Kein Zugriff auf Anwendungen

Diyar · 07.09.2015, 21:56

Hallo sehr geehrtes Trojaner Team,

irgendwas stimmt mit meinem Rechner nicht mehr und es wird immer schlimmer. angefangen hat es damit, dass ich beim start des PC eine Fehlermeldung von Dropbox bekommen habe:
"Dropbox konmnmte nicht gestartet werden

Normalerweise weist dies auf einen Berechtiungsfehler hin..."

zudem kann ich keine Daten mehr auf CDs kopieren und brennen. weder Fotos noch Dokumente.

auch kann ich keine Bilder mehr vom Explorer laden, sei es internetexplorer oder Firefox.

als ich heute ein bild von der Fehlermeldung hochladen wollte, habe ich gemerkt, dass ich mit paint auch nichts mehr speichern kann.

zudem läuft der ganze rechner langsam und es wird vont ag zu tag schlimmer.

ich bitte um eure hilfe, denn ich weiß echt nicht mehr weiter

schrauber · 08.09.2015, 07:01

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Diyar · 08.09.2015, 11:23

FRST Logfile:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:07-09-2015
durchgeführt von Diyar (Administrator) auf DIYAR-PC (08-09-2015 12:13:13)
Gestartet von C:\Users\Diyar\Downloads
Geladene Profile: Diyar (Verfügbare Profile: Diyar & Dilan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser nicht gefunden!)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Windows\Domino.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Diyar\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Diyar\AppData\Roaming\Spotify\Spotify.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Spotify Ltd) C:\Users\Diyar\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Spotify Ltd) C:\Users\Diyar\AppData\Roaming\Spotify\Spotify.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Spotify Ltd) C:\Users\Diyar\AppData\Roaming\Spotify\Spotify.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_18_0_0_232_ActiveX.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12481128 2012-05-07] (Realtek Semiconductor)
HKLM\...\Run: [Domino] => C:\Windows\Domino.exe [49152 2006-07-04] ()
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-11] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782008 2015-08-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [62464 2015-06-18] ()
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-03] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [Dropbox Update] => C:\Users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [Spotify Web Helper] => C:\Users\Diyar\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-11] (Spotify Ltd)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [Spotify] => C:\Users\Diyar\AppData\Roaming\Spotify\Spotify.exe [7675448 2015-08-11] (Spotify Ltd)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
Startup: C:\Users\Diyar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-07-25]
ShortcutTarget: Dropbox.lnk -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6665933F-EAD5-431F-99B7-BD14C0CC04DC}: [DhcpNameServer] 134.147.32.40 134.147.222.4
Tcpip\..\Interfaces\{C4278500-9DCA-4354-BA26-8DE6ACFF7EB9}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{C77034A6-B57E-43A8-8EB4-0D03CE36B068}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{F736ADCE-68F2-4431-8F09-507797603E81}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1825211407-1677631671-286171030-1001 -> {A294E1CA-E192-4B04-BBF4-4E4AE2E68151} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1561552&CUI=UN41522059979151218&UM=1
SearchScopes: HKU\S-1-5-21-1825211407-1677631671-286171030-1001 -> {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL = 
SearchScopes: HKU\S-1-5-21-1825211407-1677631671-286171030-1001 -> ÛŸÆîZ§’2¹Þpv¨IÍá*X(Ž2s(ÛÎÀJºÔÓµ± vË°!×—(ä¼48Ð¸patm6êo^Mp`Ëõ÷_i£w˜¾!„Áû†x¢8€ÙjÀÿþ*´Ñ;áa´[¦†8*º~RÙxœòÜ8'£-)x*ä* URL = 
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-19] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-19] (Oracle Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-10-15] (DVDVideoSoft Ltd.)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-19] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-19] (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2014-12-15] (DVDVideoSoft Ltd.)
Toolbar: HKU\S-1-5-21-1825211407-1677631671-286171030-1001 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} -  Keine Datei
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} -  Keine Datei

FireFox:
========
FF ProfilePath: C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-19] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-19] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @protectdisc.com/NPPDLicenseHelper -> C:\Program Files (x86)\ProtectDisc\License Helper\NPPDLicenseHelper.dll [2008-02-22] ()
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1825211407-1677631671-286171030-1001: @acestream.net/acestreamplugin,version=2.1.5 -> C:\Users\Diyar\AppData\Roaming\ACEStream\player\npace_plugin.dll [2014-07-09] (Innovative Digital Technologies)
FF Extension: Avira Browser Safety - C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\Extensions\abs@avira.com [2015-08-12]
FF Extension: ADB Helper - C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\Extensions\adbhelper@mozilla.org [2015-07-03]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-12-28]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [2015-08-28]
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2015-07-10]
FF HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-12-28]
FF HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Diyar\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Diyar\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org [2014-09-16]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [887128 2015-07-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1213072 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [227592 2015-08-03] (Avira Operations GmbH & Co. KG)
S2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [219480 2013-07-09] (Garmin Ltd or its subsidiaries)
R2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [36456 2011-05-30] (Acer Incorporated)
R2 Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [244624 2011-04-22] (Acer Incorporated)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37176 2014-06-05] (The OpenVPN Project)
R2 RalinkRegistryWriter; C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry.exe [374112 2011-04-25] (Ralink Technology, Corp.)
R2 RalinkRegistryWriter64; C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry64.exe [451936 2011-04-25] (Ralink Technology, Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [162528 2015-07-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-07-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-03-05] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-08-23] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-02] (HTC, Corporation) [Datei ist nicht signiert]
S3 Logi_Headset_DFU; C:\Windows\System32\Drivers\lhusbdfuamd64.sys [44136 2014-12-08] (CSR plc.)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [30312 2012-03-07] (Windows (R) Win 7 DDK provider)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-08-20] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 PGRUSB; C:\Windows\System32\DRIVERS\PGRXHCI.sys [123392 2013-12-18] (Point Grey Research)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [848384 2011-07-14] (Realtek Semiconductor Corporation                           ) [Datei ist nicht signiert]
S3 RTL8192su; C:\Windows\System32\DRIVERS\RTL8192su.sys [676864 2010-03-09] (Realtek Semiconductor Corporation                           ) [Datei ist nicht signiert]
S3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [376024 2014-12-26] (Realsil Semiconductor Corporation)
S3 S3XXx64; C:\Windows\System32\DRIVERS\S3XXx64.sys [73856 2015-02-17] (Identiv)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-09-17] (Anchorfree Inc.)
S3 ZSMC301b; C:\Windows\System32\Drivers\usbVM31b.sys [1495936 2007-04-04] (Vimicro Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S1 wStLibG64; system32\drivers\wStLibG64.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-08 12:13 - 2015-09-08 12:15 - 00025273 _____ C:\Users\Diyar\Downloads\FRST.txt
2015-09-08 12:13 - 2015-09-08 12:13 - 00000000 ____D C:\FRST
2015-09-08 12:12 - 2015-09-08 12:12 - 02190336 _____ (Farbar) C:\Users\Diyar\Downloads\FRST64.exe
2015-09-07 20:08 - 2015-09-07 20:08 - 00000000 ____D C:\Users\Diyar\Desktop\Promotionunterlagen
2015-09-06 20:04 - 2015-09-06 20:04 - 00000000 _____ C:\Users\Diyar\Desktop\diya.txt
2015-09-05 15:28 - 2015-09-05 15:28 - 01162528 _____ C:\Users\Dilan\Downloads\Die Sims 3 Patch - CHIP-Installer.exe
2015-09-04 21:20 - 2015-09-04 21:20 - 00000000 ____D C:\Users\Public\cd diyar
2015-09-04 20:27 - 2015-09-04 20:36 - 00000000 ____D C:\Users\Diyar\Desktop\cd diyar
2015-09-02 17:19 - 2015-09-02 17:22 - 00000119 _____ C:\Users\Diyar\Desktop\ue boom.txt
2015-09-01 19:08 - 2015-09-02 02:53 - 00003182 _____ C:\Users\Diyar\Desktop\ronaldinh gaucho dominanz.txt
2015-08-31 21:36 - 2015-08-31 21:37 - 00000000 ____D C:\Users\Dilan\Desktop\letzte cd
2015-08-31 21:33 - 2015-08-31 21:33 - 00014767 _____ C:\Users\Dilan\Desktop\ISO1.nri
2015-08-31 20:46 - 2015-08-31 20:46 - 01260832 _____ C:\Users\Dilan\Downloads\Ashampoo Burning Studio Free - CHIP-Installer.exe
2015-08-29 01:33 - 2015-08-30 22:29 - 00000080 _____ C:\Users\Diyar\Desktop\comunio diyarrr tabelle.txt
2015-08-28 16:49 - 2015-08-29 18:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-20 18:53 - 2015-08-20 18:53 - 00000000 ____D C:\Users\Dilan\Desktop\runtime
2015-08-20 18:52 - 2015-08-20 18:53 - 00000000 ____D C:\Users\Dilan\Desktop\game
2015-08-20 18:37 - 2015-09-05 13:10 - 00000000 ____D C:\Users\Dilan\AppData\Roaming\.minecraft
2015-08-20 18:37 - 2015-08-20 18:37 - 00000000 ____D C:\Users\Dilan\AppData\Roaming\java
2015-08-20 18:36 - 2015-08-20 18:37 - 00000000 ____D C:\Users\Dilan\Downloads\game
2015-08-20 18:36 - 2015-08-20 18:36 - 00000000 ____D C:\Users\Dilan\Downloads\runtime
2015-08-20 18:35 - 2015-08-20 18:35 - 01293704 _____ (Mojang) C:\Users\Dilan\Desktop\Minecraft.exe
2015-08-20 03:18 - 2015-08-20 03:18 - 00000000 ____D C:\Temp1
2015-08-20 03:15 - 2015-08-20 03:15 - 05416112 _____ (Canneverbe Limited ) C:\Users\Diyar\Downloads\cdbxp_setup_4.5.5.5790_minimal.exe
2015-08-19 20:13 - 2015-08-11 03:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-19 20:13 - 2015-08-11 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-19 20:13 - 2015-08-11 02:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-08-19 20:13 - 2015-08-11 02:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-08-18 16:45 - 2015-08-18 16:45 - 00000000 _____ C:\Users\Diyar\Desktop\18.8.15.. befin ta freundschaftsanfrage geschickt.txt
2015-08-17 16:45 - 2015-08-17 16:49 - 00000000 ____D C:\Users\Diyar\Desktop\uni verworfen
2015-08-12 19:13 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 19:13 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 16:56 - 2015-08-12 16:56 - 00000000 ____D C:\Users\Diyar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-12 15:42 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-12 15:42 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-12 15:42 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-12 15:42 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-12 15:42 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-12 15:42 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-12 15:42 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-12 15:42 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-12 15:42 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-12 15:42 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-12 15:42 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-12 15:42 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-12 15:42 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-12 15:42 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-12 15:42 - 2015-07-15 20:15 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-12 15:42 - 2015-07-15 20:15 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-08-12 15:42 - 2015-07-15 20:15 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-08-12 15:42 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-12 15:42 - 2015-07-15 20:12 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-12 15:42 - 2015-07-15 20:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-08-12 15:42 - 2015-07-15 20:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-08-12 15:42 - 2015-07-15 20:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-08-12 15:42 - 2015-07-15 20:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-08-12 15:42 - 2015-07-15 20:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-08-12 15:42 - 2015-07-15 20:10 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-08-12 15:42 - 2015-07-15 20:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-08-12 15:42 - 2015-07-15 20:10 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-08-12 15:42 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-12 15:42 - 2015-07-15 20:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-08-12 15:42 - 2015-07-15 20:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-08-12 15:42 - 2015-07-15 20:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-08-12 15:42 - 2015-07-15 20:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:59 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-08-12 15:42 - 2015-07-15 19:59 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-08-12 15:42 - 2015-07-15 19:56 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-12 15:42 - 2015-07-15 19:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-08-12 15:42 - 2015-07-15 19:55 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-08-12 15:42 - 2015-07-15 19:55 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-08-12 15:42 - 2015-07-15 19:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-08-12 15:42 - 2015-07-15 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-08-12 15:42 - 2015-07-15 19:54 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-08-12 15:42 - 2015-07-15 19:54 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-08-12 15:42 - 2015-07-15 19:54 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-08-12 15:42 - 2015-07-15 19:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-08-12 15:42 - 2015-07-15 19:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-08-12 15:42 - 2015-07-15 19:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-08-12 15:42 - 2015-07-15 19:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-08-12 15:42 - 2015-07-15 19:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-08-12 15:42 - 2015-07-15 19:53 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-08-12 15:42 - 2015-07-15 19:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-08-12 15:42 - 2015-07-15 19:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-08-12 15:42 - 2015-07-15 19:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-08-12 15:42 - 2015-07-15 19:53 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-08-12 15:42 - 2015-07-15 19:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-08-12 15:42 - 2015-07-15 19:48 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 18:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-08-12 15:42 - 2015-07-15 18:46 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-08-12 15:42 - 2015-07-15 18:46 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-08-12 15:42 - 2015-07-15 18:37 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-08-12 15:42 - 2015-07-15 18:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-08-12 15:42 - 2015-07-15 18:34 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 18:34 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 18:34 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 18:34 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-12 15:42 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-12 15:42 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-08-12 15:41 - 2015-07-21 02:39 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-08-12 15:41 - 2015-07-21 02:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-08-12 15:41 - 2015-07-16 22:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-08-12 15:41 - 2015-07-16 22:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-08-12 15:41 - 2015-07-16 22:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-12 15:41 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-12 15:41 - 2015-07-16 22:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-08-12 15:41 - 2015-07-16 22:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-12 15:41 - 2015-07-16 22:35 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-08-12 15:41 - 2015-07-16 22:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-12 15:41 - 2015-07-16 22:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-12 15:41 - 2015-07-16 22:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-08-12 15:41 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-12 15:41 - 2015-07-16 22:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-12 15:41 - 2015-07-16 22:21 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-08-12 15:41 - 2015-07-16 22:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-12 15:41 - 2015-07-16 22:21 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-08-12 15:41 - 2015-07-16 22:12 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-12 15:41 - 2015-07-16 22:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-12 15:41 - 2015-07-16 22:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-12 15:41 - 2015-07-16 21:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-08-12 15:41 - 2015-07-16 21:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-12 15:41 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-08-12 15:41 - 2015-07-16 21:51 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-12 15:41 - 2015-07-16 21:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-08-12 15:41 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-08-12 15:41 - 2015-07-16 21:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-08-12 15:41 - 2015-07-16 21:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-08-12 15:41 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-12 15:41 - 2015-07-16 21:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-08-12 15:41 - 2015-07-16 21:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-08-12 15:41 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-08-12 15:41 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-08-12 15:41 - 2015-07-16 21:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-08-12 15:41 - 2015-07-16 21:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-08-12 15:41 - 2015-07-16 21:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-12 15:41 - 2015-07-16 21:35 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-08-12 15:41 - 2015-07-16 21:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-12 15:41 - 2015-07-16 21:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-08-12 15:41 - 2015-07-16 21:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-12 15:41 - 2015-07-16 21:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-08-12 15:41 - 2015-07-16 21:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-08-12 15:41 - 2015-07-16 21:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-08-12 15:41 - 2015-07-16 21:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-08-12 15:41 - 2015-07-16 21:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-08-12 15:41 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-12 15:41 - 2015-07-16 21:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-12 15:41 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-12 15:41 - 2015-07-16 21:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-08-12 15:41 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-08-12 15:41 - 2015-07-16 21:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-08-12 15:41 - 2015-07-16 21:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-12 15:41 - 2015-07-16 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-08-12 15:41 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-12 15:41 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-12 15:41 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-08-12 15:40 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-12 15:40 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-12 15:40 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-12 15:40 - 2015-07-30 20:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-08-12 15:40 - 2015-07-30 20:06 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-12 15:40 - 2015-07-30 20:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-08-12 15:40 - 2015-07-30 20:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-08-12 15:40 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-12 15:40 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-12 15:40 - 2015-07-30 19:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-08-12 15:40 - 2015-07-30 19:57 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-12 15:40 - 2015-07-30 19:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-08-12 15:40 - 2015-07-30 19:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-08-12 15:40 - 2015-07-30 18:56 - 03208192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-12 15:40 - 2015-07-30 18:52 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-12 15:40 - 2015-07-30 18:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-12 15:40 - 2015-07-20 20:12 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-12 15:40 - 2015-07-20 20:12 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-08-12 15:40 - 2015-07-20 20:12 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-08-12 15:40 - 2015-07-20 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-12 15:40 - 2015-07-20 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-12 15:40 - 2015-07-20 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-12 15:40 - 2015-07-20 19:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-12 15:40 - 2015-07-20 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-08-12 15:40 - 2015-07-15 05:19 - 02004992 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-12 15:40 - 2015-07-15 05:19 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-12 15:40 - 2015-07-15 05:14 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-08-12 15:40 - 2015-07-15 05:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-08-12 15:40 - 2015-07-15 04:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-12 15:40 - 2015-07-15 04:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-12 15:40 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-08-12 15:40 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-08-12 15:40 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-12 15:40 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-12 15:40 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-12 15:40 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-12 15:40 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-12 15:40 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-12 15:40 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-12 15:40 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-12 15:40 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-12 15:40 - 2015-05-09 20:26 - 00493504 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-08-11 18:12 - 2015-08-11 18:12 - 00000000 ____D C:\Users\Diyar\AppData\Local\CEF
2015-08-10 19:22 - 2015-08-10 19:22 - 00012763 _____ C:\Users\Diyar\Downloads\Comunio_Spieltagsrechner_Excel.xlsx

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-08 12:13 - 2014-08-27 19:56 - 00000000 ____D C:\Users\Diyar\AppData\Roaming\Spotify
2015-09-08 12:13 - 2011-08-18 11:31 - 01051515 _____ C:\Windows\WindowsUpdate.log
2015-09-08 12:10 - 2013-10-15 02:50 - 00000000 ____D C:\temp
2015-09-08 12:09 - 2015-04-27 11:11 - 00046536 _____ C:\Windows\setupact.log
2015-09-08 12:08 - 2014-08-27 19:57 - 00000000 ____D C:\Users\Diyar\AppData\Local\Spotify
2015-09-08 12:07 - 2011-08-18 11:32 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-08 12:07 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-08 02:20 - 2015-06-18 00:09 - 00001224 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001UA.job
2015-09-08 02:09 - 2012-01-02 00:28 - 00000000 ____D C:\Users\Diyar\AppData\Local\CrashDumps
2015-09-08 02:00 - 2015-04-28 20:16 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-08 01:39 - 2012-03-10 20:37 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA.job
2015-09-08 01:20 - 2015-06-18 00:09 - 00001172 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core.job
2015-09-07 23:54 - 2013-03-22 18:49 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA.job
2015-09-07 23:40 - 2015-07-10 02:03 - 00000000 ____D C:\Users\Diyar\Documents\Citavi 5
2015-09-07 22:25 - 2009-07-14 06:45 - 00024400 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-07 22:25 - 2009-07-14 06:45 - 00024400 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-07 22:15 - 2011-12-30 02:07 - 00000000 ____D C:\Users\Diyar
2015-09-07 22:09 - 2011-12-30 23:59 - 00000000 ____D C:\Windows\System32\Tasks\Games
2015-09-07 16:44 - 2015-08-01 15:06 - 00000000 ____D C:\Users\Dilan\Documents\Citavi 5
2015-09-06 17:54 - 2013-03-22 18:49 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core.job
2015-09-06 03:35 - 2012-02-18 20:34 - 01253888 ___SH C:\Users\Dilan\Desktop\Thumbs.db
2015-09-05 14:59 - 2014-11-29 22:37 - 00000000 __SHD C:\Users\Dilan\AppData\Local\EmieBrowserModeList
2015-09-05 14:59 - 2014-05-30 11:53 - 00000000 __SHD C:\Users\Dilan\AppData\Local\EmieUserList
2015-09-05 14:59 - 2014-05-30 11:53 - 00000000 __SHD C:\Users\Dilan\AppData\Local\EmieSiteList
2015-09-05 12:47 - 2014-03-29 19:42 - 00002514 _____ C:\Users\Dilan\Desktop\Google Chrome.lnk
2015-09-04 20:36 - 2012-01-05 20:09 - 00000000 ____D C:\Users\Diyar\musik
2015-09-03 01:51 - 2013-07-21 23:16 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-03 01:51 - 2012-11-28 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-01 17:56 - 2014-05-25 23:23 - 00000000 ____D C:\Users\Diyar\Desktop\MZ Sports und fussball
2015-08-31 20:34 - 2014-10-27 22:18 - 00003694 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core1cf90928a48cf38
2015-08-31 20:34 - 2014-06-25 18:28 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core1cf90928a48cf38.job
2015-08-31 20:34 - 2012-03-10 20:37 - 00004090 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA
2015-08-30 18:35 - 2011-08-13 20:10 - 00699432 _____ C:\Windows\system32\perfh007.dat
2015-08-30 18:35 - 2011-08-13 20:10 - 00149572 _____ C:\Windows\system32\perfc007.dat
2015-08-30 18:35 - 2009-07-14 07:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-29 18:11 - 2014-05-23 01:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-29 18:11 - 2013-10-07 15:26 - 00427438 _____ C:\Windows\PFRO.log
2015-08-28 23:57 - 2012-01-28 03:38 - 00010067 _____ C:\Windows\wininit.ini
2015-08-20 03:26 - 2014-07-07 22:01 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-18 23:27 - 2012-01-12 23:17 - 00000000 ___RD C:\Users\Diyar\Dropbox
2015-08-18 23:27 - 2012-01-12 23:16 - 00000000 ____D C:\Users\Diyar\AppData\Roaming\Dropbox
2015-08-17 16:49 - 2012-08-27 18:51 - 00000000 ____D C:\Users\Diyar\Desktop\rechnungen
2015-08-17 16:48 - 2012-06-11 15:10 - 00000000 ____D C:\Users\Diyar\Desktop\fitness
2015-08-17 16:45 - 2013-10-10 23:27 - 00000000 ____D C:\Users\Diyar\Desktop\Lehramt
2015-08-16 00:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-08-13 13:46 - 2014-07-07 22:01 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-08-13 03:49 - 2014-07-07 22:01 - 00001074 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-08-13 03:49 - 2014-07-07 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-08-12 23:49 - 2009-07-14 06:45 - 00337736 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-12 23:46 - 2014-12-12 07:49 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-12 23:46 - 2014-04-29 20:16 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-12 19:13 - 2013-03-14 02:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 19:12 - 2013-03-14 02:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 19:12 - 2013-03-14 02:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 19:10 - 2012-01-06 21:53 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-12 19:04 - 2013-07-31 16:16 - 00000000 ____D C:\Windows\system32\MRT
2015-08-12 18:57 - 2012-01-07 23:26 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-12 18:05 - 2015-03-07 13:58 - 00000000 ____D C:\Users\Diyar\AppData\Local\JDownloader 2.0
2015-08-11 21:00 - 2015-04-28 20:16 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-11 21:00 - 2015-04-28 20:16 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-11 21:00 - 2015-04-28 20:16 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-10 04:21 - 2012-07-28 02:24 - 00000000 ____D C:\Users\Diyar\AppData\Roaming\vlc
2015-08-10 03:32 - 2011-12-30 02:09 - 00000000 ____D C:\Users\Diyar\AppData\Local\Adobe

Einige Dateien in TEMP:
====================
C:\Users\Dilan\AppData\Local\Temp\avgnt.exe
C:\Users\Diyar\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-01 15:55

==================== Ende von FRST.txt ============================

--- --- ---

[/CODE]

