-08 13:05 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-01 01:15 - 2015-02-26 21:10 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-31 23:24 - 2015-08-09 20:00 - 00000000 ____D C:\Program Files\Tracker Software
2015-08-31 18:12 - 2015-02-28 15:02 - 00000991 _____ C:\Users\darkrider84\Desktop\MakeMKV.lnk
2015-08-31 17:30 - 2015-03-29 08:44 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Spotify
2015-08-31 17:30 - 2015-03-29 08:44 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Spotify
2015-08-31 17:29 - 2015-03-07 12:56 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Epson
2015-08-31 17:29 - 2015-03-04 15:13 - 00000000 ____D C:\ProgramData\EPSON
2015-08-31 02:32 - 2015-03-31 16:40 - 00000000 ____D C:\Users\Sgt Napoleon
2015-08-31 00:42 - 2015-02-26 21:18 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-31 00:42 - 2015-02-26 21:18 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-31 00:05 - 2015-02-26 23:38 - 00000000 ____D C:\ProgramData\Oracle
2015-08-31 00:01 - 2015-02-26 23:38 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-08-31 00:01 - 2015-02-26 23:38 - 00000000 ____D C:\Program Files\Java
2015-08-30 22:35 - 2015-05-09 15:43 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Ubisoft Game Launcher
2015-08-30 19:33 - 2015-06-13 03:32 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-08-25 20:46 - 2015-07-08 13:05 - 00033025 _____ C:\Windows\system32\nvinfo.pb
2015-08-25 20:46 - 2015-07-08 13:03 - 17082392 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 15512888 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 12515016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 03527696 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 03112904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 03496752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-08-25 16:24 - 2015-07-08 13:05 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-08-25 14:35 - 2015-07-08 13:05 - 05165808 _____ C:\Windows\system32\nvcoproc.bin
2015-08-24 05:36 - 2015-07-14 02:16 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Glyph
2015-08-24 04:38 - 2015-07-14 02:16 - 00000000 ____D C:\Program Files (x86)\Glyph
2015-08-23 00:45 - 2015-07-08 13:07 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NVIDIA Corporation
2015-08-22 21:46 - 2015-05-20 00:38 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2015-08-22 20:45 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-08-22 07:01 - 2015-07-12 08:33 - 00000000 ____D C:\Users\MIB\AppData\Local\NVIDIA Corporation
2015-08-22 07:01 - 2015-03-28 14:11 - 00170048 _____ C:\Users\MIB\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-22 07:01 - 2015-03-28 14:04 - 00007144 __RSH C:\Users\MIB\ntuser.pol
2015-08-22 07:01 - 2015-03-28 14:04 - 00000000 ____D C:\Users\MIB
2015-08-21 21:24 - 2015-03-31 16:41 - 00170048 _____ C:\Users\Sgt Napoleon\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-21 17:26 - 2015-02-26 20:31 - 00170048 _____ C:\Users\darkrider84\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-20 21:24 - 2015-02-27 00:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\.minecraft
2015-08-20 19:26 - 2015-03-19 19:14 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Mp3tag
2015-08-20 19:19 - 2015-03-18 11:57 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Audacity
2015-08-20 16:18 - 2015-03-04 01:12 - 00000000 ____D C:\Program Files (x86)\Mp3tag
2015-08-20 14:18 - 2015-03-29 08:44 - 00001841 _____ C:\Users\darkrider84\Desktop\Spotify.lnk
2015-08-20 00:43 - 2015-02-27 09:03 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\TS3Client
2015-08-19 13:51 - 2015-08-07 05:50 - 01065984 _____ C:\Users\darkrider84\AppData\Local\file__0.localstorage
2015-08-19 12:13 - 2015-05-04 22:13 - 00000000 ____D C:\uninstall
2015-08-19 12:13 - 2015-02-27 17:47 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-19 10:48 - 2015-02-26 23:41 - 00000000 ____D C:\Spiele
2015-08-18 12:38 - 2015-06-29 14:30 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Intel_Corporation
2015-08-18 11:19 - 2015-03-02 22:13 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Arma 3
2015-08-16 17:14 - 2015-03-04 17:28 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\OBS
2015-08-16 13:18 - 2015-03-04 02:15 - 00000000 ____D C:\Program Files\OBS
2015-08-16 11:18 - 2015-02-28 17:26 - 00000000 ____D C:\ProgramData\NexonEU
2015-08-15 20:47 - 2015-02-27 08:14 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\ftblauncher
2015-08-15 20:47 - 2015-02-27 08:14 - 00000000 ____D C:\Users\darkrider84\AppData\Local\ftblauncher
2015-08-15 20:47 - 2015-02-27 00:08 - 07552083 _____ () C:\Users\darkrider84\Desktop\FTB_Launcher.exe
2015-08-15 11:17 - 2015-05-02 00:54 - 00000022 _____ C:\Windows\GPU-Z.INI
2015-08-15 11:15 - 2015-05-04 23:03 - 00000000 ____D C:\Program Files (x86)\Futuremark
2015-08-15 10:30 - 2015-05-02 00:53 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Futuremark
2015-08-15 10:19 - 2015-07-08 13:31 - 00000000 ____D C:\Program Files (x86)\3DMark
2015-08-15 02:15 - 2015-07-10 00:34 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\NVIDIA Corporation
2015-08-14 20:39 - 2015-03-04 00:43 - 00007602 _____ C:\Users\darkrider84\AppData\Local\Resmon.ResmonCfg
2015-08-14 07:25 - 2015-04-12 08:22 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2015-08-14 07:25 - 2015-03-02 15:09 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\TeamViewer
2015-08-14 07:22 - 2015-07-08 13:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-14 00:29 - 2015-03-31 17:40 - 00012942 __RSH C:\Users\Sgt Napoleon\ntuser.pol
2015-08-13 21:29 - 2015-02-26 20:29 - 00000000 ____D C:\ProgramData\Downloaded Installations
2015-08-13 21:23 - 2015-02-26 20:53 - 00000159 ___RH C:\Windows\ctfile.rfc
2015-08-13 21:23 - 2015-02-26 20:52 - 00000181 _____ C:\SBC2setup.log
2015-08-13 21:17 - 2015-02-26 20:53 - 00000000 ____D C:\Program Files (x86)\ASM104xUSB3
2015-08-13 21:17 - 2015-02-26 20:49 - 00003121 _____ C:\RHDSetup.log
2015-08-13 20:36 - 2015-07-14 19:49 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Glyph
2015-08-12 20:24 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-08-12 19:23 - 2015-02-28 12:15 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-12 19:23 - 2015-02-28 12:15 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-12 19:22 - 2015-02-26 22:59 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 19:22 - 2015-02-26 22:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\Sgt Napoleon\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\MIB\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\darkrider84\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\Administrator\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-03-16 02:57 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-08-12 11:22 - 2015-03-01 20:02 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-12 11:22 - 2015-03-01 20:02 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-12 11:22 - 2015-03-01 20:02 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-11 13:37 - 2015-03-12 21:31 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-08-11 12:22 - 2015-07-10 19:53 - 03067392 _____ C:\Windows\system32\pwNative.exe
2015-08-10 16:48 - 2015-07-30 04:48 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\.technic
2015-08-10 06:38 - 2015-02-26 21:15 - 00001105 _____ C:\Users\darkrider84\Desktop\KeePass 2.lnk
2015-08-10 06:38 - 2015-02-26 20:59 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-03-19 15:25 - 2015-03-09 15:48 - 2508440 _____ (Sysinternals - www.sysinternals.com) C:\Program Files (x86)\procexp.exe
2015-03-22 09:38 - 2015-03-22 09:38 - 0000046 _____ () C:\Users\darkrider84\AppData\Roaming\Camdata.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0000408 _____ () C:\Users\darkrider84\AppData\Roaming\CamLayout.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0000408 _____ () C:\Users\darkrider84\AppData\Roaming\CamShapes.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0004535 _____ () C:\Users\darkrider84\AppData\Roaming\CamStudio.cfg
2015-02-26 20:36 - 2015-02-26 20:36 - 0000000 _____ () C:\Users\darkrider84\AppData\Roaming\gdfw.log
2015-02-26 20:36 - 2015-03-24 00:32 - 0001558 _____ () C:\Users\darkrider84\AppData\Roaming\gdscan.log
2015-02-27 00:12 - 2015-08-20 21:21 - 0000542 _____ () C:\Users\darkrider84\AppData\Roaming\nativelog.txt
2015-03-03 22:49 - 2015-03-04 02:07 - 0000227 _____ () C:\Users\darkrider84\AppData\Roaming\SpotifyRecorderSettings.ini
2015-03-22 09:36 - 2015-03-22 09:36 - 0000096 _____ () C:\Users\darkrider84\AppData\Roaming\version2.xml
2015-04-17 09:29 - 2015-08-04 23:11 - 0002889 _____ () C:\Users\darkrider84\AppData\Roaming\VoiceMeeterDefault.xml
2015-05-23 02:34 - 2015-05-23 02:34 - 0003584 _____ () C:\Users\darkrider84\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-07 05:50 - 2015-08-19 13:51 - 1065984 _____ () C:\Users\darkrider84\AppData\Local\file__0.localstorage
2015-03-18 11:55 - 2015-03-18 11:55 - 0001507 _____ () C:\Users\darkrider84\AppData\Local\RecConfig.xml
2015-04-12 07:50 - 2015-04-12 07:50 - 0005849 _____ () C:\Users\darkrider84\AppData\Local\recently-used.xbel
2015-03-04 00:43 - 2015-08-14 20:39 - 0007602 _____ () C:\Users\darkrider84\AppData\Local\Resmon.ResmonCfg
2015-05-20 00:38 - 2015-05-20 00:38 - 0000085 ___SH () C:\ProgramData\.zreglib

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\darkrider84\OpenAL32.dll
C:\Users\darkrider84\Sicherung.reg
C:\Users\darkrider84\Valle gesperrt.reg
C:\Users\darkrider84\Valle normal.reg


Einige Dateien in TEMP:
====================
C:\Users\darkrider84\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpix2ch2.dll
C:\Users\darkrider84\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-01 16:43

==================== Ende von FRST.txt ============================

Addition.txt:

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:06-09-2015 01
durchgeführt von darkrider84 (2015-09-09 20:57:08)
Gestartet von C:\Users\darkrider84\Desktop
Windows 7 Professional Service Pack 1 (X64) (2015-02-26 18:25:25)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2214554541-3394249910-989620225-500 - Administrator - Disabled)
darkrider84 (S-1-5-21-2214554541-3394249910-989620225-1000 - Administrator - Enabled) => C:\Users\darkrider84
Gast (S-1-5-21-2214554541-3394249910-989620225-501 - Limited - Disabled)
MIB (S-1-5-21-2214554541-3394249910-989620225-1003 - Administrator - Enabled) => C:\Users\MIB
Sgt Napoleon (S-1-5-21-2214554541-3394249910-989620225-1004 - Administrator - Enabled) => C:\Users\Sgt Napoleon

