| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
04.11.2015, 11:54
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Du hast garantiert nicht alles illegale entfernt. Ich seh da zB auch noch ein gecracktes Microsoft Office.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
04.11.2015, 18:47
| #17 |
| | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Meine Office Version ist aber garnicht gecrackt.
__________________ |
|
04.11.2015, 19:59
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Sry aber du kannst mir nix vormachen
__________________ Zitat:
__________________ |
|
04.11.2015, 20:05
| #19 |
| | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Kommt wahrscheinlich noch von meiner früheren Version. Seits mitm Studentenkonto klappt brauch ichs nicht mehr. Reichts wenn ich da einfach die .job-Datei lösche? |
|
04.11.2015, 20:23
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Ja, entfernen. Und neue FRS-Logs aus dem normalen Modus bitte erstellen.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.11.2015, 20:38
| #21 |
| | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 OK. Also im normalen Modus geht FRST ja immer noch nicht. Es geht nur im abgesicherten Modus oder über die Eingabeaufforderungen wie zuerst. Welches ist dir lieber? |
|
04.11.2015, 21:09
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Dann hatte ich das falsch verstanden, ich dachte zumindest FRST geht jetzt wieder im normalen Modus. Dann mach neue FRST-Logs aus dem abgesicherten Modus heraus. Und bitte auch unbedingt ein neues addition.txt erstellen und auch posten!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.11.2015, 21:16
| #23 |
| | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Hier mal die FRST.txt: FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-10-2015
durchgeführt von Mathias (Administrator) auf MATHIAS-PC (04-11-2015 21:07:57)
Gestartet von C:\Users\Mathias\Downloads
Geladene Profile: Mathias (Verfügbare Profile: Mathias)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Safe Mode (minimal)
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-08] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKLM\...\Run: [CECAPLF] => C:\Program Files (x86)\ChiconyCam\CECAPLF.exe [121456 2011-07-06] (Chicony)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3358952 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-23] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782520 2015-10-07] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [uni mouse driver] => C:\Mouse driver\mouse_driver.exe [2972672 2011-11-09] ()
HKLM-x32\...\Run: [uni mouse driver tilt] => C:\Mouse driver\wh_exec.exe [147456 2010-10-05] ()
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-09-21] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [LCgmmouseRun] => C:\Program Files (x86)\Lioncast LM30 Gaming Mouse\LCmon.exe [3171840 2015-05-25] ()
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Run: [Pushbullet] => C:\Program Files (x86)\Pushbullet\pushbullet.exe [64000 2014-12-21] (Pushbullet inc)
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Run: [f.lux] => C:\Users\Mathias\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Run: [Dropbox Update] => C:\Users\Mathias\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-07-25] (Dropbox, Inc.)
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Run: [Spotify Web Helper] => C:\Users\Mathias\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030912 2015-10-18] (Spotify Ltd)
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Run: [GoogleChromeAutoLaunch_ECD8BD32D72E4883F65B231FBB3FF0D1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-10-20] (Google Inc.)
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [465920 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Run: [Spotify] => C:\Users\Mathias\AppData\Roaming\Spotify\Spotify.exe [7736128 2015-10-18] (Spotify Ltd)
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\RunOnce: [Uninstall C:\Users\Mathias\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mathias\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-12-19] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-12-19] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-12-19] ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Mathias\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-09-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Mathias\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-09-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Mathias\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-09-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Mathias\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-09-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Mathias\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-09-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Mathias\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-09-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hotkey.lnk [2013-04-02]
ShortcutTarget: Hotkey.lnk -> C:\Program Files (x86)\Hotkey\Hotkey.exe ()
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{d5dd106c-f63b-4d37-83d4-9eec352689bc}: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{dba603e6-ed7f-4b15-8ef9-c2ebd734cbe3}: [DhcpNameServer] 78.104.101.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=b0156943-012e-41da-8f50-8a8d2e9ef5e5&searchtype=ds&q={searchTerms}&installDate=
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?gd=&ctid=CT3315513&octid=EB_ORIGINAL_CTID&ISID=M0B7271C7-1AA2-416E-B3E4-9874C0B90B02&SearchSource=55&CUI=&UM=5&UP=SPCA081A76-970E-47FE-9C31-B7AD4A7B4B04&SSPV=
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=b0156943-012e-41da-8f50-8a8d2e9ef5e5&searchtype=ds&q={searchTerms}&installDate=
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0617CAAF-AD69-4AEA-B91D-06AC8AB469D7} URL =
SearchScopes: HKU\.DEFAULT -> {0617CAAF-AD69-4AEA-B91D-06AC8AB469D7} URL =
SearchScopes: HKU\S-1-5-21-1144089834-2966323653-700404684-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1144089834-2966323653-700404684-1001 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=b0156943-012e-41da-8f50-8a8d2e9ef5e5&searchtype=ds&q={searchTerms}&installDate=
SearchScopes: HKU\S-1-5-21-1144089834-2966323653-700404684-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-24] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-29] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-24] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-24] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-29] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-24] (Oracle Corporation)
Toolbar: HKLM - Kein Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - Keine Datei
Toolbar: HKLM-x32 - Kein Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - Keine Datei
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-10-13] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-24] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-10-13] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Keine Datei]
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-01-07] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [Keine Datei]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-05] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-05] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2014-10-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-01-07] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [Keine Datei]
Chrome:
=======
CHR HomePage: Default -> hxxp://google.at/
CHR StartupUrls: Default -> "hxxp://google.at/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.6.758\_platform_specific\win_x86\widevinecdmadapter.dll => Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\pdf.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.5) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.5) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.5) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.5) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.5) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll => Keine Datei
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll => Keine Datei
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java Deployment Toolkit 8.0.310.13) - C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 8 U31) - C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll => Keine Datei
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll => Keine Datei
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll => Keine Datei
CHR Profile: C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Docs) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google-Suche) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Zotero Connector) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekhagklcjbdpajgpjgmbionohlpdbjgc [2015-03-25]
CHR Extension: (Google Tabellen) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-06]
CHR Extension: (AdBlock) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-15]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-07]
CHR Extension: (Swipe Gesture) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgegfjnccpnkdppohmfgnjalkediapkc [2014-07-27]
CHR Extension: (Pine.Chrome) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbfkamlkfkjcdlamhhldfdpcmechacg [2014-12-30]
CHR Extension: (SmoothScroll) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbokbjkabcmbfdlbddjidfmibcpneigj [2015-10-28]
CHR Extension: (dict-cc) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\nknonnojlmhnmjhpeokdbeineeajcemh [2015-06-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-27]
CHR Extension: (Google Mail) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKU\S-1-5-21-1144089834-2966323653-700404684-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1144089834-2966323653-700404684-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - <kein Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [932912 2015-10-07] (Avira Operations GmbH & Co. KG)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-10-07] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-10-07] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1147720 2015-10-14] (Avira Operations GmbH & Co. KG)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [240360 2015-09-21] (Avira Operations GmbH & Co. KG)
S2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
S2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2780856 2015-10-07] (Microsoft Corporation)
S2 ETDService; C:\Program Files\Elantech\ETDService.exe [155872 2015-10-10] (ELAN Microelectronics Corp.)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-10-12] (NVIDIA Corporation)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-10] (Intel Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [127320 2012-04-15] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [164184 2012-04-15] (Intel Corporation)
S2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
S2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-09-03] (Microsoft Corporation)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-10-12] (NVIDIA Corporation)
S2 PaceLicenseDServices; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2932224 2011-07-09] (PACE Anti-Piracy, Inc.) [Datei ist nicht signiert]
S2 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [35328 2012-05-22] () [Datei ist nicht signiert]
S2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Datei ist nicht signiert]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-09-03] (Microsoft Corporation)
S2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-09-03] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2014-02-08] () [Datei ist nicht signiert]
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137800 2015-10-07] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-09-06] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
S2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [74440 2015-10-07] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2013-05-30] (DT Soft Ltd)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-09-17] (EnTech Taiwan)
S3 ffusb2audio; C:\Windows\system32\DRIVERS\ffusb2audio.sys [127280 2013-09-25] (Focusrite Audio Engineering Limited.)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2014-02-08] () [Datei ist nicht signiert]
S3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-09-03] (Microsoft Corporation)
S3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-10-12] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek )
S3 RTLE8023x64; C:\Windows\System32\DRIVERS\Rtenic64.sys [438376 2012-05-03] (Realtek Semiconductor Corporation )
S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 whfltr2k; C:\Windows\System32\drivers\whfltr2k.sys [10368 2009-09-16] ()
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-04 21:07 - 2015-11-04 21:08 - 00031670 _____ C:\Users\Mathias\Downloads\FRST.txt