Diyar · 08.09.2015, 11:24

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:07-09-2015
durchgeführt von Diyar (2015-09-08 12:17:25)
Gestartet von C:\Users\Diyar\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2011-12-30 00:06:59)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1825211407-1677631671-286171030-500 - Administrator - Disabled)
Dilan (S-1-5-21-1825211407-1677631671-286171030-1004 - Limited - Enabled) => C:\Users\Dilan
Diyar (S-1-5-21-1825211407-1677631671-286171030-1001 - Administrator - Enabled) => C:\Users\Diyar
fbwuser46BC (S-1-5-21-1825211407-1677631671-286171030-1008 - Limited - Enabled)
fbwuser9BB8 (S-1-5-21-1825211407-1677631671-286171030-1007 - Limited - Enabled)
fbwuserEB1E (S-1-5-21-1825211407-1677631671-286171030-1009 - Limited - Enabled)
Gast (S-1-5-21-1825211407-1677631671-286171030-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-1825211407-1677631671-286171030-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Ace Stream Media 2.1.5 (HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\AceStream) (Version: 2.1.5 - Ace Stream Media) <==== ACHTUNG
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (HKLM-x32\...\Adobe Photoshop Elements 9) (Version: 9.0.3.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 9 (HKLM-x32\...\PremElem90) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Reader X (10.1.15) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.15 - Adobe Systems Incorporated)
AnyTrans 4.6.0 (HKLM-x32\...\{E580ED1F-AAF8-4F7E-B174-54BFA2B94E0B}}_is1) (Version: 4.6.0 - iMobie Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{D9B8D7C4-BE13-5877-6999-B076956AA3F9}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.12.420 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{b76c0d12-422c-44e3-9daa-9363451e24cd}) (Version: 1.1.44.15481 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.44.15481 - Avira Operations GmbH & Co. KG) Hidden
Belkin N750 Dual Band Wireless USB Adapter (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.11.0 - Belkin International, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Citavi 5 (HKLM-x32\...\{7EB278FB-0C3C-445E-8665-4A6CDD9B794E}) (Version: 5.0.0.11 - Swiss Academic Software)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version:  - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - )
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd)
Dropbox (HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Dropbox) (Version: 3.8.6 - Dropbox, Inc.)
Elements 9 Organizer (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Elements STI Installer (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Elevated Installer (x32 Version: 2.2.16 - Garmin Ltd or its subsidiaries) Hidden
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.51.1215 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.51.1215 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Garmin Express (HKLM-x32\...\{090dbdaf-9c21-4003-9544-3a57184fff74}) (Version: 2.2.16 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 2.2.16 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 2.2.16 - Garmin Ltd or its subsidiaries) Hidden
Garmin Update Service (x32 Version: 2.2.16 - Garmin Ltd or its subsidiaries) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3505 - Packard Bell)
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.8.10800.8.100 - Nero AG)
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.2.10500.2.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10700.5.100 - Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}) (Version: 10.5.10300 - Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{68AFA3A7-9265-4ABD-994A-ACA413E3715C}) (Version: 10.6.10100 - Nero AG)
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.6.10500.3.100 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.2.11600.14.100 - Nero AG)
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.10900.31.0 - Nero AG)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
OpenVPN 2.3.4-I002  (HKLM\...\OpenVPN) (Version: 2.3.4-I002 - )
Packard Bell Recovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3502 - Packard Bell)
Packard Bell Registration (HKLM-x32\...\Packard Bell Registration) (Version: 1.04.3503 - Packard Bell)
Packard Bell Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3500 - Packard Bell)
PhoneClean 3.6.2 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 3.6.2 - iMobie Inc.)
Protect Disc License Helper 1.0.118 (HKLM-x32\...\Protect Disc License Helper) (Version: 1.0.118 - Protect Disc)
ProtectDisc Driver, Version 11 (HKLM-x32\...\ProtectDisc Driver 11) (Version: 11.0.0.11 - ProtectDisc Software GmbH)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6631 - Realtek Semiconductor Corp.)
RUBICon (HKLM-x32\...\{438134D3-0BD4-4C52-8575-5B2B63AD01C2}) (Version: 2.0.25 - RUB)
SCR3xxx Smart Card Reader (HKLM-x32\...\{6DA99C69-0799-467E-9496-F37E1E452A4A}) (Version: 8.40 - SCM Microsystems)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SHIELD Streaming (Version: 1.7.321 - NVIDIA Corporation) Hidden
SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
Spotify (HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Spotify) (Version: 1.0.11.134.ga37df67b - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
StreamTorrent 1.0 (HKLM-x32\...\StreamTorrent 1.0) (Version:  - )
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
Telegram Desktop version 0.8.36 (HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.8.36 - Telegram Messenger LLP)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Welcome Center (HKLM-x32\...\Packard Bell Welcome Center) (Version: 1.02.3503 - Packard Bell)
Windows Driver Package - Advanced Micro Devices (amdhub30) USB  (10/21/2014 1.1.0.0153) (HKLM\...\583303729E516B80AAECB502CA659702D3E54994) (Version: 10/21/2014 1.1.0.0153 - Advanced Micro Devices)
Windows Driver Package - Advanced Micro Devices (amdxhc) USB  (02/26/2013 1.1.0.0145) (HKLM\...\F730DBDBAB7F37FB4646DCF65EAA90B782CFD0AA) (Version: 02/26/2013 1.1.0.0145 - Advanced Micro Devices)
Windows Driver Package - AMD (amd_sata) HDC  (09/23/2014 1.2.001.0376) (HKLM\...\3269313A1AE2994D3B7B1A6E749E8264B933D0D8) (Version: 09/23/2014 1.2.001.0376 - AMD)
Windows Driver Package - Brother HL-2130,HL-2220,HL-2230,HL-2240,HL-2240D,HL-2250DN,HL-2270DW (07/26/2012 01.09.00.00) (HKLM\...\A212E96273F8FC1B5B9AC1A0112785C8E3617FCA) (Version: 07/26/2012 01.09.00.00 - Brother)
Windows Driver Package - BYD COMPANY LIMITED (LPCFilter) System  (03/06/2012 1.0.64.1) (HKLM\...\BE27EA7AE74FAE8D2C570CCB03B9A65849E4329F) (Version: 03/06/2012 1.0.64.1 - BYD COMPANY LIMITED)
Windows Driver Package - NVIDIA (nvvad_WaveExtensible) MEDIA  (11/24/2014 1.2.27) (HKLM\...\22A615E5AB2DBC0D1F227E94983E9AE635546658) (Version: 11/24/2014 1.2.27 - NVIDIA)
Windows Driver Package - NVIDIA Corporation (NVHDA) MEDIA  (01/09/2015 1.3.33.0) (HKLM\...\72C4B3A214CA41AC3E4568DF86D5E8F16F37F147) (Version: 01/09/2015 1.3.33.0 - NVIDIA Corporation)
Windows Driver Package - NVIDIA Corporation (NVHDA) MEDIA  (02/03/2015 1.3.30.1) (HKLM\...\EFE433E678D36F28FB8227DB10223DE3ADF35FB1) (Version: 02/03/2015 1.3.30.1 - NVIDIA Corporation)
Windows Driver Package - Point Grey Research (PGRUSB) Sample  (12/07/2013 2.4.3.0) (HKLM\...\D59E34908453775205F98F5562A4CB13AF5A3A7F) (Version: 12/07/2013 2.4.3.0 - Point Grey Research)
Windows Driver Package - Ralink (netr28ux) Net  (03/28/2014 5.01.12.0000) (HKLM\...\936310FE04CB8DF640C001672E96CE46AC331A5A) (Version: 03/28/2014 5.01.12.0000 - Ralink)
Windows Driver Package - Realtek (RTL8167) Net  (01/15/2015 7.092.0115.2015) (HKLM\...\55FF4C94BB84DE87B24343792B2BBF2EE8E527F0) (Version: 01/15/2015 7.092.0115.2015 - Realtek)
Windows Driver Package - Realtek (RTL8167) Net  (11/19/2014 7.091.1119.2014) (HKLM\...\82F4F81F9DF251F9CFF1B9A608A3464B45596746) (Version: 11/19/2014 7.091.1119.2014 - Realtek)
Windows Driver Package - Realtek Semiconduct Corp. (RTSUER) USB  (12/08/2014 6.3.9600.31207) (HKLM\...\9A2F8207F23EBEB5E8EC1382260E90CFB3658951) (Version: 12/08/2014 6.3.9600.31207 - Realtek Semiconduct Corp.)
Windows Driver Package - Realtek Semiconduct Corp. (RTSUER) USB  (12/26/2014 6.3.9600.31208) (HKLM\...\F38DB54F6101B092A6002EE6CB22C7E7410A64C0) (Version: 12/26/2014 6.3.9600.31208 - Realtek Semiconduct Corp.)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (05/08/2012 6.0.1.6631) (HKLM\...\46651D86BE8595D9E90B601DAB9A2AB55FA2CEF6) (Version: 05/08/2012 6.0.1.6631 - Realtek Semiconductor Corp.)
Windows Driver Package - SCM Microsystems Inc. (S3XXx64) SmartCardReader  (02/11/2015 4.65.00.00) (HKLM\...\02A5AB6EC6CE0D3B666109AB85DA1A898B8C903F) (Version: 02/11/2015 4.65.00.00 - SCM Microsystems Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 4.01 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Diyar\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll Keine Datei
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1825211407-1677631671-286171030-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================

03-09-2015 01:49:52 Windows Update
06-09-2015 12:07:03 Windows Update

==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2012-01-28 17:17 - 00441100 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	www.10sek.com
127.0.0.1	10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	www.123fporn.info
127.0.0.1	123fporn.info
127.0.0.1	123haustiereundmehr.com
127.0.0.1	www.123haustiereundmehr.com
127.0.0.1	123moviedownload.com

Da befinden sich 1000 zusätzliche Einträge.


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {09F796BE-D24C-47C2-A5F4-B34EFB4253AA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core1cf90928a48cf38 => C:\Users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {10690D32-7FAB-4221-A2BF-B91C32011FAE} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {17376797-B326-4810-A040-6B70E907EADF} - System32\Tasks\{0EAD46C0-13B9-4422-8A00-4A27D6A8F37A} => pcalua.exe -a E:\setup.exe -d E:\
Task: {244511AA-7E18-442C-909A-413F7FAA20BB} - System32\Tasks\{9C94272E-E206-4E9D-BB0A-2C40C4EAC0E5} => pcalua.exe -a C:\Users\Diyar\Downloads\AVM_FRITZ!WLAN_Repeater_310_Assistent.exe -d C:\Users\Diyar\Desktop
Task: {27264D47-B881-4C3F-8005-FE0AB36F8C41} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001UA => C:\Users\Diyar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {2A4044B6-EFA3-4C87-9164-11CBB37FC3E0} - System32\Tasks\AdobeAAMUpdater-1.0-Diyar-PC-Dilan => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated)
Task: {466BD0C3-A581-41F8-8872-538B8FF59DAB} - System32\Tasks\{DD321F74-8C12-46FB-BC84-571890047A2B} => C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE [2015-07-23] (Microsoft Corporation)
Task: {4F8F466F-1F6C-4C5B-91F2-2677A967E8A6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core => C:\Users\Diyar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {53CD055E-0F9F-4A87-BE1C-00B4DB2B553F} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core => C:\Users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {5BA7FEA8-11E6-4238-B6EC-C4466404DC7A} - System32\Tasks\NBAgent => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2011-06-22] (Nero AG)
Task: {6B6B3EB8-F9D0-427B-A75A-406BBF057ECA} - \YourFile DownloaderUpdate -> Keine Datei <==== ACHTUNG
Task: {6B92FBE4-83C2-40AA-8632-7F7C86D2DA05} - System32\Tasks\{F31E485E-AF8B-4662-915B-F522390A391E} => pcalua.exe -a "C:\Users\Diyar\AppData\Roaming\Security Monitor\securityhelper.exe" -c /UNINSTALL
Task: {74245CDF-ACC4-4670-9B53-30C3FEB00484} - System32\Tasks\AdobeAAMUpdater-1.0-Diyar-PC-Diyar => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated)
Task: {8813D1B6-D55E-441D-9154-3444CF9DE1B0} - System32\Tasks\Adobe ARM => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {9C6D1566-31ED-464C-AC64-7E21E107C55B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {A9DB211B-BF99-429F-909F-466F2E7992CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {ACC1ED5C-A08B-4B58-8071-93024CD2C56E} - System32\Tasks\Adobe Reader Speed Launcher => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2015-06-27] (Adobe Systems Incorporated)
Task: {AE73E56A-3AC9-46DB-BFBD-BAA747040E43} - \BrowserDefendert -> Keine Datei <==== ACHTUNG
Task: {B025E2E1-F409-4E7A-9B15-42651D5D451C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B0FF65E0-F65C-4214-AD4B-07D006F622C1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core => C:\Users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {B4464325-359B-4ED8-80C5-668ED1ACF1DC} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core => C:\Users\Dilan\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-22] (Facebook Inc.)
Task: {BF4DBD9A-D695-45AD-AC7E-E1B57D14C90E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA => C:\Users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {C25096BE-4DC7-4A0A-BAC0-D07B64041134} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA => C:\Users\Dilan\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-22] (Facebook Inc.)
Task: {C2560CB9-FD0B-4084-B85C-7D8D76969E79} - System32\Tasks\{C93EF387-2D71-459D-8B54-FFC3F8D403AC} => pcalua.exe -a "C:\Users\Diyar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\89J6B9CB\AVM_FRITZ!WLAN_Repeater_310_Assistent.exe" -d C:\Users\Diyar\Desktop
Task: {C4BC9F6F-65C1-437E-9868-3216E063D96A} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-05-20] (CyberLink)
Task: {CC9FC6A6-5D6D-43B2-90C8-3700B2FAFD02} - \DSite -> Keine Datei <==== ACHTUNG
Task: {CCE7637E-9252-4EC4-90E6-CAEA4CDA1E13} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001UA => C:\Users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {D805B215-162B-458B-B382-05A93DCFEC20} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1825211407-1677631671-286171030-1001
Task: {D87B34F6-6470-4610-9A66-AD9DF20C588F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {EA839AE6-5795-4B50-9204-D3AD96D3E5FA} - System32\Tasks\{A88DE31E-74C5-403A-AAB4-E82313838D6B} => C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE [2015-07-23] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core.job => C:\Users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001UA.job => C:\Users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core.job => C:\Users\Diyar\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core.job => C:\Users\Dilan\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA.job => C:\Users\Dilan\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core1cee0a2d135226d.job => C:\Users\Diyar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core1cf90928a48cf38.job => C:\Users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA.job => C:\Users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2013-09-11 14:21 - 2015-06-17 08:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-02-17 17:48 - 2006-07-04 15:16 - 00049152 _____ () C:\Windows\Domino.exe
2015-07-17 18:12 - 2015-06-18 12:22 - 00062464 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2015-05-15 16:27 - 2015-05-15 16:27 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-08-11 02:20 - 2015-08-11 18:12 - 45066808 _____ () C:\Users\Diyar\AppData\Roaming\Spotify\libcef.dll
2015-08-11 02:20 - 2015-08-11 18:12 - 01649208 _____ () C:\Users\Diyar\AppData\Roaming\Spotify\libglesv2.dll
2015-08-11 02:20 - 2015-08-11 18:12 - 00080952 _____ () C:\Users\Diyar\AppData\Roaming\Spotify\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Da befinden sich 7731 mehr eingeschränkte Seiten.

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Diyar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Audible Download Manager.lnk => C:\Windows\pss\Audible Download Manager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk => C:\Windows\pss\Secunia PSI Tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Diyar^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: 99k4wjuvtufn => C:\Users\Diyar\AppData\Roaming\Security Monitor\securityhelper.exe
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AppleIEDAV => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: BearShare => "C:\Program Files (x86)\BearShare\BearShare.exe" /pause
MSCONFIG\startupreg: BigDogPath => C:\Windows\VM301Snap.exe Vimicro USB PC Camera (ZC0301PL)
MSCONFIG\startupreg: BrStsMon00 => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Domino => C:\Windows\Domino.exe
MSCONFIG\startupreg: Download Protect => C:\ProgramData\dlprotect.exe
MSCONFIG\startupreg: Facebook Update => "C:\Users\Diyar\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Diyar\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_2B45835BC4B26715B0DDD81916DFE43A => "C:\Users\Diyar\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: Hobbyist Software VLC Streamer => "C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe" /startup
MSCONFIG\startupreg: Hotkey Utility => C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iFunBoxConnector => "C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Security Monitor => "C:\Users\Diyar\AppData\Roaming\Security Monitor\Security_Monitor2012.exe" /STARTUP
MSCONFIG\startupreg: Security Monitor 2012 Security => C:\Users\Diyar\AppData\Roaming\Security Monitor\securitymanager.exe
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Speech Recognition => "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
MSCONFIG\startupreg: Spotify => "C:\Users\Diyar\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Diyar\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: Ulead AutoDetector v2 => C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\monitor.exe
MSCONFIG\startupreg: uTorrent => "C:\Program Files (x86)\uTorrent\uTorrent.exe"  /MINIMIZED

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{BDEF7CA4-9765-4FB1-AD0A-FEC66DA53D9C}] => (Allow) C:\Users\Diyar\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{8A462CB3-2345-40A0-9E62-F7447693C060}] => (Allow) C:\Users\Diyar\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{518A694A-F97D-4AFC-BD32-D66D36E7CFFC}C:\users\diyar\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\diyar\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{03ED0662-5478-450B-B095-61C3CA3DF6CC}C:\users\diyar\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\diyar\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{5790DD62-CCBF-4B9F-B170-BEF033F1FFFD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D19B8BC2-4494-4E2C-A2BE-4C463FB4A2D0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{8BEEF622-87A4-4A9F-8717-262D48D6B684}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{73B3129D-67C2-4234-B386-3D205FE4E50A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F50758A8-BFE9-4783-9EC8-43BD22E92BEA}] => (Allow) LPort=1542
FirewallRules: [{FDF73059-650E-44C3-A4BA-961EB58B7DCC}] => (Allow) LPort=1542
FirewallRules: [{445D61EC-78F9-4BD0-89E5-8875DAC55407}] => (Allow) LPort=53
FirewallRules: [TCP Query User{AB0B9A43-A124-4664-BF21-2BE33DBA662A}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{5A45FA22-E4BC-43A6-9E39-9B2CF72EFEEF}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{139FAFB0-3899-477D-A413-4411BF6A4BF9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{35627EF1-E1DE-4F2E-BEB6-DEB9A29F14C3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{8DCB51D1-9485-4A3A-B693-DF1BFD833D37}C:\users\dilan\appdata\local\mediaget2\mediaget.exe] => (Block) C:\users\dilan\appdata\local\mediaget2\mediaget.exe
FirewallRules: [UDP Query User{D7466121-BD25-4742-83D2-19621BFD7496}C:\users\dilan\appdata\local\mediaget2\mediaget.exe] => (Block) C:\users\dilan\appdata\local\mediaget2\mediaget.exe
FirewallRules: [TCP Query User{305D635E-C7D4-4D90-B3F2-72AFBEDE37CD}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{7F9FAEF0-9F01-4335-8EB5-CA69685E113D}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{04A0E0D8-F6C7-431D-B2E4-E1438E7204AB}C:\users\dilan\appdata\local\mediaget2\mediaget.exe] => (Block) C:\users\dilan\appdata\local\mediaget2\mediaget.exe
FirewallRules: [UDP Query User{F2515D83-F5C6-4793-9770-FE4A6E9BF62C}C:\users\dilan\appdata\local\mediaget2\mediaget.exe] => (Block) C:\users\dilan\appdata\local\mediaget2\mediaget.exe
FirewallRules: [TCP Query User{C8363F2F-BD3F-4983-B12B-25DD6FF9B5EC}C:\users\dilan\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Block) C:\users\dilan\appdata\local\facebook\video\skype\facebookvideocalling.exe
FirewallRules: [UDP Query User{0D041E4F-D8BD-4E7F-A749-8B6A746DFDB5}C:\users\dilan\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Block) C:\users\dilan\appdata\local\facebook\video\skype\facebookvideocalling.exe
FirewallRules: [TCP Query User{699A6F71-68EA-4BB3-92CF-6967852B2A63}C:\users\dilan\appdata\local\torch\plugins\torrent\torchtorrent.exe] => (Block) C:\users\dilan\appdata\local\torch\plugins\torrent\torchtorrent.exe
FirewallRules: [UDP Query User{1CF0D329-9AC3-4B72-BE99-258397225E73}C:\users\dilan\appdata\local\torch\plugins\torrent\torchtorrent.exe] => (Block) C:\users\dilan\appdata\local\torch\plugins\torrent\torchtorrent.exe
FirewallRules: [{D179307D-937C-4050-9A17-3CE07CE16A2D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe\Bonjour\mDNSResponder.exe
FirewallRules: [{71A8A376-7BFA-4652-B2F9-C5C3AEB8DDEB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{284B3928-E8EE-4E70-AD38-1BAE29A611C5}] => (Allow) LPort=2869
FirewallRules: [{1CA48C3B-B429-47F4-BF1E-477C5D1A67D2}] => (Allow) LPort=1900
FirewallRules: [{ADA8B203-D54C-4FDA-BFCC-3F7144A94DE8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{30B1D4E4-DC0C-4157-9A99-58E0DE0DFDD0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C8C1C12F-0CE7-421C-9F61-C328530BF984}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{FE4DB5E4-9841-4FF0-AFC9-717F0C19BFDD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [TCP Query User{71C485FA-CBC6-4D27-B4FF-7487AAA2FD2F}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{62E3BE80-FA69-4C6C-BD1D-8249271FEE10}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{406DB905-A311-4FC1-B989-BB50D2483822}C:\users\dilan\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Block) C:\users\dilan\appdata\local\facebook\video\skype\facebookvideocalling.exe
FirewallRules: [UDP Query User{29369697-4C94-42A9-A198-190BFAAC502A}C:\users\dilan\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Block) C:\users\dilan\appdata\local\facebook\video\skype\facebookvideocalling.exe
FirewallRules: [{A3794541-DED3-42D2-A9EF-4CC15B2D9CD5}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe
FirewallRules: [{9F1FEA04-FDD3-4C72-9C16-D7D076877844}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe
FirewallRules: [{6BFD7C7B-4FBC-4445-B80A-75414EAE06C2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CFF67966-2894-4A8C-94B0-52B79C267A28}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F5B4CA6C-F6D7-4FFD-B5BA-1ECCEED3BB2E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3368A9C1-C087-4F62-AD1A-ED340D164DB0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{15E3A5FE-CC47-4DAD-89DF-11874A976399}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D244F490-4B02-42D1-84C7-F3226F37601D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{1DE1939B-B5DC-4AA5-BA3C-B0082D1D6C08}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [UDP Query User{1684380B-9FC4-45C9-A995-3B8F60E52B9B}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [TCP Query User{84685FB6-9A79-4E5E-B85C-DEAD52B1848F}C:\users\dilan\appdata\local\orbitum\application\orbitumupdater\orbitumupdater.exe] => (Block) C:\users\dilan\appdata\local\orbitum\application\orbitumupdater\orbitumupdater.exe
FirewallRules: [UDP Query User{9F467986-06A6-4109-8715-2D88D59E0430}C:\users\dilan\appdata\local\orbitum\application\orbitumupdater\orbitumupdater.exe] => (Block) C:\users\dilan\appdata\local\orbitum\application\orbitumupdater\orbitumupdater.exe
FirewallRules: [TCP Query User{0FED4283-6A65-4BAC-BE08-138BF1399FE3}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [UDP Query User{49BA3C13-A02D-4F75-AD35-9FEEF130D7DC}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [TCP Query User{CFDFCB72-277F-4A02-8D25-44BDF1614B4D}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe
FirewallRules: [UDP Query User{2EF7EC54-B947-4608-ADBF-13CB87626BEA}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe
FirewallRules: [TCP Query User{55A2321F-685E-4F09-8EB6-C132DE57EEE3}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{7298C14F-FAFF-4BFF-87E2-D93B5FB388C2}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{F082B21A-3291-4BA4-97A7-51655A383FB6}C:\users\diyar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\diyar\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{F12A0C8D-3B5B-49FB-B2DD-E53F9784310B}C:\users\diyar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\diyar\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{DA0F7238-BCA9-478C-A680-D76310ECEAB9}C:\users\diyar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\diyar\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{330C8E81-3364-4E12-88E9-29CDF20FB92F}C:\users\diyar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\diyar\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{29376468-096A-4DD4-AF94-84C7272AAF8A}C:\users\diyar\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\diyar\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [UDP Query User{088EA576-DBCC-4206-BB66-462A2E872EB7}C:\users\diyar\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\diyar\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [TCP Query User{2843B324-C8D1-4417-9049-A5F2772F61B7}C:\program files (x86)\streamtorrent 1.0\streamtorrent.exe] => (Allow) C:\program files (x86)\streamtorrent 1.0\streamtorrent.exe
FirewallRules: [UDP Query User{61796591-799E-459C-87C3-163CC7A57545}C:\program files (x86)\streamtorrent 1.0\streamtorrent.exe] => (Allow) C:\program files (x86)\streamtorrent 1.0\streamtorrent.exe
FirewallRules: [{04D9F556-59E3-4FE4-8216-51555B025E63}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B2664BF8-E913-42CF-9B3B-CFCEE68B40AA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{9096F638-E3B1-482A-85AA-E3DA6E16F809}C:\users\dilan\appdata\local\torch\plugins\hola\hola_plugin_x64.exe] => (Block) C:\users\dilan\appdata\local\torch\plugins\hola\hola_plugin_x64.exe
FirewallRules: [UDP Query User{742EB771-F6B8-4610-82DC-57AE63A72FD9}C:\users\dilan\appdata\local\torch\plugins\hola\hola_plugin_x64.exe] => (Block) C:\users\dilan\appdata\local\torch\plugins\hola\hola_plugin_x64.exe
FirewallRules: [{A102F438-94F1-4D2C-84A8-AD96CC4EA387}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{B7D71452-CC25-4AD9-903C-0A6F0350415C}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{5B150485-B429-4AD9-BD3E-E45CD2E2ACC2}] => (Allow) LPort=8743
FirewallRules: [{2A22666D-AB41-440E-AE7B-6A438015581B}] => (Allow) LPort=8643
FirewallRules: [{1C6ABC14-DD0B-451B-A3FA-207880ADCC0C}] => (Allow) LPort=7676
FirewallRules: [{FF7E4482-7AAC-4B47-8D04-6078DBCC5DBC}] => (Allow) LPort=7679
FirewallRules: [{4723A5D8-381B-412B-8ECA-E67D71CBCEF0}] => (Allow) LPort=24234
FirewallRules: [{8CFF26D7-B92F-46CF-A24D-658E426F38CC}] => (Allow) LPort=7900
FirewallRules: [{79E7FF9D-AD96-4EFE-8917-8D61F91CF62C}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{8D03C354-F24A-401E-B818-DC47904E35FA}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{8A37139C-5356-457F-BD6B-B993D53A7939}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{8D562801-06AA-42EB-8621-344B22303A2E}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe
FirewallRules: [UDP Query User{9FE663E1-A937-4169-A2CC-6BD2DCAED60A}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe
FirewallRules: [{491282D4-F8F7-4C12-B1D2-9CC77BC78B25}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{9AB5989D-3633-434B-8D25-54702E6EBCF6}C:\users\dilan\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\users\dilan\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{12B92719-DF99-4E2B-B15A-BD30FB0AA5AC}C:\users\dilan\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\users\dilan\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: wStLibG64
Description: wStLibG64
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: wStLibG64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/08/2015 12:09:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/08/2015 02:08:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 40.0.3.5716, Zeitstempel: 0x55ddb213
Name des fehlerhaften Moduls: mozglue.dll, Version: 40.0.3.5716, Zeitstempel: 0x55dda062
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000e250
ID des fehlerhaften Prozesses: 0x6ec
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (09/07/2015 11:03:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.17937 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: fbc

Startzeit: 01d0e9afdb93ead8

Endzeit: 129

Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Berichts-ID:

Error: (09/07/2015 10:16:39 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (09/07/2015 08:05:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/07/2015 04:43:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/07/2015 04:35:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 40.0.3.5716, Zeitstempel: 0x55ddb213
Name des fehlerhaften Moduls: mozglue.dll, Version: 40.0.3.5716, Zeitstempel: 0x55dda062
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000e250
ID des fehlerhaften Prozesses: 0x7c4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (09/07/2015 03:22:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/07/2015 12:00:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/07/2015 12:47:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iTunes.exe, Version: 12.2.1.16, Zeitstempel: 0x55a1b30a
Name des fehlerhaften Moduls: iTunesCore.dll, Version: 12.2.1.16, Zeitstempel: 0x55a1b2ee
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000047a340
ID des fehlerhaften Prozesses: 0x159c
Startzeit der fehlerhaften Anwendung: 0xiTunes.exe0
Pfad der fehlerhaften Anwendung: iTunes.exe1
Pfad des fehlerhaften Moduls: iTunes.exe2
Berichtskennung: iTunes.exe3


Systemfehler:
=============
Error: (09/08/2015 12:10:06 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
wStLibG64

Error: (09/08/2015 12:08:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Garmin Core Update Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (09/08/2015 12:08:26 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Garmin Core Update Service erreicht.

Error: (09/07/2015 10:58:37 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (09/07/2015 10:58:37 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (09/07/2015 10:47:34 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.

Error: (09/07/2015 08:06:53 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
wStLibG64

Error: (09/07/2015 04:43:57 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
wStLibG64

Error: (09/07/2015 03:36:42 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80240020 fehlgeschlagen: Upgrade auf Windows 10 Home

Error: (09/07/2015 03:22:59 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
wStLibG64


Microsoft Office:
=========================
Error: (09/08/2015 12:09:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/08/2015 02:08:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe40.0.3.571655ddb213mozglue.dll40.0.3.571655dda062800000030000e2506ec01d0e9c93585d12cC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozglue.dllcb993cbd-55bd-11e5-8532-f80f412a56e6

Error: (09/07/2015 11:03:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: IEXPLORE.EXE11.0.9600.17937fbc01d0e9afdb93ead8129C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Error: (09/07/2015 10:16:39 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (09/07/2015 08:05:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/07/2015 04:43:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/07/2015 04:35:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe40.0.3.571655ddb213mozglue.dll40.0.3.571655dda062800000030000e2507c401d0e979fe3091bcC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozglue.dllb79d2583-556d-11e5-b27d-f80f412a56e6

Error: (09/07/2015 03:22:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/07/2015 12:00:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/07/2015 12:47:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iTunes.exe12.2.1.1655a1b30aiTunesCore.dll12.2.1.1655a1b2eec0000005000000000047a340159c01d0e8f603f7b599C:\Program Files\iTunes\iTunes.exeC:\Program Files\iTunes\iTunesCore.dll49453e9b-54e9-11e5-a14d-f80f412a56e6


CodeIntegrity:
===================================
  Date: 2012-10-04 00:33:56.255
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-10-04 00:33:56.225
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Speicherinformationen =========================== 

Prozessor: AMD A6-3600 APU with Radeon(tm) HD Graphics
Prozentuale Nutzung des RAM: 42%
Installierter physikalischer RAM: 8148.86 MB
Verfügbarer physikalischer RAM: 4679.45 MB
Summe virtueller Speicher: 16295.92 MB
Verfügbarer virtueller Speicher: 12953.99 MB

==================== Laufwerke ================================

Drive c: (Packard Bell) (Fixed) (Total:454.46 GB) (Free:194.83 GB) NTFS
Drive d: (DATA) (Fixed) (Total:454.46 GB) (Free:71.31 GB) NTFS
Drive f: (GRMCHPFRER_DE_DVD) (CDROM) (Total:2.29 GB) (Free:0 GB) UDF

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: EEE78C6D)
Partition 1: (Not Active) - (Size=22.5 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=454.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=454.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

schrauber · 09.09.2015, 06:41

Lade Dir bitte von hier

Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.

Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
Klicke auf Optionen und wähle als Sprache Deutsch.
Suche im Uninstallerfeld nach den Programmen:

Ace Stream Media 2.1.5
Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
Wähle anschließend den Modus "Moderat" aus.
Reste löschen:
Klicke auf dann auf und dann auf .

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Diyar · 09.09.2015, 14:56

Kann leider "Revo Uninstaller" nicht installieren. Nachdem ich die Datei runtergeladen habe und starten will kommt die Fehlermeldung: "Error! Can't initialize Plug-Ins Directory. Please try again later."
Das passiert auch, wenn ich rechtsklicke und "als Administrator ausführen" wähle.

Jedoch konnte ich es mit der "portable" Version machen, da ich da nichts installieren musste sondern die Anwendung direkt starten konnte und da die beschriebenen Schritte erfolgreich durchführen konnte.

Anbei die geforderten Log Dateien:

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.2.1008
www.malwarebytes.org

Database version:
  main:    v2015.09.09.03
  rootkit: v2015.08.16.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17959
Diyar :: DIYAR-PC [administrator]

09.09.2015 12:14:44
mbar-log-2015-09-09 (12-14-44).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 638562
Time elapsed: 3 hour(s), 8 minute(s), 4 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

Code:

ATTFilter

15:54:45.0632 0x1ac8  TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
15:54:49.0329 0x1ac8  ============================================================
15:54:49.0329 0x1ac8  Current date / time: 2015/09/09 15:54:49.0329
15:54:49.0329 0x1ac8  SystemInfo:
15:54:49.0329 0x1ac8  
15:54:49.0329 0x1ac8  OS Version: 6.1.7601 ServicePack: 1.0
15:54:49.0329 0x1ac8  Product type: Workstation
15:54:49.0329 0x1ac8  ComputerName: DIYAR-PC
15:54:49.0329 0x1ac8  UserName: Diyar
15:54:49.0329 0x1ac8  Windows directory: C:\Windows
15:54:49.0329 0x1ac8  System windows directory: C:\Windows
15:54:49.0329 0x1ac8  Running under WOW64
15:54:49.0329 0x1ac8  Processor architecture: Intel x64
15:54:49.0329 0x1ac8  Number of processors: 4
15:54:49.0329 0x1ac8  Page size: 0x1000
15:54:49.0329 0x1ac8  Boot type: Normal boot
15:54:49.0329 0x1ac8  ============================================================
15:54:49.0734 0x1ac8  KLMD registered as C:\Windows\system32\drivers\17423956.sys
15:54:50.0561 0x1ac8  System UUID: {39755380-F980-5C06-1B27-B8949D1C732C}
15:54:52.0277 0x1ac8  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:54:52.0277 0x1ac8  ============================================================
15:54:52.0277 0x1ac8  \Device\Harddisk0\DR0:
15:54:52.0277 0x1ac8  MBR partitions:
15:54:52.0277 0x1ac8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2D00800, BlocksNum 0x32000
15:54:52.0277 0x1ac8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2D32800, BlocksNum 0x38CE9800
15:54:52.0277 0x1ac8  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3BA1C000, BlocksNum 0x38CEA000
15:54:52.0277 0x1ac8  ============================================================
15:54:52.0308 0x1ac8  C: <-> \Device\Harddisk0\DR0\Partition2
15:54:52.0340 0x1ac8  D: <-> \Device\Harddisk0\DR0\Partition3
15:54:52.0340 0x1ac8  ============================================================
15:54:52.0340 0x1ac8  Initialize success
15:54:52.0340 0x1ac8  ============================================================
15:55:07.0113 0x1558  ============================================================
15:55:07.0113 0x1558  Scan started
15:55:07.0113 0x1558  Mode: Manual; 
15:55:07.0113 0x1558  ============================================================
15:55:07.0113 0x1558  KSN ping started
15:55:09.0890 0x1558  KSN ping finished: true
15:55:11.0060 0x1558  ================ Scan system memory ========================
15:55:11.0060 0x1558  System memory - ok
15:55:11.0060 0x1558  ================ Scan services =============================
15:55:11.0247 0x1558  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:55:11.0262 0x1558  1394ohci - ok
15:55:11.0372 0x1558  [ 84DA132E969484F581C550DE69BD1727, 1BBEF846DC898574AAED50FA85870AA301698AB9B0A14558FCCDD414EEE73B8F ] acedrv11        C:\Windows\system32\drivers\acedrv11.sys
15:55:11.0387 0x1558  acedrv11 - ok
15:55:11.0434 0x1558  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:55:11.0434 0x1558  ACPI - ok
15:55:11.0465 0x1558  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:55:11.0465 0x1558  AcpiPmi - ok
15:55:11.0574 0x1558  [ 1474F121C3DF1232D3E7239C03691EE6, 26D0F55010CB7C51269D94ECB5C5AA94802607685B9E9791A78B643C6227214F ] AdobeActiveFileMonitor9.0 c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
15:55:11.0590 0x1558  AdobeActiveFileMonitor9.0 - ok
15:55:11.0652 0x1558  [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:55:11.0652 0x1558  AdobeARMservice - ok
15:55:11.0762 0x1558  [ 368290D0A612D62DA6F3D798B1BB8FE7, D573BF8543F37BC51B88A2473EDFD28AFBCCC446E8CADD54A90FA48D8739D222 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:55:11.0777 0x1558  AdobeFlashPlayerUpdateSvc - ok
15:55:11.0840 0x1558  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:55:11.0855 0x1558  adp94xx - ok
15:55:11.0964 0x1558  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:55:11.0980 0x1558  adpahci - ok
15:55:12.0027 0x1558  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:55:12.0027 0x1558  adpu320 - ok
15:55:12.0058 0x1558  [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:55:12.0074 0x1558  AeLookupSvc - ok
15:55:12.0152 0x1558  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
15:55:12.0167 0x1558  AFD - ok
15:55:12.0245 0x1558  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
15:55:12.0245 0x1558  agp440 - ok
15:55:12.0261 0x1558  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
15:55:12.0276 0x1558  ALG - ok
15:55:12.0308 0x1558  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:55:12.0308 0x1558  aliide - ok
15:55:12.0354 0x1558  [ 05120427227F6F088ECA75942ED7ACA9, BD25436EB43C6718F5E6A4C3C24831189D3A893DC87AA0ADED993B7C3126F2E9 ] amdhub30        C:\Windows\system32\DRIVERS\amdhub30.sys
15:55:12.0354 0x1558  amdhub30 - ok
15:55:12.0386 0x1558  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
15:55:12.0401 0x1558  amdide - ok
15:55:12.0417 0x1558  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:55:12.0417 0x1558  AmdK8 - ok
15:55:12.0448 0x1558  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:55:12.0448 0x1558  AmdPPM - ok
15:55:12.0495 0x1558  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:55:12.0495 0x1558  amdsata - ok
15:55:12.0526 0x1558  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:55:12.0542 0x1558  amdsbs - ok
15:55:12.0604 0x1558  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:55:12.0604 0x1558  amdxata - ok
15:55:12.0666 0x1558  [ 758DBA8C59E983E1A8843198ED0B1267, 4B40F8007B0ECA4FDC6766C18841CB8DE1490DD444D77A3C91893037A8B10CB0 ] amdxhc          C:\Windows\system32\DRIVERS\amdxhc.sys
15:55:12.0682 0x1558  amdxhc - ok
15:55:12.0729 0x1558  [ 2834CC82613CEA492261885D1CAA25A0, 9B05744ECE77BEF8E6D6EDB99FAC404161715FBD2A5841554496DD8BBF334D02 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
15:55:12.0729 0x1558  amd_sata - ok
15:55:12.0744 0x1558  [ A2844D704DB69FC92F5FA8AE9E3316A4, 3909E45814C24616921809D25EC63DC91292686694F904C8227AF150B6490EE2 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
15:55:12.0760 0x1558  amd_xata - ok
15:55:12.0885 0x1558  [ 9FE1AC875A7AD7B7FF28FEC8B754968D, EEE04D4073E49332C85028B62E8A035EAA2284526A3F3820133492C8F8CBA3D5 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
15:55:12.0900 0x1558  AntiVirMailService - ok
15:55:13.0025 0x1558  [ E20B4F23EB153635D67944F63454EC84, FEE76A74767CDB33415C64F08AE1FF248F505AF22C1F1BA1EBB5CC6A75E3926F ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:55:13.0041 0x1558  AntiVirSchedulerService - ok
15:55:13.0119 0x1558  [ E20B4F23EB153635D67944F63454EC84, FEE76A74767CDB33415C64F08AE1FF248F505AF22C1F1BA1EBB5CC6A75E3926F ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:55:13.0119 0x1558  AntiVirService - ok
15:55:13.0197 0x1558  [ D9A8EE3F4A1E604B9315B34A5AA4569E, 287BA8FA1949646E03D39F36F50C016251358A8A454EE19D249E76A723F1455E ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
15:55:13.0212 0x1558  AntiVirWebService - ok
15:55:13.0259 0x1558  [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID           C:\Windows\system32\drivers\appid.sys
15:55:13.0259 0x1558  AppID - ok
15:55:13.0290 0x1558  [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:55:13.0290 0x1558  AppIDSvc - ok
15:55:13.0353 0x1558  [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo         C:\Windows\System32\appinfo.dll
15:55:13.0353 0x1558  Appinfo - ok
15:55:13.0446 0x1558  [ 6EB87FDB59AABF6D19C927492DEA0D36, 36168F8CC75D16917A30FA1FACF57659BC2ADF870D20DEE93F851D5348E605BB ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:55:13.0446 0x1558  Apple Mobile Device Service - ok
15:55:13.0493 0x1558  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
15:55:13.0509 0x1558  arc - ok
15:55:13.0509 0x1558  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:55:13.0524 0x1558  arcsas - ok
15:55:13.0602 0x1558  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:55:13.0618 0x1558  aspnet_state - ok
15:55:13.0634 0x1558  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:55:13.0649 0x1558  AsyncMac - ok
15:55:13.0696 0x1558  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:55:13.0696 0x1558  atapi - ok
15:55:13.0790 0x1558  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:55:13.0805 0x1558  AudioEndpointBuilder - ok
15:55:13.0821 0x1558  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:55:13.0836 0x1558  AudioSrv - ok
15:55:13.0930 0x1558  [ 24843902369DC82B4691F816F08F2938, 330E22C6007B10FE9C232BBCA2F388ADA17DEDBAA11BEC2A70377A4466DFB6FA ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
15:55:13.0930 0x1558  avgntflt - ok
15:55:14.0024 0x1558  [ 043E5F34C3878C844568658B79B3E55C, D13D8FC5205562E02F252C0EE1AB2236C9212445D6EC3715041EBDF993CB467F ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
15:55:14.0024 0x1558  avipbb - ok
15:55:14.0148 0x1558  [ 24680B56D862F1DE30C13FC64B80F568, 4B30EB73369691B915F5615E1BF6C95B070E184BC42BCC505C94410014A04EB3 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
15:55:14.0164 0x1558  Avira.ServiceHost - ok
15:55:14.0195 0x1558  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
15:55:14.0211 0x1558  avkmgr - ok
15:55:14.0273 0x1558  [ 13253E5E3B6BDF945B63B336A8C9489B, 671C716E43F89D4BDDAA2BE045CDEBBB569C85BC2BA334E1F550187B79A7740D ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
15:55:14.0273 0x1558  avnetflt - ok
15:55:14.0320 0x1558  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:55:14.0320 0x1558  AxInstSV - ok
15:55:14.0398 0x1558  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:55:14.0414 0x1558  b06bdrv - ok
15:55:14.0460 0x1558  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:55:14.0476 0x1558  b57nd60a - ok
15:55:14.0554 0x1558  [ E49110A58A32E9450356686A95DD7763, 0C16196F48184907B92167AD6C4DA3A6039711AB99CB0D2D1BD37F935696303B ] BCMH43XX        C:\Windows\system32\DRIVERS\bcmwlhigh664.sys
15:55:14.0570 0x1558  BCMH43XX - ok
15:55:14.0601 0x1558  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:55:14.0601 0x1558  BDESVC - ok
15:55:14.0616 0x1558  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:55:14.0616 0x1558  Beep - ok
15:55:14.0694 0x1558  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
15:55:14.0710 0x1558  BFE - ok
15:55:14.0835 0x1558  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
15:55:14.0850 0x1558  BITS - ok
15:55:14.0882 0x1558  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
15:55:14.0897 0x1558  blbdrive - ok
15:55:14.0928 0x1558  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:55:14.0944 0x1558  Bonjour Service - ok
15:55:14.0960 0x1558  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:55:14.0960 0x1558  bowser - ok
15:55:14.0975 0x1558  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:55:14.0975 0x1558  BrFiltLo - ok
15:55:14.0991 0x1558  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:55:14.0991 0x1558  BrFiltUp - ok
15:55:15.0022 0x1558  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
15:55:15.0022 0x1558  Browser - ok
15:55:15.0069 0x1558  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:55:15.0069 0x1558  Brserid - ok
15:55:15.0084 0x1558  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:55:15.0100 0x1558  BrSerWdm - ok
15:55:15.0100 0x1558  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:55:15.0100 0x1558  BrUsbMdm - ok
15:55:15.0116 0x1558  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:55:15.0116 0x1558  BrUsbSer - ok
15:55:15.0116 0x1558  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
15:55:15.0131 0x1558  BTHMODEM - ok
15:55:15.0178 0x1558  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
15:55:15.0178 0x1558  bthserv - ok
15:55:15.0194 0x1558  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:55:15.0194 0x1558  cdfs - ok
15:55:15.0225 0x1558  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:55:15.0240 0x1558  cdrom - ok
15:55:15.0256 0x1558  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:55:15.0256 0x1558  CertPropSvc - ok
15:55:15.0287 0x1558  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
15:55:15.0287 0x1558  circlass - ok
15:55:15.0334 0x1558  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
15:55:15.0334 0x1558  CLFS - ok
15:55:15.0428 0x1558  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:55:15.0428 0x1558  clr_optimization_v2.0.50727_32 - ok
15:55:15.0506 0x1558  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:55:15.0506 0x1558  clr_optimization_v2.0.50727_64 - ok
15:55:15.0584 0x1558  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:55:15.0584 0x1558  clr_optimization_v4.0.30319_32 - ok
15:55:15.0630 0x1558  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:55:15.0630 0x1558  clr_optimization_v4.0.30319_64 - ok
15:55:15.0662 0x1558  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
15:55:15.0662 0x1558  CmBatt - ok
15:55:15.0708 0x1558  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:55:15.0708 0x1558  cmdide - ok
15:55:15.0802 0x1558  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
15:55:15.0833 0x1558  CNG - ok
15:55:15.0896 0x1558  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:55:15.0911 0x1558  Compbatt - ok
15:55:15.0942 0x1558  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:55:15.0942 0x1558  CompositeBus - ok
15:55:15.0958 0x1558  COMSysApp - ok
15:55:15.0974 0x1558  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:55:15.0974 0x1558  crcdisk - ok
15:55:16.0020 0x1558  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:55:16.0036 0x1558  CryptSvc - ok
15:55:16.0067 0x1558  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:55:16.0083 0x1558  DcomLaunch - ok
15:55:16.0161 0x1558  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
15:55:16.0176 0x1558  defragsvc - ok
15:55:16.0239 0x1558  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:55:16.0239 0x1558  DfsC - ok
15:55:16.0270 0x1558  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:55:16.0286 0x1558  Dhcp - ok
15:55:16.0426 0x1558  [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack       C:\Windows\system32\diagtrack.dll
15:55:16.0473 0x1558  DiagTrack - ok
15:55:16.0488 0x1558  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
15:55:16.0488 0x1558  discache - ok
15:55:16.0520 0x1558  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
15:55:16.0535 0x1558  Disk - ok
15:55:16.0551 0x1558  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:55:16.0551 0x1558  Dnscache - ok
15:55:16.0566 0x1558  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:55:16.0582 0x1558  dot3svc - ok
15:55:16.0598 0x1558  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
15:55:16.0598 0x1558  DPS - ok
15:55:16.0629 0x1558  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:55:16.0629 0x1558  drmkaud - ok
15:55:16.0676 0x1558  [ 6A0E850DDCB136AA3D2FB7234382DF12, C01863E95F45E1B74AC65C9CD12C8DC769299218255B3C94E3EBF58C4D79FEF3 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
15:55:16.0691 0x1558  dtsoftbus01 - ok
15:55:16.0769 0x1558  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:55:16.0785 0x1558  DXGKrnl - ok
15:55:16.0832 0x1558  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
15:55:16.0832 0x1558  EapHost - ok
15:55:16.0956 0x1558  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:55:17.0097 0x1558  ebdrv - ok
15:55:17.0128 0x1558  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] EFS             C:\Windows\System32\lsass.exe
15:55:17.0144 0x1558  EFS - ok
15:55:17.0237 0x1558  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:55:17.0253 0x1558  ehRecvr - ok
15:55:17.0268 0x1558  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
15:55:17.0268 0x1558  ehSched - ok
15:55:17.0315 0x1558  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:55:17.0331 0x1558  elxstor - ok
15:55:17.0378 0x1558  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:55:17.0378 0x1558  ErrDev - ok
15:55:17.0456 0x1558  esgiguard - ok
15:55:17.0502 0x1558  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
15:55:17.0518 0x1558  EventSystem - ok
15:55:17.0565 0x1558  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:55:17.0580 0x1558  exfat - ok
15:55:17.0643 0x1558  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:55:17.0658 0x1558  fastfat - ok
15:55:17.0705 0x1558  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
15:55:17.0721 0x1558  Fax - ok
15:55:17.0736 0x1558  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
15:55:17.0752 0x1558  fdc - ok
15:55:17.0768 0x1558  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
15:55:17.0768 0x1558  fdPHost - ok
15:55:17.0783 0x1558  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:55:17.0783 0x1558  FDResPub - ok
15:55:17.0799 0x1558  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:55:17.0799 0x1558  FileInfo - ok
15:55:17.0814 0x1558  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:55:17.0814 0x1558  Filetrace - ok
15:55:17.0830 0x1558  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:55:17.0830 0x1558  flpydisk - ok
15:55:17.0861 0x1558  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:55:17.0861 0x1558  FltMgr - ok
15:55:17.0986 0x1558  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
15:55:18.0048 0x1558  FontCache - ok
15:55:18.0095 0x1558  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:55:18.0095 0x1558  FontCache3.0.0.0 - ok
15:55:18.0111 0x1558  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:55:18.0111 0x1558  FsDepends - ok
15:55:18.0142 0x1558  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:55:18.0142 0x1558  Fs_Rec - ok
15:55:18.0204 0x1558  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:55:18.0220 0x1558  fvevol - ok
15:55:18.0251 0x1558  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:55:18.0251 0x1558  gagp30kx - ok
15:55:18.0360 0x1558  [ 7300D171A5A32456F990AC79608404E5, 4B7034B92057CE0CCE343C0D3C8285BAE4903B7D2EB972D0B0960B1487F79A21 ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
15:55:18.0376 0x1558  Garmin Core Update Service - ok
15:55:18.0407 0x1558  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:55:18.0407 0x1558  GEARAspiWDM - ok
15:55:18.0454 0x1558  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
15:55:18.0485 0x1558  gpsvc - ok
15:55:18.0563 0x1558  [ C9B2D1D3F86FD3673EF847DEF73B6F9E, 9D3822A6464F685F770F8D02A8AE623A676888F135E8425C3BAF1CC077429A7F ] GREGService     C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
15:55:18.0579 0x1558  GREGService - ok
15:55:18.0626 0x1558  [ B9893A68032A6D9ADDB5B98287C630F7, F0280764D7B31F1EA634E91397229B1C064A7C1B3A77A6BBD123CEA74180789F ] grmnusb         C:\Windows\system32\drivers\grmnusb.sys
15:55:18.0626 0x1558  grmnusb - ok
15:55:18.0641 0x1558  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:55:18.0641 0x1558  hcw85cir - ok
15:55:18.0688 0x1558  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:55:18.0704 0x1558  HdAudAddService - ok
15:55:18.0735 0x1558  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:55:18.0750 0x1558  HDAudBus - ok
15:55:18.0766 0x1558  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:55:18.0766 0x1558  HidBatt - ok
15:55:18.0797 0x1558  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:55:18.0813 0x1558  HidBth - ok
15:55:18.0828 0x1558  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:55:18.0828 0x1558  HidIr - ok
15:55:18.0844 0x1558  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
15:55:18.0860 0x1558  hidserv - ok
15:55:18.0891 0x1558  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:55:18.0891 0x1558  HidUsb - ok
15:55:18.0938 0x1558  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:55:18.0938 0x1558  hkmsvc - ok
15:55:18.0969 0x1558  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:55:18.0984 0x1558  HomeGroupListener - ok
15:55:19.0000 0x1558  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:55:19.0000 0x1558  HomeGroupProvider - ok
15:55:19.0031 0x1558  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:55:19.0031 0x1558  HpSAMD - ok
15:55:19.0094 0x1558  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\Windows\system32\Drivers\ANDROIDUSB.sys
15:55:19.0094 0x1558  HTCAND64 - ok
15:55:19.0187 0x1558  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:55:19.0203 0x1558  HTTP - ok
15:55:19.0218 0x1558  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:55:19.0218 0x1558  hwpolicy - ok
15:55:19.0250 0x1558  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
15:55:19.0250 0x1558  i8042prt - ok
15:55:19.0281 0x1558  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:55:19.0296 0x1558  iaStorV - ok
15:55:19.0359 0x1558  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:55:19.0390 0x1558  idsvc - ok
15:55:19.0421 0x1558  IEEtwCollectorService - ok
15:55:19.0452 0x1558  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:55:19.0452 0x1558  iirsp - ok
15:55:19.0546 0x1558  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
15:55:19.0562 0x1558  IKEEXT - ok
15:55:19.0733 0x1558  [ 47E33B715F7A1723C3536E48FDFD0E21, 7A9EBDD20D3F864A4AAE3B9EAFFB93CC51D165AFAD3EE971DC1995B3BF466444 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:55:19.0905 0x1558  IntcAzAudAddService - ok
15:55:19.0936 0x1558  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:55:19.0936 0x1558  intelide - ok
15:55:19.0952 0x1558  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
15:55:19.0952 0x1558  intelppm - ok
15:55:19.0983 0x1558  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:55:19.0998 0x1558  IPBusEnum - ok
15:55:20.0030 0x1558  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:55:20.0030 0x1558  IpFilterDriver - ok
15:55:20.0108 0x1558  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:55:20.0123 0x1558  iphlpsvc - ok
15:55:20.0139 0x1558  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:55:20.0139 0x1558  IPMIDRV - ok
15:55:20.0170 0x1558  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:55:20.0170 0x1558  IPNAT - ok
15:55:20.0264 0x1558  [ 2208D673C5D4B22EB0235EA1EC6269CC, 3E73032D67B3B740E11CEA0748CDFFBE35619CBF1AC1C3D86EF089CA326D7918 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:55:20.0279 0x1558  iPod Service - ok
15:55:20.0295 0x1558  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:55:20.0295 0x1558  IRENUM - ok
15:55:20.0326 0x1558  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:55:20.0326 0x1558  isapnp - ok
15:55:20.0373 0x1558  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:55:20.0388 0x1558  iScsiPrt - ok
15:55:20.0404 0x1558  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:55:20.0404 0x1558  kbdclass - ok
15:55:20.0435 0x1558  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:55:20.0435 0x1558  kbdhid - ok
15:55:20.0466 0x1558  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] KeyIso          C:\Windows\system32\lsass.exe
15:55:20.0466 0x1558  KeyIso - ok
15:55:20.0513 0x1558  [ 67A1743377EBB5D9A370A8C2086CFDCC, 2F0FD6C1969B1EEEEFFC1A8F972E1E90F1AD9558FF00EC159BC19ED927FD4BF5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:55:20.0529 0x1558  KSecDD - ok
15:55:20.0544 0x1558  [ 522A1595D5701800DD41B2D472F5AAED, B62924AE94A5AC454AD6057BC133D717BB1C6445BE36D6BECAB76E1600F60C33 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:55:20.0544 0x1558  KSecPkg - ok
15:55:20.0560 0x1558  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:55:20.0560 0x1558  ksthunk - ok
15:55:20.0591 0x1558  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:55:20.0607 0x1558  KtmRm - ok
15:55:20.0654 0x1558  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:55:20.0685 0x1558  LanmanServer - ok
15:55:20.0700 0x1558  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:55:20.0716 0x1558  LanmanWorkstation - ok
15:55:20.0763 0x1558  [ B705C7097F9A0EC941D02DCE7C7D426C, 1A137BEA25BF7BA1EF190212CD6E556B53293D6388E9F7E790BF53F641F3CF89 ] Live Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
15:55:20.0763 0x1558  Live Updater Service - ok
15:55:20.0810 0x1558  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:55:20.0810 0x1558  lltdio - ok
15:55:20.0841 0x1558  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:55:20.0856 0x1558  lltdsvc - ok
15:55:20.0872 0x1558  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:55:20.0888 0x1558  lmhosts - ok
15:55:20.0934 0x1558  [ 28AA6E8F6CA9F3716AC8A310DFBAB1B5, 4452084D2211CEDC7CED7FC02D04A28EB2211BEAD97271F142DD95EF2B3C6D58 ] Logi_Headset_DFU C:\Windows\system32\Drivers\lhusbdfuamd64.sys
15:55:20.0934 0x1558  Logi_Headset_DFU - ok
15:55:20.0997 0x1558  [ 7F3014B726FE92DAAA199F35EC3A69D3, 9B56CCF790FC61B92A19B0CE33E2C2690B9F8E615FE6977A6558E24FD3EE507D ] LPCFilter       C:\Windows\system32\DRIVERS\LPCFilter.sys
15:55:20.0997 0x1558  LPCFilter - ok
15:55:21.0044 0x1558  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:55:21.0044 0x1558  LSI_FC - ok
15:55:21.0059 0x1558  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:55:21.0075 0x1558  LSI_SAS - ok
15:55:21.0090 0x1558  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:55:21.0090 0x1558  LSI_SAS2 - ok
15:55:21.0122 0x1558  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:55:21.0122 0x1558  LSI_SCSI - ok
15:55:21.0153 0x1558  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:55:21.0153 0x1558  luafv - ok
15:55:21.0200 0x1558  [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
15:55:21.0200 0x1558  MBAMProtector - ok
15:55:21.0293 0x1558  [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService     C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
15:55:21.0371 0x1558  MBAMService - ok
15:55:21.0402 0x1558  [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
15:55:21.0402 0x1558  MBAMWebAccessControl - ok
15:55:21.0418 0x1558  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:55:21.0434 0x1558  Mcx2Svc - ok
15:55:21.0434 0x1558  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:55:21.0449 0x1558  megasas - ok
15:55:21.0480 0x1558  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:55:21.0496 0x1558  MegaSR - ok
15:55:21.0574 0x1558  Microsoft SharePoint Workspace Audit Service - ok
15:55:21.0605 0x1558  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
15:55:21.0605 0x1558  MMCSS - ok
15:55:21.0621 0x1558  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
15:55:21.0621 0x1558  Modem - ok
15:55:21.0652 0x1558  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:55:21.0652 0x1558  monitor - ok
15:55:21.0683 0x1558  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:55:21.0683 0x1558  mouclass - ok
15:55:21.0699 0x1558  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:55:21.0699 0x1558  mouhid - ok
15:55:21.0746 0x1558  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:55:21.0746 0x1558  mountmgr - ok
15:55:21.0824 0x1558  [ CC11EEB7AF4617D65DF0E9A21FC1ABD0, A683A5FB26E1B9FB4EEB40A9C7186F8433E3FB0A45848DF6102EF07B4DC75AC8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:55:21.0839 0x1558  MozillaMaintenance - ok
15:55:21.0886 0x1558  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:55:21.0902 0x1558  mpio - ok
15:55:21.0917 0x1558  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:55:21.0933 0x1558  mpsdrv - ok
15:55:21.0980 0x1558  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:55:21.0995 0x1558  MpsSvc - ok
15:55:22.0026 0x1558  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:55:22.0042 0x1558  MRxDAV - ok
15:55:22.0089 0x1558  [ B2081803D510DCE174992BA880EDCA70, 37DB53C9756EC03EB7165DEB58251615D70B7C86DF32A54DE25ADAF30A04D792 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:55:22.0089 0x1558  mrxsmb - ok
15:55:22.0120 0x1558  [ 552FA62B0EFECD22D8D52499324BCA4F, C3A02C9C30C36928AC7B1025496544967187A05BEF5D100B54F2C0155E47145C ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:55:22.0120 0x1558  mrxsmb10 - ok
15:55:22.0167 0x1558  [ 97687971F9CB30E2633DE0F1296B9F61, 865DA87523E4C32D65D55D5475A5CDDFA10699780DA500E6D606384FB3BEB1BE ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:55:22.0167 0x1558  mrxsmb20 - ok
15:55:22.0198 0x1558  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:55:22.0198 0x1558  msahci - ok
15:55:22.0245 0x1558  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:55:22.0245 0x1558  msdsm - ok
15:55:22.0260 0x1558  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
15:55:22.0276 0x1558  MSDTC - ok
15:55:22.0292 0x1558  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:55:22.0292 0x1558  Msfs - ok
15:55:22.0323 0x1558  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:55:22.0323 0x1558  mshidkmdf - ok
15:55:22.0338 0x1558  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:55:22.0338 0x1558  msisadrv - ok
15:55:22.0370 0x1558  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:55:22.0385 0x1558  MSiSCSI - ok
15:55:22.0385 0x1558  msiserver - ok
15:55:22.0401 0x1558  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:55:22.0416 0x1558  MSKSSRV - ok
15:55:22.0432 0x1558  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:55:22.0432 0x1558  MSPCLOCK - ok
15:55:22.0432 0x1558  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:55:22.0432 0x1558  MSPQM - ok
15:55:22.0463 0x1558  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:55:22.0479 0x1558  MsRPC - ok
15:55:22.0510 0x1558  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:55:22.0510 0x1558  mssmbios - ok
15:55:22.0526 0x1558  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:55:22.0526 0x1558  MSTEE - ok
15:55:22.0541 0x1558  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:55:22.0541 0x1558  MTConfig - ok
15:55:22.0557 0x1558  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
15:55:22.0557 0x1558  Mup - ok
15:55:22.0588 0x1558  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
15:55:22.0604 0x1558  napagent - ok
15:55:22.0650 0x1558  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:55:22.0650 0x1558  NativeWifiP - ok
15:55:22.0744 0x1558  [ 13AA2130F2A104DD775EAD0F0EE5417B, EBA07599FC2D10750CE6372EA6BA94EDDAFFF732223A1135F1971B958A6B57A2 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
15:55:22.0760 0x1558  NAUpdate - ok
15:55:22.0822 0x1558  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:55:22.0853 0x1558  NDIS - ok
15:55:22.0869 0x1558  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:55:22.0869 0x1558  NdisCap - ok
15:55:22.0900 0x1558  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:55:22.0900 0x1558  NdisTapi - ok
15:55:22.0916 0x1558  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:55:22.0916 0x1558  Ndisuio - ok
15:55:22.0947 0x1558  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:55:22.0947 0x1558  NdisWan - ok
15:55:22.0962 0x1558  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:55:22.0962 0x1558  NDProxy - ok
15:55:23.0009 0x1558  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
15:55:23.0009 0x1558  Netaapl - ok
15:55:23.0040 0x1558  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:55:23.0040 0x1558  NetBIOS - ok
15:55:23.0056 0x1558  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:55:23.0072 0x1558  NetBT - ok
15:55:23.0087 0x1558  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] Netlogon        C:\Windows\system32\lsass.exe
15:55:23.0087 0x1558  Netlogon - ok
15:55:23.0134 0x1558  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
15:55:23.0150 0x1558  Netman - ok
15:55:23.0212 0x1558  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:55:23.0228 0x1558  NetMsmqActivator - ok
15:55:23.0243 0x1558  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:55:23.0243 0x1558  NetPipeActivator - ok