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
3DMark (Version: 1.5.915.0 - Futuremark) Hidden
4K Video Downloader 3.6 (HKLM-x32\...\4K Video Downloader_is1) (Version: 3.6.1.1770 - Open Media LLC)
4K Video to MP3 2.2 (HKLM-x32\...\4K Video to MP3_is1) (Version: 2.2.0.800 - Open Media LLC)
Acronis True Image 2015 (HKLM-x32\...\{2F70A6E6-2F71-4907-8441-BDC5D300310B}Visible) (Version: 18.0.6613 - Acronis)
Acronis True Image 2015 (x32 Version: 18.0.6613 - Acronis) Hidden
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Advanced Renamer (HKLM-x32\...\Advanced Renamer_is1) (Version: 3.65 - Hulubulu Software)
Akamai NetSession Interface (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)
Anti-Twin (Installation 03.05.2015) (HKLM-x32\...\Anti-Twin 2015-05-03 02.59.03) (Version:  - Joerg Rosenthal, Germany)
Any Video Converter 5.8.2 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
ArchiCrypt Shredder Version 6.11.1.5708 (HKLM-x32\...\ACRYSH6_is1) (Version: 6.11.1.5708 - Softwareentwicklung Remus - ArchiCrypt)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Ashampoo Burning Studio 2015 (HKLM-x32\...\{91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1) (Version: 1.15.3 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 6 v.6.0.9 (HKLM-x32\...\{C92AB6F1-770F-EA32-6CF7-8A0792FA1A4B}_is1) (Version: 6.0.9 - Ashampoo GmbH & Co. KG)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
AunPlayer version 1.1.0.990 (HKLM-x32\...\{83AF2B1C-3F1C-4dc6-8237-5B400AAEB58B}_is1) (Version:  - )
AutoHotkey 1.1.20.03 (HKLM\...\AutoHotkey) (Version: 1.1.20.03 - Lexikos)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version:  - Rocksteady Studios)
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version:  - The Behemoth)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.5.2.34169 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.0.0 - Electronic Arts)
BeSecure 1.0.0.0 (HKLM\...\{29007E8C-251B-4F61-A70E-635712477760037070}_is1) (Version: 1.0.0.0 - BeSecure)
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A79B26D7-D6CB-408A-90CF-51508A4B62AB}) (Version: 8.5.2.1999 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
ChrisPC Free VideoTube Downloader 8.10 (HKLM-x32\...\{6006089C-84B5-4F18-8113-1234567890DE}_is1) (Version:  - Chris P.C. srl)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - )
Clover 3.0 (HKLM-x32\...\Clover) (Version: 3.0 - EJIE Technology)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.26 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CrossFire (HKLM-x32\...\CrossFire_is1) (Version: 1195 - Z8Games.com)
Crossfire Europe (HKLM-x32\...\Crossfire Europe) (Version: 1.172 - SG Europe)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Defiance (HKLM-x32\...\Glyph Defiance) (Version:  - Trion Worlds, Inc.)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
DOOM 3: BFG Edition (HKLM-x32\...\Steam App 208200) (Version:  - id Software)
Driver San Francisco (HKLM-x32\...\Driver San Francisco) (Version: 1.4.0.0 - Ubisoft)
DriverEasy 4.9.1 (HKLM\...\DriverEasy_is1) (Version: 4.9.1.0 - Easeware)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.33 - Dropbox, Inc.) Hidden
Edna & Harvey: Harvey's New Eyes (HKLM-x32\...\Steam App 219910) (Version:  - Daedalic Entertainment)
Edna & Harvey: The Breakout (HKLM-x32\...\Steam App 255320) (Version:  - Daedalic Entertainment)
Epson Event Manager (HKLM-x32\...\{0F13C24A-FFE2-4CD0-8E0B-DC804E0A0E0B}) (Version: 3.10.0035 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{682A3328-9621-4BAD-91FA-873A076610C4}) (Version: 1.21.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON XP-422 423 425 Series Printer Uninstall (HKLM\...\EPSON XP-422 423 425 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM\...\{98D772A5-CDB0-48E7-9DBA-794EA0F68B5C}) (Version: 3.1.0.0 - SEIKO EPSON Corporation)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Euro Truck Simulator (HKLM-x32\...\Steam App 232010) (Version:  - SCS Software)
FalNET G19 Display Manager (HKLM-x32\...\FalNET G19 Display Manager_is1) (Version:  - FalNET)
FFMPEG Addon (HKLM-x32\...\{111124AF-1ED4-44EF-B674-111111985342}_is1) (Version: 1.00 - FFMPEG)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.2.0.722 - Foxit Software Inc.)
FreeFileSync 7.3 (HKLM-x32\...\FreeFileSync) (Version: 7.3 - www.FreeFileSync.org)
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Gameforge Live 2.0.6 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.6 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version:  - Coffee Stain Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Grand Theft Auto III (HKLM-x32\...\Steam App 12100) (Version:  - Rockstar Games)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Grand Theft Auto: Episodes from Liberty City (HKLM-x32\...\Steam App 12220) (Version:  - Rockstar North / Toronto)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version:  - Rockstar Games)
Grand Theft Auto: Vice City (HKLM-x32\...\Steam App 12110) (Version:  - Rockstar Games)
Hacker Evolution (HKLM-x32\...\Steam App 70100) (Version:  - exosyphen studios)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
HWiNFO64 Version 5.02 (HKLM\...\HWiNFO64_is1) (Version: 5.02 - Martin Malík - REALiX)
ICQ 8.3 (build 7317) (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\ICQ) (Version: 8.3.7317.0 - ICQ)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4206 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.5.69 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\3FD0C489-0F02-481a-A3E1-9754CD396761) (Version:  - Intel Corporation)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java(TM) 7 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217000FF}) (Version: 7.0.0 - Oracle)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl)
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Killer Bandwidth Control Filter Driver (Version: 1.1.54.1095 - Rivet Networks) Hidden
Killer E220x Drivers (Version: 1.1.54.1095 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.54.1095 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.54.1095 - Qualcomm Atheros)
Killer Wireless-AC Drivers (Version: 1.1.54.1095 - Rivet Networks) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LCPD First Response (HKLM-x32\...\LCPD First Response) (Version: 1.0.0.0d - G17 Media)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
MakeMKV v1.9.5 (HKLM-x32\...\MakeMKV) (Version: v1.9.5 - GuinpinSoft inc)
Malwarebytes Anti-Exploit version 1.07.1.1015 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.07.1.1015 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
METAL SLUG (HKLM-x32\...\Steam App 366250) (Version:  - DotEmu)
Metro: Last Light (HKLM-x32\...\Steam App 43160) (Version:  - 4A Games)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Application Compatibility Toolkit 5.6 (HKLM-x32\...\{0F5AEBB0-43F3-4571-ACE7-A7942E8AA179}) (Version: 5.6.7324.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Expression Blend 3 SDK (HKLM-x32\...\{B006B9E9-41DD-4479-9177-3743A53B7735}) (Version: 1.0.1343.0 - Microsoft Corporation)
Microsoft Expression Blend 4 (HKLM-x32\...\Blend_4.0.30816.0) (Version: 4.0.30816.0 - Microsoft Corporation)
Microsoft Expression Blend 4 Add-in for Adobe FXG Import (HKLM-x32\...\{B2D1A01F-82CC-4025-B539-FE62D11C8EC8}) (Version: 1.0.20817.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for .NET 4 (HKLM-x32\...\{0536BCDF-7EF6-48F6-8765-A3C065A065A5}) (Version: 2.0.20621.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for Silverlight 4 (HKLM-x32\...\{B0682940-6FFB-4850-80BA-B2FEF0D64BA8}) (Version: 2.0.20621.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for Windows Phone 7 (HKLM-x32\...\{1762BA00-6EBE-4430-9FBB-16F516B4A46D}) (Version: 2.0.20901.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for Windows Phone OS 7.1 (HKLM-x32\...\{0688DA81-103D-4FEA-B953-FC8F0915A8E2}) (Version: 2.0.30816.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.1 Language Pack - DEU) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM-x32\...\{00160000-001F-0407-0000-0000000FF1CE}) (Version: 16.0.3629.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.7143.5001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Deutsch (HKLM-x32\...\{8EA792A5-38AA-4F0E-8DFE-D1BAF1145431}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft XNA Game Studio Platform Tools (HKLM-x32\...\{89690B51-2E21-4E93-914E-F9CAC5B24A84}) (Version: 1.4.0.0 - Microsoft Corporation)
MiniTool Partition Wizard Free 9.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version:  - DICE)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0a2 - Mozilla)
Mp3tag v2.71 (HKLM-x32\...\Mp3tag) (Version: v2.71 - Florian Heidenreich)
MS7926 USB Audio Driver (HKLM-x32\...\{126CA2C8-404B-412F-A794-A1B5186E6EEE}) (Version: 1.00.0014 - C-Media Electronics, Inc.)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.01 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.5 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.025 - MSI)
MSI Smart Utilities (HKLM-x32\...\{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1) (Version: 2.0.0.11 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.029 - MSI)
MSI(R) Intel(R) Extreme Tuning Utility (HKLM-x32\...\{482c7431-75e2-4124-a453-6a294cd2c6a4}) (Version: 6.0.2.101 - Intel Corporation)
MSI(R) Intel(R) Extreme Tuning Utility (x32 Version: 6.0.2.101 - Intel Corporation) Hidden
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Oracle VM VirtualBox 4.3.30 (HKLM\...\{5E7BEDD4-397D-4537-A290-AB012A45D771}) (Version: 4.3.30 - Oracle Corporation)
Orcs Must Die! (HKLM-x32\...\Steam App 102600) (Version:  - Robot Entertainment)
Origin (HKLM-x32\...\Origin) (Version: 9.5.5.2850 - Electronic Arts, Inc.)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
Plants vs. Zombies: Game of the Year (HKLM-x32\...\Steam App 3590) (Version:  - PopCap Games, Inc.)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Prototype (HKLM-x32\...\Steam App 10150) (Version:  - Radical Entertainment)
PROTOTYPE 2 (HKLM-x32\...\Steam App 115320) (Version:  - Radical Entertainment)
PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Qualcomm Atheros 61x4 Bluetooth Suite (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 4.0.0.493 - Qualcomm Atheros Communications)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
Roadkil's Unstoppable Copier Version 5.2 (HKLM-x32\...\{A306FD29-7D3A-4287-91AC-9A0180931395}_is1) (Version:  - Roadkil.Net)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.5 - Rockstar Games)
S.T.A.L.K.E.R.: Clear Sky (HKLM-x32\...\Steam App 20510) (Version:  - GSC Game World)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM-x32\...\Steam App 4500) (Version:  - GSC Game World)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.6 - Samsung Electronics)
SeaTools for Windows 1.4.0.2 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.2 - Seagate Technology)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15044.7 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.0.15044.7 - Samsung Electronics Co., Ltd.) Hidden
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Soccer Manager 2015 (HKLM-x32\...\Steam App 356370) (Version:  - Soccer Manager Ltd)
Software Updater (HKLM-x32\...\{E1BAD1BA-C0E8-4018-9281-E7D2C6B07474}) (Version: 4.3.6 - SEIKO EPSON CORPORATION)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.07 - Creative Technology Limited)
Spotify (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Spotify) (Version: 1.0.12.161.g64b0797c - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Supreme Commander: Forged Alliance (HKLM-x32\...\Steam App 9420) (Version:  - Gas Powered Games)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45471 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
TeraCopy 2.3 (HKLM\...\TeraCopy_is1) (Version:  - Code Sector)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The LEGO® Movie - Videogame (HKLM-x32\...\Steam App 267530) (Version:  - TT Fusion)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)
THW Simulator 2012 (HKLM-x32\...\THW-Simulator) (Version:  - )
Trove North America (HKLM-x32\...\Glyph Trove North America) (Version:  - Trion Worlds, Inc.)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Unity Web Player (HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\UnityWebPlayer) (Version: 5.0.3f2 - Unity Technologies ApS)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Uplay (HKLM-x32\...\Uplay) (Version: 6.1 - Ubisoft)
USBLogon 1.6.2.3 (HKLM\...\{E7D9D138-7DFA-441A-B1A9-703193C5D6D3}_is1) (Version: 1.6.2.3 - Quadsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VMware Player (HKLM\...\{DCA4824C-42E8-4911-9C10-5BB43A315625}) (Version: 12.0.0 - VMware, Inc.)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version:  - VB-Audio Software)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version:  - Ubisoft)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (06/26/2014 4.0.0000.00000) (HKLM\...\E9DC49BA23113A1CFEE2EA8CDACFC190C2E7C774) (Version: 06/26/2014 4.0.0000.00000 - Google, Inc.)
Windows-Treiberpaket - MediaTek Inc. (usbser) Ports  (01/05/2012 2.0000.0.1) (HKLM\...\49D9ABA9270C5BDFD7AE1BEB607D36B26BB90235) (Version: 01/05/2012 2.0000.0.1 - MediaTek Inc.)
Windows-Treiberpaket - MediaTek Inc. (usbser) Ports  (06/26/2014 2.0.1136.0) (HKLM\...\5207B50A9A7F622F861EF44EB724202FCD7019B6) (Version: 06/26/2014 2.0.1136.0 - MediaTek Inc.)
Windows-Treiberpaket - MediaTek Inc. (usbser) Ports  (12/24/2011 2.0000.0.0) (HKLM\...\D0E6296D177F42BB31C0200E49412003DB6C4633) (Version: 12/24/2011 2.0000.0.0 - MediaTek Inc.)
Windows-Treiberpaket - MediaTek Inc. Net  (07/14/2011 1.1129.00) (HKLM\...\863799CFE28DE1D92884471DA44DD0A65106B46F) (Version: 07/14/2011 1.1129.00 - MediaTek Inc.)
Windows-Treiberpaket - Microsoft (WUDFRd) WPD  (02/22/2006 5.2.5326.4762) (HKLM\...\FADB1835408DB791D2FE4D4786AD5E1BE6E588A7) (Version: 02/22/2006 5.2.5326.4762 - Microsoft)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WPF Toolkit February 2010 (Version 3.5.50211.1) (HKLM-x32\...\{5EE6E987-1B79-4A93-832B-27472C7D1579}) (Version: 3.5.50211.1 - Microsoft Corporation)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2214554541-3394249910-989620225-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Wiederherstellungspunkte =========================

07-09-2015 03:48:30 Entfernt Realtek High Definition Audio Driver
07-09-2015 03:50:39 Installiert Realtek High Definition Audio Driver
07-09-2015 08:53:12 Installed Windows 7 USB/DVD Download Tool
07-09-2015 18:34:52 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
08-09-2015 08:04:19 3DMark 11
08-09-2015 08:05:48 Removed Windows 7 USB/DVD Download Tool
08-09-2015 08:09:08 Removed Google Earth
08-09-2015 08:13:21 Microsoft Office Korrekturhilfen 2013 - Deutsch wird entfernt
09-09-2015 01:58:31 Windows Update
09-09-2015 20:21:14 JRT Pre-Junkware Removal

