| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nichtWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
22.11.2015, 13:32
| #1 |
 |  MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Hallo, Ich habe seid ein paar Tagen das Problem, dass mir mein MS Essentials anzeigt es habe schwerwiegendes Problem entdeckt. Wenn ich mir die Details dazu einblenden lasse zeigt es mir folgendes: Kategorie: Trojaner Beschreibung: Diesea Programm ist gefährlich. Es führt Befehle eines Angreifers aus. Empfohlene Aktion: Entfernen Sie diese Software unverzüglich. Elemente: file:C:\Windows\System32\dnsapi.dll Nun habe ich natürlich versucht es über MS Essentials zu entfernen, dies funktionierte allerdings nicht. Der Status nach dem Versuch es zu entfernen zeigt einen Fehler. Der folgende Fehler ist aufgetreten: Fehlercode: 0x800704ec. Dieses Programm wurde durch eine Gruppenrichtlinie geblockt. Wenden Sie sich an dem Systemadministrator, um weitere Informationen zu erhalten. Ich hatte mich daraufhin an einen Bekannten gewendet, der mir dann empfahl die Kaspersky Rescue Disk auf einen Stick oder eine CD zu brennen und drüber laufen zu lassen. Im Anschluss darauf sollte ich dann den AdwCleaner drüber laufen lassen. Leider ist das Problem weiterhin vorhanden und sorge mich nun um meine Daten auf dem Laptop. Ich muss dazu sagen, dass ich auch nicht mehr über Firefox oder Internet Explorer Zugriff zum Internet habe und aktuell über mein Smartphone schreibe. Ich hoffe das mir vielleicht jemande weitwr helfen kann. |
|
22.11.2015, 13:34
| #2 |
| /// TB-Ausbilder   | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Die Logdatei von AdwCleaner bitte posten! Zur ersten Analyse bitte FRST und TDSS-Killer ausführen: Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Schritt 2 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
22.11.2015, 13:47
| #3 |
| | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Danke für die schnelle Rückmeldung.
__________________Gibt es eventuell eine Möglichkeit die Logfiles anders zukommen zu lassen? Wie ich sagte, ich schreibe über mein Handy, daher kann ich die Texte nicht so einfügen wie gebeten. |
|
22.11.2015, 14:04
| #4 |
| /// TB-Ausbilder | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Servus, Lade dir die Programme von einem sauberen Rechner auf den USB-Stick. Starte den infizierten Rechner. Stecke den USB-Stick ein und kopiere die Tools vom Stick auf den Desktop des Rechners. Führe die Programme vom Desktop aus. Ist umständlich, ich weiß, aber ich kann dir ohne mehr Informationen kaum helfen. Wer weiß, was da alles "zerballert" wurde. |
|
23.11.2015, 13:44
| #5 |
| | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Einmal die Logdatei vom AdwCleaner Code:
ATTFilter # AdwCleaner v5.013 - Bericht erstellt am 22/11/2015 um 13:49:19
# Aktualisiert am 09/10/2015 von Xplode
# Datenbank : 2015-10-04.3 [Lokal]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x86)
# Benutzername : Denise - DENISE-PC
# Gestartet von : C:\Users\Denise\Desktop\adwcleaner_5.013.exe
# Option : Suchlauf
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Internetbrowser ] *****
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [639 Bytes] ##########
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:20-11-2015
durchgeführt von Denise (Administrator) auf DENISE-PC (22-11-2015 13:44:53)
Gestartet von C:\Users\Denise\Desktop
Geladene Profile: Denise (Verfügbare Profile: Denise & Gast)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink) C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\Bamboo Dock\BambooCore.exe
() C:\Program Files\Winamp\winampa.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTLite.exe
(Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12111576 2014-12-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [UpdateLBPShortCut] => C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer] => C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM\...\Run: [UpdateP2GoShortCut] => C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [UpdatePDRShortCut] => C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [RemoteControl8] => C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [PDVD8LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [UpdatePPShortCut] => C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] => C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM\...\Run: [UCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-02-26] (Nero AG)
HKLM\...\Run: [BambooCore] => C:\Program Files\Bamboo Dock\BambooCore.exe [646744 2014-11-20] ()
HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\Winampa.exe [12288 2003-04-17] ()
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)
HKLM\...\Run: [MouseDriver] => C:\windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-29] (Microsoft Corporation)
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2654512 2015-10-04] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\...\RunOnce: [FreeHideIPunstall] => [X]