15:55:23.0259 0x1558  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
15:55:23.0274 0x1558  netprofm - ok
15:55:23.0430 0x1558  [ 5880E414C1DEDAAB6F5B202A1C916EE6, 34FE773C222EDD5CE48476E80660978DEAB09C5273B50E6113B89C9F2BCDC04F ] netr28ux        C:\Windows\system32\DRIVERS\netr28ux.sys
15:55:23.0540 0x1558  netr28ux - ok
15:55:23.0540 0x1558  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:55:23.0555 0x1558  NetTcpActivator - ok
15:55:23.0555 0x1558  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:55:23.0555 0x1558  NetTcpPortSharing - ok
15:55:23.0571 0x1558  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:55:23.0571 0x1558  nfrd960 - ok
15:55:23.0618 0x1558  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:55:23.0633 0x1558  NlaSvc - ok
15:55:23.0664 0x1558  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:55:23.0664 0x1558  Npfs - ok
15:55:23.0664 0x1558  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
15:55:23.0680 0x1558  nsi - ok
15:55:23.0680 0x1558  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:55:23.0680 0x1558  nsiproxy - ok
15:55:23.0789 0x1558  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:55:23.0898 0x1558  Ntfs - ok
15:55:23.0914 0x1558  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
15:55:23.0930 0x1558  Null - ok
15:55:23.0976 0x1558  [ B9E5A80F646DDFEF158773722A466EA3, 028979FE600D17DA70445F44D81FAE4EDA3478FCC81FA5506133CCAC37C4E2BF ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
15:55:23.0992 0x1558  NVHDA - ok
15:55:24.0398 0x1558  [ BF769EC1CC472FAD4C6EAEEB96ED857E, BBF8BA2B703BF4C36DFC7F69B4D8E477C8162BEC492C6C5D1A7751C19305ABE8 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:55:24.0756 0x1558  nvlddmkm - ok
15:55:24.0928 0x1558  [ D2FE0376285A783693469422678E878B, 9F0B1A6694CA7BDAAA3B26BE1D344A3FC7B98162518A259C273360EFF075CD75 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
15:55:24.0959 0x1558  NvNetworkService - ok
15:55:24.0990 0x1558  [ 8D6A20BA87597CC2DBC3C34755686233, 3E0440289EB3FD553C347048A96AFFB6F11A5C9359CDBCF8DF28A2DD7337B036 ] nvpciflt        C:\Windows\system32\DRIVERS\nvpciflt.sys
15:55:24.0990 0x1558  nvpciflt - ok
15:55:25.0022 0x1558  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:55:25.0037 0x1558  nvraid - ok
15:55:25.0068 0x1558  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:55:25.0084 0x1558  nvstor - ok
15:55:25.0724 0x1558  [ 4F0E2990DB12849D428DE7B0AC5D92B9, 77A058EFFE07E46F0DFF419DC1C204C245598E6A6F6EDFF545802D9C1573EAA0 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
15:55:26.0067 0x1558  NvStreamSvc - ok
15:55:26.0176 0x1558  [ 039ACFA07F59DB2109BB6A2C0FA2C0D9, E641179FCDB83BBFFADDDECD646F69D667F494BFC41FCE1F035EE78A944C6D5B ] NVSvc           C:\Windows\system32\nvvsvc.exe
15:55:26.0192 0x1558  NVSvc - ok
15:55:26.0238 0x1558  [ DBFE7B2DF103F74AE51840B3C5F25FE9, 436CAA417FD24BA870F117FA4BABA2AB694825795508BCFCC8C927CC2D5BBC5E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
15:55:26.0254 0x1558  nvvad_WaveExtensible - ok
15:55:26.0270 0x1558  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:55:26.0285 0x1558  nv_agp - ok
15:55:26.0301 0x1558  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:55:26.0316 0x1558  ohci1394 - ok
15:55:26.0441 0x1558  [ 107383EF78A7DC444F62594C927536E6, 7B1D2E3FE5D53AC168BE455881971E001845DB5BCADB4F0A49BB2DA8BCFFBACE ] OpenVPNService  C:\Program Files\OpenVPN\bin\openvpnserv.exe
15:55:26.0441 0x1558  OpenVPNService - ok
15:55:26.0550 0x1558  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:55:26.0550 0x1558  ose - ok
15:55:26.0816 0x1558  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:55:26.0972 0x1558  osppsvc - ok
15:55:27.0018 0x1558  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:55:27.0018 0x1558  p2pimsvc - ok
15:55:27.0050 0x1558  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
15:55:27.0050 0x1558  p2psvc - ok
15:55:27.0081 0x1558  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
15:55:27.0081 0x1558  Parport - ok
15:55:27.0096 0x1558  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:55:27.0112 0x1558  partmgr - ok
15:55:27.0143 0x1558  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:55:27.0159 0x1558  PcaSvc - ok
15:55:27.0174 0x1558  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
15:55:27.0174 0x1558  pci - ok
15:55:27.0221 0x1558  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:55:27.0221 0x1558  pciide - ok
15:55:27.0268 0x1558  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:55:27.0284 0x1558  pcmcia - ok
15:55:27.0299 0x1558  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:55:27.0299 0x1558  pcw - ok
15:55:27.0330 0x1558  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:55:27.0346 0x1558  PEAUTH - ok
15:55:27.0440 0x1558  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:55:27.0440 0x1558  PerfHost - ok
15:55:27.0564 0x1558  [ 4D62CA9538BEC60C621EA693F3F4E3F5, 6D1333765323B8E1C7ECA9334858EE8EBEEDBB90C362313AF0D9A567157087BB ] PGRUSB          C:\Windows\system32\DRIVERS\PGRXHCI.sys
15:55:27.0580 0x1558  PGRUSB - ok
15:55:27.0674 0x1558  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
15:55:27.0736 0x1558  pla - ok
15:55:27.0814 0x1558  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:55:27.0830 0x1558  PlugPlay - ok
15:55:27.0892 0x1558  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:55:27.0892 0x1558  PNRPAutoReg - ok
15:55:27.0939 0x1558  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:55:27.0939 0x1558  PNRPsvc - ok
15:55:28.0032 0x1558  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:55:28.0048 0x1558  PolicyAgent - ok
15:55:28.0064 0x1558  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
15:55:28.0064 0x1558  Power - ok
15:55:28.0095 0x1558  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:55:28.0095 0x1558  PptpMiniport - ok
15:55:28.0110 0x1558  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
15:55:28.0110 0x1558  Processor - ok
15:55:28.0142 0x1558  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:55:28.0157 0x1558  ProfSvc - ok
15:55:28.0173 0x1558  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:55:28.0173 0x1558  ProtectedStorage - ok
15:55:28.0188 0x1558  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:55:28.0188 0x1558  Psched - ok
15:55:28.0204 0x1558  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
15:55:28.0220 0x1558  PxHlpa64 - ok
15:55:28.0313 0x1558  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:55:28.0376 0x1558  ql2300 - ok
15:55:28.0391 0x1558  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:55:28.0407 0x1558  ql40xx - ok
15:55:28.0422 0x1558  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
15:55:28.0422 0x1558  QWAVE - ok
15:55:28.0438 0x1558  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:55:28.0438 0x1558  QWAVEdrv - ok
15:55:28.0547 0x1558  [ 3FC8252625F2574036777D2981F839EE, A12E20C7565C96EA16C4A97190220442F25D92675AD18CB808F6B450184D3D1A ] RalinkRegistryWriter C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry.exe
15:55:28.0578 0x1558  RalinkRegistryWriter - ok
15:55:28.0610 0x1558  [ 3A6F58A249DF7466F9844F70499627F7, 0BD9A9D92CF33E5FF9127CF73DB821A51DB15299AB0AD7FB6CA3C63D7C9FC4DC ] RalinkRegistryWriter64 C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry64.exe
15:55:28.0625 0x1558  RalinkRegistryWriter64 - ok
15:55:28.0641 0x1558  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:55:28.0641 0x1558  RasAcd - ok
15:55:28.0656 0x1558  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:55:28.0656 0x1558  RasAgileVpn - ok
15:55:28.0672 0x1558  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
15:55:28.0672 0x1558  RasAuto - ok
15:55:28.0688 0x1558  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:55:28.0688 0x1558  Rasl2tp - ok
15:55:28.0719 0x1558  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
15:55:28.0719 0x1558  RasMan - ok
15:55:28.0734 0x1558  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:55:28.0734 0x1558  RasPppoe - ok
15:55:28.0750 0x1558  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:55:28.0766 0x1558  RasSstp - ok
15:55:28.0781 0x1558  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:55:28.0797 0x1558  rdbss - ok
15:55:28.0812 0x1558  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
15:55:28.0812 0x1558  rdpbus - ok
15:55:28.0812 0x1558  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:55:28.0812 0x1558  RDPCDD - ok
15:55:28.0844 0x1558  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:55:28.0844 0x1558  RDPENCDD - ok
15:55:28.0844 0x1558  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:55:28.0844 0x1558  RDPREFMP - ok
15:55:28.0922 0x1558  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:55:28.0922 0x1558  RdpVideoMiniport - ok
15:55:28.0984 0x1558  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:55:29.0000 0x1558  RDPWD - ok
15:55:29.0031 0x1558  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:55:29.0046 0x1558  rdyboost - ok
15:55:29.0062 0x1558  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:55:29.0078 0x1558  RemoteAccess - ok
15:55:29.0109 0x1558  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:55:29.0124 0x1558  RemoteRegistry - ok
15:55:29.0140 0x1558  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:55:29.0156 0x1558  RpcEptMapper - ok
15:55:29.0171 0x1558  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
15:55:29.0187 0x1558  RpcLocator - ok
15:55:29.0218 0x1558  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
15:55:29.0234 0x1558  RpcSs - ok
15:55:29.0249 0x1558  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:55:29.0249 0x1558  rspndr - ok
15:55:29.0343 0x1558  [ DCF7221D6588EDA8CD77CB27AE9B1844, 7741A4F513952CC3C4D5056958D0D50F8F2A9D3142C7478707F73A83D3CDE01C ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:55:29.0374 0x1558  RTL8167 - ok
15:55:29.0468 0x1558  [ 665BA29357882A8C5980B15B3A0123A4, C03D5140E4C8B469D30E3D82CDAEB2F1BA2EB671F146094166222B40993185C6 ] RTL8192cu       C:\Windows\system32\DRIVERS\RTL8192cu.sys
15:55:29.0483 0x1558  RTL8192cu - ok
15:55:29.0561 0x1558  [ FC00C0DE6DC83DE1B2B01420E2195B21, BA9670F67BEFE4DD39D9F98329AA69380E167383448C9488F4E500E0ECF22A97 ] RTL8192su       C:\Windows\system32\DRIVERS\RTL8192su.sys
15:55:29.0577 0x1558  RTL8192su - ok
15:55:29.0655 0x1558  [ 0AF4A0BBBE87A6287ECCCE7B7F694AA8, 343C00D83C3C879EE0A3DB10975417AD09CA0A8C86DBEA32412AF629A07B4FF7 ] RTSUER          C:\Windows\system32\Drivers\RtsUer.sys
15:55:29.0670 0x1558  RTSUER - ok
15:55:29.0733 0x1558  [ A53AD7D8005429E1E446A401F2BCA681, 2CE9CD30EE1B442F5F364E78DEF8AC109FB625A6010E8598EF24E4250DF19E80 ] S3XXx64         C:\Windows\system32\DRIVERS\S3XXx64.sys
15:55:29.0748 0x1558  S3XXx64 - ok
15:55:29.0764 0x1558  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] SamSs           C:\Windows\system32\lsass.exe
15:55:29.0764 0x1558  SamSs - ok
15:55:29.0795 0x1558  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:55:29.0795 0x1558  sbp2port - ok
15:55:29.0826 0x1558  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:55:29.0842 0x1558  SCardSvr - ok
15:55:29.0858 0x1558  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:55:29.0858 0x1558  scfilter - ok
15:55:29.0920 0x1558  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
15:55:30.0014 0x1558  Schedule - ok
15:55:30.0045 0x1558  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:55:30.0045 0x1558  SCPolicySvc - ok
15:55:30.0060 0x1558  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:55:30.0076 0x1558  SDRSVC - ok
15:55:30.0092 0x1558  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:55:30.0092 0x1558  secdrv - ok
15:55:30.0107 0x1558  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
15:55:30.0107 0x1558  seclogon - ok
15:55:30.0138 0x1558  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
15:55:30.0138 0x1558  SENS - ok
15:55:30.0138 0x1558  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:55:30.0154 0x1558  SensrSvc - ok
15:55:30.0170 0x1558  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
15:55:30.0170 0x1558  Serenum - ok
15:55:30.0185 0x1558  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
15:55:30.0185 0x1558  Serial - ok
15:55:30.0201 0x1558  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:55:30.0201 0x1558  sermouse - ok
15:55:30.0232 0x1558  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
15:55:30.0232 0x1558  SessionEnv - ok
15:55:30.0248 0x1558  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:55:30.0248 0x1558  sffdisk - ok
15:55:30.0263 0x1558  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:55:30.0263 0x1558  sffp_mmc - ok
15:55:30.0279 0x1558  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:55:30.0279 0x1558  sffp_sd - ok
15:55:30.0294 0x1558  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:55:30.0294 0x1558  sfloppy - ok
15:55:30.0326 0x1558  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:55:30.0341 0x1558  SharedAccess - ok
15:55:30.0372 0x1558  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:55:30.0372 0x1558  ShellHWDetection - ok
15:55:30.0404 0x1558  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:55:30.0404 0x1558  SiSRaid2 - ok
15:55:30.0419 0x1558  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:55:30.0419 0x1558  SiSRaid4 - ok
15:55:30.0450 0x1558  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:55:30.0450 0x1558  Smb - ok
15:55:30.0482 0x1558  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:55:30.0482 0x1558  SNMPTRAP - ok
15:55:30.0482 0x1558  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:55:30.0482 0x1558  spldr - ok
15:55:30.0528 0x1558  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
15:55:30.0544 0x1558  Spooler - ok
15:55:30.0669 0x1558  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
15:55:30.0778 0x1558  sppsvc - ok
15:55:30.0809 0x1558  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:55:30.0809 0x1558  sppuinotify - ok
15:55:30.0840 0x1558  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:55:30.0856 0x1558  srv - ok
15:55:30.0887 0x1558  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:55:30.0887 0x1558  srv2 - ok
15:55:30.0918 0x1558  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:55:30.0918 0x1558  srvnet - ok
15:55:30.0934 0x1558  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:55:30.0950 0x1558  SSDPSRV - ok
15:55:30.0965 0x1558  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:55:30.0965 0x1558  SstpSvc - ok
15:55:31.0059 0x1558  [ 3DBF9D2E5DE3A72B37AB27ABB79FEE69, 6E0A6FB32FE84078769497178DB667960507540F411111B6900A0F2D2B604512 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:55:31.0074 0x1558  Steam Client Service - ok
15:55:31.0199 0x1558  [ D2B4376F9F36C5873A6CF99EF5750724, 2A5C12EE3657D4A6819080549ADFA3288E0DAC975114D9466DCCC3ED922D2539 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:55:31.0215 0x1558  Stereo Service - ok
15:55:31.0231 0x1558  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:55:31.0231 0x1558  stexstor - ok
15:55:31.0309 0x1558  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
15:55:31.0324 0x1558  stisvc - ok
15:55:31.0355 0x1558  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:55:31.0355 0x1558  swenum - ok
15:55:31.0402 0x1558  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
15:55:31.0418 0x1558  swprv - ok
15:55:31.0511 0x1558  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
15:55:31.0574 0x1558  SysMain - ok
15:55:31.0589 0x1558  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:55:31.0589 0x1558  TabletInputService - ok
15:55:31.0636 0x1558  [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
15:55:31.0652 0x1558  tap0901 - ok
15:55:31.0683 0x1558  [ BD06799129D17F9BE08E2F6C168BBCF0, B115A49B14E241B4CE03274878A7ACFA9004603A08BD265BD7F75424E5FBB8F4 ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
15:55:31.0683 0x1558  taphss6 - ok
15:55:31.0730 0x1558  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:55:31.0745 0x1558  TapiSrv - ok
15:55:31.0761 0x1558  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
15:55:31.0761 0x1558  TBS - ok
15:55:31.0870 0x1558  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:55:31.0933 0x1558  Tcpip - ok
15:55:32.0011 0x1558  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:55:32.0042 0x1558  TCPIP6 - ok
15:55:32.0089 0x1558  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:55:32.0089 0x1558  tcpipreg - ok
15:55:32.0120 0x1558  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:55:32.0120 0x1558  TDPIPE - ok
15:55:32.0167 0x1558  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:55:32.0182 0x1558  TDTCP - ok
15:55:32.0213 0x1558  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:55:32.0229 0x1558  tdx - ok
15:55:32.0245 0x1558  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:55:32.0245 0x1558  TermDD - ok
15:55:32.0323 0x1558  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
15:55:32.0338 0x1558  TermService - ok
15:55:32.0354 0x1558  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
15:55:32.0354 0x1558  Themes - ok
15:55:32.0369 0x1558  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
15:55:32.0385 0x1558  THREADORDER - ok
15:55:32.0401 0x1558  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
15:55:32.0401 0x1558  TrkWks - ok
15:55:32.0463 0x1558  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:55:32.0479 0x1558  TrustedInstaller - ok
15:55:32.0510 0x1558  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:55:32.0510 0x1558  tssecsrv - ok
15:55:32.0541 0x1558  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:55:32.0541 0x1558  TsUsbFlt - ok
15:55:32.0572 0x1558  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
15:55:32.0588 0x1558  TsUsbGD - ok
15:55:32.0619 0x1558  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:55:32.0619 0x1558  tunnel - ok
15:55:32.0635 0x1558  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:55:32.0650 0x1558  uagp35 - ok
15:55:32.0681 0x1558  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:55:32.0697 0x1558  udfs - ok
15:55:32.0744 0x1558  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:55:32.0759 0x1558  UI0Detect - ok
15:55:32.0791 0x1558  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:55:32.0791 0x1558  uliagpkx - ok
15:55:32.0822 0x1558  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:55:32.0822 0x1558  umbus - ok
15:55:32.0853 0x1558  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:55:32.0853 0x1558  UmPass - ok
15:55:32.0884 0x1558  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
15:55:32.0900 0x1558  upnphost - ok
15:55:32.0962 0x1558  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:55:32.0962 0x1558  USBAAPL64 - ok
15:55:33.0025 0x1558  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
15:55:33.0025 0x1558  usbaudio - ok
15:55:33.0071 0x1558  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:55:33.0087 0x1558  usbccgp - ok
15:55:33.0134 0x1558  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:55:33.0134 0x1558  usbcir - ok
15:55:33.0149 0x1558  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:55:33.0165 0x1558  usbehci - ok
15:55:33.0227 0x1558  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:55:33.0227 0x1558  usbhub - ok
15:55:33.0243 0x1558  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
15:55:33.0259 0x1558  usbohci - ok
15:55:33.0259 0x1558  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:55:33.0259 0x1558  usbprint - ok
15:55:33.0290 0x1558  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:55:33.0290 0x1558  USBSTOR - ok
15:55:33.0321 0x1558  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:55:33.0321 0x1558  usbuhci - ok
15:55:33.0352 0x1558  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
15:55:33.0352 0x1558  UxSms - ok
15:55:33.0368 0x1558  [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] VaultSvc        C:\Windows\system32\lsass.exe
15:55:33.0368 0x1558  VaultSvc - ok
15:55:33.0415 0x1558  [ 8CD776EB77695524CCE594AAC3A71569, AEF6F9B0E5F67E87819EB0E9FA5220EEF247A160A2BF8511CEDC8D12A9D4D941 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
15:55:33.0415 0x1558  VBoxNetAdp - ok
15:55:33.0430 0x1558  VBoxNetFlt - ok
15:55:33.0461 0x1558  [ F0FAF3FB9B138F8CAFB65ECFFE9F4AB6, E0869E4E9271B484209BB44E6E17D99BE6CEA08A983132C0D69FA373202B14D7 ] vcd10bus        C:\Windows\system32\DRIVERS\vcd10bus.sys
15:55:33.0461 0x1558  vcd10bus - ok
15:55:33.0477 0x1558  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:55:33.0477 0x1558  vdrvroot - ok
15:55:33.0555 0x1558  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
15:55:33.0571 0x1558  vds - ok
15:55:33.0586 0x1558  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:55:33.0586 0x1558  vga - ok
15:55:33.0586 0x1558  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:55:33.0586 0x1558  VgaSave - ok
15:55:33.0617 0x1558  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:55:33.0617 0x1558  vhdmp - ok
15:55:33.0664 0x1558  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:55:33.0664 0x1558  viaide - ok
15:55:33.0695 0x1558  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:55:33.0711 0x1558  volmgr - ok
15:55:33.0742 0x1558  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:55:33.0742 0x1558  volmgrx - ok
15:55:33.0773 0x1558  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:55:33.0789 0x1558  volsnap - ok
15:55:33.0820 0x1558  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:55:33.0820 0x1558  vsmraid - ok
15:55:33.0898 0x1558  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
15:55:33.0961 0x1558  VSS - ok
15:55:33.0961 0x1558  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:55:33.0976 0x1558  vwifibus - ok
15:55:33.0992 0x1558  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:55:33.0992 0x1558  vwififlt - ok
15:55:34.0039 0x1558  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
15:55:34.0039 0x1558  vwifimp - ok
15:55:34.0070 0x1558  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
15:55:34.0085 0x1558  W32Time - ok
15:55:34.0117 0x1558  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:55:34.0117 0x1558  WacomPen - ok
15:55:34.0148 0x1558  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:55:34.0148 0x1558  WANARP - ok
15:55:34.0148 0x1558  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:55:34.0163 0x1558  Wanarpv6 - ok
15:55:34.0210 0x1558  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
15:55:34.0273 0x1558  wbengine - ok
15:55:34.0304 0x1558  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:55:34.0319 0x1558  WbioSrvc - ok
15:55:34.0335 0x1558  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:55:34.0351 0x1558  wcncsvc - ok
15:55:34.0366 0x1558  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:55:34.0382 0x1558  WcsPlugInService - ok
15:55:34.0382 0x1558  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
15:55:34.0382 0x1558  Wd - ok
15:55:34.0460 0x1558  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:55:34.0491 0x1558  Wdf01000 - ok
15:55:34.0522 0x1558  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:55:34.0538 0x1558  WdiServiceHost - ok
15:55:34.0538 0x1558  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:55:34.0538 0x1558  WdiSystemHost - ok
15:55:34.0585 0x1558  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
15:55:34.0616 0x1558  WebClient - ok
15:55:34.0647 0x1558  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:55:34.0647 0x1558  Wecsvc - ok
15:55:34.0663 0x1558  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:55:34.0663 0x1558  wercplsupport - ok
15:55:34.0678 0x1558  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:55:34.0694 0x1558  WerSvc - ok
15:55:34.0709 0x1558  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:55:34.0709 0x1558  WfpLwf - ok
15:55:34.0725 0x1558  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:55:34.0725 0x1558  WIMMount - ok
15:55:34.0756 0x1558  WinDefend - ok
15:55:34.0772 0x1558  WinHttpAutoProxySvc - ok
15:55:34.0834 0x1558  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:55:34.0850 0x1558  Winmgmt - ok
15:55:34.0959 0x1558  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
15:55:35.0053 0x1558  WinRM - ok
15:55:35.0131 0x1558  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:55:35.0131 0x1558  WinUsb - ok
15:55:35.0193 0x1558  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:55:35.0224 0x1558  Wlansvc - ok
15:55:35.0411 0x1558  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:55:35.0458 0x1558  wlidsvc - ok
15:55:35.0505 0x1558  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:55:35.0505 0x1558  WmiAcpi - ok
15:55:35.0521 0x1558  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:55:35.0536 0x1558  wmiApSrv - ok
15:55:35.0552 0x1558  WMPNetworkSvc - ok
15:55:35.0583 0x1558  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:55:35.0583 0x1558  WPCSvc - ok
15:55:35.0599 0x1558  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:55:35.0599 0x1558  WPDBusEnum - ok
15:55:35.0614 0x1558  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:55:35.0614 0x1558  ws2ifsl - ok
15:55:35.0630 0x1558  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
15:55:35.0630 0x1558  wscsvc - ok
15:55:35.0630 0x1558  WSearch - ok
15:55:35.0661 0x1558  wStLibG64 - ok
15:55:35.0817 0x1558  [ 499034D7F1F6AF49F9EE12F8822793CB, 55D591C4861AF66C6B9201BF78808B2ECE7B79D95C6BB07FF0ED87EFE63DD99E ] wuauserv        C:\Windows\system32\wuaueng.dll
15:55:35.0942 0x1558  wuauserv - ok
15:55:35.0973 0x1558  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:55:35.0989 0x1558  WudfPf - ok
15:55:36.0020 0x1558  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:55:36.0035 0x1558  WUDFRd - ok
15:55:36.0082 0x1558  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:55:36.0098 0x1558  wudfsvc - ok
15:55:36.0145 0x1558  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:55:36.0160 0x1558  WwanSvc - ok
15:55:36.0285 0x1558  [ 6E53D1058B900443949C69EC6215D98F, 6BDE9F4D92779A2ADB6303EB017ED97D5767FCFBFB63E581BC67BEADBD4CCC78 ] ZSMC301b        C:\Windows\system32\Drivers\usbVM31b.sys
15:55:36.0347 0x1558  ZSMC301b - ok
15:55:36.0394 0x1558  ================ Scan global ===============================
15:55:36.0441 0x1558  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
15:55:36.0503 0x1558  [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
15:55:36.0519 0x1558  [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
15:55:36.0550 0x1558  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:55:36.0597 0x1558  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
15:55:36.0613 0x1558  [ Global ] - ok
15:55:36.0613 0x1558  ================ Scan MBR ==================================
15:55:36.0628 0x1558  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:55:36.0893 0x1558  \Device\Harddisk0\DR0 - ok
15:55:36.0909 0x1558  ================ Scan VBR ==================================
15:55:36.0909 0x1558  [ 5487758AFEACA08E059C772E71C12641 ] \Device\Harddisk0\DR0\Partition1
15:55:36.0925 0x1558  \Device\Harddisk0\DR0\Partition1 - ok
15:55:36.0940 0x1558  [ 91D7BCDB601274166B0F6EE5360A3E5F ] \Device\Harddisk0\DR0\Partition2
15:55:36.0956 0x1558  \Device\Harddisk0\DR0\Partition2 - ok
15:55:36.0971 0x1558  [ 17681079178E69B802125EF2C8EA47C3 ] \Device\Harddisk0\DR0\Partition3
15:55:36.0987 0x1558  \Device\Harddisk0\DR0\Partition3 - ok
15:55:36.0987 0x1558  ================ Scan generic autorun ======================
15:55:37.0471 0x1558  [ D70AC45F612E08322790F13B5819EB8F, 48851126928183D5D87E06D27DAF175A724A3DC8374F0741FBE9ADB1881E42BA ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:55:37.0705 0x1558  RTHDVCPL - ok
15:55:37.0767 0x1558  [ F9CAAC9D8C767E51AFFD396EDFD20C96, 939FC38059B4F82E3B02BF10EB91AA503A86F94F2CB6E2BE74FB47FC3DE8E845 ] C:\Windows\Domino.exe
15:55:37.0767 0x1558  Domino - ok
15:55:37.0798 0x1558  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
15:55:37.0798 0x1558  Logitech Download Assistant - ok
15:55:37.0845 0x1558  [ 02A27FC0972181EF743160BE9F62F2B4, 0E5B5684E892B1CE83C8A50A23F8478E8D01E2DD283337B5B263FDA4C2654E9F ] C:\Program Files\iTunes\iTunesHelper.exe
15:55:37.0861 0x1558  iTunesHelper - ok
15:55:37.0923 0x1558  [ 0080EB1CDD83F14C01534B1DC754234D, D0FC9B95A12D0C92730F8031B3DB287D1309008CF15EA0C02FC14B56FAE8C320 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:55:37.0939 0x1558  APSDaemon - ok
15:55:38.0032 0x1558  [ 27F8A7A78773427E5D931628F89D6839, 61A312590322109BEA9EA70345E6FB40435D9BACE2B9CFF3ADF68C7B3D6FA163 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
15:55:38.0063 0x1558  avgnt - ok
15:55:38.0141 0x1558  [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
15:55:38.0141 0x1558  BCSSync - ok
15:55:38.0173 0x1558  [ 6872F273A9332749C5E58F35555F4871, E74BBD8F069D7F377E0E8F1C4947B77A68F1C019E8D51F244655A2109EF82D7A ] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
15:55:38.0188 0x1558  ProductUpdater - ok
15:55:38.0251 0x1558  [ F5060B034D37EA26D325A4319806E202, D43ACE85421DB29A6B6E8080D838152AB3858F83C2B373731945460E217C7D9F ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
15:55:38.0251 0x1558  Avira SystrayStartTrigger - ok
15:55:38.0360 0x1558  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:55:38.0407 0x1558  Sidebar - ok
15:55:38.0422 0x1558  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:55:38.0422 0x1558  mctadmin - ok
15:55:38.0469 0x1558  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:55:38.0485 0x1558  Sidebar - ok
15:55:38.0500 0x1558  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:55:38.0500 0x1558  mctadmin - ok
15:55:38.0703 0x1558  [ 71CD8672C15D374DDA20B80B968AE445, 16D18D3CB43F272FC73703D9A4912D4F2091D9ACD01C11C2EE68427B6100C30E ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
15:55:38.0781 0x1558  DAEMON Tools Lite - ok
15:55:38.0859 0x1558  [ F341DD6145F779CE5B732BC6BC6A3370, 67CE7E6DD5969C8DE34473E01D60D52FABC740B056287C2E261A36F97993ED0D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
15:55:38.0859 0x1558  iCloudServices - ok
15:55:38.0890 0x1558  [ 944E77A49DBAF8F6BB473118C116E59E, 0DA67736F1841A270AB24C13BA8FF4021A8950EB58B4985774F4B224B832B0DA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
15:55:38.0890 0x1558  ApplePhotoStreams - ok
15:55:39.0046 0x1558  [ 7C6D524C78A1722AD987B9E47AC1FEE2, FFDC6C92ABB547D0DCD2621EC423C755A78079B061A41FA1751A56799D1A79A5 ] C:\Users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe
15:55:39.0046 0x1558  Dropbox Update - ok
15:55:39.0202 0x1558  [ 005B2B63719E6B3E8E2E1446A9278F8E, 0A34046B0205A2FEEE5E2867765D171D7BA420A1527E49472A35B484219BD377 ] C:\Users\Diyar\AppData\Roaming\Spotify\SpotifyWebHelper.exe
15:55:39.0249 0x1558  Spotify Web Helper - ok
15:55:39.0530 0x1558  [ 1714D2B9D03CD71541AFD1FA0ED23759, B8CA2496B250A5257BEF290445FC998560317D9851A0D75CE9BBA4243D002CD5 ] C:\Users\Diyar\AppData\Roaming\Spotify\Spotify.exe
15:55:39.0811 0x1558  Spotify - ok
15:55:39.0857 0x1558  msnmsgr - ok
15:55:39.0998 0x1558  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] C:\Users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe
15:55:39.0998 0x1558  Google Update - ok
15:55:40.0029 0x1558  [ 173D93AB55B6602C115E1E0BCDA3BDBC, 938C02C2C682B542788F0D94ABAB2FA7D80D00E1B8A55E19BEE49AF31AB10D9F ] C:\Windows\Speech\Common\sapisvr.exe
15:55:40.0045 0x1558  Speech Recognition - ok
15:55:40.0045 0x1558  Orbitum - ok
15:55:40.0091 0x1558  [ 2A3FB4C98F139038E23330D2439DB8A4, DE9253AD362B03FA5D3D4912662398E5C4AC76F7274B83E51C251A6921A5B838 ] C:\Users\Dilan\AppData\Local\Facebook\Update\FacebookUpdate.exe
15:55:40.0107 0x1558  Facebook Update - ok
15:55:40.0123 0x1558  [ F341DD6145F779CE5B732BC6BC6A3370, 67CE7E6DD5969C8DE34473E01D60D52FABC740B056287C2E261A36F97993ED0D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
15:55:40.0138 0x1558  iCloudServices - ok
15:55:40.0154 0x1558  [ 944E77A49DBAF8F6BB473118C116E59E, 0DA67736F1841A270AB24C13BA8FF4021A8950EB58B4985774F4B224B832B0DA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
15:55:40.0154 0x1558  ApplePhotoStreams - ok
15:55:40.0154 0x1558  Waiting for KSN requests completion. In queue: 237
15:55:41.0168 0x1558  Waiting for KSN requests completion. In queue: 237
15:55:42.0182 0x1558  Waiting for KSN requests completion. In queue: 237
15:55:43.0289 0x1558  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.12.420 ), 0x41000 ( enabled : updated )
15:55:43.0321 0x1558  Win FW state via NFP2: enabled ( trusted )
15:55:46.0113 0x1558  ============================================================
15:55:46.0113 0x1558  Scan finished
15:55:46.0113 0x1558  ============================================================
15:55:46.0129 0x18e8  Detected object count: 0
15:55:46.0129 0x18e8  Actual detected object count: 0
15:55:55.0489 0x1340  Deinitialize success