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2015-09-08 21:26 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {004BAF38-7C58-497B-8A4A-A0DC93C1CF88} - System32\Tasks\{5CF1D7FE-896C-4EE6-A991-710450D92A49} => pcalua.exe -a "C:\Program Files (x86)\ClockworkMod\Universal Adb Driver\UniveralAdbDriverInstaller.exe" -d "C:\Program Files (x86)\ClockworkMod\Universal Adb Driver"
Task: {005F29D6-8ECE-4CED-B41D-D16E429FAE9A} - System32\Tasks\{1B215C9D-0547-4BE7-8B23-EB4B1538E4CD} => C:\Spiele\Need For Speed - Porsche\Updater.exe [2000-07-10] ()
Task: {19869BCE-E970-4240-B3B0-3DD560218A67} - System32\Tasks\{F0A9A4BE-08AB-4E90-B436-E0E121FDE38C} => C:\Spiele\Need For Speed - Porsche\Porsche.exe [2000-07-11] ()
Task: {27E431D7-BA54-45DF-9104-85611198A50D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {2883B98A-9126-48C6-92B0-8ED23F659AAC} - System32\Tasks\Videos löschen Sgt Napoleon => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [2013-09-27] (Microsoft Corporation)
Task: {2EDDB544-E974-4714-AA5A-20F12B4F49ED} - System32\Tasks\{EBE6D00F-BAF4-4609-BE78-12C9714F7E7C} => C:\Program Files (x86)\ClockworkMod\Universal Adb Driver\UniveralAdbDriverInstaller.exe [2013-04-07] ()
Task: {3E5CBA48-A215-4728-A0D3-3493CBF0A85E} - System32\Tasks\Videos löschen MIB => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [2013-09-27] (Microsoft Corporation)
Task: {475DC9A4-3B51-4735-A8B6-E25066ECBBB4} - System32\Tasks\Videos löschen darkrider84 => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [2013-09-27] (Microsoft Corporation)
Task: {4A4B163F-4AEA-4834-A8CE-68F6E8C39A01} - System32\Tasks\{6B905976-0EE1-40CC-B2FC-336CF7C8A559} => pcalua.exe -a C:\Users\darkrider84\Downloads\VirtualBox-4.3.26-98988-Win.exe -d C:\Users\darkrider84\Downloads
Task: {4AD744AE-8893-4884-825A-BC0C939EDD89} - System32\Tasks\HWiNFO => C:\Program Files\HWiNFO64\HWiNFO64.EXE [2015-07-20] (REALiX)
Task: {528E23CB-EDD3-42CA-B05F-409E59F1504E} - System32\Tasks\{8EAC2427-D2CE-4D99-B4B5-165FC9966077} => C:\Program Files (x86)\ClockworkMod\Universal Adb Driver\UniveralAdbDriverInstaller.exe [2013-04-07] ()
Task: {58DBF297-50AE-46EE-ADA5-904E73EAA9DA} - System32\Tasks\{6A59D36A-04AC-4324-AC90-9228A9A683CF} => C:\Spiele\Need For Speed - Porsche\Porsche.exe [2000-07-11] ()
Task: {5AE8A3D9-573D-4D10-BBBD-7E03C103FA67} - System32\Tasks\{BFDBEA7F-4FD6-4705-8EC0-2434B4118F83} => pcalua.exe -a "C:\Program Files (x86)\Xilisoft\Blu-ray to DVD Converter\Blu Ray Ripper\Uninstall.exe"
Task: {63FC9B47-E1F8-4998-8F7E-E01D72CD8B19} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd)
Task: {7A47F3CB-A4EF-4A45-A67E-13BC22B7D3B2} - System32\Tasks\{F33D7871-5331-4C7C-B7F6-114A4E84DB7D} => pcalua.exe -a C:\Windows\IsUn0407.exe -c -fC:\Spiele\NEEDFO~2\uninst.log
Task: {86E72DC9-D733-45FB-B531-9CE89230E191} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {91DFAF7B-B752-42FF-B274-4FA173712A39} - System32\Tasks\{DAB66309-F136-4884-AFE1-1DDD51AF95A9} => C:\Spiele\Need For Speed - Porsche\Porsche.exe [2000-07-11] ()
Task: {943DFA5A-DB14-494D-B246-0563D6479913} - System32\Tasks\{8AAD8ED7-E037-4DFF-8022-E8213D59D1FA} => C:\Spiele\Driver Parallel Lines\DriverParallelLines.exe
Task: {A151004A-219D-4810-B24C-0EBAFCBCAA4A} - System32\Tasks\{559C5BF1-B5C7-47EF-A9B3-A6FFC13D7E22} => C:\Program Files (x86)\ClockworkMod\Universal Adb Driver\UniveralAdbDriverInstaller.exe [2013-04-07] ()
Task: {A4A730F7-ABFA-4FD9-BF01-12D6AC0D4CCA} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-05-27] ()
Task: {A88DA563-F71E-4991-8E77-C8A107CCB666} - System32\Tasks\{219CB7FC-848D-43F0-9D24-509077267C6E} => pcalua.exe -a C:\Windows\IsUn0407.exe -c -fC:\Spiele\NEEDFO~2\uninst.log
Task: {C69F83E8-9781-4011-8509-38AA11AEFC8C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-26] (Google Inc.)
Task: {C7223F99-02E3-49FD-8ECC-9432D1D56CDB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-26] (Google Inc.)
Task: {C8723F19-BA13-4819-8F75-4BEA36E3B253} - System32\Tasks\{9883AC77-A852-4D01-9C93-63CC2CF6E527} => Chrome.exe http://ui.skype.com/ui/0/7.6.0.105/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {CAF6C078-201D-4AF8-B14F-393E7DDF525F} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2015-04-10] (Samsung Electronics.)
Task: {D468F596-CDEF-4241-BD99-AFEE45072F5C} - System32\Tasks\{23D5D106-A36C-4E83-9850-5348330586F7} => C:\Spiele\Airline Tycoon Deluxe\At.exe
Task: {D8A9EA7E-F805-4062-A62C-471DAF091710} - System32\Tasks\{1FB1351C-C794-46DF-80A5-653B52C0C829} => C:\Spiele\Airline Tycoon Deluxe\At.exe
Task: {DAB2A9F0-3BD0-4834-AFDB-80144E776A3F} - System32\Tasks\{E87EB1CA-898F-4F05-BF17-51D87F046540} => Chrome.exe http://ui.skype.com/ui/0/7.6.0.105/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {E21D448E-D70F-4865-986F-D70B30A9A2D5} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {E22F627D-AA60-483B-9D2D-9BE2D88418E9} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-13] (Dropbox, Inc.)
Task: {EC11C25E-0D0E-4FE9-A1F6-E6B8129CC748} - System32\Tasks\{3C8A9394-0A08-45AC-BC35-B9DA7467D736} => C:\Spiele\Need For Speed - Porsche\Porsche.exe [2000-07-11] ()
Task: {EC7C9DC5-8C94-4673-9C1C-062EBDE0F47C} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-13] (Dropbox, Inc.)
Task: {ECB54B29-6F63-4E33-BEE7-CB9B4D02C2DE} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-05-05] (Intel Corporation)
Task: {F93F02ED-4927-4B67-8A70-889450C423AB} - System32\Tasks\EPSON XP-422 423 425 Series Update {C11D8B02-EE30-495C-8983-4E88B27B0910} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNDE.EXE [2013-11-21] (SEIKO EPSON CORPORATION)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {C11D8B02-EE30-495C-8983-4E88B27B0910}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNDE.EXE:/EXE:{C11D8B02-EE30-495C-8983-4E88B27B0910} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-24 20:28 - 2015-08-24 20:28 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-09-02 02:48 - 2015-08-28 03:56 - 01868104 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libglesv2.dll
2015-09-02 02:48 - 2015-08-28 03:56 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libegl.dll
2015-02-26 20:59 - 2015-08-09 09:50 - 00385968 _____ () C:\Program Files (x86)\KeePass Password Safe 2\KeePass.XmlSerializers.dll
2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll
2015-07-20 09:08 - 2015-07-20 09:08 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-07-20 09:15 - 2015-07-20 09:15 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2015-07-20 09:10 - 2015-07-20 09:10 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2214554541-3394249910-989620225-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.44.1 - 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Killer Network Manager.lnk => C:\Windows\pss\Killer Network Manager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk => C:\Windows\pss\Secunia PSI Tray.lnk.CommonStartup
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\darkrider84\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: AshSnap => C:\Program Files (x86)\Ashampoo\Ashampoo Snap 6\ashsnap.exe
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Clownfish => "C:\Program Files (x86)\Clownfish\Clownfish.exe"
MSCONFIG\startupreg: Command Center => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EPLTarget => 
MSCONFIG\startupreg: FalNET G19 Display Manager => "C:\Program Files (x86)\FalNET G19 Display Manager\FalNET G19 Display Manager.exe"
MSCONFIG\startupreg: Fast Boot => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
MSCONFIG\startupreg: FireStormStartUpAutoRun => C:\Program Files (x86)\ZotacFireStorm\FireStorm.exe
MSCONFIG\startupreg: GoogleChromeAutoLaunch_D3D3FDB76797D0380D6F53572845784B => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: icq => C:\Users\darkrider84\AppData\Roaming\ICQM\icq.exe -CU
MSCONFIG\startupreg: Information => "G:\Info.vbs"
MSCONFIG\startupreg: KeePass 2 PreLoad => "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
MSCONFIG\startupreg: Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: LWS => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: Malwarebytes Anti-Exploit => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Prime95 => C:\Users\darkrider84\Desktop\prime95.exe
MSCONFIG\startupreg: SandboxieControl => "C:\Program Files\Sandboxie\SbieCtrl.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\darkrider84\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\darkrider84\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Super Charger => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{7F5E398C-26DC-46BC-BEF1-DB5C177B3248}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{552C6980-8E01-4A6E-B117-9912EE001A11}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{E0BF14BE-C26B-471C-8261-7405901AF5EA}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{97C50EC1-1657-438E-91E1-05D8576B1D39}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{04A0DC4F-342D-45B2-98B4-9BA2862FEFAB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{8F9974A7-5AC4-44B5-B457-27E1A68042A0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{91D243EA-BB48-45E6-BF98-6A6EF4803B73}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A4CFA084-D4B6-4CCE-957B-841B9CD37567}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CE531EA1-077B-46BA-9C69-CAB1D6B0041D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{611F1852-2564-43C9-9981-D845C1DC517B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{10329FF8-7EEE-41E7-B0C5-CDDC88FEAAF4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D0D2E99C-580E-4A5E-A29C-D0A512162948}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{7CD3F96B-7E33-4133-981F-DC9B265A3A33}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{F83F2ECB-DCAC-40CA-BF56-69D3F1E8C541}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{AC352BAC-C6FE-46A9-B3C4-25B45C6A155B}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{9CF84803-57D0-4481-9D56-7DE0C7CB3206}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{AC8F14A7-CD4A-4C4A-A9FB-FCA5A0AADB44}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{53F7F024-A4FE-4E7A-9F52-E85F9D674958}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8C00F606-1E03-41AA-A30A-29943B8DF297}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B186A536-5D9E-4EFD-B347-F2C26DB334F5}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{1627A7AE-7D96-41E4-97EE-A8492AA4CA35}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{DCCB9B5A-0229-4270-A719-96FAB632228A}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{F5D0BF8A-3AA2-4979-B68D-6FD9228DDC08}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{E4C81737-8869-4AE0-A50B-656AFD46D398}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [TCP Query User{6449E735-CCAD-4CE7-8799-5AC212EB9A48}C:\users\darkrider84\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\darkrider84\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{8B1BF0B6-6150-49E8-A435-88BFC860705F}C:\users\darkrider84\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\darkrider84\appdata\roaming\spotify\spotify.exe
FirewallRules: [{28E79238-9FDC-4554-918E-DA1AF2146CDB}] => (Block) C:\users\darkrider84\appdata\roaming\spotify\spotify.exe
FirewallRules: [{471A9878-966C-497D-82FD-045C0EB3D540}] => (Block) C:\users\darkrider84\appdata\roaming\spotify\spotify.exe
FirewallRules: [{8D582414-556B-43A9-9425-2A1B3D7C8886}] => (Allow) C:\Users\darkrider84\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{A7FEEF96-7F0D-4B1F-B7D1-DCC314C79668}] => (Allow) G:\SteamLibrary\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{50A686F5-8142-422F-B55E-46BCBF5716FA}] => (Allow) G:\SteamLibrary\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{BCA238A9-35F0-40C3-B819-5EA4E10A3B9A}] => (Allow) G:\SteamLibrary\steamapps\common\STALKER Clear Sky\bin\xrEngine.exe
FirewallRules: [{9789413A-AD83-4921-9EEA-C0DDA67C4664}] => (Allow) G:\SteamLibrary\steamapps\common\STALKER Clear Sky\bin\xrEngine.exe
FirewallRules: [{2805DCC8-C311-4FC3-B8BC-2EA8FBC8D38E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{3D846A7D-4BF5-4147-BAA9-23005BBB8BEF}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{12E68F26-2A3F-4E65-97D0-4BC976CA7A4D}] => (Allow) G:\SteamLibrary\steamapps\common\Metro Last Light\MetroLL.exe
FirewallRules: [{B401A963-86F5-4694-ABED-08AF9AE6E74B}] => (Allow) G:\SteamLibrary\steamapps\common\Metro Last Light\MetroLL.exe
FirewallRules: [{CBBF64C4-9F35-4A97-BDE9-9F86907C2EFE}] => (Allow) G:\Spiele\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{7837D8C0-6165-4D8F-B0B0-12523D349C83}] => (Allow) G:\Spiele\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{AA9AC202-40A0-4593-90B0-672B8CB1606F}] => (Allow) G:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{66FD7688-B14B-4360-A1D9-0B7775B9F503}] => (Allow) G:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{2E6D3335-4271-4350-A834-0454DAE2C48C}] => (Allow) G:\SteamLibrary\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe
FirewallRules: [{C8A36DEE-7A20-48FF-B84B-9D97B9AD3801}] => (Allow) G:\SteamLibrary\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe
FirewallRules: [{5083175E-4571-4A99-B68A-C428A3ADA4CB}] => (Allow) G:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{250DD265-4B78-4A61-991D-5103D722D5E4}] => (Allow) G:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{E9674ADF-9409-478B-B028-8939525932F6}] => (Allow) G:\SteamLibrary\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{21DBBA9F-34A0-45FB-95A0-ADC762DBE0B7}] => (Allow) G:\SteamLibrary\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{9C9A8977-3929-4900-9596-4098A111E7F1}] => (Allow) G:\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{C736FFA1-E342-499A-B5F7-58D4CA7CBF76}] => (Allow) G:\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{0CBE1214-8489-48BE-B714-52415C2FB1FF}] => (Allow) G:\SteamLibrary\steamapps\common\METAL SLUG\mslug1.exe
FirewallRules: [{2383AA62-0BB2-4BC9-9B5B-EA34C2D26850}] => (Allow) G:\SteamLibrary\steamapps\common\METAL SLUG\mslug1.exe
FirewallRules: [{A4955AB1-DF3A-4CB9-A696-8E8451782CF0}] => (Allow) G:\Spiele\Ubisoft\Driver San Francisco\Driver.exe
FirewallRules: [{47B71177-949F-4297-B842-51DF6915C7BD}] => (Allow) G:\Spiele\Ubisoft\Driver San Francisco\Driver.exe
FirewallRules: [{D1C4FC19-CDCF-4683-8601-9C23BF72C88C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{FB424363-1890-45C2-A6A7-E9ECCA48FB9C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{23EA1A11-FD32-4DEA-B8B1-40BB07540641}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{75FB0B59-AB20-44AD-A383-4F91781C1B01}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{7CA41E69-27F1-470C-ACD1-3B70827A8D89}] => (Allow) LPort=8317
FirewallRules: [{D3ABA2DD-15DE-4D3A-974D-8BC31E15BC41}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8D82E29A-72B0-4D8A-B3F7-65668167FC40}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{758A4674-EA30-4534-9F59-B728F9B533B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C3FB7FEA-7F57-4EF1-9A98-D119DB2BC7F9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{2E935E09-4DDA-4AAE-8E4E-D209832879A2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8D34C6B5-A64E-4FC3-B4A2-F671A5F5FDF6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8295E58D-D946-43CA-B31E-415D597E811B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{EAA10EE5-8B1A-4A7C-ADF3-73FE37B27DCE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{181C3830-425B-483B-8947-F62F8B4B9C6D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B4608E2B-D2E1-4E92-B91E-ACA52A643642}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{75BAABB0-A085-47C0-98C0-0C0A6C6C0D2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0A6190E6-107C-4015-80EE-8A7B977402E0}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{978F369D-B9A0-4CE6-9BBB-F5A765DBB3B1}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{C89A8E73-181C-4608-B281-884CC4113B32}] => (Allow) G:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{50DE514E-6B12-42B7-97A6-2BD43E7F0EE2}] => (Allow) G:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{410D1551-820A-4917-84B6-32D0536EE05A}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{4A5D52B2-24BC-41F9-A82C-5C61CF1572C5}] => (Allow) C:\Program Files\Ubisoft\WATCH_DOGS\bin\watch_dogs.exe
FirewallRules: [{08042CB6-265E-4038-8C4C-32139A919E9C}] => (Allow) C:\Program Files\Ubisoft\WATCH_DOGS\bin\watch_dogs.exe
FirewallRules: [{798FCDDD-B0B2-4466-9310-50374330A2FC}] => (Allow) G:\SteamLibrary\steamapps\common\Edna and Harvey Harvey's New Eyes\harvey.exe
FirewallRules: [{7AB355F8-6A79-4EDA-923B-73F8D4D51D05}] => (Allow) G:\SteamLibrary\steamapps\common\Edna and Harvey Harvey's New Eyes\harvey.exe
FirewallRules: [{FBD73423-6D19-42FE-A7F7-54155A27EB75}] => (Allow) G:\SteamLibrary\steamapps\common\Edna and Harvey Harvey's New Eyes\VisionaireConfigurationTool.exe
FirewallRules: [{B07918D1-BE8A-47D2-8B24-8040B77E4930}] => (Allow) G:\SteamLibrary\steamapps\common\Edna and Harvey Harvey's New Eyes\VisionaireConfigurationTool.exe
FirewallRules: [{F9B024E9-FB91-4C72-A5C3-B8482C806410}] => (Allow) G:\SteamLibrary\steamapps\common\Edna & Harvey The Breakout\Edna.exe
FirewallRules: [{1FC7996D-99BE-4233-B017-1C2277FB17D3}] => (Allow) G:\SteamLibrary\steamapps\common\Edna & Harvey The Breakout\Edna.exe
FirewallRules: [{2533FF2A-B168-45F5-852F-D2731BF7675F}] => (Allow) G:\SteamLibrary\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{5ACC0003-F702-4403-AF5E-0413CB064448}] => (Allow) G:\SteamLibrary\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{22693E76-4E4A-4ABF-BFB3-7F1F136D0E9E}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{63940119-12B8-4EBF-B87E-808153F1CFFB}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{19D39094-DEA2-4DE6-9884-A3AE280EB9E3}] => (Allow) G:\SteamLibrary\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{0F6D3CCA-1BD4-411B-BEAC-D9AC2B8C8966}] => (Allow) G:\SteamLibrary\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{4F126F5D-76D8-42FB-80D9-9EF2E681A160}] => (Allow) G:\SteamLibrary\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{FC8CAEBD-7F6E-475C-974A-A2B73C8784C2}] => (Allow) G:\SteamLibrary\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{5BC92F99-C44D-4937-BC63-2BE7864034F5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8340599A-3941-4E67-A6D7-1CAC77C83BA1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{052F7A76-B2E8-4F8A-ACDA-370870207EF9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D1F56AFF-0213-43E7-977B-C846C1A3A322}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{034D21B2-6134-43ED-A085-96546F14BC48}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{2D95F963-38B1-4CA7-9ED7-7C676C57B312}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{AB28691F-74B0-4592-85E1-CA9A70BDCAFB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{B344CD87-8215-4166-87EA-A3389A37DDE8}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{30EA9D8A-DC66-47E9-85FA-C0FA43CB8280}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{EC5F70CB-7AC7-4BFA-9667-167D86372115}] => (Allow) G:\SteamLibrary\steamapps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{D749B238-6D12-4EA6-AD5D-6CC8ED174069}] => (Allow) G:\SteamLibrary\steamapps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{6AE00B4C-84CE-40C7-B6ED-8036498D4CBD}] => (Allow) G:\SteamLibrary\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{7EB8AE38-3C4F-4D95-B06F-DF5206087A88}] => (Allow) G:\SteamLibrary\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{5873CE42-61B6-4459-A79C-95B8E3689FF6}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{73195322-0469-466D-BB11-B9A44D5ED191}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{6C3AC1F2-A022-4A83-9AA2-89F7C33076F7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C13EA81F-9DD8-4543-8F67-D32D9AAD5D84}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4182F692-12F6-4869-9B91-CE4866956A6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{C4FBD586-4EBA-44F3-8216-E0E9F8952988}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{68FD85CB-01D5-4A30-86EA-4278C0C572CE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{52DE7502-EF55-448A-8304-00725D777557}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
StandardProfile\AuthorizedApplications: [C:\Spiele\Combat Arms EU\CombatArms.exe] => :*Enabled:CombatArms.exe
StandardProfile\AuthorizedApplications: [C:\Spiele\Combat Arms EU\Engine.exe] => :*Enabled:Engine.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Killer Wireless-n/a/ac 1525 Wireless Network Adapter
Description: Killer Wireless-n/a/ac 1525 Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: Qcamain
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/09/2015 08:42:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbar.exe, Version: 1.9.2.1008, Zeitstempel: 0x55ca7a8b
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18939, Zeitstempel: 0x55afd843
Ausnahmecode: 0xc0000374
Fehleroffset: 0x000ced0b
ID des fehlerhaften Prozesses: 0x57cc
Startzeit der fehlerhaften Anwendung: 0xmbar.exe0
Pfad der fehlerhaften Anwendung: mbar.exe1
Pfad des fehlerhaften Moduls: mbar.exe2
Berichtskennung: mbar.exe3