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [EADM] => C:\Program Files\Origin\Origin.exe [3638256 2015-09-11] (Electronic Arts)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: G - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {0afaf239-5233-11e1-9281-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {5c1700f8-0a8e-11e0-89ea-00245467eac5} - F:\Autorun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {88771927-5bca-11e1-9d6d-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {8ed8c5b8-1d1f-11e3-a810-00245467eac5} - G:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {929343ec-dae9-11df-91fe-00245467eac5} - G:\LaunchU3.exe -a
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {98b26fee-6c31-11e1-b6ca-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {98b26ff2-6c31-11e1-b6ca-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {9d0d55be-049b-11e1-b91f-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {9d0d55c7-049b-11e1-b91f-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {a3b0880f-92f1-11e1-92ac-00245467eac5} - G:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {ac8e3a14-72f9-11e0-8ea1-00245467eac5} - F:\Autorun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {df1fb56f-8b3a-11e3-86dc-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {f2592001-7340-11e1-960d-00245467eac5} - H:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\WLXPGSS.SCR [302448 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{6740F581-8B96-4B73-9C1B-74E80ABB4E31}: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{89937394-FABE-4827-A000-3CA618D78EDF}: [DhcpNameServer] 139.7.30.126 139.7.30.125
Tcpip\..\Interfaces\{D15BEF43-E20E-4980-8981-90385BBA009A}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{FAA164E7-8D0A-412C-BC98-DE239EC26F45}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
SearchScopes: HKLM -> DefaultScope {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://mysearch.sweetpacks.com?src=6&q={searchTerms}&barid=&&st=23&did=10963&UPN2=92263311661890289
BHO: meduke -> {11B16A3D-F03E-4565-A532-66AB219C9B03} -> C:\Users\Denise\AppData\Local\ext_meduke\ext_meduke.dll [2015-04-22] ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
Toolbar: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Keine Datei
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx
DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-09] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Keine Datei
FireFox:
========
FF ProfilePath: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-25] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.5 -> C:\Program Files\TabletPlugins\npwacom.dll [2010-09-02] (Wacom, Inc.)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-1072828290-3828818215-1948454868-1000: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2013-09-27] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-11-18] (Apple Inc.)
FF Extension: FavGenius - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\extensions\fg@favgenius.com.xpi [2015-09-07]
FF Extension: YouTube Unblocker - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\youtubeunblocker@unblocker.yt [2015-08-05]
FF Extension: search service - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\{bae37ea1-7abb-47f2-8b34-44f0f489f8a2}.xpi [2015-10-05] [ist nicht signiert]
FF Extension: Adblock Plus - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-25]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-04-10] <==== ACHTUNG
Chrome:
=======
CHR Profile: C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - <kein Path\update_url>
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ezGOSvc; C:\windows\system32\ezGOSvc.dll [73600 2011-06-12] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [921392 2015-10-04] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
S3 npggsvc; C:\windows\system32\GameMon.des [3461904 2010-01-12] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-10-04] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4325680 2015-10-04] (NVIDIA Corporation)
R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] ()
S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2057736 2015-09-11] (Electronic Arts)
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [Datei ist nicht signiert]
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()
S3 SonicStage Back-End Service; C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
S3 SSScsiSV; C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [567064 2014-08-19] (Wacom Technology, Corp.)
S4 Agsvepehe; kein ImagePath
S3 FirebirdServerMAGIXInstance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [X]
S2 RoxLiveShare9; "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 athr; C:\windows\System32\DRIVERS\athr.sys [2228224 2011-12-13] (Atheros Communications, Inc.) [Datei ist nicht signiert]