2015-11-04 21:07 - 2015-11-04 21:07 - 00016148 _____ C:\WINDOWS\system32\MATHIAS-PC_Mathias_HistoryPrediction.bin
2015-11-03 18:47 - 2015-11-04 21:07 - 00000000 ____D C:\Users\Mathias\Desktop\Neuer Ordner
2015-11-03 15:00 - 2015-11-04 21:07 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-11-03 12:13 - 2015-11-04 21:07 - 00000000 ____D C:\FRST
2015-11-03 11:14 - 2015-11-03 11:14 - 02198016 _____ (Farbar) C:\Users\Mathias\Downloads\FRST64.exe
2015-11-03 10:21 - 2015-11-03 10:21 - 00050477 _____ C:\Users\Mathias\Downloads\Defogger.exe
2015-11-03 10:16 - 2015-11-03 10:16 - 01012720 _____ (DivX, LLC) C:\Users\Mathias\Downloads\DivXInstaller.exe
2015-11-03 10:12 - 2015-11-03 10:12 - 00643406 _____ C:\Users\Mathias\Downloads\Destroy-Windows-10-Spying.zip
2015-11-03 10:10 - 2015-11-03 10:12 - 141218064 _____ (Microsoft Corporation) C:\Users\Mathias\Downloads\msert.exe
2015-11-02 10:45 - 2015-11-02 10:46 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-01 20:57 - 2015-11-01 20:58 - 00000162 _____ C:\setup.log
2015-10-30 18:51 - 2015-10-28 00:38 - 21871616 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-30 18:51 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-30 18:51 - 2015-10-21 13:45 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 18:51 - 2015-10-21 13:44 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-10-30 18:51 - 2015-10-21 13:43 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 18:51 - 2015-10-21 13:39 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-10-30 18:51 - 2015-10-21 13:00 - 24595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-30 18:51 - 2015-10-21 13:00 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 18:51 - 2015-10-21 12:59 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-10-30 18:51 - 2015-10-21 12:57 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 18:51 - 2015-10-21 12:52 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-30 18:51 - 2015-10-21 12:50 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 18:51 - 2015-10-21 12:48 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-30 18:51 - 2015-10-21 12:47 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 18:51 - 2015-10-21 12:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 18:51 - 2015-10-21 12:46 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-10-30 18:51 - 2015-10-21 12:44 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-10-30 18:51 - 2015-10-21 12:44 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-30 18:51 - 2015-10-21 12:43 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 18:51 - 2015-10-21 12:42 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 18:51 - 2015-10-21 12:41 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 18:51 - 2015-10-21 12:40 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-10-30 18:51 - 2015-10-21 12:38 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-10-30 18:51 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-30 18:51 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-10-30 18:51 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-30 18:51 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-30 18:51 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-30 18:51 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-30 18:51 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-10-30 18:51 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-10-30 18:51 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-10-30 18:51 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-30 18:51 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-27 08:41 - 2015-10-27 09:16 - 00000000 ____D C:\Users\Mathias\Documents\Mount&Blade Warband Savegames
2015-10-27 08:39 - 2015-10-27 08:41 - 00000000 ____D C:\Users\Mathias\Documents\Mount&Blade Warband
2015-10-27 08:39 - 2015-10-27 08:41 - 00000000 ____D C:\Users\Mathias\AppData\Roaming\Mount&Blade Warband
2015-10-27 08:27 - 2015-10-27 08:27 - 00000136 _____ C:\Users\Mathias\Desktop\Mount and Blade Warband - Demo.url
2015-10-26 20:10 - 2015-10-06 19:46 - 00040080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-10-26 20:10 - 2015-10-03 05:58 - 42914096 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 37882488 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 22342264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 18387064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 18354984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 16548768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 15837152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 15803800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 14841232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 13525200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 12868120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 12038368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 02313336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 01994360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 01905272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435850.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435850.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00877176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00689968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00673912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00539464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00445216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00414000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00388048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00369272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00315936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-10-26 20:10 - 2015-10-03 05:58 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-10-26 14:23 - 2015-10-26 14:23 - 851379198 ____N C:\WINDOWS\MEMORY.DMP
2015-10-26 14:23 - 2015-10-26 14:23 - 00328280 _____ C:\WINDOWS\Minidump\102615-38984-01.dmp
2015-10-26 14:23 - 2015-10-26 14:23 - 00000000 ____D C:\WINDOWS\Minidump
2015-10-22 08:37 - 2015-10-22 08:37 - 00000000 ____D C:\Users\Mathias\Documents\LIONCAST Gaming Mouse
2015-10-22 08:37 - 2015-10-22 08:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LIONCAST GAMING MOUSE
2015-10-22 08:37 - 2015-10-22 08:37 - 00000000 ____D C:\Program Files (x86)\Lioncast LM30 Gaming Mouse
2015-10-21 15:22 - 2015-10-21 15:22 - 00001384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-10-21 15:22 - 2015-10-21 15:22 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-10-21 15:22 - 2015-10-21 15:22 - 00000000 ____D C:\WINDOWS\it
2015-10-21 15:22 - 2015-10-21 15:22 - 00000000 ____D C:\WINDOWS\fr
2015-10-21 15:22 - 2015-10-21 15:22 - 00000000 ____D C:\WINDOWS\es
2015-10-21 15:22 - 2015-10-21 15:22 - 00000000 ____D C:\WINDOWS\en
2015-10-21 15:22 - 2015-10-21 15:22 - 00000000 ____D C:\WINDOWS\de
2015-10-21 15:21 - 2015-10-21 15:21 - 00000000 ____D C:\Program Files\Windows Live
2015-10-21 14:12 - 2015-10-21 14:12 - 00000000 ____D C:\Users\Mathias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-21 12:40 - 2015-10-21 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-10-21 12:40 - 2015-10-21 12:40 - 00000000 ____D C:\Program Files (x86)\Samsung
2015-10-14 19:14 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-14 19:14 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-14 19:14 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-14 19:14 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-14 19:14 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-14 19:14 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-14 19:14 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-14 19:14 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-14 19:14 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-14 19:14 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-14 19:14 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-14 19:14 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-14 19:14 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-14 19:14 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-14 19:14 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-14 19:14 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-14 19:14 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-14 19:14 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-14 19:14 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-14 19:14 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-14 19:14 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-14 19:14 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-14 19:14 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-14 19:14 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-14 19:14 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-14 19:14 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 19:14 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-14 19:14 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-14 19:14 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-14 19:14 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-14 19:14 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-14 19:14 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-14 19:14 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-14 19:14 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-14 19:14 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-14 19:14 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-14 19:14 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-14 19:14 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-14 19:14 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-14 19:14 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-14 19:14 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-14 19:14 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-14 19:14 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-14 19:14 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-14 19:14 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-14 19:14 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-14 19:14 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-14 19:14 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-14 19:14 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-14 19:14 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-14 19:14 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-14 19:14 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-14 19:14 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-14 19:14 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-14 19:14 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-14 19:14 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-14 19:14 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-14 19:14 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-10 10:50 - 2015-10-10 10:50 - 01814944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-10-10 10:50 - 2015-10-10 10:50 - 00071400 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller15005.dll
2015-10-10 10:50 - 2015-10-10 10:50 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ETD_01011.Wdf
2015-10-10 10:49 - 2015-10-10 10:49 - 22915568 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 17846272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 11053048 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 08528896 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 06513648 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 04371888 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 04369816 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 04025864 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 02506960 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 02037232 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 01995760 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 01793024 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 01768432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 01470472 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 01156000 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 01151840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00970656 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00866824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00661000 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00618992 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00617992 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00556960 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00554928 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00469216 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00444832 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00410528 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00409520 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00395168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00394224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00387056 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00378824 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00374272 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00357912 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00329216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00316245 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2015-10-10 10:49 - 2015-10-10 10:49 - 00296944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00291744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00265712 _____ C:\WINDOWS\system32\igfxCPL.cpl