Error: (09/09/2015 08:21:14 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {bd1366d8-e713-4601-baf8-6bf5cbdc165a}

Error: (09/09/2015 08:19:26 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.

Error: (09/09/2015 08:11:36 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.

Error: (09/09/2015 02:04:45 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.

Error: (09/09/2015 01:58:31 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {a28d7c9f-99ea-4a56-b37d-0c76368e7843}

Error: (09/08/2015 09:32:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LCDMovieViewer.exe, Version: 8.57.145.0, Zeitstempel: 0x543d6d56
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18933, Zeitstempel: 0x55a69e20
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00033aae
ID des fehlerhaften Prozesses: 0x1f28
Startzeit der fehlerhaften Anwendung: 0xLCDMovieViewer.exe0
Pfad der fehlerhaften Anwendung: LCDMovieViewer.exe1
Pfad des fehlerhaften Moduls: LCDMovieViewer.exe2
Berichtskennung: LCDMovieViewer.exe3

Error: (09/08/2015 09:32:02 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.

Error: (09/08/2015 09:26:39 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.

Error: (09/08/2015 06:00:20 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.


Systemfehler:
=============
Error: (09/09/2015 08:23:36 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Software Protection" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (09/09/2015 08:21:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Integrated Clock Controller Service - Intel(R) ICCS" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/09/2015 08:21:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Extreme Tuning Utility Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/09/2015 08:21:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Acronis Sync Agent Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/09/2015 08:21:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft .NET Framework NGEN v4.0.30319_X64" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/09/2015 08:21:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft .NET Framework NGEN v4.0.30319_X86" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/09/2015 08:21:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Software Protection" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/09/2015 08:21:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/09/2015 08:21:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Application Virtualization Client" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/09/2015 08:21:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office:
=========================
Error: (09/09/2015 08:42:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbar.exe1.9.2.100855ca7a8bntdll.dll6.1.7601.1893955afd843c0000374000ced0b57cc01d0eb2f27be9ff7C:\Program Files (x86)\MBAR\mbar\mbar.exeC:\Windows\SysWOW64\ntdll.dll78d6856b-5722-11e5-bdd5-2c337a003050

Error: (09/09/2015 08:21:14 PM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {bd1366d8-e713-4601-baf8-6bf5cbdc165a}

Error: (09/09/2015 08:19:26 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/09/2015 08:11:36 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/09/2015 02:04:45 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/09/2015 01:58:31 AM) (Source: VSS) (EventID: 8193) (User: )
Description: ConvertStringSidToSid(S-1-5-21-2214554541-3394249910-989620225-500.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.


Vorgang:
   OnIdentify-Ereignis
   Generatordaten werden gesammelt

Kontext:
   Ausführungskontext: Shadow Copy Optimization Writer
   Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Generatorname: Shadow Copy Optimization Writer
   Generatorinstanz-ID: {a28d7c9f-99ea-4a56-b37d-0c76368e7843}

Error: (09/08/2015 09:32:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LCDMovieViewer.exe8.57.145.0543d6d56ntdll.dll6.1.7601.1893355a69e20c000000500033aae1f2801d0ea6d0ac1b18aC:\Program Files\Logitech Gaming Software\Applets\LCDMovieViewer.exeC:\Windows\SysWOW64\ntdll.dll4b28462c-5660-11e5-8f26-2c337a003050

Error: (09/08/2015 09:32:02 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/08/2015 09:26:39 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/08/2015 06:00:20 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity:
===================================
  Date: 2015-09-08 21:24:12.018
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-09-08 21:24:12.001
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-05-16 01:29:37.179
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:29:37.163
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:29:23.753
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:29:23.736
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:28:01.415
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:28:01.399
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:25:40.010
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-16 01:25:39.996
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CMWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 20%
Installierter physikalischer RAM: 16332.97 MB
Verfügbarer physikalischer RAM: 12993.17 MB
Summe virtueller Speicher: 32664.14 MB
Verfügbarer virtueller Speicher: 29036.03 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:476.84 GB) (Free:60.71 GB) NTFS
Drive d: (GSP1RMCPRXFREO_DE_DVD) (CDROM) (Total:3.04 GB) (Free:0 GB) UDF
Drive f: (Lokaler Datenträger) (Fixed) (Total:930.41 GB) (Free:107.77 GB) NTFS
Drive g: (Seagate) (Fixed) (Total:2794.39 GB) (Free:1077.87 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: 17A18ECB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=476.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2BD2C32A)
Partition 1: (Not Active) - (Size=930.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1 GB) - (Type=12)

==================== Ende von Addition.txt ============================

schrauber · 10.09.2015, 19:10

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

darkrider78 · 11.09.2015, 07:08

ESET:

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=31df2dae5efb494fa58aa8186f883ae2
# end=init
# utc_time=2015-09-10 06:29:14
# local_time=2015-09-10 08:29:14 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 25702
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=31df2dae5efb494fa58aa8186f883ae2
# end=updated
# utc_time=2015-09-10 06:36:51
# local_time=2015-09-10 08:36:51 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=31df2dae5efb494fa58aa8186f883ae2
# engine=25702
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-09-10 09:55:33
# local_time=2015-09-10 11:55:33 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 15736921 193551983 0 0
# scanned=999202
# found=18
# cleaned=0
# scan_time=11921
sh=76AB62BE35E54C2F2B53BFFD162B92F1205F76BD ft=1 fh=d18099ba65173554 vn="Variante von Win32/Complitly.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\darkrider84\AppData\Local\DownloadGuide\Offers\autocompletepro_de.exe.vir"
sh=DE4CDF1AFF3E2BC3D06F3DCED89E3D141EFF7035 ft=1 fh=8cdae1047747df39 vn="Variante von Win32/Toolbar.Iminent.K evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\darkrider84\AppData\Local\DownloadGuide\Offers\iminent_de.exe.vir"
sh=5A140B462A04DB17D2EC6292DBEE2B652D50278D ft=1 fh=68f86785aa9ea912 vn="Variante von Win32/PriceGong.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\darkrider84\AppData\Local\DownloadGuide\Offers\pricegong_de.exe.vir"
sh=4101270357B096EF454463D13581E3D123C60560 ft=1 fh=2a17fddd6cb742ea vn="Variante von Win32/InstallCore.ACL evtl. unerwÃ¼nschte Anwendung" ac=I fn="F:\Users\darkrider84\AppData\Local\Temp\is1128754588\48B678D2_stp\RAM.dll"
sh=666C0BC915EA8BE8CF078A2263AE45ABFB71EB73 ft=0 fh=0000000000000000 vn="Variante von Android/AdDisplay.SKplanet.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="F:\verschoben\Sicherung Medion USB-Stick\TitaniumBackup\com.creativemobile.DragRacing-1f97e6f19c868f7656e7f54a1fe4a86f.apk.gz"
sh=76AB62BE35E54C2F2B53BFFD162B92F1205F76BD ft=1 fh=d18099ba65173554 vn="Variante von Win32/Complitly.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\AppData_2\Local\DownloadGuide\Offers\autocompletepro_de.exe"
sh=DE4CDF1AFF3E2BC3D06F3DCED89E3D141EFF7035 ft=1 fh=8cdae1047747df39 vn="Variante von Win32/Toolbar.Iminent.K evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\AppData_2\Local\DownloadGuide\Offers\iminent_de.exe"
sh=5A140B462A04DB17D2EC6292DBEE2B652D50278D ft=1 fh=68f86785aa9ea912 vn="Variante von Win32/PriceGong.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\AppData_2\Local\DownloadGuide\Offers\pricegong_de.exe"
sh=76AB62BE35E54C2F2B53BFFD162B92F1205F76BD ft=1 fh=d18099ba65173554 vn="Variante von Win32/Complitly.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\C\Users\darkrider84\AppData\Local\DownloadGuide\Offers\autocompletepro_de.exe"
sh=DE4CDF1AFF3E2BC3D06F3DCED89E3D141EFF7035 ft=1 fh=8cdae1047747df39 vn="Variante von Win32/Toolbar.Iminent.K evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\C\Users\darkrider84\AppData\Local\DownloadGuide\Offers\iminent_de.exe"
sh=5A140B462A04DB17D2EC6292DBEE2B652D50278D ft=1 fh=68f86785aa9ea912 vn="Variante von Win32/PriceGong.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\C\Users\darkrider84\AppData\Local\DownloadGuide\Offers\pricegong_de.exe"
sh=61BD48C4B94A9F78BFE5F792D3C0BB07C70BFE58 ft=1 fh=c4890b02595940cf vn="Variante von Win32/InstallCore.AAJ evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\C\Users\darkrider84\AppData\Local\Temp\Setup (1)_41BFED90.exe"
sh=8082FE3049512C2FC2BA13B43BDF85F820C8BB2B ft=1 fh=dddef7bb99b748d7 vn="Variante von Win32/KBM.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\C\Users\darkrider84\AppData\Local\Temp\TubeBox_Setup.exe"
sh=4101270357B096EF454463D13581E3D123C60560 ft=1 fh=2a17fddd6cb742ea vn="Variante von Win32/InstallCore.ACL evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\C\Users\darkrider84\AppData\Local\Temp\in40C1F8FE\317C6367_stp\RAM.dll"
sh=666C0BC915EA8BE8CF078A2263AE45ABFB71EB73 ft=0 fh=0000000000000000 vn="Variante von Android/AdDisplay.SKplanet.A evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\Tablet\SD-Karte\SD-Karte\TitaniumBackup_sicherung\com.creativemobile.DragRacing-1f97e6f19c868f7656e7f54a1fe4a86f.apk.gz"
sh=7CF8D24F40A79E3E2D03F18B21D6C0CB2C6FF8E7 ft=0 fh=0000000000000000 vn="Variante von Android/Leadbolt.E evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Sicherungen\Tablet\SD-Karte\SD-Karte\TitaniumBackup_sicherung\com.ovilex.bussimulator3d-f036f1d9854266a88e387861e655611e.apk.gz"
sh=7880B54373A26CE3A0FF97F2D17524A62E5994C1 ft=1 fh=7e2357320e25fbd4 vn="Variante von Win32/DownloadGuide.D evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Users\darkrider84\Downloads\setup-tubebox.exe"
sh=075478ED256C74207FB1540F41BE4934B47D549B ft=1 fh=5a1a58d6a5023955 vn="Win32/Somoto.Q evtl. unerwÃ¼nschte Anwendung" ac=I fn="G:\Users\darkrider84\Downloads\streamtransport_1.1.6.2\streamtransport_chrome_setup1.1.6.2.exe"