Diyar · 10.09.2015, 17:20

Sehr geehrtes Trojaner-Team,

leider habe ich noch keine Antwort erhalten.
Wollte ledigilich an den Thread erinnern.

LG

schrauber · 11.09.2015, 06:28

Hättest Du diesen letzten Post nicht gemacht hättest Du schon früher Antwort gehabt

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Diyar · 12.09.2015, 00:06

sehr geehrtes Trojaner-board Team,

leider kann ich die Combofix.exe datei nicht öffnen.

Beim Versuch die Anwendung zu öffnen erhalte ich folgende Fehlermeldung: "Error! Can't initialize plug-ins directory. Please try again later.

schrauber · 12.09.2015, 14:14

Bitte Windows Repair laufen lassen:
Windows reparieren - so geht's - Anleitungen

Diyar · 12.09.2015, 21:50

nachdem ich windows repaier hab laufen lassen, konnte ich mit combofix öffnen.

habe aber BEVOR der rechner neugestartet ist, 2 fehlermeldungen bekommen.

anbei die logfile

Code:

ATTFilter

Combofix Logfile:

	Code: 

 ATTFilter

  
	ComboFix 15-09-07.01 - Diyar 12.09.2015  22:23:26.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.8149.5972 [GMT 2:00]
ausgeführt von:: c:\users\Diyar\Downloads\ComboFix.exe
SP: Avira Antivirus *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Diyar\124d.JPG
c:\users\Diyar\2009.jpg
c:\users\Diyar\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
c:\users\Public\sdelevURL.tmp
.
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_ACEDRV11
-------\Service_acedrv11
.
.
(((((((((((((((((((((((   Dateien erstellt von 2015-08-12 bis 2015-09-12  ))))))))))))))))))))))))))))))
.
.
2015-09-12 19:53 . 2015-09-12 19:56	--------	d-----w-	c:\windows\system32\catroot2
2015-09-12 19:37 . 2015-09-12 19:37	--------	d-----w-	c:\windows\SysWow64\wbem\Performance
2015-09-12 18:12 . 2015-09-12 18:12	--------	d-----w-	c:\program files (x86)\Tweaking.com
2015-09-09 10:13 . 2015-09-09 13:44	--------	d-----w-	c:\programdata\Malwarebytes' Anti-Malware (portable)
2015-09-09 10:11 . 2015-08-15 06:06	615936	----a-w-	c:\windows\system32\ieui.dll
2015-09-09 10:10 . 2015-07-22 23:52	6144	---ha-w-	c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-08 10:13 . 2015-09-08 10:18	--------	d-----w-	C:\FRST
2015-09-04 19:20 . 2015-09-04 19:20	--------	d-----w-	c:\users\Public\cd diyar
2015-08-20 16:37 . 2015-08-20 16:37	--------	d-----w-	c:\users\Dilan\AppData\Roaming\java
2015-08-20 16:37 . 2015-09-05 11:10	--------	d-----w-	c:\users\Dilan\AppData\Roaming\.minecraft
2015-08-20 01:18 . 2015-08-20 01:18	--------	d-----w-	C:\Temp1
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-09-12 18:14 . 2015-09-12 18:14	75888	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{E1596C3C-E5BA-40B1-B604-0F9C8E83E8E9}\offreg.2484.dll
2015-09-09 10:13 . 2014-07-07 20:01	192216	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-09-09 10:12 . 2014-07-07 20:01	109272	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2015-08-26 16:37 . 2012-01-07 21:26	134753440	----a-w-	c:\windows\system32\MRT.exe
2015-08-11 19:00 . 2015-04-28 18:16	778440	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2015-08-11 19:00 . 2015-04-28 18:16	142536	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-07-31 09:21 . 2015-09-11 22:47	11745192	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{E1596C3C-E5BA-40B1-B604-0F9C8E83E8E9}\mpengine.dll
2015-07-30 18:06 . 2015-08-12 13:40	1648128	----a-w-	c:\windows\system32\DWrite.dll
2015-07-30 18:06 . 2015-08-12 13:40	1180160	----a-w-	c:\windows\system32\FntCache.dll
2015-07-30 18:06 . 2015-08-12 13:40	2565120	----a-w-	c:\windows\system32\d3d10warp.dll
2015-07-30 17:57 . 2015-08-12 13:40	1251328	----a-w-	c:\windows\SysWow64\DWrite.dll
2015-07-30 17:57 . 2015-08-12 13:40	1987584	----a-w-	c:\windows\SysWow64\d3d10warp.dll
2015-07-30 13:13 . 2015-08-12 17:13	103120	----a-w-	c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-07-30 13:13 . 2015-08-12 17:13	124624	----a-w-	c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-07-28 20:09 . 2015-08-12 13:42	17344	----a-w-	c:\windows\system32\CompatTelRunner.exe
2015-07-28 20:05 . 2015-08-12 13:42	774656	----a-w-	c:\windows\system32\invagent.dll
2015-07-28 20:05 . 2015-08-12 13:42	743424	----a-w-	c:\windows\system32\generaltel.dll
2015-07-28 20:05 . 2015-08-12 13:42	437760	----a-w-	c:\windows\system32\devinv.dll
2015-07-28 20:05 . 2015-08-12 13:42	1116672	----a-w-	c:\windows\system32\appraiser.dll
2015-07-28 20:05 . 2015-08-12 13:42	69120	----a-w-	c:\windows\system32\acmigration.dll
2015-07-28 20:05 . 2015-08-12 13:42	227328	----a-w-	c:\windows\system32\aepdu.dll
2015-07-28 19:55 . 2015-08-12 13:42	1148416	----a-w-	c:\windows\system32\aeinv.dll
2015-07-24 14:27 . 2013-03-20 11:23	162528	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2015-07-24 14:27 . 2013-03-20 11:23	141416	----a-w-	c:\windows\system32\drivers\avipbb.sys
2015-07-22 17:53 . 2015-09-09 10:11	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2015-07-16 19:12 . 2015-08-12 13:42	856064	----a-w-	c:\windows\SysWow64\rdvidcrl.dll
2015-07-16 19:12 . 2015-08-12 13:42	53248	----a-w-	c:\windows\SysWow64\tsgqec.dll
2015-07-16 19:12 . 2015-08-12 13:42	6131200	----a-w-	c:\windows\SysWow64\mstscax.dll
2015-07-16 19:11 . 2015-08-12 13:42	62976	----a-w-	c:\windows\system32\tsgqec.dll
2015-07-16 19:11 . 2015-08-12 13:42	7077376	----a-w-	c:\windows\system32\mstscax.dll
2015-07-16 19:11 . 2015-08-12 13:42	1057792	----a-w-	c:\windows\system32\rdvidcrl.dll
2015-07-15 18:15 . 2015-08-12 13:42	94656	----a-w-	c:\windows\system32\drivers\mountmgr.sys
2015-07-15 18:10 . 2015-08-12 13:42	1743360	----a-w-	c:\windows\system32\sysmain.dll
2015-07-15 18:10 . 2015-08-12 13:42	11264	----a-w-	c:\windows\system32\msmmsp.dll
2015-07-15 03:19 . 2015-08-12 13:42	52736	----a-w-	c:\windows\system32\basesrv.dll
2015-07-11 13:15 . 2015-08-12 13:42	429568	----a-w-	c:\windows\system32\wksprt.exe
2015-07-10 17:51 . 2015-08-12 13:40	14177280	----a-w-	c:\windows\system32\shell32.dll
2015-07-09 17:57 . 2015-08-12 13:40	193536	----a-w-	c:\windows\system32\notepad.exe
2015-07-09 17:57 . 2015-08-12 13:40	193536	----a-w-	c:\windows\notepad.exe
2015-07-09 17:42 . 2015-08-12 13:40	179712	----a-w-	c:\windows\SysWow64\notepad.exe
2015-07-04 18:07 . 2015-07-15 09:21	2087424	----a-w-	c:\windows\system32\ole32.dll
2015-07-04 17:48 . 2015-07-15 09:21	1414656	----a-w-	c:\windows\SysWow64\ole32.dll
2015-07-01 20:49 . 2015-08-12 13:40	260096	----a-w-	c:\windows\system32\WebClnt.dll
2015-07-01 20:48 . 2015-08-12 13:40	102912	----a-w-	c:\windows\system32\davclnt.dll
2015-07-01 20:30 . 2015-08-12 13:40	206848	----a-w-	c:\windows\SysWow64\WebClnt.dll
2015-07-01 20:30 . 2015-08-12 13:40	82432	----a-w-	c:\windows\SysWow64\davclnt.dll
2015-06-23 23:29 . 2015-06-23 23:29	1217192	----a-w-	c:\windows\SysWow64\FM20.DLL
2015-06-23 11:30 . 2010-11-21 03:27	300704	----a-w-	c:\windows\system32\MpSigStub.exe
2015-06-18 06:41 . 2014-07-07 20:01	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2015-06-18 06:41 . 2014-07-07 20:01	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
2015-06-17 17:47 . 2015-07-15 09:22	404992	----a-w-	c:\windows\system32\gdi32.dll
2015-06-17 17:37 . 2015-07-15 09:22	312320	----a-w-	c:\windows\SysWow64\gdi32.dll
2015-06-17 09:10 . 2015-07-21 13:44	40280	----a-w-	c:\windows\system32\nvhdap64.dll
2015-06-17 09:10 . 2015-07-21 13:44	204648	----a-w-	c:\windows\system32\drivers\nvhda64v.sys
2015-06-17 09:10 . 2015-07-21 13:44	938752	----a-w-	c:\windows\SysWow64\nvumdshim.dll
2015-06-17 09:10 . 2015-07-21 13:44	1099992	----a-w-	c:\windows\system32\nvumdshimx.dll
2015-06-17 09:10 . 2015-07-21 13:44	16145200	----a-w-	c:\windows\system32\nvopencl.dll
2015-06-17 09:10 . 2015-07-21 13:44	13263056	----a-w-	c:\windows\SysWow64\nvopencl.dll
2015-06-17 09:10 . 2015-07-21 13:44	30481552	----a-w-	c:\windows\system32\nvoglv64.dll
2015-06-17 09:10 . 2015-07-21 13:44	22947144	----a-w-	c:\windows\SysWow64\nvoglv32.dll
2015-06-17 09:10 . 2015-07-21 13:44	150832	----a-w-	c:\windows\system32\nvoglshim64.dll
2015-06-17 09:10 . 2015-07-21 13:44	128696	----a-w-	c:\windows\SysWow64\nvoglshim32.dll
2015-06-17 09:10 . 2015-07-21 13:44	176904	----a-w-	c:\windows\system32\nvinitx.dll
2015-06-17 09:10 . 2015-07-21 13:44	155280	----a-w-	c:\windows\SysWow64\nvinit.dll
2015-06-17 09:10 . 2015-07-21 13:44	11011216	----a-w-	c:\windows\system32\drivers\nvlddmkm.sys
2015-06-17 09:10 . 2015-07-21 13:44	982672	----a-w-	c:\windows\SysWow64\NvIFR.dll
2015-06-17 09:10 . 2015-07-21 13:44	975176	----a-w-	c:\windows\SysWow64\NvFBC.dll
2015-06-17 09:10 . 2015-07-21 13:44	1060168	----a-w-	c:\windows\system32\NvIFR64.dll
2015-06-17 09:10 . 2015-07-21 13:44	1050768	----a-w-	c:\windows\system32\NvFBC64.dll
2015-06-17 09:10 . 2015-07-21 13:44	1898128	----a-w-	c:\windows\system32\nvdispco6435330.dll
2015-06-17 09:10 . 2015-07-21 13:44	1557832	----a-w-	c:\windows\system32\nvdispgenco6435330.dll
2015-06-17 09:10 . 2015-07-21 13:44	15866992	----a-w-	c:\windows\system32\nvd3dumx.dll
2015-06-17 09:10 . 2015-07-21 13:44	2932368	----a-w-	c:\windows\system32\nvcuvid.dll
2015-06-17 09:10 . 2015-07-21 13:44	2599752	----a-w-	c:\windows\SysWow64\nvcuvid.dll
2015-06-17 09:10 . 2015-07-21 13:44	14497520	----a-w-	c:\windows\system32\nvcuda.dll
2015-06-17 09:10 . 2015-07-21 13:44	11831856	----a-w-	c:\windows\SysWow64\nvcuda.dll
2015-06-17 09:10 . 2015-07-21 13:44	42729104	----a-w-	c:\windows\system32\nvcompiler.dll
2015-06-17 09:10 . 2015-07-21 13:44	37748880	----a-w-	c:\windows\SysWow64\nvcompiler.dll
2015-06-17 09:10 . 2015-01-31 21:12	15224784	----a-w-	c:\windows\SysWow64\nvwgf2um.dll
2015-06-17 09:10 . 2013-09-11 12:19	2997544	----a-w-	c:\windows\SysWow64\nvapi.dll
2015-06-17 09:10 . 2013-09-11 12:19	1567576	----a-w-	c:\windows\system32\nvhdagenco6420103.dll
2015-06-17 09:10 . 2011-08-18 09:31	17724600	----a-w-	c:\windows\system32\nvwgf2umx.dll
2015-06-17 09:10 . 2011-08-18 09:31	3395648	----a-w-	c:\windows\system32\nvapi64.dll
2015-06-17 09:10 . 2011-08-18 09:31	12855416	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2015-06-17 06:48 . 2011-03-23 22:53	937616	----a-w-	c:\windows\system32\nvvsvc.exe
2015-06-17 06:48 . 2011-03-23 22:53	74896	----a-w-	c:\windows\system32\nv3dappshextr.dll
2015-06-17 06:48 . 2011-03-23 22:53	62792	----a-w-	c:\windows\system32\nvshext.dll
2015-06-17 06:48 . 2011-03-23 22:53	385168	----a-w-	c:\windows\system32\nvmctray.dll
2015-06-17 06:48 . 2011-03-23 22:53	2558792	----a-w-	c:\windows\system32\nvsvcr.dll
2015-06-17 06:48 . 2011-03-23 22:53	1059472	----a-w-	c:\windows\system32\nv3dappshext.dll
2015-06-17 06:48 . 2011-03-23 22:53	6873232	----a-w-	c:\windows\system32\nvcpl.dll
2015-06-17 06:48 . 2011-03-23 22:52	3492168	----a-w-	c:\windows\system32\nvsvc64.dll
2015-06-17 06:03 . 2015-07-21 13:49	571024	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2015-06-15 21:45 . 2015-07-15 09:21	3242496	----a-w-	c:\windows\system32\msi.dll
2015-06-15 21:45 . 2015-07-15 09:20	504320	----a-w-	c:\windows\system32\msihnd.dll
2015-06-15 21:44 . 2015-07-15 09:20	128000	----a-w-	c:\windows\system32\msiexec.exe
2015-06-15 21:43 . 2015-07-15 09:21	2364416	----a-w-	c:\windows\SysWow64\msi.dll
2015-06-15 21:43 . 2015-07-15 09:20	337408	----a-w-	c:\windows\SysWow64\msihnd.dll
2015-06-15 21:42 . 2015-07-15 09:20	73216	----a-w-	c:\windows\SysWow64\msiexec.exe
2015-06-15 21:42 . 2015-07-15 09:20	25088	----a-w-	c:\windows\system32\msimsg.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2014-12-15 21:18	297128	----a-w-	c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-05 22:53	189464	----a-w-	c:\users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-05 22:53	189464	----a-w-	c:\users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-05 22:53	189464	----a-w-	c:\users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-08-01 3673696]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2015-04-26 43816]
"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2015-04-26 43816]
"Dropbox Update"="c:\users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe" [2015-06-17 134512]
"Spotify Web Helper"="c:\users\Diyar\AppData\Roaming\Spotify\SpotifyWebHelper.exe" [2015-08-11 2018360]
"Spotify"="c:\users\Diyar\AppData\Roaming\Spotify\Spotify.exe" [2015-08-11 7675448]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2015-05-15 60712]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2015-08-26 782008]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 89184]
"ProductUpdater"="c:\program files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe" [2015-06-18 62464]
"Avira SystrayStartTrigger"="c:\program files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe" [2015-08-13 66936]
.
c:\users\Diyar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Diyar\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2015-5-5 39179912]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0\0sdnclean64.exe
.
R1 wStLibG64;wStLibG64;c:\windows\system32\drivers\wStLibG64.sys;c:\windows\SYSNATIVE\drivers\wStLibG64.sys [x]
R2 AntiVirMailService;Avira Email-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avmailc7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc7.exe [x]
R2 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [x]
R3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
R3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
R3 BCMH43XX;N+ Wireless USB Adapter Driver;c:\windows\system32\DRIVERS\bcmwlhigh664.sys;c:\windows\SYSNATIVE\DRIVERS\bcmwlhigh664.sys [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys;c:\windows\SYSNATIVE\Drivers\ANDROIDUSB.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Logi_Headset_DFU;Logitech DFU Driver;c:\windows\system32\Drivers\lhusbdfuamd64.sys;c:\windows\SYSNATIVE\Drivers\lhusbdfuamd64.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys;c:\windows\SYSNATIVE\DRIVERS\netaapl64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8192cu;%RTL8192cu.DeviceDesc.DispName%;c:\windows\system32\DRIVERS\RTL8192cu.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192cu.sys [x]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192su.sys [x]
R3 RTSUER;Realtek USB Card Reader - UER;c:\windows\system32\Drivers\RtsUer.sys;c:\windows\SYSNATIVE\Drivers\RtsUer.sys [x]
R3 S3XXx64;SCR3xx USB SmartCardReader64;c:\windows\system32\DRIVERS\S3XXx64.sys;c:\windows\SYSNATIVE\DRIVERS\S3XXx64.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
R3 vcd10bus;Virtual CD v10 Bus Enumerator;c:\windows\system32\DRIVERS\vcd10bus.sys;c:\windows\SYSNATIVE\DRIVERS\vcd10bus.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
S2 Avira.ServiceHost;Avira Service Host;c:\program files (x86)\Avira\Launcher\Avira.ServiceHost.exe;c:\program files (x86)\Avira\Launcher\Avira.ServiceHost.exe [x]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 Garmin Core Update Service;Garmin Core Update Service;c:\program files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe;c:\program files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [x]
S2 Live Updater Service;Live Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 RalinkRegistryWriter64;Ralink Registry Writer 64;c:\program files (x86)\Belkin\F9L1103\v1\Common\RaRegistry64.exe;c:\program files (x86)\Belkin\F9L1103\v1\Common\RaRegistry64.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 PGRUSB;PGR USB 3 Extensible Host Controller;c:\windows\system32\DRIVERS\PGRXHCI.sys;c:\windows\SYSNATIVE\DRIVERS\PGRXHCI.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2015-09-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-28 19:00]
.
2015-09-11 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core.job
- c:\users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17 22:09]
.
2015-09-12 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001UA.job
- c:\users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17 22:09]
.
2013-12-17 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core.job
- c:\users\Diyar\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-17 21:44]
.
2015-09-10 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core.job
- c:\users\Dilan\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-22 16:49]
.
2015-09-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA.job
- c:\users\Dilan\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-22 16:49]
.
2015-08-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core1cf90928a48cf38.job
- c:\users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-10 18:31]
.
2015-09-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA.job
- c:\users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-10 18:31]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2014-10-15 15:31	357376	----a-w-	c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-05 22:53	226328	----a-w-	c:\users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-05 22:53	226328	----a-w-	c:\users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-05 22:53	226328	----a-w-	c:\users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-05 22:53	226328	----a-w-	c:\users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-05-07 12481128]
"Domino"="c:\windows\Domino.exe" [2006-07-04 49152]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2015-07-11 170280]
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = https://safesearch.avira.com/
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = https://safesearch.avira.com/
mDefault_Search_URL = https://safesearch.avira.com/
mDefault_Page_URL = https://safesearch.avira.com/
mStart Page = https://safesearch.avira.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = https://safesearch.avira.com/
uSearchAssistant = hxxp://www.google.com
IE: &Citavi Picker... - file://c:\program files (x86)\Internet Explorer\Citavi Picker\ShowContextMenu.html
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000
IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
TCP: DhcpNameServer = 192.168.2.1
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB
FF - ProfilePath - c:\users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_18_0_0_232_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_18_0_0_232_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus\1]
@="131473"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.18"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0\Alias]
@=""
"0"="ActionsPane Schema for Add-Ins"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Belkin\F9L1103\v1\Common\RaRegistry.exe
c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
c:\program files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2015-09-12  22:47:52 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2015-09-12 20:47
.
Vor Suchlauf: 16 Verzeichnis(se), 208.325.296.128 Bytes frei
Nach Suchlauf: 25 Verzeichnis(se), 207.222.325.248 Bytes frei
.
- - End Of File - - D12AF9378FCB6C219098F7CD0BDEB587
         