2015-10-10 10:49 - 2015-10-10 10:49 - 00232960 _____ C:\WINDOWS\system32\igdde64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00230384 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00229664 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00225288 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00216552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4276.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00205728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00199088 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00194560 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00194368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00193536 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00192520 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00188884 _____ C:\WINDOWS\system32\resTHA.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00181524 _____ C:\WINDOWS\system32\resELL.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00177300 _____ C:\WINDOWS\system32\resRUS.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00172528 _____ C:\WINDOWS\system32\igdail64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00169368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00165808 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-10-10 10:49 - 2015-10-10 10:49 - 00163840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00163044 _____ C:\WINDOWS\system32\resARA.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00162500 _____ C:\WINDOWS\system32\resHEB.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00162484 _____ C:\WINDOWS\system32\resJPN.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00157860 _____ C:\WINDOWS\system32\resHUN.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00157844 _____ C:\WINDOWS\system32\resFRA.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00156100 _____ C:\WINDOWS\system32\resKOR.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00156020 _____ C:\WINDOWS\system32\resDEU.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00155988 _____ C:\WINDOWS\system32\resITA.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00155828 _____ C:\WINDOWS\system32\resROM.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00155716 _____ C:\WINDOWS\system32\resESN.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00155268 _____ C:\WINDOWS\system32\resPLK.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00155172 _____ C:\WINDOWS\system32\resSKY.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00154980 _____ C:\WINDOWS\system32\resNLD.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00154372 _____ C:\WINDOWS\system32\resPTB.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00154260 _____ C:\WINDOWS\system32\resTRK.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00154212 _____ C:\WINDOWS\system32\resCSY.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00154096 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00154084 _____ C:\WINDOWS\system32\resPTG.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00153620 _____ C:\WINDOWS\system32\resFIN.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00153236 _____ C:\WINDOWS\system32\resHRV.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00152772 _____ C:\WINDOWS\system32\resSVE.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00152644 _____ C:\WINDOWS\system32\resSLV.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00151668 _____ C:\WINDOWS\system32\resNOR.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00151156 _____ C:\WINDOWS\system32\resDAN.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00149812 _____ C:\WINDOWS\system32\resENU.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00148052 _____ C:\WINDOWS\system32\resCHT.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00147188 _____ C:\WINDOWS\system32\resCHS.cui
2015-10-10 10:49 - 2015-10-10 10:49 - 00143368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00109064 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00102912 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00096752 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00078336 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00069616 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00042232 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00039424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00020976 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00015344 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00013824 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-10-10 10:49 - 2015-10-10 10:49 - 00002560 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-10-07 09:57 - 2015-10-07 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-10-07 09:57 - 2015-10-07 09:57 - 00000000 ____D C:\Program Files\iTunes
2015-10-07 09:57 - 2015-10-07 09:57 - 00000000 ____D C:\Program Files\iPod
2015-10-07 09:57 - 2015-10-07 09:57 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-10-07 09:56 - 2015-10-07 09:56 - 00000000 ____D C:\Program Files\Bonjour
2015-10-07 09:56 - 2015-10-07 09:56 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-10-07 09:56 - 2015-10-07 09:56 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-10-05 16:59 - 2015-10-05 17:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-04 21:06 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-04 21:06 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-04 21:06 - 2015-07-10 10:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-11-04 21:06 - 2015-05-04 09:21 - 00000000 ____D C:\Users\Mathias\AppData\Local\Spotify
2015-11-04 21:02 - 2015-05-04 09:21 - 00000000 ____D C:\Users\Mathias\AppData\Roaming\Spotify
2015-11-04 20:57 - 2013-10-27 11:57 - 00000296 _____ C:\WINDOWS\Tasks\FoxTab.job
2015-11-04 20:53 - 2015-07-25 08:41 - 00001232 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1144089834-2966323653-700404684-1001UA.job
2015-11-04 20:53 - 2013-10-11 17:52 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-04 20:48 - 2015-07-10 13:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-04 20:17 - 2013-05-29 14:49 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-04 20:07 - 2013-10-26 19:53 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-04 19:58 - 2015-09-03 21:37 - 02077126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-04 19:58 - 2015-07-10 17:34 - 00884826 _____ C:\WINDOWS\system32\perfh007.dat
2015-11-04 19:58 - 2015-07-10 17:34 - 00195924 _____ C:\WINDOWS\system32\perfc007.dat
2015-11-04 19:54 - 2013-04-02 13:27 - 00017920 _____ C:\WINDOWS\system32\rpcnetp.exe
2015-11-04 18:38 - 2014-01-29 19:16 - 00004164 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5C497AA6-8DA4-4F51-9231-255D2BE41896}
2015-11-04 09:53 - 2015-07-25 08:41 - 00001180 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1144089834-2966323653-700404684-1001Core.job
2015-11-04 09:44 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-04 09:44 - 2014-06-27 11:36 - 00000000 ____D C:\Users\Mathias\AppData\Local\Adobe
2015-11-04 09:41 - 2014-12-23 13:05 - 00000000 ____D C:\Users\Mathias\AppData\Local\Pushbullet
2015-11-04 09:40 - 2014-12-25 10:13 - 00000000 ____D C:\Temp
2015-11-04 09:40 - 2013-05-29 14:49 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-03 21:41 - 2013-05-30 10:42 - 00000000 ____D C:\Users\Mathias\AppData\Roaming\vlc
2015-11-03 21:28 - 2013-09-23 14:39 - 00000000 ___RD C:\Users\Mathias\Dropbox
2015-11-03 21:28 - 2013-09-23 14:37 - 00000000 ____D C:\Users\Mathias\AppData\Roaming\Dropbox
2015-11-03 19:15 - 2013-05-29 14:52 - 00078032 _____ (Absolute Software Corp.) C:\WINDOWS\SysWOW64\rpcnet.dll
2015-11-03 19:04 - 2014-05-10 09:21 - 00000000 ____D C:\Users\Mathias\AppData\Roaming\Skype
2015-11-03 17:37 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-03 16:42 - 2015-07-10 13:20 - 05144992 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-03 15:01 - 2015-07-10 12:04 - 00000000 __RSD C:\WINDOWS\Media
2015-11-03 15:01 - 2015-01-03 13:17 - 00000000 ____D C:\Program Files (x86)\DivX
2015-11-03 15:01 - 2014-11-11 18:48 - 00000000 ____D C:\ProgramData\DivX
2015-11-03 15:01 - 2013-04-02 14:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-11-03 12:16 - 2013-10-03 16:47 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-03 12:16 - 2013-05-29 15:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-11-03 01:01 - 2015-09-03 21:40 - 00000000 ____D C:\Users\Mathias
2015-11-02 13:10 - 2015-09-03 21:33 - 00011452 _____ C:\WINDOWS\PFRO.log
2015-11-02 10:45 - 2014-12-26 12:13 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-02 10:45 - 2013-05-30 10:55 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-11-02 10:45 - 2013-05-30 10:54 - 00000000 ____D C:\ProgramData\Adobe
2015-11-01 21:50 - 2015-09-04 07:58 - 00000000 ____D C:\Users\Mathias\AppData\Local\Packages
2015-11-01 20:52 - 2015-07-10 13:20 - 00026667 _____ C:\WINDOWS\setupact.log
2015-11-01 20:33 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-31 09:58 - 2014-07-31 09:45 - 00000072 _____ C:\Users\Public\LMDebug.log
2015-10-30 18:54 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-29 09:21 - 2014-10-13 20:29 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-26 20:12 - 2015-09-03 21:36 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-26 10:18 - 2015-03-18 08:38 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-10-22 08:36 - 2013-05-29 14:40 - 00110824 _____ C:\Users\Mathias\AppData\Local\GDIPFONTCACHEV1.DAT
2015-10-21 15:23 - 2014-01-10 16:45 - 00000000 ____D C:\Users\Mathias\Tracing
2015-10-21 15:22 - 2013-04-02 13:43 - 00002360 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2015-10-21 15:22 - 2013-04-02 13:43 - 00001453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-10-21 15:22 - 2013-04-02 13:43 - 00001364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2015-10-21 15:21 - 2015-05-02 10:47 - 00103254 _____ C:\WINDOWS\DirectX.log
2015-10-21 15:21 - 2013-04-02 13:42 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-10-21 12:19 - 2014-06-09 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-10-20 14:58 - 2013-04-02 13:51 - 00000000 ____D C:\ProgramData\Skype
2015-10-19 10:20 - 2013-05-29 15:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-19 10:20 - 2013-04-02 14:40 - 00000000 ____D C:\Program Files\Elantech
2015-10-16 04:10 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-16 04:10 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-15 21:33 - 2013-08-16 09:32 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-15 21:27 - 2013-04-02 13:52 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-12 04:05 - 2014-07-10 15:14 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-10-12 04:05 - 2013-12-21 12:36 - 01423304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-10-12 04:04 - 2014-07-10 15:14 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-10-12 04:04 - 2013-12-21 12:36 - 01710752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-10-11 10:06 - 2015-09-03 21:54 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-10-10 10:50 - 2015-09-04 08:06 - 00472160 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\Drivers\ETD.sys
2015-10-10 10:49 - 2015-09-03 21:36 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-10-10 10:49 - 2015-09-03 21:36 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-10-10 10:49 - 2015-07-30 21:46 - 12335600 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2015-10-10 10:49 - 2015-07-30 21:46 - 11905432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-10-10 10:49 - 2015-07-30 21:46 - 10574992 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-10-10 10:49 - 2015-07-30 21:46 - 04637640 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2015-10-10 10:49 - 2015-07-30 21:46 - 03672344 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2015-10-10 10:49 - 2015-07-30 21:45 - 03797424 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-10-10 10:49 - 2015-07-30 21:45 - 00680432 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-10-10 10:49 - 2015-07-30 21:45 - 00541600 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-10-10 10:49 - 2015-07-30 21:45 - 00330136 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-10-10 10:49 - 2015-07-30 21:45 - 00285184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-10-10 10:49 - 2015-07-30 21:45 - 00262640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-10-10 10:49 - 2015-07-30 21:45 - 00258456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-10-07 20:15 - 2015-09-06 12:40 - 00000000 ____D C:\Program Files (x86)\Winamp