SecurityCheck:

Code:

ATTFilter

 Results of screen317's Security Check version 1.008  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Kaspersky Internet Security   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Java(TM) 7    
 Java 8 Update 60  
 Adobe Flash Player 18.0.0.232  
 Adobe Reader XI  
 Mozilla Firefox (40.0.3) 
 Google Chrome (44.0.2403.157) 
 Google Chrome (45.0.2454.85) 
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Exploit mbae-svc.exe   
 Malwarebytes Anti-Exploit mbae64.exe   
 Malwarebytes Anti-Exploit mbae.exe   
 Kaspersky Lab Kaspersky Internet Security 16.0.0 avp.exe  
 Kaspersky Lab Kaspersky Internet Security 16.0.0 avpui.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

FRST:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:10-09-2015 01
durchgeführt von darkrider84 (Administrator) auf DARKRIDER84-PC (11-09-2015 08:07:11)
Gestartet von C:\Users\darkrider84\Desktop
Geladene Profile: darkrider84 (Verfügbare Profile: darkrider84 & MIB & Sgt Napoleon)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\Program Files (x86)\ArchiCrypt\ArchiCrypt Shredder 6\ArchiCryptInjector64.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
() C:\Program Files\BeSecure\BeSecure.exe
() C:\Program Files\BeSecure\BeSecure_updater_service.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\System32\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files\USBLogon\usblonsvc.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(REALiX) C:\Program Files\HWiNFO64\HWiNFO64.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDWebCam.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPictureViewer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMovieViewer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDYT.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ArenaNet) C:\Program Files (x86)\Guild Wars 2\Gw2.exe
(Coherent Labs) C:\Program Files (x86)\Guild Wars 2\bin\CoherentUI_Host.exe
(Coherent Labs) C:\Program Files (x86)\Guild Wars 2\bin\CoherentUI_Host.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(EJIE Technology) C:\Program Files (x86)\Clover\clover.exe
() C:\Users\darkrider84\Desktop\SecurityCheck.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM\...\Run: [USBLogon] => C:\Program Files\USBLogon\usblondetect.exe [12288 2013-10-01] (Quadsoft)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [851072 2015-01-30] (Qualcomm Atheros)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-07-07] (Realtek Semiconductor)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1442304 2014-05-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-03-24] (Intel Corporation)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2620728 2015-07-22] (Malwarebytes Corporation)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [39175960 2015-08-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [Rainlendar2] => C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [2611808 2014-03-16] ()
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [icq] => C:\Users\darkrider84\AppData\Roaming\ICQM\icq.exe [36705800 2015-02-26] (ICQ)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53737488 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\...\Run: [GoogleChromeAutoLaunch_D3D3FDB76797D0380D6F53572845784B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240 2015-08-28] (Google Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

Tcpip\Parameters: [DhcpNameServer] 192.168.44.1
Tcpip\..\Interfaces\{C80E5507-C03F-4AAF-B14D-20C8A6FD53FD}: [DhcpNameServer] 192.168.44.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2214554541-3394249910-989620225-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper64.dll [2014-01-23] (EJIE Technology)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\new_plugin\npjp2.dll [Keine Datei]
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-08-16] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll Keine Datei
FF Plugin HKU\S-1-5-21-2214554541-3394249910-989620225-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\darkrider84\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-03-06]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2015-09-06]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-26]
CHR Extension: (Google Docs) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-26]
CHR Extension: (Google Drive) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-26]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-02-26]
CHR Extension: (MEGA) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-09-09]
CHR Extension: (YouTube) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-26]
CHR Extension: (Chrome YouTube Downloader) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja [2015-06-28]
CHR Extension: (Battlefield Heroes) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh [2015-02-27]
CHR Extension: (Adblock Plus) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-02-26]
CHR Extension: (Add to Amazon Wish List) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced [2015-06-29]
CHR Extension: (Google Search) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-26]
CHR Extension: (Google Sheets) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-26]
CHR Extension: (Google Docs Offline) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
CHR Extension: (Super Auto Refresh) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkhjakkgopekjlempoplnjclgedabddk [2015-02-26]
CHR Extension: (Auto HD For YouTube™) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak [2015-02-26]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Skype Click to Call) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-02-27]
CHR Extension: (Ghostery) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-02-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-26]
CHR Extension: (uMatrix) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfcmafjalglgifnmanfmnieipoejdcf [2015-02-26]
CHR Extension: (Gmail) - C:\Users\darkrider84\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-26]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - https://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - https://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [ocbnpbkmjpgbdcgiflkgkpnkinifpgpj] - C:\Users\darkrider84\ChromeExtensions\ocbnpbkmjpgbdcgiflkgkpnkinifpgpj\amazon-icon-2.crx [2015-02-28]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 ArchiCrypt Sichere Loeschzonen; C:\Program Files (x86)\ArchiCrypt\ArchiCrypt Shredder 6\ArchiCryptInjector64.exe [322136 2014-11-27] (Softwareentwicklung Remus - ArchiCrypt)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [317056 2015-01-30] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert]
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2015-09-06] (Kaspersky Lab ZAO)
R2 BeSecure; C:\Program Files\BeSecure\BeSecure.exe [16384 2015-04-09] () [Datei ist nicht signiert]
R2 BeSecure_updater_service; C:\Program Files\BeSecure\BeSecure_updater_service.exe [12288 2015-04-10] () [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-25] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-07-05] (EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-05-06] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [402432 2015-07-07] (Rivet Networks) [Datei ist nicht signiert]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [713016 2015-07-22] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2106832 2015-06-29] (MSI)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4048336 2015-08-13] (MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2123216 2015-07-08] (MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4177360 2015-07-07] (MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2002896 2015-07-28] (MSI)
R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2284496 2015-07-30] (MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2072528 2015-06-29] (MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [599504 2015-07-28] (MSI)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1741992 2015-07-30] (Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-02] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-09-02] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-09-01] ()
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2015-02-09] (Micro-Star INT'L CO., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
R2 USBLogonService; C:\Program Files\USBLogon\usblonsvc.exe [12288 2013-10-01] () [Datei ist nicht signiert]
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19216 2015-07-07] (Intel(R) Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AcpiCtlDrv; C:\Windows\System32\DRIVERS\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2010-04-29] (Google Inc)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [83792 2015-06-17] (Asmedia Technology)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [117808 2015-06-19] (Rivet Networks, LLC.)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [74368 2015-01-30] (Qualcomm Atheros)
R3 CMfilt; C:\Windows\System32\drivers\CMfilt64.sys [23552 2014-01-27] (Creative Technology Ltd.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [63064 2015-07-22] ()
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2015-07-27] (Acronis International GmbH)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2015-09-09] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30960 2014-12-04] (Intel Corporation)
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation)
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] ()
S3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [125488 2015-03-18] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70000 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [171192 2015-06-30] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [227000 2015-07-04] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [931000 2015-06-30] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [39096 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [41144 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [30392 2015-06-08] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [103096 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [109272 2015-09-09] (Malwarebytes)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 MS7926; C:\Windows\System32\DRIVERS\MS7926.SYS [608768 2014-10-06] (C-MEDIA)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 Qcamain; C:\Windows\System32\DRIVERS\Qcamain7x64.sys [2311680 2015-05-29] (Qualcomm Atheros, Inc.)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-05-27] ()
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation)
R2 tib; C:\Windows\System32\DRIVERS\tib.sys [1058632 2015-07-27] (Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [248648 2015-07-27] (Acronis International GmbH)
S1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [102664 2014-05-19] ()
S1 Uim_DEVIM; C:\Windows\System32\DRIVERS\uim_devim.sys [25992 2014-05-19] ()
S1 Uim_IM; C:\Windows\System32\DRIVERS\uim_im.sys [700296 2014-05-19] ()
R3 VBAudioVMAUXVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmauxvaio64_win7.sys [41192 2015-04-17] (Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2015-04-17] (Windows (R) Win 7 DDK provider)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [116232 2015-03-16] (Oracle Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [75512 2015-08-04] (VMware, Inc.)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2014-07-02] (SplitmediaLabs Limited)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP2b\WNt600x64\Sandra.sys [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

darkrider78 · 11.09.2015, 07:11

Fortsetzung:

Code:

ATTFilter

==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-11 08:07 - 2015-09-11 08:07 - 00041140 _____ C:\Users\darkrider84\Desktop\FRST.txt
2015-09-11 08:07 - 2015-09-11 08:07 - 00000000 ____D C:\Users\darkrider84\Desktop\FRST-OlderVersion
2015-09-11 07:39 - 2015-09-11 07:39 - 00000932 _____ C:\Users\Public\Desktop\Guild Wars 2.lnk
2015-09-11 07:39 - 2015-09-11 07:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2015-09-11 07:39 - 2015-09-11 07:39 - 00000000 ____D C:\Program Files (x86)\Guild Wars 2
2015-09-11 07:37 - 2015-09-11 07:39 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Guild Wars 2
2015-09-10 21:47 - 2015-09-10 21:47 - 00852704 _____ C:\Users\darkrider84\Desktop\SecurityCheck.exe
2015-09-10 20:28 - 2015-09-10 20:28 - 00000000 ____D C:\Program Files (x86)\ESET
2015-09-10 18:08 - 2015-09-10 18:08 - 00000000 _____ C:\Users\Sgt Napoleon\AppData\Local\{4DE78BBF-A727-466C-8E92-F1EF6FA115EC}
2015-09-10 12:21 - 2015-09-10 12:21 - 01200008 _____ (Mojang) C:\Users\darkrider84\Desktop\Minecraft.exe
2015-09-09 21:58 - 2015-09-09 21:58 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-09-09 21:58 - 2015-09-09 21:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-09-09 21:58 - 2015-09-09 21:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-09-09 21:24 - 2015-09-09 21:24 - 00027552 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS
2015-09-09 21:24 - 2015-09-09 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2015-09-09 21:23 - 2015-09-09 21:23 - 02790168 _____ (Martin Malík - REALiX ) C:\Users\darkrider84\Desktop\hw64_504.exe
2015-09-09 20:21 - 2015-09-09 20:11 - 01800104 _____ (Malwarebytes Corporation) C:\Users\darkrider84\Desktop\JRT.exe
2015-09-09 20:14 - 2015-09-09 20:14 - 01660416 _____ C:\Users\darkrider84\Desktop\AdwCleaner_5.007.exe
2015-09-08 23:02 - 2015-09-02 05:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-08 23:02 - 2015-09-02 05:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-08 23:02 - 2015-09-02 05:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-08 23:02 - 2015-09-02 05:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-08 23:02 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-09-08 23:02 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-08 23:02 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-09-08 23:02 - 2015-09-02 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-09-08 23:02 - 2015-09-02 03:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-08 23:02 - 2015-09-02 03:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-08 23:02 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-08 23:02 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-08 23:02 - 2015-08-27 20:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-08 23:02 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-08 23:02 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-08 23:02 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-08 23:02 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-08 23:02 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-09-08 23:02 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-09-08 23:02 - 2015-08-26 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-09-08 23:02 - 2015-08-26 20:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-08 23:02 - 2015-08-26 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-09-08 23:02 - 2015-08-26 20:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-08 23:02 - 2015-08-26 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-09-08 23:02 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-08 23:02 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-08 23:02 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-08 23:02 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-09-08 23:02 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-08 23:02 - 2015-08-18 03:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-08 23:02 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-08 23:02 - 2015-08-15 08:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-08 23:02 - 2015-08-15 08:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-08 23:02 - 2015-08-15 08:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-09-08 23:02 - 2015-08-15 08:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-08 23:02 - 2015-08-15 08:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-09-08 23:02 - 2015-08-15 08:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-08 23:02 - 2015-08-15 08:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-08 23:02 - 2015-08-15 08:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-08 23:02 - 2015-08-15 08:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-09-08 23:02 - 2015-08-15 08:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-08 23:02 - 2015-08-15 08:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-08 23:02 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-08 23:02 - 2015-08-15 08:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-08 23:02 - 2015-08-15 08:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-08 23:02 - 2015-08-15 08:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-09-08 23:02 - 2015-08-15 08:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-08 23:02 - 2015-08-15 08:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-09-08 23:02 - 2015-08-15 08:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-08 23:02 - 2015-08-15 07:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-08 23:02 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-08 23:02 - 2015-08-15 07:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-08 23:02 - 2015-08-15 07:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-08 23:02 - 2015-08-15 07:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-08 23:02 - 2015-08-15 07:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-08 23:02 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-08 23:02 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-09-08 23:02 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-09-08 23:02 - 2015-08-15 07:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-08 23:02 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-09-08 23:02 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-09-08 23:02 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-08 23:02 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-09-08 23:02 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-09-08 23:02 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-09-08 23:02 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-08 23:02 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-09-08 23:02 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-09-08 23:02 - 2015-08-15 07:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-08 23:02 - 2015-08-15 07:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-08 23:02 - 2015-08-15 07:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-08 23:02 - 2015-08-15 07:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-08 23:02 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-09-08 23:02 - 2015-08-15 07:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-08 23:02 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-08 23:02 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-09-08 23:02 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-09-08 23:02 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-09-08 23:02 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-08 23:02 - 2015-08-15 07:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-08 23:02 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-08 23:02 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-08 23:02 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-08 23:02 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-09-08 23:02 - 2015-08-15 06:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-08 23:02 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-08 23:02 - 2015-08-15 06:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-08 23:02 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-08 23:02 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-08 23:02 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-08 23:02 - 2015-08-05 19:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-08 23:02 - 2015-08-05 19:56 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-09-08 23:02 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-08 23:02 - 2015-08-04 20:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-08 23:02 - 2015-08-04 20:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-08 23:02 - 2015-08-04 19:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-09-08 23:02 - 2015-08-04 19:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-08 23:02 - 2015-08-04 19:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-08 23:02 - 2015-08-04 19:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-09-08 23:02 - 2015-08-04 19:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-09-08 23:02 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-08 23:02 - 2015-08-04 18:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-09-08 23:02 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-08 23:02 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-09-08 23:02 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-09-08 23:02 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-08 23:02 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-09-08 23:02 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-09-08 23:02 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-09-08 23:02 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-09-08 23:02 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-09-08 23:02 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-09-08 23:02 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-09-08 23:02 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-09-08 23:02 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-09-08 23:02 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-09-08 23:02 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-09-08 23:02 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-08 23:02 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-09-08 23:02 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-09-08 23:02 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-09-08 23:02 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-09-08 23:02 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-09-08 23:02 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-09-08 23:02 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-09-08 23:02 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-09-08 23:02 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-09-08 23:02 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-08 23:02 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-09-08 23:02 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-09-08 23:02 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-09-08 23:02 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-09-08 23:02 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-09-08 23:02 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-08 23:02 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-08 23:02 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-08 23:02 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-09-08 23:02 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-08 23:02 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-08 23:02 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-09-08 23:02 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-09-08 23:02 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-08 23:02 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-08 23:02 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-08 23:02 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-08 21:30 - 2015-09-08 21:30 - 00063366 _____ C:\ComboFix.txt
2015-09-08 21:19 - 2015-09-08 21:30 - 00000000 ____D C:\Qoobox
2015-09-08 21:19 - 2015-09-08 21:27 - 00000000 ____D C:\Windows\erdnt
2015-09-08 21:19 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-09-08 21:19 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-09-08 21:19 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-09-08 21:19 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-09-08 21:16 - 2015-09-08 21:16 - 05635119 ____R (Swearware) C:\Users\darkrider84\Desktop\ComboFix.exe
2015-09-08 18:00 - 2015-09-08 18:00 - 00000000 ___RD C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-08 08:03 - 2015-09-08 21:48 - 00000000 ____D C:\Program Files\MiniTool Partition Wizard Free 9.1
2015-09-08 08:03 - 2015-09-08 08:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Free 9.1
2015-09-08 07:48 - 2015-09-08 07:48 - 00000000 ____D C:\Users\darkrider84\.dvdcss
2015-09-08 07:47 - 2015-09-08 07:47 - 00000000 ____D C:\ProgramData\PMS
2015-09-08 07:47 - 2015-09-08 07:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS3 Media Server
2015-09-08 07:46 - 2015-09-08 07:46 - 00000000 ____D C:\Program Files (x86)\PS3 Media Server
2015-09-07 22:34 - 2015-09-07 22:34 - 00000000 ____D C:\Program Files (x86)\MBAR
2015-09-07 18:34 - 2015-09-07 18:34 - 00000000 ____D C:\Program Files (x86)\Seagate
2015-09-07 07:27 - 2015-09-07 07:27 - 00096990 _____ C:\SfcDetails.txt
2015-09-07 03:50 - 2015-09-07 03:50 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-09-07 03:50 - 2015-09-07 03:50 - 00000000 ____D C:\Program Files\Realtek
2015-09-07 03:50 - 2015-07-07 19:13 - 04514008 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-09-07 03:50 - 2015-07-07 15:54 - 35222128 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-09-07 03:50 - 2015-07-06 16:05 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-09-07 03:50 - 2015-07-01 18:18 - 01749208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-09-07 03:50 - 2015-06-30 16:04 - 00184688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-09-07 03:50 - 2015-06-26 20:10 - 01310936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-09-07 03:50 - 2015-06-25 15:21 - 01949952 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2015-09-07 03:50 - 2015-06-25 15:21 - 01718528 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2015-09-07 03:50 - 2015-06-22 14:43 - 02702552 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-09-07 03:50 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-09-07 03:50 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-09-07 03:50 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-09-07 03:50 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-09-07 03:50 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-09-07 03:50 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2015-09-07 03:50 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2015-09-07 03:50 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-09-07 03:50 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-09-07 03:50 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-09-07 03:50 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-09-07 03:50 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-09-07 03:50 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-09-07 03:50 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-09-07 03:50 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-09-07 03:50 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-09-07 03:50 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-09-07 03:50 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2015-09-07 03:44 - 2015-09-07 03:44 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-07 03:44 - 2015-06-04 10:50 - 00600872 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2015-09-07 02:34 - 2015-09-07 02:34 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-09-07 02:27 - 2014-08-11 14:29 - 00019896 _____ (Mozilla Foundation) C:\Windows\SysWOW64\xpcom.dll
2015-09-07 02:20 - 2015-09-07 02:20 - 10613624 _____ C:\Users\darkrider84\Firefox 40.0.3 (x86 de)lz - 2015-09-07.pcv
2015-09-07 02:17 - 2015-09-07 02:17 - 18772889 _____ C:\Users\darkrider84\Firefox 39.0.3 (x86 de) - 2015-09-07.pcv
2015-09-07 02:17 - 2015-09-07 02:17 - 14834843 _____ C:\Users\darkrider84\Firefox 39.0.3 (x86 de) dev - 2015-09-07.pcv
2015-09-07 02:16 - 2015-09-07 02:16 - 00001027 _____ C:\Users\Public\Desktop\MozBackup.lnk
2015-09-07 02:16 - 2015-09-07 02:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2015-09-06 20:19 - 2015-09-06 20:19 - 00000963 _____ C:\Users\Public\Desktop\Steam.lnk
2015-09-06 20:19 - 2015-09-06 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-06 19:42 - 2015-09-06 19:42 - 00002446 _____ C:\Users\darkrider84\Desktop\Sicherer Zahlungsverkehr.lnk
2015-09-06 19:41 - 2015-09-06 19:41 - 00002140 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2015-09-06 19:41 - 2015-09-06 19:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2015-09-06 19:40 - 2015-07-04 02:18 - 00227000 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2015-09-06 19:40 - 2015-06-30 01:05 - 00931000 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-09-06 19:40 - 2015-06-30 01:05 - 00171192 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-09-06 10:58 - 2015-09-06 11:00 - 00000000 ____D C:\Users\MIB\AppData\Local\Soccer Manager 2015