 --- --- ---
A36C5E4F47E84449FF07ED3517B43A31

schrauber · 13.09.2015, 10:02

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Diyar · 13.09.2015, 20:06

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 13.09.2015
Suchlaufzeit: 17:57
Protokolldatei: Malwarebytes Anti-Malware log.txt
Administrator: Ja

Version: 2.1.8.1057
Malware-Datenbank: v2015.09.13.03
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Diyar

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 645232
Abgelaufene Zeit: 1 Std., 59 Min., 48 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 7
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\CLASSES\Toolbar.CT1561552, In Quarantäne, [bfa8aa85741771c5dd48363e11f323dd], 
PUP.Optional.BrowserDefender, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\BrowserDefendert, In Quarantäne, [303731fedead61d5fcc54c3757ad14ec], 
PUP.Optional.OpenCandy, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\OpenCandyHelperRunOnce7B94A9E9FF774B8981668040F512280D, In Quarantäne, [0c5bfd32672496a059c1abfd9d67926e], 
PUP.Optional.YourFileDownloader, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\YourFile DownloaderUpdate, In Quarantäne, [cc9bb57a0883b28417d27150c83c728e], 
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Toolbar.CT1561552, In Quarantäne, [b7b0c7688a0143f3da4b4d2753b1dd23], 
PUP.Optional.Conduit, HKU\S-1-5-21-1825211407-1677631671-286171030-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{A294E1CA-E192-4B04-BBF4-4E4AE2E68151}, In Quarantäne, [c7a0210ebccfb4825efc1276bd47de22], 
PUP.Optional.Bandoo, HKU\S-1-5-21-1825211407-1677631671-286171030-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}, In Quarantäne, [a2c55ad5eba09c9afc1bc009f60e24dc], 

Registrierungswerte: 5
PUP.Optional.WstLib, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wStLibG64|ImagePath, system32\drivers\wStLibG64.sys, In Quarantäne, [4e190c2377140036a8e74f727c8805fb]
PUP.Optional.Conduit, HKU\S-1-5-21-1825211407-1677631671-286171030-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{A294E1CA-E192-4B04-BBF4-4E4AE2E68151}|URL, hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1561552&CUI=UN41522059979151218&UM=1, In Quarantäne, [c7a0210ebccfb4825efc1276bd47de22]
PUP.Optional.Conduit, HKU\S-1-5-21-1825211407-1677631671-286171030-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{A294E1CA-E192-4B04-BBF4-4E4AE2E68151}|SuggestionsURL_JSON, hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}, In Quarantäne, [b4b32807c5c6db5bf56548401fe59c64]
PUP.Optional.Conduit, HKU\S-1-5-21-1825211407-1677631671-286171030-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{A294E1CA-E192-4B04-BBF4-4E4AE2E68151}|FaviconURL, hxxp://search.conduit.com/favicon.ico, In Quarantäne, [a7c05ad58b00a096500a55338c786c94]
PUP.Optional.Bandoo, HKU\S-1-5-21-1825211407-1677631671-286171030-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}|URL, hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=394&systemid=406&apn_uid=3021044521244141&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}, In Quarantäne, [a2c55ad5eba09c9afc1bc009f60e24dc]

Registrierungsdaten: 1
PUP.Optional.ASK.Gen, HKU\S-1-5-21-1825211407-1677631671-286171030-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.search.ask.com/?o=APN10645A&gct=hp&d=406-394&t=4, Gut: (www.google.com), Schlecht: (hxxp://www.search.ask.com/?o=APN10645A&gct=hp&d=406-394&t=4),Ersetzt,[80e741ee2c5fc373b266a6c79e67f709]

Ordner: 12
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Feeds, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\LanguagePacks, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Log, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\Conduit\Community Alerts, In Quarantäne, [3e29111ea5e6b5816f4f8c78d82bd030], 
PUP.Optional.Babylon, C:\ProgramData\Babylon, In Quarantäne, [f374f7386229d95d2e6848dfdd265ca4], 

Dateien: 42
PUP.Optional.OpenCandy, C:\Users\Diyar\Downloads\FreemakeVideoConverterSetup.exe, In Quarantäne, [c99ed15e197253e3d49b6ee7837dec14], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\DynamicDialogs.zip, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\DialogsAPI.js, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\PIE.htc, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\settings.js, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\version.txt, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\AppNotification.js, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\initialNotification.html, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\main.html, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\NotificationDialogStyle.css, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\NotificationDialogStyleIE9.css, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\sampleNotification.html, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\close.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\like.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Next.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Next_hover.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\powered-by.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Prev.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Prev_hover.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\settings.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Thumbs.db, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\close.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\closeBtn.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\Next.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\Next_hover.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\powered-by.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\Prev.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\Prev_hover.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\settings.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\settingsBtn.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\close.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\closeBtn.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Next.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Next_hover.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\powered-by.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Prev.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Prev_hover.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\settings.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\settingsBtn.png, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Thumbs.db, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com_root_15257_14923_US.xml, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 
PUP.Optional.ConduitTB.Gen, C:\Users\Diyar\AppData\LocalLow\Conduit\Community Alerts\LanguagePacks\en.xml, In Quarantäne, [87e0aa8567241a1c04ed191019ea0ef2], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v5.007 - Bericht erstellt am 13/09/2015 um 20:22:44
# Aktualisiert am 08/09/2015 von Xplode
# Datenbank : 2015-09-10.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Diyar - DIYAR-PC
# Gestartet von : C:\Users\Diyar\Downloads\AdwCleaner_5.007.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****

[-] Dienst Gelöscht : wStLibG64

***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files (x86)\ATDheNetTVApp.com
[-] Ordner Gelöscht : C:\Program Files (x86)\Conduit
[-] Ordner Gelöscht : C:\Program Files (x86)\Fighters
[-] Ordner Gelöscht : C:\ProgramData\Conduit
[-] Ordner Gelöscht : C:\ProgramData\Media Get LLC
[-] Ordner Gelöscht : C:\ProgramData\torchcrashhandler
[-] Ordner Gelöscht : C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[-] Ordner Gelöscht : C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[-] Ordner Gelöscht : C:\Users\Dilan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orbitum
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Local\Conduit
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Local\DownloadGuide
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Roaming\digitalsite
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Roaming\Fighters
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Roaming\DriverFinder
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\0\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[!] Ordner Nicht Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\0\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[!] Ordner Nicht Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\0\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[!] Ordner Nicht Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[!] Ordner Nicht Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\pumf46ha.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[-] Ordner Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\pumf46ha.default\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[!] Ordner Nicht Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\pumf46ha.default\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[!] Ordner Nicht Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\pumf46ha.default\Extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}
[-] Ordner Gelöscht : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Fighters

***** [ Dateien ] *****

[-] Datei Gelöscht : C:\END
[-] Datei Gelöscht : C:\user.js
[-] Datei Gelöscht : C:\Users\Dilan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_de.ask.com_0.localstorage
[-] Datei Gelöscht : C:\Users\Dilan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_de.ask.com_0.localstorage-journal
[-] Datei Gelöscht : C:\Users\Dilan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.searchnu.com_0.localstorage
[-] Datei Gelöscht : C:\Users\Dilan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.searchnu.com_0.localstorage-journal
[-] Datei Gelöscht : C:\Users\Dilan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\iLivid.lnk
[-] Datei Gelöscht : C:\Users\Dilan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Torch.lnk
[-] Datei Gelöscht : C:\Users\Dilan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
[-] Datei Gelöscht : C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\0\user.js

***** [ Verknüpfungen ] *****


***** [ Geplante Tasks ] *****

[-] Task Gelöscht : DSite

***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKCU\Software\Classes\pokki
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Record\{2009AF2F-5786-3067-8799-B97F7832FDD6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Record\{425E7597-03A2-338D-B72A-0E51FFE77A7E}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Record\{915BB7D5-082E-3B91-B1E0-45B5FDE01F24}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Record\{FB2E65F4-5687-33EF-9BBF-4E3C9C98D3B9}
[-] Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [magicplayer@torrentstream.org]
[-] Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [{b64d9b05-48e1-4ceb-bf58-e0643994e900}]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4277F7CF-0000-46CF-BA49-D624465C4BAB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{87EAB409-97D7-4889-ACFA-C548FC6F3ECF}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{58124A0B-DC32-4180-9BFF-E0E21AE34026}]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Fighters
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\OCS
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\Fighters
[!] Schlüssel Nicht Gelöscht : HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Software\AppDataLow\Software\Conduit
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
[-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Daten Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Daten Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Daten Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Daten Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten Wiederhergestellt : HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten Wiederhergestellt : HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]

***** [ Internetbrowser ] *****

[-] [C:\Users\Dilan\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : search-results.com
[-] [C:\Users\Dilan\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : ask.com

*************************

:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [9639 Bytes] ##########

--- --- ---

[/CODE]