2015-10-07 13:08 - 2013-05-29 15:01 - 00137800 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-10-07 13:08 - 2013-05-29 15:01 - 00074440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-10-07 09:57 - 2013-05-29 18:46 - 00000000 ____D C:\Users\Mathias\AppData\Roaming\Apple Computer
2015-10-07 09:57 - 2013-05-29 18:44 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-10-07 09:56 - 2013-05-29 18:44 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-10-07 09:55 - 2013-11-22 15:47 - 00000000 ____D C:\ProgramData\MAGIX
2015-10-07 09:55 - 2013-11-22 15:47 - 00000000 ____D C:\Program Files (x86)\MAGIX
2015-10-07 09:54 - 2015-04-25 10:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixar
2015-10-07 09:54 - 2015-04-25 10:17 - 00000000 ____D C:\Program Files\Pixar
2015-10-07 09:49 - 2015-05-21 10:37 - 00000000 ____D C:\Users\Mathias\AppData\Roaming\MediaMonkey
2015-10-06 19:45 - 2015-07-23 03:02 - 11210056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2013-05-30 18:49 - 2013-05-30 18:49 - 0140715 _____ () C:\Program Files (x86)\uninstal.log
2013-06-09 11:39 - 2015-09-22 11:20 - 0000132 _____ () C:\Users\Mathias\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-03-02 15:22 - 2013-07-21 21:59 - 0012005 _____ () C:\Users\Mathias\AppData\Roaming\alsoft.ini
2014-10-26 10:17 - 2014-10-26 10:17 - 0335038 _____ () C:\Users\Mathias\AppData\Roaming\CodecsLE_Install.log
2013-12-20 13:19 - 2014-12-20 13:46 - 0000016 _____ () C:\Users\Mathias\AppData\Roaming\msregsvv.dll
2014-01-23 17:28 - 2014-06-24 19:55 - 0000600 _____ () C:\Users\Mathias\AppData\Roaming\winscp.rnd
2014-05-04 09:54 - 2014-05-04 09:54 - 0007619 _____ () C:\Users\Mathias\AppData\Local\Resmon.ResmonCfg
2014-01-03 15:14 - 2014-01-03 15:18 - 0000008 _____ () C:\Users\Mathias\AppData\Local\~wmrg
2013-12-20 13:19 - 2014-12-20 13:46 - 0000016 _____ () C:\ProgramData\autobk.inc
Einige Dateien in TEMP:
====================
C:\Users\Mathias\AppData\Local\Temp\avgnt.exe
C:\Users\Mathias\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvgwjuj.dll
C:\Users\Mathias\AppData\Local\Temp\pushbullet_watchdog.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-11-03 19:25
==================== Ende von FRST.txt ============================
Die Addition.txt muss ich seperat posten, zu viel Zeichen... |
|
04.11.2015, 21:16
| #24 |
| | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-10-2015
durchgeführt von Mathias (2015-11-04 21:08:31)
Gestartet von C:\Users\Mathias\Downloads
Windows 10 Home (X64) (2015-09-03 20:54:26)
Start-Modus: Safe Mode (minimal)
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1144089834-2966323653-700404684-500 - Administrator - Disabled)
AFA3A7C72CC54B69A7D5 (S-1-5-21-1144089834-2966323653-700404684-1006 - Limited - Enabled)
DefaultAccount (S-1-5-21-1144089834-2966323653-700404684-503 - Limited - Disabled)
Gast (S-1-5-21-1144089834-2966323653-700404684-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1144089834-2966323653-700404684-1003 - Limited - Enabled)
Mathias (S-1-5-21-1144089834-2966323653-700404684-1001 - Administrator - Enabled) => C:\Users\Mathias
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.111 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.9.0.465 - Adobe Systems Incorporated)
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe DNG Codec (HKLM-x32\...\Adobe DNG Codec) (Version: 2.0.0.0 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7.1 64-bit (HKLM\...\{BC86B82C-8C0E-4408-9AC1-6B0F2D636963}) (Version: 5.7.1 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
AmpliTube 3 version 3.7.1 (HKLM\...\{DA5202AC-12BF-4330-B8EA-BC77F991FA1C}_is1) (Version: 3.7.1 - IK Multimedia)
Apple Application Support (32-Bit) (HKLM-x32\...\{A50679D9-6CBD-4FCD-BACB-62EF3894F6F3}) (Version: 4.0.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{1F72FDD5-A069-45B4-928F-D0F16492DC69}) (Version: 4.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
asiomulti (HKLM-x32\...\{84DDEB49-F50B-4C47-BD93-8DDCC5B5C642}) (Version: 1.0.0 - vidance)
AutoHotkey 1.1.13.00 (HKLM\...\AutoHotkey) (Version: 1.1.13.00 - Lexikos)
Avid Codecs LE (HKLM-x32\...\{8F390998-2668-4F30-97C3-FBE3317639DB}) (Version: 2.5.0 - Avid Technology, Inc.)
Avid License Control (HKLM-x32\...\{F187D064-F101-4E95-8D05-4027809AA0F8}) (Version: 3.0.0 - Avid Technology, Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.210 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{d6a7cfcc-1f1c-4638-8f9e-0f184696fcdb}) (Version: 1.1.48.9049 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.48.9049 - Avira Operations GmbH & Co. KG) Hidden
Bass Station 2.1 (HKLM-x32\...\{ABAF1232-6213-4062-9D52-04E04A730CEA}_is1) (Version: 2.1 - Novation)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ChiconyCam (HKLM-x32\...\{A2201542-DA80-457F-8BD9-6C9C90196481}) (Version: 1.0.54.0521 - Chicony Electronics Co.,Ltd.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.64 - DivX, LLC)
Dropbox (HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Dropbox) (Version: 3.10.8 - Dropbox, Inc.)
ELAN Touchpad 15.10.5.2_X64_WHQL (HKLM\...\Elantech) (Version: 15.10.5.2 - ELAN Microelectronic Corp.)
Entity Framework Designer für Visual Studio 2012 - DEU (HKLM-x32\...\{094D6E27-97CC-447E-8660-56F75CFC1E00}) (Version: 11.1.20702.00 - Microsoft Corporation)
Erforderliche Komponenten für SSDT (HKLM-x32\...\{70D065C3-77E5-45E9-A75C-EEB2E84EA869}) (Version: 11.0.2100.60 - Microsoft Corporation)
f.lux (HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Flux) (Version: - )
FlacSquisher 1.3.3 (HKLM-x32\...\FlacSquisher) (Version: 1.3.3 - FlacSquisher)
Focusrite USB 2.0 Audio Driver 2.5.1 (HKLM\...\Focusrite USB 2.0 Audio Driver_is1) (Version: 2.5.1 - Focusrite Audio Engineering Limited.)
foobar2000 v1.3.8 (HKLM-x32\...\foobar2000) (Version: 1.3.8 - Peter Pawlowski)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Drive (HKLM-x32\...\{9C350701-AC04-48BA-A435-BD5E0D82897E}) (Version: 1.25.0523.2491 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hotkey 6.0053 (HKLM-x32\...\InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 6.0053 - NoteBook)
Hotkey 6.0053 (x32 Version: 6.0053 - NoteBook) Hidden
HxD Hex Editor Version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
IK Multimedia Authorization Manager version 1.0.5 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.5 - IK Multimedia)
Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{F0932859-AA60-459E-B843-0BDECA34E2C7}) (Version: 2.0.0.0086 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Intel® PROSet/Wireless WiFi-Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation)
iTunes (HKLM\...\{96984DE8-1DB8-425C-AC8C-3098BC696F04}) (Version: 12.3.0.44 - Apple Inc.)
iZotope Vinyl (HKLM-x32\...\iZotope Vinyl_is1) (Version: 1.61 - iZotope, Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java SE Development Kit 7 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170450}) (Version: 1.7.0.450 - Oracle)
Java(TM) SE Runtime Environment 6 Update 6 (HKLM\...\{6448F0A8-6813-11D6-A77B-00B0D0160060}) (Version: 1.6.0.60 - ##ID_STRING_COMPANY_NAME##)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KakaoTalk (HKLM-x32\...\KakaoTalk) (Version: 2.0.6.854 - Daum Kakao Corp)
LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.06.20130913 - LG Electronics)
LG United Mobile Driver (HKLM-x32\...\{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}) (Version: 3.10.1.0 - LG Electronics)
License Support (HKLM-x32\...\InstallShield_{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
License Support (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.) Hidden
Lioncast LM30 Gaming Mouse Version 1.1 (HKLM-x32\...\{BF8BC0AC-979B-4085-8F94-7933AF19CBD2}_is1) (Version: 1.1 - LIONCAST)
LRTimelapse 3.4.1 (HKLM-x32\...\{7413A137-4748-4073-BD2D-F87716D37D6C}_is1) (Version: 3.4.1 - Gunther Wegner)
MAGIX Burn routines (64-Bit) (HKLM\...\{49146694-5F5F-4B1F-AD15-6587F47A0FD7}) (Version: 9.0.0.212 - MAGIX AG)
MAGIX Low Latency Driver (64-Bit) (HKLM\...\{42976FDB-5756-4077-A491-095F228E99E2}) (Version: 2.10.2011.0 - MAGIX AG)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{98B45D1C-6EB1-460D-A87D-2B60678DC105}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - DEU (HKLM-x32\...\{07AC2D83-E795-4AD5-970D-B9BD14A1E411}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 (HKLM-x32\...\{D32EF103-4016-4C15-BCB0-700C0A7A2309}) (Version: 3.0.50813.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - DEU (HKLM-x32\...\{93EEC4E9-EEFE-4027-ACD3-6E8C1D085975}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages (HKLM-x32\...\{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM\...\{F7930EE9-0929-439D-A57B-D40C2C69C890}) (Version: 6.3.9723.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Language Pack - DEU (HKLM-x32\...\Microsoft Help Viewer 2.0 Language Pack - DEU) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4763.1003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{A106D33E-6B43-42C0-9BFC-D03303261FA7}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{AD49BD4B-6CEE-4EA2-B53E-8EB0606F1B11}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{EF18EF0F-96D3-4A6B-9600-2197F1720A15}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{6B7B7E62-9F56-4C87-8664-0E20F2CAB03B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{D4DA7C91-A59F-4C72-BAC4-DF7C76AB1CB8}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{8E4BA1E5-54E8-41F0-919B-CD875B83CFCE}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service (HKLM\...\{55FABD1D-8BE6-4A1A-958D-52B15F1DFEF0}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{13C9CD03-A5FE-4F50-AC8A-17B77C38CC52}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{28C7A4BB-3966-4373-8376-C11F38290630}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (11.1.20627.00) (HKLM-x32\...\{F6F1EE45-97E9-48A3-94B2-044B0A3C08D3}) (Version: 11.1.20627.00 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (11.1.20627.00) (HKLM-x32\...\{CEEDB2C4-46BE-4340-BAB9-F30110D9BBB8}) (Version: 11.1.20627.00 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{D434E072-F482-4F52-AB97-7B19DD5DAEB5}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{485F4AC6-F79E-4482-A0D2-EDF0CCE1E124}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Web Deploy 3.0 (HKLM\...\{AA72C306-30BE-4BB1-9E42-59552BAD2CDF}) (Version: 3.1236.1631 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - DEU (HKLM-x32\...\{86756584-C41A-4CA3-B42D-4768C7720F56}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft Web Platform Installer 4.6 (HKLM\...\{16C7D2AD-20CA-491E-80BC-8607A9AACED9}) (Version: 4.0.40719.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (HKLM-x32\...\{4C0B27C3-3E8F-4BD2-80FF-6E9E48EBD6D8}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (HKLM\...\{64A5D39C-95CD-4B8B-B2FA-6C713133B57F}) (Version: 11.0.2100.60 - Microsoft Corporation)
Mixxx 1.11.0 (64-bit) (HKLM-x32\...\Mixxx (1.11.0)) (Version: 1.11.0 - The Mixxx Development Team)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC)
Mount and Blade Warband - Demo (HKLM-x32\...\Steam App 48710) (Version: - Tale Worlds)
Mouse driver v1.0 (HKLM-x32\...\uni mouse driver) (Version: - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.3.0 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.3.0 (x86 de)) (Version: 38.3.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.2.1.6382 - Native Instruments)
Native Instruments New York Concert Grand (HKLM-x32\...\Native Instruments New York Concert Grand) (Version: - Native Instruments)
NirSoft ShellExView (HKLM-x32\...\NirSoft ShellExView) (Version: - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.1 - Notepad++ Team)
NVIDIA GeForce Experience 2.5.15.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.54 - NVIDIA Corporation)
NVIDIA Grafiktreiber 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.50 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PCM Native Reverb VST Plug-in (HKLM-x32\...\PCM Native Reverb VST Plug-in) (Version: - Lexicon)
PCM Native Reverb VST Plug-in (x32 Version: 1.0.0 - Lexicon) Hidden
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Phase 5 HTML-Editor (HKLM-x32\...\{20B1B020-DEAE-48D1-9960-D4C3185D758B}) (Version: 5.6.2.3 - Systemberatung Schommer)
PSP VintageWarmer2 (HKLM-x32\...\PSP VintageWarmer2) (Version: 2.5.2 - PSPaudioware.com)
Pushbullet version 312 (HKLM-x32\...\{7578F204-49E7-4830-B051-14C23F408BFE}_is1) (Version: 312 - Pushbullet Inc)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.54.309.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6675 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.27024 - Realtek Semiconductor Corp.)