2015-09-06 10:56 - 2015-09-06 10:56 - 00000000 ___RD C:\Users\MIB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-06 10:56 - 2015-09-06 10:56 - 00000000 ____D C:\Users\MIB\AppData\Local\Ubisoft Game Launcher
2015-09-06 06:41 - 2015-09-08 21:53 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\VMware
2015-09-06 06:41 - 2015-09-08 21:52 - 00000000 ____D C:\Users\darkrider84\AppData\Local\VMware
2015-09-06 06:40 - 2015-08-14 14:03 - 00934080 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2015-09-06 06:40 - 2015-08-14 14:03 - 00391872 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2015-09-06 06:40 - 2015-08-14 14:03 - 00358080 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2015-09-06 06:40 - 2015-08-14 14:03 - 00066752 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2015-09-06 06:40 - 2015-08-14 14:03 - 00033472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys
2015-09-06 06:40 - 2015-08-14 13:43 - 00026816 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2015-09-06 06:40 - 2015-08-11 19:27 - 00057536 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2015-09-06 06:40 - 2015-08-04 01:10 - 00075512 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2015-09-06 06:40 - 2015-08-04 01:10 - 00068288 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2015-09-06 06:40 - 2015-08-04 01:10 - 00064192 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2015-09-06 06:39 - 2015-09-11 07:24 - 00000000 ____D C:\ProgramData\VMware
2015-09-06 06:39 - 2015-09-06 06:39 - 00001188 _____ C:\Users\Public\Desktop\VMware Workstation 12 Player.lnk
2015-09-06 06:39 - 2015-09-06 06:39 - 00000000 ____D C:\Program Files\Common Files\VMware
2015-09-06 06:39 - 2015-09-06 06:39 - 00000000 ____D C:\Program Files (x86)\VMware
2015-09-06 03:13 - 2015-09-06 03:13 - 00001264 _____ C:\Users\darkrider84\Desktop\Revo Uninstaller.lnk
2015-09-06 03:13 - 2015-09-06 03:13 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-09-06 03:07 - 2015-09-06 03:07 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\dlg
2015-09-06 03:06 - 2015-09-06 03:06 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Freetec
2015-09-06 03:00 - 2015-09-06 03:00 - 00000000 ____D C:\Program Files\BeSecure
2015-09-06 03:00 - 2013-12-02 21:01 - 00035376 _____ (Basil Projects) C:\Windows\system32\Drivers\WinDivert64.sys
2015-09-06 02:59 - 2015-09-06 02:59 - 00000000 ____D C:\Users\darkrider84\AppData\Local\InfiniteCrisis
2015-09-06 02:36 - 2015-09-08 08:10 - 00000000 ____D C:\Program Files (x86)\ChrisPC VideoTube Downloader Pro
2015-09-06 02:15 - 2015-09-06 03:01 - 00000000 ____D C:\ProgramData\Freemake
2015-09-06 02:15 - 2015-09-06 03:01 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-09-06 02:15 - 2015-09-06 02:15 - 00000000 ____D C:\Program Files\WinPcap
2015-09-06 02:06 - 2015-09-06 02:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChrisPC Free VideoTube Downloader
2015-09-05 12:14 - 2015-09-05 12:14 - 00000000 ___RD C:\Users\Sgt Napoleon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-03 02:22 - 2015-09-03 02:22 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Origin
2015-09-02 20:32 - 2015-09-02 20:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Gas Powered Games
2015-09-02 16:30 - 2015-09-02 16:30 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Gas Powered Games
2015-09-02 04:42 - 2015-09-02 04:42 - 00000000 ____D C:\Program Files (x86)\DVD Shrink
2015-09-02 03:29 - 2015-09-02 05:00 - 00000000 ____D C:\ProgramData\DVD Shrink
2015-09-02 02:26 - 2015-09-02 02:26 - 00076152 _____ C:\Windows\system32\PnkBstrA.exe
2015-09-01 23:48 - 2015-09-04 19:32 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-09-01 23:48 - 2015-09-01 23:48 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2015-09-01 17:30 - 2015-09-01 21:13 - 00000000 ____D C:\Users\darkrider84\AppData\Local\EA Games
2015-09-01 17:11 - 2015-09-08 18:47 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Daedalic Entertainment
2015-09-01 15:50 - 2015-09-01 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-01 01:15 - 2015-08-25 16:08 - 00574072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-09-01 01:14 - 2015-08-25 20:46 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 37819184 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 16637336 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 14635792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 13661160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 12185152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 11089200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-01 01:14 - 2015-08-25 20:46 - 02940720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 02627704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435582.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01558648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435582.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01106672 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01075320 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 01064752 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00945456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00944736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00512904 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00421544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00408184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00364336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-09-01 01:14 - 2015-08-25 20:46 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-08-31 18:33 - 2015-08-31 18:34 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Foxit Software
2015-08-31 18:33 - 2015-08-31 18:33 - 00001351 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2015-08-31 18:33 - 2015-08-31 18:33 - 00000000 ____D C:\Users\Public\Foxit Software
2015-08-31 18:33 - 2015-08-31 18:33 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2015-08-31 18:29 - 2015-08-31 18:29 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PDF24
2015-08-31 18:12 - 2015-08-31 18:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
2015-08-31 18:12 - 2015-08-31 18:12 - 00000000 ____D C:\Program Files (x86)\MakeMKV
2015-08-31 16:40 - 2015-08-31 21:59 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\FreeFileSync
2015-08-31 16:39 - 2015-08-31 16:39 - 00000932 _____ C:\Users\Public\Desktop\FreeFileSync.lnk
2015-08-31 16:39 - 2015-08-31 16:39 - 00000922 _____ C:\Users\Public\Desktop\RealtimeSync.lnk
2015-08-31 16:39 - 2015-08-31 16:39 - 00000000 ____D C:\Program Files\FreeFileSync
2015-08-31 02:42 - 2015-08-31 00:00 - 00191584 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-08-31 02:42 - 2015-08-31 00:00 - 00191584 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-08-31 02:36 - 2015-08-31 02:43 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Daedalic Entertainment
2015-08-31 02:32 - 2015-08-31 02:43 - 00000000 ____D C:\Users\Sgt Napoleon\.oracle_jre_usage
2015-08-31 02:32 - 2015-08-31 02:32 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\Sun
2015-08-31 00:01 - 2015-08-31 00:00 - 00274016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-08-31 00:00 - 2015-08-31 00:01 - 00000000 ____D C:\Users\darkrider84\.oracle_jre_usage
2015-08-31 00:00 - 2015-08-31 00:00 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Sun
2015-08-30 20:13 - 2015-08-30 20:13 - 00000124 _____ C:\Users\Public\Desktop\WATCH_DOGS.url
2015-08-30 19:35 - 2015-08-30 19:35 - 00000000 ____D C:\Program Files\Ubisoft
2015-08-30 19:33 - 2015-08-30 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\New Technology Studio
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV
2015-08-22 22:23 - 2015-08-22 22:23 - 00000000 ____D C:\Users\darkrider84\AppData\Local\New Technology Studio
2015-08-22 22:02 - 2015-08-22 22:02 - 00000048 _____ C:\Windows\5F1EFF43B629F8D5.log
2015-08-22 20:48 - 2015-08-22 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LCPD First Response
2015-08-22 20:45 - 2015-08-22 20:45 - 00001338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2015-08-22 19:27 - 2015-09-01 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-22 17:34 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-08-22 17:34 - 2015-08-11 06:52 - 00050472 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-08-22 08:15 - 2015-08-22 08:15 - 00000000 ____D C:\Users\MIB\AppData\Local\Daybreak Game Company
2015-08-22 08:04 - 2015-08-22 08:05 - 00000000 ____D C:\Users\MIB\AppData\Local\PAYDAY 2
2015-08-22 07:01 - 2015-08-23 10:28 - 00000000 ____D C:\Users\MIB\AppData\Local\LogMeIn Hamachi
2015-08-22 07:01 - 2015-08-22 07:01 - 00000000 ____D C:\Users\MIB\AppData\Local\LogMeIn
2015-08-21 21:24 - 2015-09-03 15:12 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\LogMeIn Hamachi
2015-08-21 21:24 - 2015-08-21 21:24 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\LogMeIn
2015-08-21 20:34 - 2015-08-21 20:34 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PAYDAY 2
2015-08-21 13:35 - 2015-08-31 02:42 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-21 00:18 - 2015-08-21 00:18 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Unity
2015-08-21 00:18 - 2015-08-21 00:18 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Unity
2015-08-20 21:19 - 2015-09-07 02:36 - 00000000 ____D C:\Users\darkrider84\AppData\Local\LogMeIn Hamachi
2015-08-20 21:19 - 2015-08-20 21:19 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-08-20 21:19 - 2015-08-20 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-08-20 21:19 - 2015-08-20 21:19 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-08-20 20:17 - 2015-08-20 21:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Tunngle
2015-08-20 20:17 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys
2015-08-20 20:10 - 2015-08-20 20:10 - 00000000 ____D C:\Users\darkrider84\AppData\Local\LogMeIn
2015-08-20 20:10 - 2015-08-20 20:10 - 00000000 ____D C:\ProgramData\LogMeIn
2015-08-20 16:18 - 2015-08-20 16:18 - 00000979 _____ C:\Users\Public\Desktop\Mp3tag.lnk
2015-08-20 14:18 - 2015-08-20 14:18 - 00001827 _____ C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-08-19 22:06 - 2015-08-19 22:06 - 00000118 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-19 20:44 - 2015-08-19 21:01 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-19 20:43 - 2015-09-06 19:41 - 00000000 ____D C:\Users\TEMP
2015-08-19 19:48 - 2015-08-19 19:49 - 00000061 _____ C:\Users\darkrider84\Desktop\test.bat
2015-08-19 12:21 - 2015-08-19 12:21 - 00000000 ____H C:\Users\Sgt Napoleon\AppData\Local\BIT3930.tmp
2015-08-19 12:20 - 2015-08-19 12:20 - 00000000 _____ C:\Users\Sgt Napoleon\AppData\Local\{A4A7BF7B-77D5-48C1-9476-0BC3EA810551}
2015-08-19 12:13 - 2015-08-19 12:13 - 00002669 _____ C:\Users\Public\Desktop\MSI(R) Intel(R) Extreme Tuning Utility.lnk
2015-08-19 12:13 - 2015-08-19 12:13 - 00000000 ____D C:\Windows\System32\Tasks\Intel
2015-08-19 12:13 - 2015-08-19 12:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI(R) Intel(R) Extreme Tuning Utility
2015-08-17 22:46 - 2010-04-02 20:04 - 02650112 _____ C:\Users\darkrider84\Desktop\SteamMover.exe
2015-08-16 11:18 - 2015-08-16 11:18 - 00000000 ____D C:\ProgramData\Nexon
2015-08-16 11:06 - 2015-08-16 11:16 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NXEPassportClient
2015-08-16 11:01 - 2015-08-19 10:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2015-08-16 11:00 - 2015-08-16 11:00 - 00000000 ____D C:\Users\darkrider84\Neuer Ordner
2015-08-15 10:30 - 2015-08-15 10:30 - 00001192 _____ C:\Users\Public\Desktop\3DMark.lnk
2015-08-15 10:29 - 2015-08-15 10:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2015-08-15 10:29 - 2015-08-15 10:29 - 00000000 ____D C:\Program Files\Futuremark
2015-08-14 13:43 - 2015-08-14 13:43 - 00081088 _____ (VMware, Inc.) C:\Windows\system32\vmnetbridge.dll
2015-08-14 13:43 - 2015-08-14 13:43 - 00049856 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll
2015-08-14 13:43 - 2015-08-14 13:43 - 00048832 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetbridge.sys
2015-08-14 13:43 - 2015-08-14 13:43 - 00028864 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetadapter.sys
2015-08-14 13:43 - 2015-08-14 13:43 - 00027328 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnet.sys
2015-08-14 07:22 - 2015-08-30 21:31 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-08-14 07:22 - 2015-08-27 02:37 - 01423120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-08-14 07:22 - 2015-08-27 02:37 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-08-14 07:22 - 2015-08-27 02:36 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-08-14 07:22 - 2015-08-27 02:36 - 01710568 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-08-14 07:22 - 2015-08-14 07:22 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NVIDIA
2015-08-14 07:22 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-08-14 07:19 - 2015-09-01 01:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-14 07:16 - 2015-08-07 13:06 - 01898104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435560.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435560.dll
2015-08-14 07:16 - 2015-08-07 13:06 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-08-14 07:16 - 2015-08-07 13:06 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-08-14 04:45 - 2015-08-14 04:50 - 00000000 ____D C:\ProgramData\TrackMania
2015-08-13 21:30 - 2015-08-13 21:32 - 00000000 ____D C:\ProgramData\Killer
2015-08-13 21:30 - 2015-08-13 21:30 - 00002785 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk
2015-08-13 21:30 - 2015-08-13 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
2015-08-13 21:30 - 2015-08-13 21:30 - 00000000 ____D C:\Program Files\Killer Networking
2015-08-13 21:30 - 2015-05-29 13:44 - 02311680 _____ (Qualcomm Atheros, Inc.) C:\Windows\system32\Drivers\Qcamain7x64.sys
2015-08-13 21:19 - 2015-08-19 12:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2015-08-13 21:17 - 2015-08-13 21:17 - 00000000 ____D C:\Program Files (x86)\ASM106xSATA
2015-08-13 21:12 - 2015-08-13 21:12 - 00001539 _____ C:\Users\darkrider84\Desktop\FastBoot.exe - Verknüpfung.lnk
2015-08-13 20:51 - 2015-08-13 20:51 - 00043927 _____ C:\Windows\system32\energy-report.html
2015-08-13 15:44 - 2015-08-13 15:44 - 00379375 _____ (http://magiclauncher.com) C:\Users\darkrider84\Desktop\MagicLauncher_1.3.0.exe
2015-08-13 11:05 - 2015-08-13 11:05 - 00000184 _____ C:\Users\darkrider84\Desktop\GTA modden.ucb
2015-08-13 05:02 - 2015-08-31 00:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-12 19:22 - 2015-08-12 19:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 19:22 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 19:22 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 17:33 - 2015-08-12 17:33 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-12 17:33 - 2015-08-12 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-12 14:06 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-12 14:06 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-12 14:06 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-12 14:06 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-12 14:06 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-12 14:06 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-12 14:06 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-12 14:06 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-12 14:06 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-12 14:06 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-12 14:06 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-08-12 14:05 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-12 14:05 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-12 14:05 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-12 14:05 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-12 14:05 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-12 14:05 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-12 14:05 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-12 14:05 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-12 14:05 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-12 14:05 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-12 14:05 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-12 14:05 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-11 08:07 - 2015-03-18 10:56 - 00000000 ____D C:\FRST
2015-09-11 08:07 - 2015-03-18 10:54 - 02190848 _____ (Farbar) C:\Users\darkrider84\Desktop\FRST64.exe
2015-09-11 08:06 - 2015-02-26 22:11 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\NetSpeedMonitor
2015-09-11 07:56 - 2015-02-26 22:21 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Skype
2015-09-11 07:48 - 2015-03-24 10:05 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2015-09-11 07:48 - 2015-02-26 21:18 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-11 07:44 - 2015-06-13 03:32 - 00001224 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-09-11 07:39 - 2015-03-24 01:38 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-09-11 07:36 - 2015-03-06 19:36 - 00000911 _____ C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {C11D8B02-EE30-495C-8983-4E88B27B0910}.job
2015-09-11 07:30 - 2011-04-12 09:43 - 00703644 _____ C:\Windows\system32\perfh007.dat
2015-09-11 07:30 - 2011-04-12 09:43 - 00151550 _____ C:\Windows\system32\perfc007.dat