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.1 (09.08.2015:1)
OS: Windows 7 Home Premium x64
Ran by Diyar on 13.09.2015 at 20:29:35,69
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer



~~~ Files



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{006077FC-E4B0-4422-8307-B39B96143046}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{01270956-D84F-428D-8312-680ABE7160CF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{01850913-2BFC-4360-92D0-42EDB8DF4BD7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{01D8DE52-007F-49A4-86F0-B3DB9CB418DF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{02314C9E-7A48-4DD3-9C95-83C27309BDDA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{02F49FB4-E238-4A6D-9E16-19190BD774C1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{03702E20-6C60-4414-A81D-58DCCF37427C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0422F643-CB41-4780-BDD4-78A1052B4197}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0439AFCD-56B6-4FBB-9F18-D5913756CEDD}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0457BA9C-CEDB-4C29-AEDD-2FFA3F9FB5D9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0626640A-0699-44CB-85FF-B5B74432C299}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{07463A29-3DF2-4CEB-96B2-2CE707866463}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{089D20DD-5B57-4416-813F-4FA6DF269C47}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0910CE27-5E52-4CC2-A13B-54DD5630413A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{09460A2A-E384-4494-B878-205B2035555F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{095F2DE2-2489-4F9B-B291-93EA48B86EC8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0972BD9B-81C0-48CA-9F7B-C9CBF8363CF9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{09FAF41B-B3CD-40ED-9AE6-71D7E5C87F29}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0B6F1A8D-E3AE-48FA-AE0D-3220A03D789D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0B96A1F6-303B-4BBF-95BC-78E2C409F182}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0BA2981C-271D-408D-B79E-2DAC8FC76153}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0CAB89D1-0C5D-4185-A597-EE7ACC1FC4FD}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0CAC4A1A-ED13-4928-BE58-0CC5C7357C49}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0D4C2F35-F158-4493-AAF9-6532F62E2148}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0E394A37-1E49-452D-887D-E16561FA5D8E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0E4FDD69-A0CE-4A2F-A059-A4D4FFC02CF7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0F494EF7-7517-462F-9EF4-6DFE10A9B8B9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{0FB0E4CE-0764-4041-AF2C-042A4747F58C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1004DF09-E24C-4765-BFEF-8E9F3609FC5A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{10586D72-33EB-4277-8D39-4A4B190A4B46}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{10638F10-0D47-4248-83AB-71C8B8A782CF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{10D95F3C-061E-4872-8FCF-E30C6E9A957F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1265C1E6-076F-47FB-811D-315AF34F94AA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{12F2556E-2A51-4A0C-B311-3F9491BC3C68}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{12F4E78A-4ED2-4721-A2BF-B9A260CD06CF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{133E3607-4825-4EC7-BE1C-A8AD61B45F85}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1349419B-5540-4C2A-96A9-136027884FFD}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1369D228-AD9B-43E9-A64D-905AC6C8415F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{137B65C7-AF63-4F7F-8D70-CFDFFB23D474}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{154CF28F-55B9-4A6C-8431-4C9ABA6EBE5F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1603A91E-CB37-46A5-9E0A-6FA57CC72F65}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{160ADED2-43CF-431C-BB72-079D7E699A21}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1627F95A-5876-41C8-895D-F178D805F7EF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{162A5870-4BB1-4135-95A2-A5FC97B0B461}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{167F08DF-B8D8-43D7-9D31-38E7C4310BE0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1767850A-11C0-4979-BF29-C24420DFAC8A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{17E7EBE2-2AD2-4B67-BABA-3FAF03E8C513}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{17F6C171-1AE4-4034-B8FA-0392E1BED9C9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{191E0FB9-5C29-4F9F-854E-B577E328E7B1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{199AF796-3644-429B-88E6-9E67A4263200}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1A5691BF-A9E5-4A3B-9ECE-963AB60D757C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1BAC99E6-11B7-433C-8A6E-E369D4F6C84D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1C14AD7F-2477-4643-93BE-883CF985A933}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1C281D33-4AAD-40E5-8B92-A953F3493B88}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1D04486E-2E66-49FD-8F37-2F59928854E4}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1D244D27-89AB-4D0D-B2C4-5EBC2ED1ADA5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1DCD63E2-F769-4A84-9F42-A4EBD0A4BEEE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1EE2E6B3-C184-4AD3-935C-EF41B1E74993}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1FAD9F66-05C9-4C10-8820-26506EB30659}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{1FD355E0-7825-4E82-A115-E3667F3C2A6C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{20434C7F-2349-43A7-A128-98D09F828996}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{20A567E2-24EB-4443-9886-D67510291906}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{20AC6784-13B3-48E7-96DA-7530DF33D717}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{20D62FFE-A2FB-4920-BA65-A8E7320E8B6A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{215ECC08-EFD7-47A0-83FE-391BE8FF057B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{219603E8-A981-48A4-AC70-59035B3ACB69}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{21E26EB8-3C57-438C-B012-52ED2676FE4A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{21FB9833-15A1-4E95-8293-0C3260EFF401}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{228A4170-6938-4A44-8B49-DD985DFCD42B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{22C0B892-E1A9-41B0-90B6-EAFF8F7CABCA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{23449DF3-1789-48B7-9162-45602116468E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{235B4772-7CCB-4CDA-B64E-BDC97C8DC36E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{24449135-5EC3-4F80-A133-53E2E9A83F38}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{24B3FB54-F433-4957-97F6-18FA61F1F8DF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{24BD1BD2-2400-4284-999C-75BDEFADA0BE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{269C1DC1-FB18-482C-9836-686562B6879B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{26A0EB45-CBD3-44B5-AC14-58F2790164FF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2715BC11-CB09-4C76-A2D5-7C2AA4FE21DB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{275F5E27-1FA6-46FB-B765-D55CC7D74FC2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{27EE82CA-FE6E-4664-8BEA-17AEC1EA59A2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{28388456-853B-412E-A56B-F41AF910B529}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{289EFC34-A543-46FA-8E7A-917758CC033A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2A02DA26-12C1-4E1E-AC65-BA4FAD67BB50}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2A12D725-991F-4D76-9089-D6A09780441F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2AD1CFB2-724A-4C3C-9939-E5424DD590B9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2C5E47E4-4EBB-4B9C-A94E-E448B9CEFF4C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2CB762F7-5E47-4C18-88EF-98E68607955B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2CDE6CCC-FEDD-4C93-8678-D705B3B18E6E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2D7F978A-FEA8-46C1-A40F-7084069BEF0D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2EB97F3F-2D6C-4232-9DE9-64EBB1E48FDA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2F76E323-ABDF-4AC4-890A-250751A96F08}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{2FB273E3-60DE-4C8B-A265-0BE78877BBEF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{30DB0190-7EE7-4B9F-A21A-54D4FCFEBBBA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3103C437-4EFA-4819-9294-7666A90AFEE7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{316F8596-70D1-4408-87DE-0088686AEEFE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{320B909E-219E-4AE3-B2A4-C74C263D45E0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3351D337-75F6-4DC5-86BD-C48677586F66}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3386F3B2-05D9-4EFB-A90E-1CF8D4B1B6E6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{341D5B5E-2A58-47FE-81A8-1140518A533F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{343ABDA6-2255-4712-B02E-89B7D062CCCA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3456F6A8-F72C-46CF-8F97-14805D7D431E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{349BC13F-082E-40D9-A4C3-16AF32952EC8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{35D6557E-3AFA-4088-90F3-378B2E218D06}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{35E0180C-4530-4019-9513-77DD81CED42B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{35E74641-BFD2-4FA0-8319-98AC3AC712C6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{35F40DED-D26E-45C9-B2E0-7BD61A33FC34}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{368F4160-C0FC-4E76-8EB9-B9A035071B45}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{36DFA8CF-BB95-4891-B3DF-E8AFD5329754}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3720EEF1-BF8E-4285-A37C-A331FC960C3E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{373B9159-86EF-4D37-BBE2-C8972B9F95A8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3840C10C-C514-4003-99B4-67C963163710}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3945B2A8-50E6-4CA6-8B2C-412B61C6CDD6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{398604B5-F121-47B9-951A-45DCF5E293BE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{39912891-5E82-49A1-B623-0FD08E3736B2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{39BF3FB7-0B67-499A-9339-70BF43B0B506}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{39E80C3C-2023-4CAC-9491-F4C9C399A386}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3A3DF8D7-91CD-406A-8067-A97BF47E90BB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3A9482A4-CDCF-45B4-8CB1-669725841D57}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3AA5FDF6-BA0F-43B8-9209-B3214E635E3D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3AE44221-A536-41DA-8A17-E571BC8FEE9B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3B17EF6C-99BD-4CDA-A47D-067289BFA2B1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3B825D31-1219-4687-A8B8-E8BC5B45A80E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3BCE6039-359F-499C-B019-106BBD3E6BED}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3C41F083-CD76-4740-8FA4-1F013FD4CAD1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3C5C1C2B-3D65-4D07-819C-818432005FB0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3C754C7E-0EFC-4760-B7DE-3C5EB60FEABE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3CA6BFD4-1A0F-416A-BBBA-DF046E7971A3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3CCDA036-8969-488F-97D4-37FCBCF5E008}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3CCFDCA5-91E3-457D-8849-C5A236F7BC9F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3CE46E9A-46E2-4721-BB7F-E792F037D9EF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3D079E1D-4618-4A59-B41B-79B0699B326E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3D5C7E5D-B99A-4CDA-98F6-FF2FDDF6381D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3D98F575-671C-41BE-8561-5803A7BC2986}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3E23A1AB-07BE-4306-B315-4441B4D08BAE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3F34C37D-CA06-47EF-9AAC-F9FA9F7E4BA5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{3F82005F-3938-475D-A6D2-ABEC8E166CA4}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{41D6E1AB-744A-45DD-8D5F-7670B4A5D22A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{42F28FEB-623E-4390-B956-470B48A96E89}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{43AAA862-9A66-4AB3-98F6-C81ADFABC984}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{43AFA549-B0C5-446C-B896-1AAB74853BE5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{441CCFA6-AD94-4253-BB84-9BB896FAA338}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{44349038-97E5-418F-A354-B14C7C60E35C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{44923C18-683A-46AE-9D0B-CE5CE2751D3E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{44A1162E-F373-40DD-843F-311218DDF1C0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4604B17C-3D2C-4B72-8035-762CC1A7E666}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4746A405-D1E4-48EC-9336-C16FEED19855}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{47822A35-E9A7-4A41-B1C0-F00172D5B424}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{482F881C-A8D1-470D-8CFC-21F438F0A6C1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{484308FA-9D5E-4405-9E09-B5056218D86C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{490FAA91-8CC9-4E18-99BB-4A1779B7AB19}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{49CE7D29-4D08-4F1A-92F4-EB28470E9C7C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4A76FD2E-F6E6-4F14-AD13-80E5154EB9D1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4AFDA52A-2BC2-49F6-8A26-AFBBEC71BF80}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4B393FA0-C8C3-45D4-934C-DA9E18402545}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4B43BBB8-CB47-4D25-A491-820B02B69636}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4BF4553A-BA94-4BB9-B171-6A5094D56F06}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4C78F239-5ECB-4EFA-8273-CA90ED576B33}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4DC529D9-3639-4AB4-913C-F645820687A5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4E50F009-CA26-4842-A23D-E3355C67F7F3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4F4E193E-DDF9-4B1A-8ED7-699CDFFD14BA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4F92C285-3682-46A2-8D24-DCF8365531DC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{4FEFF216-0FDF-4C23-8F2E-81938C84E525}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5078D4CF-92F1-4395-9DC3-DCD9E0464B82}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{515ADD80-BE05-44EC-BC4A-9CF97D2B2EC7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{521707C9-DA52-49A8-9E5B-1AE108E212E7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{522F64F4-6FB2-4409-82E1-04F74701DDB3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{52ECE44D-FEE5-49DE-8E88-B8AE8BCF7268}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{536FD1AB-7B43-41FE-932C-127E6A5783A2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{537E0E61-60BF-4A4A-A8EA-DF8A4DD46607}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{53EC2F3E-CB7D-4557-9AC5-9D721CF574BA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{541CA645-E17E-40CF-BC18-2EF3AE5EBA18}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{54528A2D-5A6A-45D8-A0E0-D14F8CC3F9D8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{54DE4A13-E5C9-4846-8951-34B10404665A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{552263C8-DBB0-41B3-B5A3-BAD4D8B89DE5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{554585E0-1480-4B77-AFA1-3F1018B469ED}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{55A90DFC-C339-4E9D-B6BA-C95C12839310}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{55BDBF81-412A-42AE-9B6F-A661718773B7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{55F5F5A6-DD3C-4477-8A44-42735A2D459E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{56D54A82-FDF1-49DA-BFF0-A71D0E77E320}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{56FB5B2F-EA1A-40A5-8363-34AA5FF4E458}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{572890AD-0D28-49F7-B1B4-54DC5F917FA5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{578F8606-68D4-4BF7-BCB6-5F37126597C6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{57B7789F-69C6-4380-9E2E-067EC702A3A3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{58103AEB-DE5D-4C43-963A-A7FC8B738050}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{59609F34-ECA5-495D-BAC6-B20564C1D072}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{59C5AE42-C17C-4F2A-BDB1-BCF613EA9B50}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5A85BBAF-6562-4922-9B63-ED5BDA37E919}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5AC28BE2-8B15-44FB-A24A-7C1339FD4578}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5AC5B655-695E-4A3A-8C8F-8E12492843DE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5B2B47FE-F14E-497B-931B-D855FD072C01}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5B490CBD-1E9E-4BBE-9614-0C89A233957A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5B5DF22B-73FB-4428-9E1F-94AD07C56A05}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5B627AAC-43AF-46BD-B5B8-BC383D3C9591}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5B77BFD1-39CB-4386-889F-193ADCC9366C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5B946764-1850-45F4-A5B9-7FD8A7C6F4C9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5C0F6158-D208-4042-B500-8D4667795306}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5C12D734-3727-4C11-96EE-EE2A0B4362FA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5CF6B135-D932-4996-8C57-2FDC6183F54B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5E63E959-5568-4C43-9658-B4E4C777B947}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5ECE57C8-1A67-453B-BF3E-9C18FB29F43E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{5FCF7C6B-DED8-42A8-8C72-6DF5C253C63D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{60D959D0-7C6D-4A05-8FFD-73394C711E4D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{61618EAA-DABE-465B-91FC-4F362AA2E7F4}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{61AA4851-B23D-4A72-9A55-66544A505E7A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{640E847A-57FC-4812-AE79-2320E7C894B7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6415167E-E70F-4114-851E-5368069CA2F8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{64DB5743-F241-4956-A091-DAB2E1ECB4ED}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{64FF8CBE-6398-4202-AADD-68BD9674013A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6517202B-493B-402C-9E65-D105C473CCEF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{652B192E-C468-411A-B7AD-DE56371B5B93}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{667B1B32-5631-44A3-A272-D4DC1EF0886C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6692D87D-1230-49AE-8D2A-B602B04A4C07}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{66D7B3C3-DA4C-4D2F-8B70-5DB970F7FBDB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{67A6575B-44C8-4510-A003-0FB8E0AB152C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{684D8DFE-8F0B-4390-8479-9CF8E714AD6E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{694108A0-265A-4924-B145-4067803298DE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{696C4EDD-3F8B-4716-B0A1-F09DBDE868CB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{69A29E6D-7CFF-4BDE-A095-7F17DF66AAF6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{69D7F938-769A-4F66-BAD9-DBCED7852416}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6A612061-2558-4845-ADB2-5D02204502B0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6B3A982A-C183-40F4-B56F-58AFA5D8E0A7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6BE178AB-99AD-444D-BBE9-D8D9EF87728A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6C3E4FFE-1389-4F29-8ECA-36A39C0B7876}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6C556BC5-523A-465C-9F25-E8104C4DB023}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6C710D06-DD2B-4ED6-9604-8C6AD34E8FEE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6DD982FE-D88B-45B8-8B54-40D91328CF12}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6DEFAE8F-7A60-4B3D-BA65-D538DB9D647D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{6FDEAA6A-82AA-411F-AD42-17A72B5A0A6C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7023AE56-205C-49AD-ADE9-114DA13A302E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7023B34F-91E6-457D-8CC5-5EDA5D58A114}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{70450747-BB77-456C-8324-04CA3530B91C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7048B377-835E-449E-BE36-51DA874A4D64}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7095D53B-F06D-48BA-B543-7EA0B545FD31}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{70FF37A9-1DDB-4E4C-8AF4-3D871A3BC422}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{71632112-2698-4D47-8D62-50DB37DBA46E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{718ACD3C-46F4-4150-9821-55AF031473DF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{71B0E5AA-25EC-48F7-AAB6-0BF27A135E81}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{71BFCDF4-24A4-44F6-80CE-179D48D4592C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{727EE5F3-5FB8-454B-BE08-BC64AACE4422}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{72DD0922-30EC-4483-997B-9EE1E001DDF5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{737F9CC1-9344-4C48-A18A-81DFC2215E96}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{741EB4ED-2F4A-4C21-967C-B198E5D6A7A1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{74EA53E3-8FC9-4A2B-BCC0-FF7A156C482F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{75BB8B57-C9EC-4743-8591-678B7BDF288E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7616B5D1-465F-49D9-B9F4-301F0A495E94}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7630215E-7E73-4E91-8687-A7F42F35DCC6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{76DCEB67-DC87-40DB-85A7-48A45E8AA94C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7720C312-550D-41F5-AB34-539EA2F5F444}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{772B96C9-40A9-41FF-88FF-66CCDFA7476A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{779DD997-7588-41F9-A1B0-949AE1C5324A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{77C7F858-E580-4B80-8AA6-11A3ADD3EA27}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{77F3C1CD-7262-4C43-80A9-742298CADE15}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{783553A6-F28F-4314-A9B1-9143F8494288}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7960DB03-A6D5-4D66-A2BF-5E3637326E48}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{79EDAC76-DEDC-4206-BF19-3006181F345A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7B17FFF2-C43D-4C61-80C6-BCDA583E075A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7B6D60B9-A26D-49DF-89A3-D627AB632927}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7B7B1153-6308-4D82-B2F6-81E1FFEC3532}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7BE7E1F1-448D-4001-8B72-C08C372C60F0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7C51B65B-24BC-4441-B42B-A241E7346CA7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7CB63C85-BE55-4242-A317-44F08F5C2C67}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7D93BFE4-422F-4692-B13D-FC332EC0C43E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7DD64417-C684-4243-BCF9-406C939828A4}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7DEC8F8B-1B0D-43EC-8CC1-7E2E4D6953B8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7E3B7C6C-06DC-4AAA-BFA8-A8D36B208073}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7ECBCA08-1ED0-4CC6-BE9F-9D7FC1D9A2E4}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7F4D7284-01DE-49C8-BA0E-E3E0A1929686}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7F60BC6A-7033-4535-A075-DE7EEDC2A5F5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7FDDA05D-BB30-4B94-B19B-2479ACF0B374}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{7FE69748-9174-43EB-9E57-B3E2EAE2B735}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{801CAD73-69F9-44BD-A5DC-9BDE82977C47}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8077C76A-9AAD-4172-BAEF-8E008C3B3820}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{80979BB1-9E82-4B1B-92DF-164CDB20096B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{80B3FC38-4A25-4298-812F-6AABC6B91271}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{80C24B3A-0B13-41AB-B873-5DBDEA24CE89}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{80C647FD-A266-4D84-AD4B-F6A9C56E2096}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8123777A-F16E-4B60-AA2C-2016080AA5D1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{812EA8BA-1E2A-4BC8-B97C-F62E865FE0E5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{814480D4-C94B-49E0-A831-E65A299DEC3D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{815E9C35-9169-40FE-9BB3-394F38E7AC0C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{827525EC-4A56-4DFF-A4A7-BF9BEB32521C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{82A2AF5E-69F6-42FC-833C-3E5CE69100E9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{82CE8745-B9FB-49CD-A932-E2A52C983865}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{83002F1D-FBDF-40DF-9FFB-0D2433847F6A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{831FE32A-6A68-451E-AB53-85D86C7CA3DC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{839648FC-3801-4CA4-A418-67DB3C879E1A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{841F7B8C-29E1-49FC-B7A1-3817E935022F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{84275288-22ED-4038-A13B-7CDD29F25552}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{84634812-E555-4D2B-B70A-3A107CB37ED5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{848D9261-C99A-4D6C-9E6C-E3E55C6EAE6A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{854C758F-7273-4082-9DD4-F33C00D4680A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8598013C-61DF-4CC0-B215-DA4B4EC18F8B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{85F7FAEF-A7C8-4DB8-87DB-D5B9FBA61C9F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{85FC2A71-C488-4D96-8CEC-D75A58DA94B8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8687ACBC-14A1-41F1-9CF1-671346591C00}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{86BCC3ED-458F-4323-8837-36DEE0CFADD9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{86CD36F7-F02D-4FAF-85B3-68AC91827E4E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{872D9D21-B9FA-49D4-A52A-5B23489A4619}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8859663D-CB55-42BF-B9C9-C8C3FCC11912}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{88A9E84C-B877-4259-8F1A-B7E53B91A25D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{88C878CD-F58F-4004-9062-FD58A92F9EF8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{88FF95D2-E4F2-4E96-A12C-1086DB53D342}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8941902D-25C5-4139-BF16-5907C6CD156C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{895F2B3F-F674-4251-B67D-5D5B74D790F0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{899EADEB-0630-4C76-A3B5-15C6041BC753}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{89A26A68-9F2F-44FD-A88C-1413CDD411B0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{89D4641D-6BD3-4F14-9A59-C4ADC909F1BD}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8A21346C-73F4-4F85-BE70-8634E04B91E6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8AB3C507-DCCF-400B-AF64-381E3BD4ABFA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8AFA5F48-0C91-4562-A690-343C78C2BBEB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8B391934-0BCD-41E9-A021-6874D3864A65}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8BCE048C-93AD-4BC9-8039-4E3E903CDC63}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8C3C8B7B-5647-4E97-9FAE-9E78EEFF1B83}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8C3F2C6B-3DA3-4112-B2A3-91A826AF92A0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8C4FDDB8-55E7-4EA1-B5BE-7C0E35DD41F5}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8CF7E682-36EF-494A-8F49-6F4A91F1037D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8D0DE3A3-2184-4540-9981-FFAF765AEAFA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8D0E2B3F-DA42-4342-9B6E-61A5AF7164A9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8D5CD83E-720E-4AA6-808C-06D24340B784}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8DD03CD1-9CFE-4876-9A04-B816B1EA60B1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8DD152A1-C282-4AF3-AA6D-508A82BDB1C6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8DDCB291-8038-46A4-BEA1-3D5351FA9D3D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8E3159DC-8ECD-4FD4-993B-41890E47D513}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8E7271EF-1B29-482F-BE1E-36BCBF377B6F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8E87DCD9-707F-4755-82A8-76061F62BC29}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8EA5E4C2-07B1-4FA3-BD0A-3B644DC34598}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8F847605-299F-4132-A979-438C983A2FC7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8F89E3D6-9450-4E96-9105-C4F0E50B92A6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{8FC2DE9B-D4B9-4B6A-8B1F-1088D1581435}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{903ABDEF-A80A-4936-A61B-2B015C4EEDCB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{904D530C-C3D8-4450-9823-C7916055773D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9057FE1A-55EA-42B5-891E-5E719A255394}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9065138A-4F68-452B-A918-3D5F817BD075}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{90AFC91E-6F73-4DC3-A776-443E4027B96B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{913D841C-60C2-4ED0-A190-43A4A56B2657}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{91BA6588-0ED5-4668-8034-C51A56E33957}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{92446710-6C29-4D76-BE54-115A99EF689F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{93B93C3D-8E77-4388-8240-4C880CCB7778}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{94101898-B9FB-493D-B6E7-7A7BE27CF4D1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9429EF91-E26D-4F16-A2C9-0494451F1E92}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{943E1436-6185-424E-9423-0AADA0B74E1D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{95F7732A-C037-462B-A735-A623CC7E653E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{96847664-17FA-4839-9F33-2AED9F230603}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9704E1AC-E37B-4136-BFBD-7EFDE2019835}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{97445EAD-8B7C-4D26-B357-B71F13C19E24}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{97D99A68-E540-4127-B46C-DA0FF0E952BE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{98D12CB3-AF67-4F65-9751-2BE14B4E9ECE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{99D5417B-03C0-42F3-9EB8-565995CA8D2E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9A5F2CAF-9677-4693-84EE-4DF4207A2A5E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9B340B78-95C8-459D-A605-211CE3492716}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9B8F2661-A825-4528-8C79-581C71301298}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9C3E2631-7F91-487B-977F-02D9F1B922E8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9CE4F4D2-4562-4FDD-8C59-E8A83DBF827C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9D1C49F3-5BA7-4086-ADC5-5C9B23CAA584}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9D3BF9D3-6964-4C15-BAC4-606FED2A3B14}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9D6E339E-A306-46CC-A9BE-5BD862F8CED3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9E23F0B2-88D6-4601-8938-38D1BDBC2386}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9E587CA8-84FE-4031-8FA7-2878762F63D1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9E66CFE3-6844-47FD-9FCD-D4D66788D069}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9E970598-EBE9-4A82-B748-3F8B64DFAA7B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9EBFF659-7B8B-405D-9A82-EB57AEEEEF4B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9EDACE64-27C6-456E-898D-4AB7D59DBB38}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9EF1C9FA-CEA4-4BD2-AC31-5F07BDF8164C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9F54326D-F508-41B8-B0F3-E9A66B45FF7A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{9F5C6E43-8A9B-4EC7-835D-5542CED91A0C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A069B7F3-4151-4326-A392-225ED9579773}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A0F6FE52-BB13-42AF-A546-A644C2F2915D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A10A8184-E41D-4A81-969C-529B21A7C1D1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A13461F2-6FBC-4362-BF18-5FFE4E5D2FBB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A1716EC6-B466-4610-8D9B-F6AEEB78E77E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A1C5BF28-849B-491E-8D8F-1AD045A039A2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A1EE4838-5AAD-4B01-8CB0-2E85F91DC3A8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A2945885-D46B-4840-92CC-242B5EB3F925}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A32A505C-3767-4BF7-8792-CC6B47AE2FED}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A3D659A2-142B-4000-8067-CCB72C3207FC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A452DD52-F7C7-4683-9072-0947D8CCB48B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A4A8BA1A-B204-453D-BF6C-FBBF132AC8D1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A4C8E4EC-2656-4A14-B85C-376F22C2EADA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A4DB8355-B072-4E86-800E-4141F1618B89}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A534A353-A51F-4C13-BC89-E32D83D0F050}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A5ACD96C-3983-451F-824F-E70C12395F73}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A685888C-2FCA-4898-8354-858EBD4AFBC2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A6D50C72-6EC4-4A1A-AC79-A1B8E7DE799D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A7313B0A-221B-41D6-9CD0-4D49BC879A8A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A780C799-EB8E-46C4-A9FE-38A6B97C5A13}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A832262B-DA88-4FBF-9224-AC018177849E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A84865B6-DCE8-4E24-A9F8-F27F609D27F0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A8B35A23-614C-4F23-9B3A-A48F56EC7307}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A8B3FAEC-28A9-4628-AF52-21AE96DF036D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{A9BB716C-A5CA-41EF-B514-454EAF9592FC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AA65B865-4204-43C3-AAC8-4BCBA363E7CF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AA66BFB5-C0F1-462D-BA47-1B1B82D4C7F7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AA8134DE-0499-4324-87D0-20FFBE2B53C7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AABDC5F8-38C3-4BEF-B3AD-6B4185EBCC6A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AB01559A-22CA-44DE-AC5A-3474168541AD}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AB91A4AF-96F4-4841-B94D-708B475935D0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{ABAFCF98-CFFE-4450-A9D1-D71917E0D0C3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{ADC601CC-16AE-4C23-870D-7998024F5259}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{ADE25311-D9B4-4417-9CA1-F75A5FC5B353}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AEC8C5FB-3518-45B3-AF35-40ED265F4966}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AED84C34-461F-41DA-9D7A-CBA8A0B57134}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AEE11A12-6268-4C6A-B8AA-9960BBE73305}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AF33AB28-F279-4FF7-9235-4C32BB93E38E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AF4A2AD8-20AC-4AD5-8509-042798F26A14}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AF74D7E0-4673-4A82-8136-3BA88BB51922}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{AF917291-4196-4367-A951-ED08D11638DE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B0491289-5F51-42CF-88F4-77E16F7AA857}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B0FD928D-A959-44D3-97CC-36E778C934FF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B1110E27-8AFE-4FC4-9920-BCFEEEFB48E8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B12F3899-96A5-4093-BC85-E4870D52E4F6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B1D1E14C-BB40-4428-A18D-1EF93AB4004C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B1EE7E8C-CBF4-44CF-B2ED-40EDCE4E9233}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B2462A0A-55B1-4CBC-9B24-2A87FB7E09BB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B3E6BFD9-85CD-4D78-9E0C-1EA88B3AD77B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B3FA2014-4DB3-419E-AD76-A3AD7FA9D808}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B40D5397-83FE-440D-9A75-F3FFC0FE5BE6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B47048E7-79FC-4EC9-A20A-93BBA602BD94}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B4A0230B-E52D-4CC7-AB24-AAE3A3AF3015}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B50135DD-8966-48CD-A94D-171F4CA30A16}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B7305ED0-4BC9-40BD-9250-BA71A56D0C13}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B7365AD1-56F7-467C-935E-817FF1BFB76E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B84E1D91-64EC-4D99-AE8F-043B5335FA0B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B93D092E-C6B7-413E-B95F-DCF4C6C35E3A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B9C36297-DBDE-458D-9ADF-53E443677D7E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{B9F0C300-F3DC-48D5-8DAC-C44023416E40}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BA466C26-90EE-4E04-890B-769C1839D0D6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BA702B20-745B-4134-B63D-B4A2E5E29608}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BB45ED87-4C58-4502-AFF1-EF6271F580D2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BBA8A7CC-3671-4884-A8C3-16B355AB4209}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BBC0F5BB-316A-4EAB-ACD2-5C70D2199986}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BC93F206-A325-4FFF-AC04-2993B333092D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BD7001A9-0316-44F5-B3F3-FD5406FB367D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BDC9D5DC-3C2D-4EB9-B449-8CB9FEB1E925}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BE3A5A63-C39F-47E6-A6E7-449C0A3CF3D2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BE8311A0-A1E3-4BE0-AE85-ACF88039ED45}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BEA89CA1-A771-4404-AEE8-AD6DAA04357B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BED1CCC7-4F11-4097-88DE-0DA98963B0A6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BED2DA0A-3B01-472A-A4DF-0B88D93B81B0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BEDCCA47-5A1F-4DB3-9ECB-9CE220765CA0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BF185B1F-18C6-404A-828F-6B309273AC72}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BF1CB3E1-3A1A-41AD-84C8-239B94964C8D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BF9C4B91-9316-4703-9EBA-57A4C623ABC7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BFBD9D97-3AC9-4CE5-9A2B-46ED46CCD193}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{BFD1448E-3B11-44FB-867D-7B65679662E7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C03F92E2-92FB-4307-8558-E29BBD97CEF8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C04A6C12-68F8-48C1-834F-1CAA86313ACC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C070397D-ABFA-4500-BC8B-0743982B6106}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C0A702CD-D12E-4193-AF4A-887E187731D3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C0AD3401-D259-412C-88D4-02E62965D7F3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C0CAB9F2-2087-43F4-BAF9-B4A82F2E3FD2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C0DB0DCA-1209-403D-AF74-CA5D044A0E2E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C1243B86-B519-4B23-8733-0CF93DFA57E0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C1BD5337-38E5-44F6-8161-D88FFE3287BF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C1F2013F-DB71-49FE-9A53-E0F792C9796B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C236DCBE-734F-4CF0-A962-244247256EF7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C260A4D5-8172-4AAE-9A88-86B7F994BE90}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C30E3907-71F6-421D-9277-3B56F0060D16}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C31AE50F-F228-4835-A9BE-C5E74AEF5CDE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C3777687-0C42-4090-8480-80F98BFDD3D3}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C3B2D947-2BF5-45C1-BD47-746EC7467FC1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C41F5811-DDEA-444B-9DDB-1D047DB8E54F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C43B7B7A-1E9C-4C1F-B87C-7B36A0728E9E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C54B6B79-20CD-4CCF-AB27-CD4CCF75ABF6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C5DEB414-5093-4F19-8A04-EA090A419FB7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C62EA147-3965-4312-B39A-B80AE4C40B89}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C6BF42FE-6B63-42E7-B52F-9AF52D14084E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C7243DF6-392B-4741-BF40-64D7228FC50A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C72D0137-71A6-477C-A945-EEF6E8FAE418}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C7E507BF-13E0-4626-8A66-79ECD430A5B7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C7F2C2B2-A760-4E5F-BAB8-CB3881A1DE19}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C8B47082-10E8-44F6-A55C-F7490E7D3F7D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C8BAD85E-0F30-4F23-AC23-7922106E7516}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C8EC3967-321B-40F3-99FE-9C4C1935213D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C900FD1D-D927-4F88-A9BD-AD04581161F2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C953FE62-EAE7-41E7-8C14-B0204D2DF21D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{C9FB3F45-99F9-46BA-93CC-765061A7B7A1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CADC9DA7-51FC-42C5-AC0F-F5DA3F90D9B7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CB25598F-FCFD-4930-87D4-522A276E0FBA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CBAAE155-AA57-49C1-B4AB-906BB4D70DD9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CDB29AE1-DECD-46CD-85C9-9A74E28236CD}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CDB84102-0A70-4904-87E2-9F5685354848}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CDBC2DDD-938E-447A-BBAC-EB575D26AD4D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CE720F13-7009-471B-B46D-AC2436272D93}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CE7CA006-1B6F-45D7-B7D8-D0C5AE1330B4}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CEBE036A-A4B9-44CC-8E3C-CA83EAB4AF1C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CF2533D2-03A2-4127-9B0F-2712E28DF0FE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{CF768049-40AC-47E8-812E-6174D556E9EE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D047DD82-C463-4DAE-8DAE-FD14FFC6599E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D08A4B4F-F3C6-4343-96E1-0642CA8E51F0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D0E6E1D8-928E-4905-85FB-FE65DEF0DDC0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D15EBC13-3D66-48C1-A7D3-D4EFF6A2DFBF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D1F516CA-16A7-42E2-9200-EEB1E8520A8F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D28C82BA-A3CB-47B1-BF01-C6A5942A5FDC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D2E19FB6-2DF7-4652-8C0D-52D4F42DE29D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D34710EA-51AE-41C4-83A6-FF25138C4638}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D388329B-6AE7-403F-AAAD-3C50B5B27D20}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D3DA6319-F2E7-4953-A19D-37F746BC8ACF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D4106BC8-3477-45FE-B779-E389C64800FF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D4544C7F-AC72-4CA8-9621-82C6D36A36E6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D493806F-4BD0-4BD1-A16A-E560BA3142D2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D4C7AF6F-4448-4AE5-A15B-C9155E9F48CE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D530BB78-FCE9-4272-8F9C-4BE8A37A4DA2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D58038A7-29BD-4019-8019-8F3E1BB78A7A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D5ED6FF0-7E8E-4567-B67E-33A8A23B9BEE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D6806DA7-2635-45EF-A88A-AA84F5C6F036}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D72DE38A-F7BF-4EA7-BC05-4220F21E010F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D7712CE6-B8E8-45C0-8FEE-4A71D811A15F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D7A9DB57-5613-4975-85BC-D9AEE696C389}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D7F19073-B8BF-4F5D-8250-3BBC41731F91}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D81CA3C4-5165-4740-84D3-4FA116EE063B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D8618E29-324E-4532-93B0-8666FD9FAF7A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D8AA1BF5-8D90-4B90-BE13-8D9FEFB9E484}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D8C83AB8-6656-411E-A282-91BD783DFDE0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{D942DD1F-215E-4F68-901D-4E649E9E24BC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DAB16F85-F471-49D8-9F9C-D82227CE95A0}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DB0F453A-F68A-4E52-9E63-30B438BDAA8D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DBDBFF16-0BF9-4262-84B5-E990485BFB39}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DBF4E8E0-9F53-4018-BA50-6BF876A77504}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DC5CAE86-BCEB-429D-87F5-C9CEDA172892}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DC6249E3-B115-46A8-88FD-BEA18A403EB2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DC9F29AF-CE06-422A-AFA7-4AF78D014330}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DCCB0F11-9AAD-4B9B-8FE2-BD7A5977B923}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DDE55530-7D83-47B7-94D9-1298187F3DF6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DE9D3D15-B2A9-4EBE-B84D-EE7912974240}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{DF5B30B8-0B5E-4292-BA63-C2366603CD02}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E027AC8F-FF45-4760-B0FF-04EFEE6EE10C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E03CBBCD-D73F-4802-8A0B-539245DAD8E4}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E04D7782-E464-44AF-BAD7-18BE748411BA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E0B8F7C3-5434-4997-B152-79EFA746F9AB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E0C3B641-0C6F-4614-AF96-452864CCF649}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E0CEEE6B-AD05-4118-9CE9-1AB5AAF27611}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E0D8FD75-E09C-48E6-A539-2D717659B8EE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E14374B4-419F-482E-BF38-093B966BE429}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E1A9BF38-F268-446D-BD32-68DF95D8D68F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E1C5A178-86F3-4B28-9039-717013B4FB5C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E231087C-0F7D-4F9A-B6F1-F80FDDB1B597}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E23E65B7-5ADA-4615-81DC-E7B8F42F0F5A}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E2487560-FFAA-4536-8747-F72CC6C87C8E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E277A94D-D3E9-4401-A7A0-A28F92A07762}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E2D8CC79-0BAE-4AF2-A229-24BCAEAF1163}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E405019C-D849-493C-92B9-4D4C3E89C177}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E43F8692-F2A3-4585-8906-6A9A26E1CB7B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E546DF63-36DA-4987-BE5D-BD75A36746D6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E5DFDEB1-CF4E-4E02-A731-43213CADF11D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E632B2A6-080F-4A38-B991-D243EBEC7940}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E6661628-3BB5-4443-9A39-61AA134A72DC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E6D8A1A8-53B8-47B8-86E7-552AA1A8DF3E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E7657E71-DA03-4284-B4FB-C1C553D47AFB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{E86533D4-9E0B-4AFB-8DDF-B69887DD9905}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EAAEA212-7B11-4137-9DDE-2BCE82CD3E00}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EABCA0FD-DD58-4E90-9EA8-93726C43B45B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EAF49C4C-E14C-441A-A84C-C1DC3FEF15A2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EBD97062-1197-4912-A97F-598B2A78FAC2}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EC76024D-2F9F-49C9-AB6A-DD7273A7659C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{ECD0E2FB-6A68-4C9B-B8C0-60313EDCACC8}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{ED79A75E-CC88-4CEA-9A38-6BE0470E7C81}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{ED881752-D482-420F-9971-874F04FD03AA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{ED8ECF04-F47A-431C-BC3C-F18F27EF930C}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EDAEE287-DECC-4604-97A0-AD0E0335074D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EE3C9F14-B4CD-4C76-9BEB-08582E90EB05}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EE58A174-51FD-4BA9-A362-987060EA73A6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EE9E61FF-1848-4775-8598-AC61F54D8799}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EF0806F9-2720-4E61-9AA3-7C4CCA16FF0E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EF171B7B-0663-4E8B-8AF8-07F9A4B49EA6}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{EF9A9CDA-2D83-4599-B4C4-5DEB1845417F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F06A1775-DBC1-48AF-8DD9-FB708A792CAB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F110008E-9762-44A6-8108-53CDD7DB3C07}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F25EBA3E-1E19-489B-B60E-1CFE77141F6B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F2A219D4-E5EF-4CB8-9D69-901DF25B94EF}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F2B09F3D-91CE-4C9C-863B-5014BDC29604}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F2DDCE2F-9308-4510-A007-3996987446F1}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F2E251E0-14B6-448C-A3D2-B3034E143568}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F2E5ADA0-4F63-4B42-9118-E8A5F99BD6EE}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F4021B22-FCFC-429B-9DF7-70CC6740597E}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F42B044E-FA97-495D-825C-CAB3B1310BA4}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F550990E-27ED-4BE6-ADE9-72D275D94E5B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F5C09F4D-C43B-4733-AE15-2273ACDE9069}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F5C11A04-3667-46AE-84B4-73C7381321D7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F5CC1F3B-AC6C-4985-A422-D248D8F90E54}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F6BCD872-3343-4FE4-BE3D-8E76B00383FB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F7084A72-8209-42B6-857F-E9972225075B}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F77DF3CF-4455-4417-A748-820E7E766372}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F7EFCCC6-1ABE-4308-9E6C-5839277F0DDD}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F7F38210-1DBD-41B5-8018-09D518F3C1F9}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F9164FD1-43FF-4EF2-8F18-A15E23832589}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F91C9374-1684-4E6E-BE74-3B867985ACBA}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{F999A27D-F15B-462A-8EA1-F596071C846D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FA066015-D237-43FC-9F14-26EDF838B1FB}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FA828BA9-928E-4976-AB28-F6C671658928}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FAF0D91B-FFBF-4925-B20A-2838CE4DAF75}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FB13FEFE-6313-4BB6-B9CA-674A89BE9C4F}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FB4A9591-33F2-4157-B4A8-74F82A7F3846}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FC3B53D2-EC34-4CEB-8D82-0BE32ED766C7}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FC526F4E-2D2D-42C2-AEC3-A96160FF2829}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FD64AA0A-7875-414F-BC31-BA2D86CAFA5D}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FE25A8BB-AA75-4A83-8ED2-9FCB45DCF964}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FE4EE034-F0C4-47CD-8009-D6134DE23105}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FED9655D-EB4B-4160-82E9-8728282115BC}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FFC664C9-617F-4D1C-AA53-7A962E8FA3AD}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FFED710B-B46B-45DD-9B64-21AFB3D7F215}
Successfully deleted: [Empty Folder] C:\Users\Diyar\Appdata\Local\{FFF082EF-1087-4E99-91F1-E39CF15100A7}
Successfully deleted: [Folder] C:\Users\Diyar\Appdata\LocalLow\.acestream
Successfully deleted: [Folder] C:\Users\Diyar\AppData\Roaming\.acestream
Successfully deleted: [Folder] C:\Users\Diyar\AppData\Roaming\getrighttogo



~~~ FireFox

Emptied folder: C:\Users\Diyar\AppData\Roaming\mozilla\firefox\profiles\eye8mslh.default\minidumps [143 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 13.09.2015 at 20:34:32,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Diyar · 13.09.2015, 20:08