REAPER (HKLM-x32\...\REAPER) (Version: - )
REAPER (x64) (HKLM\...\REAPER) (Version: - )
Red 2 & Red 3 Plug-in Suite version 1.0 (HKLM\...\Red 2 & Red 3 Plug-in Suite_is1) (Version: 1.0 - Focusrite Audio Engineering Limited)
RenderManNC-Installer (HKLM\...\{DAB7A2E1-D380-11E4-BBF3-001CC4171F87}) (Version: 1.0.0 - Pixar)
Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.70.18.0 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Scribblenauts Unlimited (HKLM-x32\...\Steam App 218680) (Version: - 5th Cell Media)
Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.)
SHIELD Streaming (Version: 4.1.500 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.15.54 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
SleepTimer Ultimate 1.2 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Spotify (HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
TES Construction Set (HKLM-x32\...\{58D68DF0-4E8B-4E9E-B425-670F9E37C1A8}) (Version: - )
THX TruStudio Pro (HKLM-x32\...\{82F99DC9-389A-4528-940C-88248731A620}) (Version: TAMB-CVS1D-1-LB R07 - Creative Technology Limited)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtual Guitarist EE Fx VST (HKLM-x32\...\Virtual Guitarist EE Fx VST) (Version: - )
Visual C++ 64-bit Redistributables (HKLM-x32\...\InstallShield_{5B0E60DB-7741-412F-88B3-E6975D30D019}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Visual C++ Redistributables (HKLM-x32\...\InstallShield_{C2AF7B2D-7018-414B-9B8B-D3C9F3BED04F}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{CFCB8616-A5D1-4281-80E8-389F685BFAE2}) (Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Waves Complete VST RTAS TDM v7.1.16 (HKLM-x32\...\Waves Complete v7_is1) (Version: - )
WebCam Installer (HKLM-x32\...\InstallShield_{2A14D7BC-1876-4B38-830B-18856C27F550}) (Version: 4.041 - WebCam)
WebCam Installer (x32 Version: 4.041 - WebCam) Hidden
WinDirStat 1.1.2 (HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\WinDirStat) (Version: - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows-Treiberpaket - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1) (HKLM\...\CF1FC201D237269A9CD51A3A6B14ADBF67175C32) (Version: 09/25/2013 2.5.128.1 - Focusrite)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (01/27/2014 9.0.0000.00000) (HKLM\...\9CA77E2A8332A0824C54DA611BBE4CA24AB1F750) (Version: 01/27/2014 9.0.0000.00000 - Google, Inc.)
WinRAR 5.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSCP 5.5.1 (HKLM-x32\...\winscp3_is1) (Version: 5.5.1 - Martin Prikryl)
yellow tools Independence Free 2.5.4 32bit (HKLM-x32\...\yellow tools Independence Free 2.5.4 32bit) (Version: - )
Zotero Standalone 4.0.26.4 (x86 en-US) (HKLM-x32\...\Zotero Standalone 4.0.26.4 (x86 en-US)) (Version: 4.0.26.4 - Zotero)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1144089834-2966323653-700404684-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Mathias\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2015-05-04 10:05 - 00001000 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
0.0.0.0 pubads.g.doubleclick.net
0.0.0.0 securepubads.g.doubleclick.net
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {013DF6D1-8F7A-465C-B045-AD6109E41F00} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-15] (Microsoft Corporation)
Task: {02407EF8-0B7B-461F-9BAB-C86000DC3E17} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {04F1F818-4C52-4D87-94F5-D27EF0B8A993} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {101235C0-BFDA-496A-B2FF-144FC332E643} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17] (Adobe Systems Incorporated)
Task: {1189BAE2-8311-491B-AA82-A7C42F68C6E1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {11C62FC4-F8B4-423F-827B-4935DC5A0B0B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {1351B408-3360-4B74-BCD2-A35D4AF72ADA} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {181271BA-F306-49FC-B65D-8194CF9D3C63} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {1A512E61-D201-4F86-8F00-408EB6DE392D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-10-29] (Microsoft Corporation)
Task: {1E2F7492-AF19-417A-A309-954A064B2171} - System32\Tasks\AdobeAAMUpdater-1.0-Mathias-PC-Mathias => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14] (Adobe Systems Incorporated)
Task: {2444F35D-9593-4AF4-B3E5-F53CC47F8742} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {245D8D8C-3544-4FF1-9795-D1EF96DF60F6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {279D9C2F-7EF8-4084-8851-9083D52B4CBB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {2D126ED9-6C2B-42BC-932A-A847DC96546A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {361C866E-377A-4D08-83B0-1CEC593513F6} - System32\Tasks\{9B2E7955-B1DB-4D12-A165-BD85D6ED5BFE} => pcalua.exe -a C:\ProgramData\LGMOBILEAX\LGMLauncher.exe -d C:\ProgramData\LGMOBILEAX
Task: {3698473B-6234-4264-9C41-CB7860AED894} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {3712A79E-E87E-49C0-820F-BD072A52F33E} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {38618D29-A39E-432B-B148-2C9E230B7086} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {3A43576E-D38A-4F3D-B2B5-0542D6B6C71A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {3B5AE6C3-ED04-4236-8F7A-DE29FDB6D141} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-29] (Microsoft Corporation)
Task: {3E53E736-AA7A-4053-9B53-DA3B00CDCCF2} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {45D287B3-B7DD-4FA7-A0CF-79C3A2CB5671} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {461FF58D-3BC0-458C-ABAD-4997F4E5A596} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {4A0E07DC-D751-4094-A417-30163A8AAF7A} - System32\Tasks\FoxTab => C:\Users\Mathias\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE <==== ACHTUNG
Task: {5016F229-F80E-4090-A77F-5ABE742889F9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {5277B501-7895-4F95-A62B-2ED2C31B0CE4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {5F5FE52D-C319-464A-B5B2-30952DE4193F} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1144089834-2966323653-700404684-1001Core => C:\Users\Mathias\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.)
Task: {62E6202F-0873-4646-BCB5-1F524C816540} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {74CFF5AA-1618-44D2-B63F-6FC41EF10D12} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {798EF1CB-B66D-47F1-9F2D-E7564812C2DF} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {7A094AF1-B79E-49D0-B634-1F0107309E8D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7D3E424A-ACFC-4AF6-B1F5-FE6258F37A39} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-29] (Microsoft Corporation)
Task: {7E9D5047-40B0-427B-969B-3CCE7D573936} - System32\Tasks\Dealply => C:\Users\Mathias\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE <==== ACHTUNG
Task: {7FD6A044-8848-4267-ADD4-28E69C604C1F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {88810205-9763-461F-B4EE-C356A4C99B40} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {89AFEE5A-FB5B-4D18-959E-5FA518D0332E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1144089834-2966323653-700404684-1001UA => C:\Users\Mathias\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.)