2015-09-11 07:30 - 2009-07-14 07:13 - 01634064 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-11 07:27 - 2015-02-26 20:25 - 01515916 _____ C:\Windows\WindowsUpdate.log
2015-09-11 07:26 - 2015-06-13 03:35 - 00000000 ___RD C:\Users\darkrider84\Dropbox
2015-09-11 07:26 - 2015-06-13 03:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Dropbox
2015-09-11 07:25 - 2015-05-20 15:03 - 00000000 ____D C:\Users\darkrider84\.rainlendar2
2015-09-11 07:25 - 2015-02-26 22:28 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-11 07:24 - 2015-07-08 13:06 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-11 07:24 - 2015-06-13 03:32 - 00001220 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-09-11 07:24 - 2015-02-26 21:17 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-11 07:24 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-11 07:24 - 2009-07-14 06:51 - 00113597 _____ C:\Windows\setupact.log
2015-09-11 02:36 - 2015-07-10 15:26 - 00003046 _____ C:\Windows\System32\Tasks\MSIAfterburner
2015-09-11 02:36 - 2015-02-26 21:01 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\KeePass
2015-09-11 02:36 - 2009-07-14 06:45 - 00022256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-11 02:36 - 2009-07-14 06:45 - 00022256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-11 02:35 - 2015-04-08 21:13 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\NetSpeedMonitor
2015-09-11 02:22 - 2015-03-01 20:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-11 00:17 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-09-10 21:45 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-09-10 21:07 - 2015-03-27 20:32 - 00000000 ____D C:\Users\darkrider84\AppData\Local\CrashDumps
2015-09-10 20:10 - 2015-03-29 20:29 - 00000000 ____D C:\ProgramData\USBLogon
2015-09-10 18:08 - 2015-03-31 17:40 - 00000008 __RSH C:\Users\Sgt Napoleon\ntuser.pol
2015-09-10 18:08 - 2015-03-31 16:40 - 00000000 ____D C:\Users\Sgt Napoleon
2015-09-10 16:42 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2015-09-10 15:25 - 2015-02-27 01:54 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\SoftGrid Client
2015-09-10 13:55 - 2015-04-14 02:05 - 00000080 _____ C:\Users\darkrider84\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-09-10 13:54 - 2015-02-27 19:22 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\vlc
2015-09-10 11:51 - 2010-11-21 05:47 - 00395024 _____ C:\Windows\PFRO.log
2015-09-09 21:24 - 2015-07-09 05:30 - 00000000 ____D C:\Program Files\HWiNFO64
2015-09-09 20:54 - 2015-03-18 21:22 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-09 20:42 - 2015-03-12 21:31 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-09 20:41 - 2015-03-12 21:31 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-09-09 20:23 - 2015-02-26 20:25 - 00000000 ____D C:\Users\darkrider84
2015-09-09 20:18 - 2015-05-19 23:10 - 00000000 ____D C:\AdwCleaner
2015-09-09 02:02 - 2009-07-14 06:45 - 00571088 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-09 02:01 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 02:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-08 22:00 - 2015-02-28 11:15 - 00000000 ____D C:\Users\darkrider84\.VirtualBox
2015-09-08 21:32 - 2015-05-02 02:02 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2015-09-08 21:26 - 2015-05-02 02:01 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2015-09-08 21:26 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-09-08 21:24 - 2009-07-14 04:34 - 90439680 _____ C:\Windows\system32\config\SOFTWARE.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 44302336 _____ C:\Windows\system32\config\COMPONENTS.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 30932992 _____ C:\Windows\system32\config\SYSTEM.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 02621440 _____ C:\Windows\system32\config\DEFAULT.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2015-09-08 21:24 - 2009-07-14 04:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2015-09-08 08:13 - 2015-07-10 19:47 - 00000000 ____D C:\Program Files (x86)\MiniTool Partition Wizard Free 9.0
2015-09-08 08:09 - 2015-02-26 21:17 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-08 08:04 - 2015-02-26 20:49 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-07 07:36 - 2015-05-07 21:52 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2015-09-07 03:55 - 2015-02-26 20:49 - 00000000 ____D C:\Program Files\Intel
2015-09-07 03:55 - 2015-02-26 20:35 - 00206568 _____ C:\Windows\DPINST.LOG
2015-09-07 03:51 - 2015-02-26 20:49 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-09-07 03:50 - 2015-02-26 20:30 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-07 02:34 - 2015-03-03 18:56 - 00000000 ____D C:\Program Files\CCleaner
2015-09-07 02:16 - 2015-03-15 02:58 - 00000000 ____D C:\Program Files (x86)\MozBackup
2015-09-07 00:11 - 2015-02-27 19:39 - 00000000 ____D C:\MSI
2015-09-06 20:08 - 2015-02-26 22:26 - 00000965 _____ C:\Users\darkrider84\Desktop\TeraCopy.lnk
2015-09-06 19:47 - 2015-03-02 14:59 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-06 19:41 - 2015-03-24 01:38 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-09-06 17:09 - 2015-06-06 21:30 - 00000000 ____D C:\Users\MIB\AppData\Roaming\NetSpeedMonitor
2015-09-06 17:09 - 2015-03-28 14:15 - 00000000 ____D C:\Users\MIB\AppData\Roaming\TS3Client
2015-09-06 11:26 - 2015-03-29 12:50 - 00000000 ____D C:\Users\MIB\AppData\Local\Arma 3
2015-09-06 07:20 - 2015-03-04 00:47 - 00000000 ____D C:\ProgramData\Intel
2015-09-06 07:10 - 2015-07-08 04:03 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Sony
2015-09-06 07:10 - 2015-02-26 22:14 - 00000000 ____D C:\Program Files (x86)\WhatPulse2
2015-09-06 06:39 - 2015-02-26 20:28 - 01653956 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-09-06 02:36 - 2015-05-02 22:55 - 00000000 ____D C:\Program Files (x86)\FFMPEG Addon
2015-09-06 02:06 - 2015-05-02 22:54 - 00001197 _____ C:\Users\darkrider84\Desktop\ChrisPC Free VideoTube Downloader.lnk
2015-09-06 02:06 - 2015-05-02 22:54 - 00000000 ____D C:\Program Files (x86)\ChrisPC Free VideoTube Downloader
2015-09-05 16:06 - 2015-04-14 02:05 - 00000000 ____D C:\Program Files\Rockstar Games
2015-09-05 16:06 - 2015-04-14 02:05 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-09-05 16:00 - 2015-05-07 23:00 - 00003897 _____ C:\Users\darkrider84\Desktop\online.bat
2015-09-04 19:32 - 2015-02-27 00:36 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-09-04 18:01 - 2015-02-27 09:45 - 00000000 ____D C:\ProgramData\Origin
2015-09-04 14:08 - 2015-06-17 20:43 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Roaming\Skype
2015-09-03 23:32 - 2015-04-11 01:28 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\CrashDumps
2015-09-03 15:45 - 2015-03-08 01:51 - 00000000 ____D C:\Windows\pss
2015-09-03 10:48 - 2015-02-27 08:02 - 00813782 _____ C:\Windows\DirectX.log
2015-09-03 07:48 - 2015-03-31 16:41 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\VirtualStore
2015-09-02 22:37 - 2015-02-27 09:44 - 00000000 ____D C:\Program Files (x86)\Origin
2015-09-02 20:21 - 2015-02-27 09:46 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-09-02 13:31 - 2015-05-17 01:17 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2015-09-02 02:16 - 2015-02-27 10:38 - 00000000 ____D C:\Users\darkrider84\AppData\Local\PunkBuster
2015-09-02 00:42 - 2015-06-07 17:31 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\dvdcss
2015-09-01 21:13 - 2015-02-27 10:29 - 00000000 ____D C:\ProgramData\Solidshield
2015-09-01 15:53 - 2015-02-27 09:45 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Origin
2015-09-01 15:51 - 2015-02-26 22:21 - 00000000 ____D C:\ProgramData\Skype
2015-09-01 15:50 - 2015-02-26 22:21 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-01 15:50 - 2015-02-26 22:21 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-01 01:15 - 2015-07-08 13:05 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-01 01:15 - 2015-02-26 21:10 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-31 23:24 - 2015-08-09 20:00 - 00000000 ____D C:\Program Files\Tracker Software
2015-08-31 18:12 - 2015-02-28 15:02 - 00000991 _____ C:\Users\darkrider84\Desktop\MakeMKV.lnk
2015-08-31 17:30 - 2015-03-29 08:44 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Spotify
2015-08-31 17:30 - 2015-03-29 08:44 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Spotify
2015-08-31 17:29 - 2015-03-07 12:56 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Epson
2015-08-31 17:29 - 2015-03-04 15:13 - 00000000 ____D C:\ProgramData\EPSON
2015-08-31 00:42 - 2015-02-26 21:18 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-31 00:42 - 2015-02-26 21:18 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-31 00:05 - 2015-02-26 23:38 - 00000000 ____D C:\ProgramData\Oracle
2015-08-31 00:01 - 2015-02-26 23:38 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-08-31 00:01 - 2015-02-26 23:38 - 00000000 ____D C:\Program Files\Java
2015-08-30 22:35 - 2015-05-09 15:43 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Ubisoft Game Launcher
2015-08-30 19:33 - 2015-06-13 03:32 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-08-25 20:46 - 2015-07-08 13:05 - 00033025 _____ C:\Windows\system32\nvinfo.pb
2015-08-25 20:46 - 2015-07-08 13:03 - 17082392 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 15512888 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 12515016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 03527696 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-08-25 20:46 - 2015-07-08 13:02 - 03112904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 03496752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-08-25 16:24 - 2015-07-08 13:05 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-08-25 16:24 - 2015-07-08 13:05 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-08-25 14:35 - 2015-07-08 13:05 - 05165808 _____ C:\Windows\system32\nvcoproc.bin
2015-08-24 05:36 - 2015-07-14 02:16 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\Glyph
2015-08-24 04:38 - 2015-07-14 02:16 - 00000000 ____D C:\Program Files (x86)\Glyph
2015-08-23 00:45 - 2015-07-08 13:07 - 00000000 ____D C:\Users\darkrider84\AppData\Local\NVIDIA Corporation
2015-08-22 21:46 - 2015-05-20 00:38 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2015-08-22 20:45 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-08-22 07:01 - 2015-07-12 08:33 - 00000000 ____D C:\Users\MIB\AppData\Local\NVIDIA Corporation
2015-08-22 07:01 - 2015-03-28 14:11 - 00170048 _____ C:\Users\MIB\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-22 07:01 - 2015-03-28 14:04 - 00007144 __RSH C:\Users\MIB\ntuser.pol
2015-08-22 07:01 - 2015-03-28 14:04 - 00000000 ____D C:\Users\MIB
2015-08-21 21:24 - 2015-03-31 16:41 - 00170048 _____ C:\Users\Sgt Napoleon\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-21 17:26 - 2015-02-26 20:31 - 00170048 _____ C:\Users\darkrider84\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-20 21:24 - 2015-02-27 00:12 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\.minecraft
2015-08-20 19:26 - 2015-03-19 19:14 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Mp3tag
2015-08-20 19:19 - 2015-03-18 11:57 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\Audacity
2015-08-20 16:18 - 2015-03-04 01:12 - 00000000 ____D C:\Program Files (x86)\Mp3tag
2015-08-20 14:18 - 2015-03-29 08:44 - 00001841 _____ C:\Users\darkrider84\Desktop\Spotify.lnk
2015-08-20 00:43 - 2015-02-27 09:03 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\TS3Client
2015-08-19 13:51 - 2015-08-07 05:50 - 01065984 _____ C:\Users\darkrider84\AppData\Local\file__0.localstorage
2015-08-19 12:13 - 2015-05-04 22:13 - 00000000 ____D C:\uninstall
2015-08-19 12:13 - 2015-02-27 17:47 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-19 10:48 - 2015-02-26 23:41 - 00000000 ____D C:\Spiele
2015-08-18 12:38 - 2015-06-29 14:30 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Intel_Corporation
2015-08-18 11:19 - 2015-03-02 22:13 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Arma 3
2015-08-16 17:14 - 2015-03-04 17:28 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\OBS
2015-08-16 13:18 - 2015-03-04 02:15 - 00000000 ____D C:\Program Files\OBS
2015-08-16 11:18 - 2015-02-28 17:26 - 00000000 ____D C:\ProgramData\NexonEU
2015-08-15 20:47 - 2015-02-27 08:14 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\ftblauncher
2015-08-15 20:47 - 2015-02-27 08:14 - 00000000 ____D C:\Users\darkrider84\AppData\Local\ftblauncher
2015-08-15 20:47 - 2015-02-27 00:08 - 07552083 _____ () C:\Users\darkrider84\Desktop\FTB_Launcher.exe
2015-08-15 11:17 - 2015-05-02 00:54 - 00000022 _____ C:\Windows\GPU-Z.INI
2015-08-15 11:15 - 2015-05-04 23:03 - 00000000 ____D C:\Program Files (x86)\Futuremark
2015-08-15 10:30 - 2015-05-02 00:53 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Futuremark
2015-08-15 10:19 - 2015-07-08 13:31 - 00000000 ____D C:\Program Files (x86)\3DMark
2015-08-15 02:15 - 2015-07-10 00:34 - 00000000 ____D C:\Users\Sgt Napoleon\AppData\Local\NVIDIA Corporation
2015-08-14 20:39 - 2015-03-04 00:43 - 00007602 _____ C:\Users\darkrider84\AppData\Local\Resmon.ResmonCfg
2015-08-14 07:25 - 2015-04-12 08:22 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2015-08-14 07:25 - 2015-03-02 15:09 - 00000000 ____D C:\Users\darkrider84\AppData\Roaming\TeamViewer
2015-08-14 07:22 - 2015-07-08 13:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-13 21:29 - 2015-02-26 20:29 - 00000000 ____D C:\ProgramData\Downloaded Installations
2015-08-13 21:23 - 2015-02-26 20:53 - 00000159 ___RH C:\Windows\ctfile.rfc
2015-08-13 21:23 - 2015-02-26 20:52 - 00000181 _____ C:\SBC2setup.log
2015-08-13 21:17 - 2015-02-26 20:53 - 00000000 ____D C:\Program Files (x86)\ASM104xUSB3
2015-08-13 21:17 - 2015-02-26 20:49 - 00003121 _____ C:\RHDSetup.log
2015-08-13 20:36 - 2015-07-14 19:49 - 00000000 ____D C:\Users\darkrider84\AppData\Local\Glyph
2015-08-12 19:23 - 2015-02-28 12:15 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-12 19:23 - 2015-02-28 12:15 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-12 19:22 - 2015-02-26 22:59 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 19:22 - 2015-02-26 22:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\Sgt Napoleon\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\MIB\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\darkrider84\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-05-03 16:19 - 00001059 _____ C:\Users\Administrator\Desktop\Notepad++.lnk
2015-08-12 17:33 - 2015-03-16 02:57 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-08-12 11:22 - 2015-03-01 20:02 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-12 11:22 - 2015-03-01 20:02 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-12 11:22 - 2015-03-01 20:02 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-03-19 15:25 - 2015-03-09 15:48 - 2508440 _____ (Sysinternals - www.sysinternals.com) C:\Program Files (x86)\procexp.exe
2015-03-22 09:38 - 2015-03-22 09:38 - 0000046 _____ () C:\Users\darkrider84\AppData\Roaming\Camdata.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0000408 _____ () C:\Users\darkrider84\AppData\Roaming\CamLayout.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0000408 _____ () C:\Users\darkrider84\AppData\Roaming\CamShapes.ini
2015-03-22 09:38 - 2015-03-22 09:38 - 0004535 _____ () C:\Users\darkrider84\AppData\Roaming\CamStudio.cfg
2015-02-26 20:36 - 2015-02-26 20:36 - 0000000 _____ () C:\Users\darkrider84\AppData\Roaming\gdfw.log
2015-02-26 20:36 - 2015-03-24 00:32 - 0001558 _____ () C:\Users\darkrider84\AppData\Roaming\gdscan.log
2015-02-27 00:12 - 2015-08-20 21:21 - 0000542 _____ () C:\Users\darkrider84\AppData\Roaming\nativelog.txt
2015-03-03 22:49 - 2015-03-04 02:07 - 0000227 _____ () C:\Users\darkrider84\AppData\Roaming\SpotifyRecorderSettings.ini
2015-03-22 09:36 - 2015-03-22 09:36 - 0000096 _____ () C:\Users\darkrider84\AppData\Roaming\version2.xml
2015-04-17 09:29 - 2015-08-04 23:11 - 0002889 _____ () C:\Users\darkrider84\AppData\Roaming\VoiceMeeterDefault.xml
2015-05-23 02:34 - 2015-05-23 02:34 - 0003584 _____ () C:\Users\darkrider84\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-07 05:50 - 2015-08-19 13:51 - 1065984 _____ () C:\Users\darkrider84\AppData\Local\file__0.localstorage
2015-03-18 11:55 - 2015-03-18 11:55 - 0001507 _____ () C:\Users\darkrider84\AppData\Local\RecConfig.xml
2015-04-12 07:50 - 2015-04-12 07:50 - 0005849 _____ () C:\Users\darkrider84\AppData\Local\recently-used.xbel
2015-03-04 00:43 - 2015-08-14 20:39 - 0007602 _____ () C:\Users\darkrider84\AppData\Local\Resmon.ResmonCfg
2015-05-20 00:38 - 2015-05-20 00:38 - 0000085 ___SH () C:\ProgramData\.zreglib

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\darkrider84\OpenAL32.dll
C:\Users\darkrider84\Sicherung.reg
C:\Users\darkrider84\Valle gesperrt.reg
C:\Users\darkrider84\Valle normal.reg


Einige Dateien in TEMP:
====================
C:\Users\darkrider84\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9tuakl.dll
C:\Users\darkrider84\AppData\Local\Temp\Gw2.exe
C:\Users\darkrider84\AppData\Local\Temp\sqlite3.dll
C:\Users\Sgt Napoleon\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpfluwc3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-11 00:10

==================== Ende von FRST.txt ============================

Seiten brauchen lange zum Laden, Programme melden keine Verbindung, PC etwas langsam

Plagegeister aller Art und deren Bekämpfung: Seiten brauchen lange zum Laden, Programme melden keine Verbindung, PC etwas langsam