FRST Logfile:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:13-09-2015 01
durchgeführt von Diyar (Administrator) auf DIYAR-PC (13-09-2015 20:43:01)
Gestartet von C:\Users\Diyar\Downloads
Geladene Profile: Diyar & Dilan (Verfügbare Profile: Diyar & Dilan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser nicht gefunden!)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Garmin Ltd or its subsidiaries) C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12481128 2012-05-07] (Realtek Semiconductor)
HKLM\...\Run: [Domino] => C:\Windows\Domino.exe [49152 2006-07-04] ()
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-11] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782008 2015-08-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [62464 2015-06-18] ()
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-13] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [Dropbox Update] => C:\Users\Diyar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [Spotify Web Helper] => C:\Users\Diyar\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-09-13] (Spotify Ltd)
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\...\Run: [Spotify] => C:\Users\Diyar\AppData\Roaming\Spotify\Spotify.exe [7535672 2015-09-13] (Spotify Ltd)
HKU\S-1-5-21-1825211407-1677631671-286171030-1004\...\Run: [msnmsgr] => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-21-1825211407-1677631671-286171030-1004\...\Run: [Google Update] => C:\Users\Dilan\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1004\...\Run: [Speech Recognition] => C:\Windows\Speech\Common\sapisvr.exe [44544 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-1825211407-1677631671-286171030-1004\...\Run: [Orbitum] => C:\Users\Dilan\AppData\Local\Orbitum\Application\chrome.exe
HKU\S-1-5-21-1825211407-1677631671-286171030-1004\...\Run: [Facebook Update] => C:\Users\Dilan\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-03-22] (Facebook Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1004\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-1825211407-1677631671-286171030-1004\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Diyar\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
Startup: C:\Users\Diyar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-07-25]
ShortcutTarget: Dropbox.lnk -> C:\Users\Diyar\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6665933F-EAD5-431F-99B7-BD14C0CC04DC}: [DhcpNameServer] 134.147.32.40 134.147.222.4
Tcpip\..\Interfaces\{C4278500-9DCA-4354-BA26-8DE6ACFF7EB9}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{C77034A6-B57E-43A8-8EB4-0D03CE36B068}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{F736ADCE-68F2-4431-8F09-507797603E81}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1825211407-1677631671-286171030-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1825211407-1677631671-286171030-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://packardbell.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1825211407-1677631671-286171030-1001 -> ÛŸÆîZ§’2¹Þpv¨IÍá*X(Ž2s(ÛÎÀJºÔÓµ± vË°!×—(ä¼48Ð¸patm6êo^Mp`Ëõ÷_i£w˜¾!„Áû†x¢8€ÙjÀÿþ*´Ñ;áa´[¦†8*º~RÙxœòÜ8'£-)x*ä* URL = 
SearchScopes: HKU\S-1-5-21-1825211407-1677631671-286171030-1004 -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = 
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-19] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-19] (Oracle Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-19] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-19] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1825211407-1677631671-286171030-1001 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
Toolbar: HKU\S-1-5-21-1825211407-1677631671-286171030-1004 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} -  Keine Datei
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} -  Keine Datei

FireFox:
========
FF ProfilePath: C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-19] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-19] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @protectdisc.com/NPPDLicenseHelper -> C:\Program Files (x86)\ProtectDisc\License Helper\NPPDLicenseHelper.dll [2008-02-22] ()
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1825211407-1677631671-286171030-1001: @acestream.net/acestreamplugin,version=2.1.5 -> C:\Users\Diyar\AppData\Roaming\ACEStream\player\npace_plugin.dll Keine Datei
FF Plugin HKU\S-1-5-21-1825211407-1677631671-286171030-1004: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Dilan\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1825211407-1677631671-286171030-1004: @tools.google.com/Google Update;version=3 -> C:\Users\Dilan\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin HKU\S-1-5-21-1825211407-1677631671-286171030-1004: @tools.google.com/Google Update;version=9 -> C:\Users\Dilan\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Extension: Avira Browser Safety - C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\Extensions\abs@avira.com [2015-08-12]
FF Extension: ADB Helper - C:\Users\Diyar\AppData\Roaming\Mozilla\Firefox\Profiles\eye8mslh.default\Extensions\adbhelper@mozilla.org [2015-07-03]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [2015-08-28]
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2015-07-10]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [887128 2015-07-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1213072 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [228104 2015-08-13] (Avira Operations GmbH & Co. KG)
R2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [219480 2013-07-09] (Garmin Ltd or its subsidiaries)
S2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [36456 2011-05-30] (Acer Incorporated)
S2 Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [244624 2011-04-22] (Acer Incorporated)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37176 2014-06-05] (The OpenVPN Project)
S2 RalinkRegistryWriter; C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry.exe [374112 2011-04-25] (Ralink Technology, Corp.)
S2 RalinkRegistryWriter64; C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry64.exe [451936 2011-04-25] (Ralink Technology, Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [162528 2015-07-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-07-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-03-05] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-08-23] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-02] (HTC, Corporation) [Datei ist nicht signiert]
S3 Logi_Headset_DFU; C:\Windows\System32\Drivers\lhusbdfuamd64.sys [44136 2014-12-08] (CSR plc.)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [30312 2012-03-07] (Windows (R) Win 7 DDK provider)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 PGRUSB; C:\Windows\System32\DRIVERS\PGRXHCI.sys [123392 2013-12-18] (Point Grey Research)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [848384 2011-07-14] (Realtek Semiconductor Corporation                           ) [Datei ist nicht signiert]
S3 RTL8192su; C:\Windows\System32\DRIVERS\RTL8192su.sys [676864 2010-03-09] (Realtek Semiconductor Corporation                           ) [Datei ist nicht signiert]
S3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [376024 2014-12-26] (Realsil Semiconductor Corporation)
S3 S3XXx64; C:\Windows\System32\DRIVERS\S3XXx64.sys [73856 2015-02-17] (Identiv)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-09-17] (Anchorfree Inc.)
S3 ZSMC301b; C:\Windows\System32\Drivers\usbVM31b.sys [1495936 2007-04-04] (Vimicro Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-13 20:42 - 2015-09-13 20:42 - 00000000 ____D C:\Users\Diyar\Downloads\FRST-OlderVersion
2015-09-13 20:34 - 2015-09-13 20:34 - 00064897 _____ C:\Users\Diyar\Desktop\JRT.txt
2015-09-13 20:29 - 2015-09-09 20:11 - 01800104 _____ (Malwarebytes Corporation) C:\Users\Diyar\Desktop\JRT.exe
2015-09-13 20:28 - 2015-09-13 20:28 - 01799392 _____ (Malwarebytes Corporation) C:\Users\Diyar\Downloads\JRT_7600.exe
2015-09-13 20:27 - 2015-09-13 20:27 - 00009762 _____ C:\Users\Diyar\Desktop\AdwCleaner[C1].txt
2015-09-13 20:18 - 2015-09-13 20:18 - 01660416 _____ C:\Users\Diyar\Downloads\AdwCleaner_5.007.exe
2015-09-13 20:17 - 2015-09-13 20:17 - 00013681 _____ C:\Users\Diyar\Desktop\mbam.txt.txt
2015-09-13 19:48 - 2015-08-25 16:08 - 00574072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-09-13 19:44 - 2015-08-25 20:46 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 37819184 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 16637336 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 15512888 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 13661160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 12185152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 11089200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-13 19:44 - 2015-08-25 20:46 - 02940720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 02627704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435582.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 01558648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435582.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 01106672 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 01075320 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 01064752 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 00945456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 00944736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-09-13 19:44 - 2015-08-25 20:46 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-09-12 23:28 - 2015-09-12 23:28 - 00000000 ____D C:\Users\Diyar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-12 22:47 - 2015-09-12 22:47 - 00032977 _____ C:\ComboFix.txt
2015-09-12 22:20 - 2015-09-12 22:47 - 00000000 ____D C:\Qoobox
2015-09-12 22:20 - 2015-09-12 22:45 - 00000000 ____D C:\Windows\erdnt
2015-09-12 22:20 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-09-12 22:20 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-09-12 22:20 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-09-12 22:20 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-09-12 22:20 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-09-12 22:20 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-09-12 22:20 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-09-12 22:20 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-09-12 21:43 - 2015-09-12 21:43 - 00003160 _____ C:\Windows\System32\Tasks\SidebarExecute
2015-09-12 20:13 - 2015-09-12 20:13 - 00002131 _____ C:\Users\Diyar\Desktop\Tweaking.com - Windows Repair.lnk
2015-09-12 20:12 - 2015-09-12 20:12 - 00003654 _____ C:\Windows\System32\Tasks\Tweaking.com - Windows Repair Tray Icon
2015-09-12 20:12 - 2015-09-12 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2015-09-12 20:12 - 2015-09-12 20:12 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2015-09-12 20:05 - 2015-09-12 20:11 - 20391688 _____ (Tweaking.com) C:\Users\Diyar\Downloads\tweaking.com_windows_repair_aio_setup.exe
2015-09-12 20:03 - 2015-09-12 20:03 - 00000000 ____D C:\Users\Diyar\Downloads\Tweaking.com - Windows Repair
2015-09-12 20:02 - 2015-09-12 20:03 - 18024840 _____ C:\Users\Diyar\Downloads\tweaking.com_windows_repair_aio.zip
2015-09-12 00:55 - 2015-09-12 00:56 - 05635119 ____R (Swearware) C:\Users\Diyar\Downloads\ComboFix.exe
2015-09-12 00:46 - 2015-09-12 00:46 - 00000000 _____ C:\Users\Diyar\Desktop\sinalco 3 ausdrucken und abschicken.txt
2015-09-09 15:54 - 2015-09-09 15:54 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Diyar\Downloads\tdsskiller.exe
2015-09-09 12:13 - 2015-09-13 20:12 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-09 12:12 - 2015-09-09 15:44 - 00000000 ____D C:\Users\Diyar\Desktop\mbar
2015-09-09 12:12 - 2015-08-18 03:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-09 12:12 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-09 12:12 - 2015-08-15 08:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-09 12:12 - 2015-08-15 08:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-09-09 12:12 - 2015-08-15 08:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-09 12:12 - 2015-08-15 08:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-09-09 12:12 - 2015-08-15 08:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-09 12:12 - 2015-08-15 08:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-09 12:12 - 2015-08-15 08:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-09 12:12 - 2015-08-15 08:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-09 12:12 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-09 12:12 - 2015-08-15 08:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-09 12:12 - 2015-08-15 08:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-09-09 12:12 - 2015-08-15 07:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-09 12:12 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-09 12:12 - 2015-08-15 07:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 12:12 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-09 12:12 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-09-09 12:12 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-09-09 12:12 - 2015-08-15 07:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-09 12:12 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-09-09 12:12 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-09-09 12:12 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-09 12:12 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-09-09 12:12 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-09-09 12:12 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-09-09 12:12 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-09 12:12 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-09-09 12:12 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-09-09 12:12 - 2015-08-15 07:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-09 12:12 - 2015-08-15 07:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-09 12:12 - 2015-08-15 07:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-09 12:12 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-09-09 12:12 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-09 12:12 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-09-09 12:12 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-09-09 12:12 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-09-09 12:12 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-09 12:12 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-09 12:12 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-09 12:12 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-09 12:12 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-09-09 12:12 - 2015-08-15 06:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-09 12:12 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-09 12:12 - 2015-08-15 06:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-09 12:12 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-09 12:12 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-09 12:12 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 12:12 - 2015-08-05 19:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-09 12:12 - 2015-08-05 19:56 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-09-09 12:12 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-09 12:12 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-09 12:12 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-09-09 12:12 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-09 12:12 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-09 12:12 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-09-09 12:12 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-09-09 12:11 - 2015-08-15 08:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-09 12:11 - 2015-08-15 08:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-09 12:11 - 2015-08-15 08:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-09-09 12:11 - 2015-08-15 08:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-09 12:11 - 2015-08-15 08:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-09 12:11 - 2015-08-15 08:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-09-09 12:11 - 2015-08-15 08:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-09 12:11 - 2015-08-15 07:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-09 12:11 - 2015-08-15 07:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-09 12:11 - 2015-08-15 07:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-09 12:11 - 2015-08-15 07:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-09 12:11 - 2015-08-15 07:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-09 12:11 - 2015-08-15 07:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-09 12:11 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-09 12:11 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-09-09 12:11 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-09-09 12:11 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-09 12:11 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-09-09 12:11 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-09-09 12:11 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-09-09 12:11 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-09-09 12:11 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-09-09 12:11 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-09-09 12:11 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-09-09 12:11 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-09-09 12:11 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-09-09 12:11 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-09-09 12:11 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 12:11 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 12:11 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 12:11 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 12:11 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 12:11 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 12:11 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 12:11 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 12:11 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-09-09 12:11 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-09-09 12:11 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-09-09 12:11 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-09-09 12:11 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-09-09 12:11 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-09-09 12:11 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-09 12:11 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-09-09 12:11 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-09-09 12:11 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-09-09 12:11 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-09-09 12:11 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 12:11 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 12:11 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 12:11 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 12:11 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 12:11 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-09 12:11 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-09-09 12:11 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-09-09 12:11 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-09-09 12:10 - 2015-09-02 05:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-09 12:10 - 2015-09-02 05:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-09 12:10 - 2015-09-02 05:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-09 12:10 - 2015-09-02 05:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-09 12:10 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-09-09 12:10 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-09 12:10 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-09-09 12:10 - 2015-09-02 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-09-09 12:10 - 2015-09-02 03:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-09 12:10 - 2015-09-02 03:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-09 12:10 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-09 12:10 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-09 12:10 - 2015-08-27 20:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-09 12:10 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-09 12:10 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-09 12:10 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-09 12:10 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-09 12:10 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-09-09 12:10 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-09-09 12:10 - 2015-08-26 20:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-09 12:10 - 2015-08-26 20:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-09 12:10 - 2015-08-26 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-09 12:10 - 2015-08-26 20:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-09 12:10 - 2015-08-26 20:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-09 12:10 - 2015-08-26 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-09-09 12:10 - 2015-08-26 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-09-09 12:10 - 2015-08-26 20:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-09 12:10 - 2015-08-26 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-09-09 12:10 - 2015-08-26 20:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-09 12:10 - 2015-08-26 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-09-09 12:10 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-09 12:10 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-09 12:10 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-09 12:10 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-09-09 12:10 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-09 12:10 - 2015-08-04 20:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-09 12:10 - 2015-08-04 20:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-09 12:10 - 2015-08-04 19:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-09-09 12:10 - 2015-08-04 19:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-09 12:10 - 2015-08-04 19:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-09 12:10 - 2015-08-04 19:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-09-09 12:10 - 2015-08-04 19:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-09-09 12:10 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-09 12:10 - 2015-08-04 18:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-09-09 12:10 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-09-09 12:10 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 12:10 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-09-09 12:10 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-09-09 12:10 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-09-09 12:10 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-09-09 12:10 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 12:10 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 12:10 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-09 12:10 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-09 12:10 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-09 12:10 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-09 11:58 - 2015-09-09 11:58 - 00003238 _____ C:\Windows\System32\Tasks\{871A49B7-4EC3-4BC5-8815-EE019FDF8D7B}
2015-09-09 11:57 - 2015-09-12 01:48 - 00000000 ____D C:\Users\Diyar\Downloads\revouninstaller-portable
2015-09-09 11:57 - 2015-09-09 11:58 - 11069616 _____ (VS Revo Group ) C:\Users\Diyar\Downloads\RevoUninProSetup.exe
2015-09-09 11:56 - 2015-09-09 11:57 - 03007700 _____ C:\Users\Diyar\Downloads\revouninstaller.zip
2015-09-09 11:55 - 2015-09-09 11:55 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Diyar\Downloads\revosetup95.exe
2015-09-08 12:17 - 2015-09-08 12:18 - 00061585 _____ C:\Users\Diyar\Downloads\Addition.txt
2015-09-08 12:13 - 2015-09-13 20:43 - 00022982 _____ C:\Users\Diyar\Downloads\FRST.txt
2015-09-08 12:13 - 2015-09-13 20:43 - 00000000 ____D C:\FRST
2015-09-08 12:12 - 2015-09-13 20:42 - 02190848 _____ (Farbar) C:\Users\Diyar\Downloads\FRST64.exe
2015-09-07 20:08 - 2015-09-07 20:08 - 00000000 ____D C:\Users\Diyar\Desktop\Promotionunterlagen
2015-09-06 20:04 - 2015-09-06 20:04 - 00000000 _____ C:\Users\Diyar\Desktop\diya.txt
2015-09-05 15:28 - 2015-09-05 15:28 - 01162528 _____ C:\Users\Dilan\Downloads\Die Sims 3 Patch - CHIP-Installer.exe
2015-09-04 21:20 - 2015-09-04 21:20 - 00000000 ____D C:\Users\Public\cd diyar
2015-09-04 20:27 - 2015-09-04 20:36 - 00000000 ____D C:\Users\Diyar\Desktop\cd diyar
2015-09-02 17:19 - 2015-09-02 17:22 - 00000119 _____ C:\Users\Diyar\Desktop\ue boom.txt
2015-09-01 19:08 - 2015-09-02 02:53 - 00003182 _____ C:\Users\Diyar\Desktop\ronaldinh gaucho dominanz.txt
2015-08-31 21:36 - 2015-08-31 21:37 - 00000000 ____D C:\Users\Dilan\Desktop\letzte cd
2015-08-31 21:33 - 2015-08-31 21:33 - 00014767 _____ C:\Users\Dilan\Desktop\ISO1.nri
2015-08-31 20:46 - 2015-08-31 20:46 - 01260832 _____ C:\Users\Dilan\Downloads\Ashampoo Burning Studio Free - CHIP-Installer.exe
2015-08-29 01:33 - 2015-08-30 22:29 - 00000080 _____ C:\Users\Diyar\Desktop\comunio diyarrr tabelle.txt
2015-08-28 16:49 - 2015-08-29 18:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-20 18:53 - 2015-08-20 18:53 - 00000000 ____D C:\Users\Dilan\Desktop\runtime
2015-08-20 18:52 - 2015-08-20 18:53 - 00000000 ____D C:\Users\Dilan\Desktop\game
2015-08-20 18:37 - 2015-09-05 13:10 - 00000000 ____D C:\Users\Dilan\AppData\Roaming\.minecraft
2015-08-20 18:37 - 2015-08-20 18:37 - 00000000 ____D C:\Users\Dilan\AppData\Roaming\java
2015-08-20 18:36 - 2015-08-20 18:37 - 00000000 ____D C:\Users\Dilan\Downloads\game
2015-08-20 18:36 - 2015-08-20 18:36 - 00000000 ____D C:\Users\Dilan\Downloads\runtime
2015-08-20 18:35 - 2015-08-20 18:35 - 01293704 _____ (Mojang) C:\Users\Dilan\Desktop\Minecraft.exe
2015-08-20 03:18 - 2015-08-20 03:18 - 00000000 ____D C:\Temp1
2015-08-20 03:15 - 2015-08-20 03:15 - 05416112 _____ (Canneverbe Limited ) C:\Users\Diyar\Downloads\cdbxp_setup_4.5.5.5790_minimal.exe
2015-08-18 16:45 - 2015-08-18 16:45 - 00000000 _____ C:\Users\Diyar\Desktop\18.8.15.. befin ta freundschaftsanfrage geschickt.txt
2015-08-17 16:45 - 2015-08-17 16:49 - 00000000 ____D C:\Users\Diyar\Desktop\uni verworfen

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-13 20:39 - 2012-03-10 20:37 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA.job
2015-09-13 20:37 - 2009-07-14 06:45 - 00024400 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-13 20:37 - 2009-07-14 06:45 - 00024400 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-13 20:29 - 2012-01-12 23:17 - 00000000 ___RD C:\Users\Diyar\Dropbox
2015-09-13 20:28 - 2012-01-12 23:16 - 00000000 ____D C:\Users\Diyar\AppData\Roaming\Dropbox
2015-09-13 20:27 - 2014-08-27 19:57 - 00000000 ____D C:\Users\Diyar\AppData\Local\Spotify
2015-09-13 20:27 - 2014-08-27 19:56 - 00000000 ____D C:\Users\Diyar\AppData\Roaming\Spotify
2015-09-13 20:25 - 2015-04-27 11:11 - 00050140 _____ C:\Windows\setupact.log
2015-09-13 20:25 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-13 20:24 - 2013-10-07 15:26 - 00447320 _____ C:\Windows\PFRO.log
2015-09-13 20:24 - 2011-08-18 11:32 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-13 20:23 - 2011-08-18 11:31 - 01307491 _____ C:\Windows\WindowsUpdate.log
2015-09-13 20:22 - 2013-10-04 12:58 - 00000000 ____D C:\AdwCleaner
2015-09-13 20:20 - 2015-06-18 00:09 - 00001224 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001UA.job
2015-09-13 20:16 - 2014-07-07 22:01 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-13 20:16 - 2011-08-13 20:10 - 00645116 _____ C:\Windows\system32\perfh007.dat
2015-09-13 20:16 - 2011-08-13 20:10 - 00130686 _____ C:\Windows\system32\perfc007.dat
2015-09-13 20:16 - 2009-07-14 07:13 - 01516610 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-13 20:09 - 2012-02-16 01:29 - 00000000 ____D C:\Windows\Sun
2015-09-13 20:00 - 2015-04-28 20:16 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-13 19:48 - 2014-03-13 05:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-13 19:48 - 2013-10-15 02:50 - 00000000 ____D C:\temp
2015-09-13 19:48 - 2011-08-18 11:32 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-13 17:54 - 2013-03-22 18:49 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA.job
2015-09-13 17:54 - 2013-03-22 18:49 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core.job
2015-09-13 14:17 - 2012-01-05 19:44 - 00085856 _____ C:\Users\Dilan\AppData\Local\GDIPFONTCACHEV1.DAT
2015-09-13 10:47 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-09-13 01:20 - 2015-06-18 00:09 - 00001172 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1001Core.job
2015-09-13 01:18 - 2015-07-10 02:03 - 00000000 ____D C:\Users\Diyar\Documents\Citavi 5
2015-09-12 22:47 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2015-09-12 22:39 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-09-12 22:35 - 2009-07-14 04:34 - 05505024 _____ C:\Windows\system32\config\default.bak
2015-09-12 22:35 - 2009-07-14 04:34 - 00262144 _____ C:\Windows\system32\config\security.bak
2015-09-12 22:35 - 2009-07-14 04:34 - 00262144 _____ C:\Windows\system32\config\sam.bak
2015-09-12 22:34 - 2011-12-30 02:07 - 00000000 ____D C:\Users\Diyar
2015-09-12 22:05 - 2012-01-02 00:28 - 00000000 ____D C:\Users\Diyar\AppData\Local\CrashDumps
2015-09-12 21:48 - 2011-12-30 02:07 - 00085856 _____ C:\Users\Diyar\AppData\Local\GDIPFONTCACHEV1.DAT
2015-09-12 21:48 - 2009-07-14 06:45 - 00337736 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-12 21:41 - 2009-07-14 04:34 - 00000669 _____ C:\Windows\win.ini
2015-09-10 19:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-09-09 16:21 - 2010-11-21 09:17 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 16:21 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-09 16:18 - 2012-01-06 21:53 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-09 16:17 - 2013-07-31 16:16 - 00000000 ____D C:\Windows\system32\MRT
2015-09-09 12:12 - 2014-07-07 22:01 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-09-08 18:37 - 2012-07-28 02:24 - 00000000 ____D C:\Users\Diyar\AppData\Roaming\vlc
2015-09-08 15:39 - 2013-07-21 23:16 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-08 15:38 - 2012-11-28 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-07 22:09 - 2011-12-30 23:59 - 00000000 ____D C:\Windows\System32\Tasks\Games
2015-09-07 16:44 - 2015-08-01 15:06 - 00000000 ____D C:\Users\Dilan\Documents\Citavi 5
2015-09-06 03:35 - 2012-02-18 20:34 - 01253888 ___SH C:\Users\Dilan\Desktop\Thumbs.db
2015-09-05 14:59 - 2014-11-29 22:37 - 00000000 __SHD C:\Users\Dilan\AppData\Local\EmieBrowserModeList
2015-09-05 14:59 - 2014-05-30 11:53 - 00000000 __SHD C:\Users\Dilan\AppData\Local\EmieUserList
2015-09-05 14:59 - 2014-05-30 11:53 - 00000000 __SHD C:\Users\Dilan\AppData\Local\EmieSiteList
2015-09-05 12:47 - 2014-03-29 19:42 - 00002514 _____ C:\Users\Dilan\Desktop\Google Chrome.lnk
2015-09-04 20:36 - 2012-01-05 20:09 - 00000000 ____D C:\Users\Diyar\musik
2015-09-01 17:56 - 2014-05-25 23:23 - 00000000 ____D C:\Users\Diyar\Desktop\MZ Sports und fussball
2015-08-31 20:34 - 2014-10-27 22:18 - 00003694 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core1cf90928a48cf38
2015-08-31 20:34 - 2014-06-25 18:28 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004Core1cf90928a48cf38.job
2015-08-31 20:34 - 2012-03-10 20:37 - 00004090 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1825211407-1677631671-286171030-1004UA
2015-08-29 18:11 - 2014-05-23 01:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-28 23:57 - 2012-01-28 03:38 - 00010067 _____ C:\Windows\wininit.ini
2015-08-26 18:37 - 2012-01-07 23:26 - 134753440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-25 20:46 - 2015-07-21 15:44 - 00033025 _____ C:\Windows\system32\nvinfo.pb
2015-08-25 20:46 - 2015-01-31 23:12 - 14635792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-08-25 20:46 - 2013-09-11 14:19 - 03112904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-08-25 20:46 - 2011-08-18 11:31 - 17082392 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-08-25 20:46 - 2011-08-18 11:31 - 12515016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-08-25 20:46 - 2011-08-18 11:31 - 03527696 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-08-25 16:24 - 2011-03-24 00:53 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-08-25 16:24 - 2011-03-24 00:53 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-08-25 16:24 - 2011-03-24 00:53 - 01062520 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-08-25 16:24 - 2011-03-24 00:53 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-08-25 16:24 - 2011-03-24 00:53 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-08-25 16:24 - 2011-03-24 00:53 - 00075056 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-08-25 16:24 - 2011-03-24 00:53 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-08-25 16:24 - 2011-03-24 00:52 - 03496752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-08-25 14:35 - 2011-03-24 00:53 - 05165808 _____ C:\Windows\system32\nvcoproc.bin
2015-08-17 16:49 - 2012-08-27 18:51 - 00000000 ____D C:\Users\Diyar\Desktop\rechnungen
2015-08-17 16:48 - 2012-06-11 15:10 - 00000000 ____D C:\Users\Diyar\Desktop\fitness
2015-08-17 16:45 - 2013-10-10 23:27 - 00000000 ____D C:\Users\Diyar\Desktop\Lehramt

Einige Dateien in TEMP:
====================
C:\Users\Dilan\AppData\Local\Temp\avgnt.exe
C:\Users\Diyar\AppData\Local\Temp\avgnt.exe
C:\Users\Diyar\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpeibpia.dll
C:\Users\Diyar\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Diyar\AppData\Local\Temp\nvStInst.exe
C:\Users\Diyar\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-11 00:01

==================== Ende von FRST.txt ============================

--- --- ---

[/CODE]

schrauber · 14.09.2015, 13:34

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

12.09.2015, 14:14	#10
schrauber /// the machine /// TB-Ausbilder	Kein Zugriff auf Anwendungen Bitte Windows Repair laufen lassen: Windows reparieren - so geht's - Anleitungen __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Kein Zugriff auf Anwendungen

Plagegeister aller Art und deren Bekämpfung: Kein Zugriff auf Anwendungen