Task: {8A97D58C-6626-4422-A25D-AEBA7AE6556F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {8AAAE76C-BA8C-4BE9-8294-64C8BA2535DB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {8D0B7E70-1B45-4317-87F8-3DF7275F65FD} - System32\Tasks\{CB6D5F02-4974-4033-A865-BD221A150D1D} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.2.0.103&LastError=-9
Task: {9FDE2122-4A5E-4A3F-8267-4FB0627099D7} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {B080995F-769B-449A-8082-4BFE3BABABDA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {B8527E33-1232-4DD7-9382-E32B8AAEB2BF} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {B8FB1B3A-9D58-479C-9998-C2BB856BD153} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {BA3DC3F8-EC74-465D-8786-CA082C15F86B} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {BA7BC2AC-FB87-4DB2-BA6C-512BFA889280} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {C62260D5-2D02-4587-803D-403A5B68046B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {CE4CE3A5-311C-4218-8609-340A614FD265} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {D24C92AD-E79D-4B46-9EB7-9E80CE339FA8} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {DD83D3F0-5E4A-4708-8138-E065BC12FDA9} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {E2731A6C-AAB0-4D13-8E62-A28D205B95CB} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {E367C61D-647C-4B5B-82F9-7118F6E19000} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FC794181-26F4-4961-B6DA-044851519021} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {FE680D2E-072C-4095-BDB2-5F0C792A2284} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Dealply.job => C:\Users\Mathias\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE <==== ACHTUNG
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1144089834-2966323653-700404684-1001Core.job => C:\Users\Mathias\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1144089834-2966323653-700404684-1001UA.job => C:\Users\Mathias\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\FoxTab.job => C:\Users\Mathias\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE <==== ACHTUNG
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-09-03 22:29 - 2015-09-03 22:29 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-10-01 14:44 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 14:44 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2014-12-19 15:57 - 2014-12-19 15:57 - 01039008 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-10-01 14:44 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Mathias\Cookies:ojFmpwlQNZE3yJxs9pEnZjF3I5Pz
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1144089834-2966323653-700404684-1001\...\sharepoint.com -> hxxps://fhstp.sharepoint.com
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1144089834-2966323653-700404684-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mathias\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{8348aafd-74c9-46c0-82b3-ee45576cf735}.jpg
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^Users^Mathias^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Mathias\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: Browser Infrastructure Helper => C:\Users\Mathias\AppData\Local\Smartbar\Application\SnapDo.exe startup
MSCONFIG\startupreg: BTMTrayAgent => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EA Core => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: RocketDock => "C:\Program Files (x86)\RocketDock\RocketDock.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\Mathias\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Mathias\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: THX Audio Control Panel => "C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" /r
MSCONFIG\startupreg: THXCfg64 => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
MSCONFIG\startupreg: UpdReg => C:\Windows\UpdReg.EXE
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{11A9813A-B070-4A9A-93BF-9F43F457CDD7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{BC83066A-2C4A-4C8D-B7BD-AAC098509465}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E5AD6919-D13D-43DF-A5F3-24310057D633}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{A27BCC99-E883-414F-80D0-BDB4EAFB9A4D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{278357BC-0750-4857-AF76-857FF87646BA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [UDP Query User{3B099DFD-9115-468F-AD64-F243C86D1F7E}C:\users\mathias\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\mathias\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{ED73C9D6-F4B0-4510-825E-B227BBA2AA8B}C:\users\mathias\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\mathias\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{C77B7CBE-8753-4A36-8A17-5AED313A4639}C:\program files (x86)\mediamonkey\mediamonkey.exe] => (Block) C:\program files (x86)\mediamonkey\mediamonkey.exe
FirewallRules: [TCP Query User{3B007EDA-9501-4380-83F8-C66AAD78735C}C:\program files (x86)\mediamonkey\mediamonkey.exe] => (Block) C:\program files (x86)\mediamonkey\mediamonkey.exe
FirewallRules: [{17B198DE-2A0D-40C7-BFEA-AADCC27206D4}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{0D363849-294F-4F76-82F2-CC8C6379E6BE}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [UDP Query User{16BD67F6-CEC7-4E94-8E7F-77364C8DEFE2}C:\users\mathias\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mathias\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{1026B8E3-A074-45A1-A951-D55CB5D575B2}C:\users\mathias\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mathias\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{F05F411C-534C-43C4-B598-335E7B22D3E2}C:\program files\pixar\rendermanstudio-19.0-maya2015\bin\it.exe] => (Allow) C:\program files\pixar\rendermanstudio-19.0-maya2015\bin\it.exe
FirewallRules: [TCP Query User{A76A78C2-D4C8-4CEE-A180-E8AD3117B7FA}C:\program files\pixar\rendermanstudio-19.0-maya2015\bin\it.exe] => (Allow) C:\program files\pixar\rendermanstudio-19.0-maya2015\bin\it.exe
FirewallRules: [UDP Query User{CB7DAE5B-9814-4366-8871-94C81FA65C12}C:\program files\autodesk\maya2015\bin\maya.exe] => (Allow) C:\program files\autodesk\maya2015\bin\maya.exe
FirewallRules: [TCP Query User{79EA3527-541B-481C-AA09-8B59617D1F33}C:\program files\autodesk\maya2015\bin\maya.exe] => (Allow) C:\program files\autodesk\maya2015\bin\maya.exe
FirewallRules: [UDP Query User{9A497561-A577-42EB-8FE2-4E3691EC6871}C:\program files\cycling '74\max 7\max.exe] => (Allow) C:\program files\cycling '74\max 7\max.exe
FirewallRules: [TCP Query User{97994CCC-EE5F-4C75-89DD-46D78048769C}C:\program files\cycling '74\max 7\max.exe] => (Allow) C:\program files\cycling '74\max 7\max.exe
FirewallRules: [UDP Query User{9C2CB8EA-32A8-4811-AFF3-56D6EF7E2AAF}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{F462F712-7966-4248-923E-279AC89DE263}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{9AF6C5C6-1E6F-40F3-8FF0-902D442DF1E4}C:\program files (x86)\pd\bin\pd.com] => (Allow) C:\program files (x86)\pd\bin\pd.com
FirewallRules: [TCP Query User{CFEAAB6A-DAA1-4395-AA8A-6C6C06216E90}C:\program files (x86)\pd\bin\pd.com] => (Allow) C:\program files (x86)\pd\bin\pd.com
FirewallRules: [{FBCDF625-A713-4004-8980-FC7B85E98E40}] => (Allow) LPort=5000
FirewallRules: [{07DFA7A3-A23F-4389-96A1-9B64391259A1}] => (Allow) LPort=63319
FirewallRules: [UDP Query User{36503786-5783-4B7E-B12F-DC188CF1A233}C:\users\mathias\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\mathias\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{C8C5B793-C6A6-4223-933B-7F3E6CEFD376}C:\users\mathias\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\mathias\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{D418A483-21C5-45EE-9CD0-13E33D09B013}C:\program files (x86)\electronic arts\eadm\core.exe] => (Allow) C:\program files (x86)\electronic arts\eadm\core.exe
FirewallRules: [TCP Query User{994107BA-D481-4509-A2EC-D82B9D78BDAB}C:\program files (x86)\electronic arts\eadm\core.exe] => (Allow) C:\program files (x86)\electronic arts\eadm\core.exe
FirewallRules: [UDP Query User{DC920C21-39A8-4D9D-B55D-E203F3173952}C:\program files\java\jdk1.7.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jdk1.7.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{96118DCD-5E54-44E9-B4A9-DD9B44D6096E}C:\program files\java\jdk1.7.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jdk1.7.0_45\bin\javaw.exe
FirewallRules: [{42C83465-A1AB-43F3-8A90-127F7362E754}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{5E759CF0-9D25-4CC2-A8EC-233994917EB0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{24B3458B-8E27-4F1E-B6AB-070F6B241BC0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{4C34BB46-CE4F-46D2-A3B2-ED9863683D53}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{D3AB0334-984A-43EF-91D3-D6FFA625F250}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{4577EF16-F4E7-4F41-A900-F9A84B2C280B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{E180FFA1-31A3-4E1C-BD19-380015B1FC83}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{67813C54-518C-445C-A92B-C8D81901EE98}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{AA1E572C-93F9-436B-8187-34F5A1B92709}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{5EAA5EF7-2FBA-44D2-816C-A964FA6B3FB6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{83503245-18B6-408C-AAB5-A382F9CC9090}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{D550985F-526E-4CB2-ADD5-1BF57F818D0A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{812CF16A-6CC8-49E6-8428-1C2D26967EEF}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{DC863471-4938-4D1E-BF18-15ED8F08FCAE}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{D0C0589F-DAFE-4C0D-B8C0-413D6C059CBD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{1504B34D-A0E5-46FA-9BEB-66CE49114B3C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{A5C8FF6C-4363-4E21-B95A-3F574CE2A728}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [UDP Query User{AFB4C663-6E56-43D6-A6BC-82245510AC2D}C:\program files\avid\avid media composer\avidbinindexer.exe] => (Allow) C:\program files\avid\avid media composer\avidbinindexer.exe
FirewallRules: [TCP Query User{8DC36BDB-D820-4D50-844B-922AB88D037E}C:\program files\avid\avid media composer\avidbinindexer.exe] => (Allow) C:\program files\avid\avid media composer\avidbinindexer.exe
FirewallRules: [UDP Query User{1370D584-3F26-4F17-B6A1-22747110A38F}C:\program files\avid\avid media composer\avidphoneticindexer.exe] => (Allow) C:\program files\avid\avid media composer\avidphoneticindexer.exe
FirewallRules: [TCP Query User{2CF9C904-F999-4591-B066-C9202BBE1D16}C:\program files\avid\avid media composer\avidphoneticindexer.exe] => (Allow) C:\program files\avid\avid media composer\avidphoneticindexer.exe
FirewallRules: [UDP Query User{C317184C-7492-4461-A6B9-39A71C0B8C47}C:\program files\reaper (x64)\reamote.exe] => (Allow) C:\program files\reaper (x64)\reamote.exe
FirewallRules: [TCP Query User{C67F023A-0732-4143-96AB-1A1F40DE74D9}C:\program files\reaper (x64)\reamote.exe] => (Allow) C:\program files\reaper (x64)\reamote.exe
FirewallRules: [UDP Query User{4A01ED0C-A33B-4697-B964-420374A39CDB}C:\program files (x86)\pd\bin\pd.com] => (Block) C:\program files (x86)\pd\bin\pd.com
FirewallRules: [TCP Query User{9AA7F9C3-86A3-42BD-A022-2482E60DDB76}C:\program files (x86)\pd\bin\pd.com] => (Block) C:\program files (x86)\pd\bin\pd.com
FirewallRules: [UDP Query User{B8986249-4BDD-4964-9378-EEE9BC17D4CF}C:\program files (x86)\unified remote\remoteserver.exe] => (Allow) C:\program files (x86)\unified remote\remoteserver.exe
FirewallRules: [TCP Query User{4F62B935-66CB-4DDE-98AE-8D2588543476}C:\program files (x86)\unified remote\remoteserver.exe] => (Allow) C:\program files (x86)\unified remote\remoteserver.exe
FirewallRules: [{85E70E06-4CA4-43C0-AA66-ADD732B73246}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{17EC1828-0BCD-446C-942A-8097A9F7DB59}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [UDP Query User{5ED704E2-1A37-4F80-8F9D-6A7DDAAB136E}C:\program files (x86)\pd\bin\pd.exe] => (Allow) C:\program files (x86)\pd\bin\pd.exe
FirewallRules: [TCP Query User{CAC6D9F4-5943-465D-B965-CDBB9B387BEF}C:\program files (x86)\pd\bin\pd.exe] => (Allow) C:\program files (x86)\pd\bin\pd.exe
FirewallRules: [UDP Query User{414EF417-6022-4712-8EA9-C3113E8DEDAF}C:\users\mathias\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\mathias\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [TCP Query User{8FFBE3F8-3357-4A61-BAD9-E38330E6E16C}C:\users\mathias\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\mathias\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{E10E5248-E6DA-4061-9854-947F8FEEA904}C:\users\mathias\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\mathias\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [TCP Query User{A21A574F-8E43-4E4C-B039-F867606B09D1}C:\users\mathias\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\mathias\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{579C8686-8639-496C-BDFB-B16494F3873E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{18EA308C-0AF1-450C-A2D2-5E2C40E3D9B7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E648995A-240C-4D71-8369-A01AA150C245}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{23CF80F7-74C1-4DFA-9AC0-3991A8C8A01C}E:\games\cod4\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) E:\games\cod4\activision\call of duty 4 - modern warfare\iw3mp.exe
FirewallRules: [TCP Query User{4BD2834E-E99E-4747-8E66-964D28BC7D69}E:\games\cod4\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) E:\games\cod4\activision\call of duty 4 - modern warfare\iw3mp.exe
FirewallRules: [UDP Query User{1007229F-1F56-4242-8149-59FF11DDAF7E}C:\program files (x86)\maniaplanet\maniaplanet.exe] => (Allow) C:\program files (x86)\maniaplanet\maniaplanet.exe
FirewallRules: [TCP Query User{57892900-0148-4CE8-944E-09A534EB24A3}C:\program files (x86)\maniaplanet\maniaplanet.exe] => (Allow) C:\program files (x86)\maniaplanet\maniaplanet.exe
FirewallRules: [UDP Query User{02FC7D7A-606F-4240-92E1-80AE48E3EACF}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{D0DB4CEE-E1A9-4652-A045-EE8298933397}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{464759CF-ED51-4D05-A04C-9D8DEC0E08E4}E:\games\age of empires 2\age2_x1\age2_x1.exe] => (Allow) E:\games\age of empires 2\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{32C92E10-4B01-495D-A8E0-A74C36E1E445}E:\games\age of empires 2\age2_x1\age2_x1.exe] => (Allow) E:\games\age of empires 2\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{190D4CC9-EF4E-4741-8418-B89A26E270CC}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe
FirewallRules: [TCP Query User{ECD9150C-DF2B-4B38-BE1A-6C93E61A8E40}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{00365D78-A486-4FD7-9681-A7AEE4A289C4}E:\games\age of empires 2\empires2.exe] => (Allow) E:\games\age of empires 2\empires2.exe
FirewallRules: [TCP Query User{4DD8B49E-415D-45A4-9C90-C755ADF25765}E:\games\age of empires 2\empires2.exe] => (Allow) E:\games\age of empires 2\empires2.exe
FirewallRules: [UDP Query User{24348AF6-B082-4638-83B4-AA295D6B32B1}C:\program files (x86)\anno 1701\anno1701.exe] => (Allow) C:\program files (x86)\anno 1701\anno1701.exe
FirewallRules: [TCP Query User{02A77BA0-4522-4DF5-BFA9-6CA0709F53F7}C:\program files (x86)\anno 1701\anno1701.exe] => (Allow) C:\program files (x86)\anno 1701\anno1701.exe
FirewallRules: [UDP Query User{55D015A5-027E-450E-BA3C-552297AC7AAD}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe
FirewallRules: [TCP Query User{24A872A9-E8A7-4B87-93AC-5B8C3FE94E30}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe
FirewallRules: [UDP Query User{4A3186AD-88EB-423F-9097-6260F0490B5F}C:\program files (x86)\microsoft games\age of empires ii\aoc.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\aoc.exe
FirewallRules: [TCP Query User{3A2AF8C7-3A7D-4E13-9545-4094ACC876C1}C:\program files (x86)\microsoft games\age of empires ii\aoc.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{F608D4A9-50E5-4AC4-83D7-CFC28C459522}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{8D4ECEDF-07B0-4D04-B9D9-207D522A4FD5}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{3A5FF0CB-7B27-4A43-86A5-54C54FA5220B}C:\program files (x86)\electronic arts\eadm\core.exe] => (Allow) C:\program files (x86)\electronic arts\eadm\core.exe
FirewallRules: [TCP Query User{E7D3FE00-14E7-498E-BFEF-F773EA07A675}C:\program files (x86)\electronic arts\eadm\core.exe] => (Allow) C:\program files (x86)\electronic arts\eadm\core.exe
FirewallRules: [{AAF33CDA-5074-427C-AE51-345963A1AD8D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{BB65479E-ABBD-45C1-A863-5B164FC90775}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{1D385112-E102-4259-A8A9-5033D1B2544E}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [TCP Query User{EB0D2D43-4FC2-4C40-9BB7-FD7DBF11C324}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [{1DFAFCC2-E207-4C34-9857-A5A610AAE667}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B63FFFC8-6CBA-49E0-83ED-AB2D94297392}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{4360BCF1-1C1F-4569-9CB1-CFC5E23CCE70}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [TCP Query User{E0E498DD-0689-4827-A4B1-D1374A7A3AD6}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{824B283C-C808-428D-A8CB-15431F654DFE}C:\users\mathias\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\mathias\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{CBF0F56A-0264-4DA8-976E-CD66C6EAE9EF}C:\users\mathias\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\mathias\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{5F81E82D-EACA-4199-A3C0-1FF836EE668B}C:\program files (x86)\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\counter-strike source\hl2.exe
FirewallRules: [TCP Query User{98F5F116-5286-4172-8D19-B93E033145FC}C:\program files (x86)\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\counter-strike source\hl2.exe
FirewallRules: [UDP Query User{8F93A89F-DA91-4D57-8AEA-1C26C48F8E5E}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{4B14C268-11F8-4A6C-B0A9-B93D6FFA7BC9}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{80267645-5ECF-46AB-8B1E-90CA8DF00716}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{1F171612-02AC-4219-B3E6-B0B88FA309D2}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{1158E88B-A647-4729-91CB-21136A4E707E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F4DCBE1A-833B-4E94-88DE-8052C7BB8291}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{616E9C37-1D66-4A07-AF59-B36CE105653F}E:\studium\1. semester\programmieren\processing-2.0.3\java\bin\java.exe] => (Allow) E:\studium\1. semester\programmieren\processing-2.0.3\java\bin\java.exe
FirewallRules: [TCP Query User{DED09A14-D879-4DDC-A063-E32A013F85C0}E:\studium\1. semester\programmieren\processing-2.0.3\java\bin\java.exe] => (Allow) E:\studium\1. semester\programmieren\processing-2.0.3\java\bin\java.exe
FirewallRules: [UDP Query User{2939E9AF-B86E-4B9B-AA36-A3AA962874C7}E:\studium\1. semester\programmieren\processing-2.0.3\java\bin\java.exe] => (Allow) E:\studium\1. semester\programmieren\processing-2.0.3\java\bin\java.exe
FirewallRules: [TCP Query User{999E345D-B298-4867-8723-2CDC55E419B9}E:\studium\1. semester\programmieren\processing-2.0.3\java\bin\java.exe] => (Allow) E:\studium\1. semester\programmieren\processing-2.0.3\java\bin\java.exe
FirewallRules: [{A3378289-CD10-4A14-B15E-B48C8CF447A1}] => (Allow) C:\Users\Mathias\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{56977454-6D48-4FD7-A723-FFF9CB6AB51D}] => (Allow) C:\Users\Mathias\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{3829EC91-3B73-45BD-B7C4-6BA4FB688F72}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8882B607-48B4-42BC-9018-5E9D17B75290}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{79D5FF86-CF49-4ED9-AFE9-7631A231B37F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{421BACF6-A777-4C1C-A069-B25B091D1794}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A616ACF1-55F6-47C8-B95C-95F9065C5535}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{B172034B-8ED8-41A7-9B2F-8F315E6EBD67}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{A6656A87-64CC-4479-91F1-2B7ECD4F596B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{FD043032-ECEE-4FC2-B012-1C150DBADB7D}] => (Allow) C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{3AC8744C-E156-44AB-BF7F-7D144D015815}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Scribblenauts\Scribble.exe
FirewallRules: [{F461FFE7-19DD-476B-A100-ABF4E7FB7A5D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Scribblenauts\Scribble.exe
FirewallRules: [{0204DF9F-DB21-4BAD-9F88-858742C6FAF4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A5E64F5C-B104-45C2-8720-9D394C52172C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{354A2BD7-92E9-4582-ABCF-81E12A6DFDE7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F7459D7D-4AC8-4811-8F13-17C07404CD25}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{DCF9075B-4F7B-4DEB-B06D-E32EB6A33044}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{1CFFEB1E-0C97-42D0-BA6E-39AC90054FAC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{BFD13E47-36A5-4F39-88DF-BD3321FDE519}] => (Allow) LPort=2869
FirewallRules: [{92181839-DD1E-4490-97C4-93C66633E539}] => (Allow) LPort=1900
FirewallRules: [{E1273320-D9EE-4A5E-87E2-9C68B2F1D004}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{9E807539-5B40-4ACB-A386-B31880BD088B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{79F0F702-2379-4DD3-AA83-830C55156657}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Mount and Blade Warband - Demo\mb_warband.exe
FirewallRules: [{C5D93C86-4307-4E38-937C-F83A00FDE675}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Mount and Blade Warband - Demo\mb_warband.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/04/2015 09:07:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Mathias-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (11/04/2015 09:07:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Mathias-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (11/04/2015 09:07:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SearchUI.exe, Version: 10.0.10240.16515, Zeitstempel: 0x55fa5578
Name des fehlerhaften Moduls: CortanaApi.dll, Version: 0.0.0.0, Zeitstempel: 0x55fa5354
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000000000151a73
ID des fehlerhaften Prozesses: 0x4e4
Startzeit der fehlerhaften Anwendung: 0xSearchUI.exe0
Pfad der fehlerhaften Anwendung: SearchUI.exe1
Pfad des fehlerhaften Moduls: SearchUI.exe2
Berichtskennung: SearchUI.exe3
Vollständiger Name des fehlerhaften Pakets: SearchUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SearchUI.exe5
Error: (11/04/2015 09:07:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SearchUI.exe, Version: 10.0.10240.16515, Zeitstempel: 0x55fa5578
Name des fehlerhaften Moduls: CortanaApi.dll, Version: 0.0.0.0, Zeitstempel: 0x55fa5354
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000000000151a73
ID des fehlerhaften Prozesses: 0x7e0
Startzeit der fehlerhaften Anwendung: 0xSearchUI.exe0
Pfad der fehlerhaften Anwendung: SearchUI.exe1
Pfad des fehlerhaften Moduls: SearchUI.exe2
Berichtskennung: SearchUI.exe3
Vollständiger Name des fehlerhaften Pakets: SearchUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SearchUI.exe5
Error: (11/04/2015 09:07:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Mathias-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (11/04/2015 09:07:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SearchUI.exe, Version: 10.0.10240.16515, Zeitstempel: 0x55fa5578
Name des fehlerhaften Moduls: CortanaApi.dll, Version: 0.0.0.0, Zeitstempel: 0x55fa5354
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000000000151a73
ID des fehlerhaften Prozesses: 0xb5c
Startzeit der fehlerhaften Anwendung: 0xSearchUI.exe0
Pfad der fehlerhaften Anwendung: SearchUI.exe1
Pfad des fehlerhaften Moduls: SearchUI.exe2
Berichtskennung: SearchUI.exe3
Vollständiger Name des fehlerhaften Pakets: SearchUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SearchUI.exe5
Error: (11/04/2015 09:07:18 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Mathias-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (11/04/2015 09:07:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SearchUI.exe, Version: 10.0.10240.16515, Zeitstempel: 0x55fa5578
Name des fehlerhaften Moduls: CortanaApi.dll, Version: 0.0.0.0, Zeitstempel: 0x55fa5354
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000000000151a73
ID des fehlerhaften Prozesses: 0x978
Startzeit der fehlerhaften Anwendung: 0xSearchUI.exe0
Pfad der fehlerhaften Anwendung: SearchUI.exe1
Pfad des fehlerhaften Moduls: SearchUI.exe2
Berichtskennung: SearchUI.exe3
Vollständiger Name des fehlerhaften Pakets: SearchUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SearchUI.exe5
Error: (11/04/2015 09:07:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Mathias-PC)
Description: Bei der Aktivierung der App „Microsoft.Getstarted_2.4.13.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca“ ist folgender Fehler aufgetreten: -2144927149. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (11/04/2015 09:07:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SearchUI.exe, Version: 10.0.10240.16515, Zeitstempel: 0x55fa5578
Name des fehlerhaften Moduls: CortanaApi.dll, Version: 0.0.0.0, Zeitstempel: 0x55fa5354
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000000000151a73
ID des fehlerhaften Prozesses: 0x764
Startzeit der fehlerhaften Anwendung: 0xSearchUI.exe0
Pfad der fehlerhaften Anwendung: SearchUI.exe1
Pfad des fehlerhaften Moduls: SearchUI.exe2
Berichtskennung: SearchUI.exe3
Vollständiger Name des fehlerhaften Pakets: SearchUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SearchUI.exe5
Systemfehler:
=============
Error: (11/04/2015 09:08:33 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084ShellHWDetectionNicht verfügbar{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (11/04/2015 09:08:28 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084ShellHWDetectionNicht verfügbar{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (11/04/2015 09:07:58 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084ShellHWDetectionNicht verfügbar{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (11/04/2015 09:07:54 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
Error: (11/04/2015 09:07:54 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
Error: (11/04/2015 09:07:54 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
Error: (11/04/2015 09:07:54 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
Error: (11/04/2015 09:07:54 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
Error: (11/04/2015 09:07:54 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
Error: (11/04/2015 09:07:54 PM) (Source: DCOM) (EventID: 10005) (User: Mathias-PC)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
CodeIntegrity:
===================================
Date: 2015-11-03 19:35:21.649
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2015-11-03 19:35:21.515
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2015-11-03 19:29:21.534
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2015-11-03 19:29:21.373
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2015-11-03 19:15:31.295
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-11-03 19:15:31.075
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-11-03 18:58:42.382
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-11-03 18:58:42.172
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-11-03 16:42:17.979
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-11-03 16:42:17.793
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz
Prozentuale Nutzung des RAM: 5%
Installierter physikalischer RAM: 16274.07 MB
Verfügbarer physikalischer RAM: 15314.54 MB
Summe virtueller Speicher: 32658.07 MB
Verfügbarer virtueller Speicher: 31750 MB
==================== Laufwerke ================================
Drive c: (System) (Fixed) (Total:119.24 GB) (Free:34.23 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive e: (Volume) (Fixed) (Total:465.76 GB) (Free:112.46 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 35DA7118)
Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 56A59D0D)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
04.11.2015, 21:31
| #25 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™ | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10Zitat:
 Zitat:
So langsam komm ich mir verarscht vor. Du weißt schon noch, was ich im Lesestoff zu gecrackter Software geschrieben hab, oder?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.11.2015, 22:57
| #26 |
| | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Sorry, Adobe Master Collection brauch ich halt. Aber das Office ist tatsächlich eine Studentenversion, keine Ahnung warums da sowas anzeigt. So oder so, ich wär froh wenn du mir einfach trotzdem weiterhelfen könntest. Falls du nicht willst, versteh ichs aber auch. |
|
05.11.2015, 09:40
| #27 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 "brauch ich halt" ist kein Argument. Entweder du haust die ganze gecrackte Scheiße runter oder hier ist Ende.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.11.2015, 09:53
| #28 |
| | Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 Dann danke soweit für deine Hilfe! |
|
| Themen zu Installation, Deinstallation, Task-Manager starten, Viren-Scan uvm. plötzlich nicht mehr möglich! WIN10 |
| ahnung, anhang, automatische, deinstallation, fehler, fehlermeldung, hallo zusammen, hochfahren, installation, installiert, loswerden, meldung, nicht mehr, plötzlich, programm, programme, scan, seite, software, starten, task-manager, treiber, virenscan, virus, win |
Linear-Darstellung