R2 atksgt; C:\windows\System32\DRIVERS\atksgt.sys [83872 2011-10-01] ()
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S3 hidkmdf; C:\windows\System32\DRIVERS\hidkmdf.sys [12088 2014-08-06] (Windows (R) Win 7 DDK provider)
R3 KMWDFILTERx86; C:\windows\System32\DRIVERS\KMWDFILTER.sys [25088 2009-04-29] (Windows (R) Codename Longhorn DDK provider)
R2 lirsgt; C:\windows\System32\DRIVERS\lirsgt.sys [25888 2011-10-01] ()
R3 LVUSBSta; C:\windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
S3 Netaapl; C:\windows\System32\DRIVERS\netaapl.sys [18432 2010-04-19] (Apple Inc.) [Datei ist nicht signiert]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18736 2015-10-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad32v.sys [44840 2015-08-11] (NVIDIA Corporation)
S3 pepifilter; C:\windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
S3 PID_PEPI; C:\windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
R3 seehcri; C:\windows\System32\DRIVERS\seehcri.sys [27632 2010-10-29] (Sony Ericsson Mobile Communications) [Datei ist nicht signiert]
S3 SipIMNDI; C:\windows\System32\DRIVERS\SipIMNDI.sys [24352 2009-10-15] (T-Systems International GmbH)
R0 sptd; C:\windows\System32\Drivers\sptd.sys [691696 2010-12-18] () [Datei ist nicht signiert]
S3 ssm_bus; C:\windows\System32\DRIVERS\ssm_bus.sys [58320 2005-08-30] (MCCI)
S3 ssm_mdfl; C:\windows\System32\DRIVERS\ssm_mdfl.sys [8336 2005-08-30] (MCCI)
S3 ssm_mdm; C:\windows\System32\DRIVERS\ssm_mdm.sys [94000 2005-08-30] (MCCI)
S3 t_mouse.sys; C:\windows\System32\DRIVERS\t_mouse.sys [5120 2012-12-19] ()
S3 USBAAPL; C:\windows\System32\Drivers\usbaapl.sys [41984 2011-02-18] (Apple, Inc.) [Datei ist nicht signiert]
S3 WacHidRouter; C:\windows\System32\DRIVERS\wachidrouter.sys [85304 2014-08-06] (Wacom Technology)
S3 wacomrouterfilter; C:\windows\System32\DRIVERS\wacomrouterfilter.sys [13112 2014-08-06] (Wacom Technology)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()
U3 a81o3iia; C:\windows\system32\Drivers\a81o3iia.sys [0 ] (Microsoft Corporation) <==== ACHTUNG (Null Byte Datei/Ordner)
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [X]
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S1 mvgordih; \??\C:\windows\system32\drivers\mvgordih.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
S3 wacommousefilter; system32\DRIVERS\wacommousefilter.sys [X]
S3 wacomvhid; system32\DRIVERS\wacomvhid.sys [X]
U2 wuaserv; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: ezGOSvc -> C:\windows\system32\ezGOSvc.dll ()
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-22 13:44 - 2015-11-22 13:45 - 00025228 _____ C:\Users\Denise\Desktop\FRST.txt
2015-11-22 13:11 - 2015-11-22 13:44 - 00000000 ____D C:\FRST
2015-11-22 13:09 - 2015-11-22 13:09 - 01716736 _____ (Farbar) C:\Users\Denise\Desktop\FRST.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-22 13:38 - 2009-12-05 00:54 - 01463998 _____ C:\windows\WindowsUpdate.log
2015-11-22 13:33 - 2009-07-14 05:34 - 00023552 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-22 13:33 - 2009-07-14 05:34 - 00023552 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-22 13:15 - 2009-07-26 21:06 - 01620684 _____ C:\windows\system32\PerfStringBackup.INI
2015-11-22 13:08 - 2012-04-09 11:28 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-11-22 13:00 - 2015-10-18 13:33 - 00000000 ____D C:\AdwCleaner
2015-11-22 12:55 - 2010-03-13 13:45 - 00000000 ____D C:\Program Files\Adobe
2015-11-22 12:52 - 2013-04-08 08:30 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-11-22 12:52 - 2012-11-22 14:34 - 00000000 ___RD C:\Program Files\Skype
2015-11-22 12:52 - 2010-08-05 14:06 - 00000000 ____D C:\ProgramData\Skype
2015-11-22 12:34 - 2010-03-13 13:44 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2015-11-22 12:32 - 2015-08-27 12:34 - 00005027 _____ C:\windows\setupact.log
2015-11-22 12:32 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2010-04-18 11:02 - 2009-09-24 08:55 - 1454213 _____ () C:\Program Files\wrar390d.exe
2011-11-01 17:10 - 2012-03-11 11:47 - 0005264 _____ () C:\Users\Denise\AppData\Roaming\mobile.trf
2011-06-21 09:52 - 2011-07-11 10:54 - 0000308 _____ () C:\Users\Denise\AppData\Roaming\Rim.Desktop.Exception.log
2011-05-27 14:12 - 2012-04-17 17:56 - 0003107 _____ () C:\Users\Denise\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2011-06-21 09:58 - 2012-01-26 12:21 - 0000308 _____ () C:\Users\Denise\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-01-02 16:38 - 2012-01-02 16:38 - 0000180 _____ () C:\Users\Denise\AppData\Roaming\SMSMMSConfig.txt
2010-04-27 18:36 - 2010-04-27 18:36 - 0000000 _____ () C:\Users\Denise\AppData\Roaming\wklnhst.dat
2011-11-01 17:00 - 2012-03-11 18:06 - 0009608 _____ () C:\Users\Denise\AppData\Roaming\WTGAddresses.dat
2011-11-15 20:47 - 2011-12-15 21:52 - 0000008 _____ () C:\Users\Denise\AppData\Roaming\WTGMMS.dat
2011-11-15 20:47 - 2011-12-15 21:52 - 0000008 _____ () C:\Users\Denise\AppData\Roaming\WTGMMSNotification.dat
2011-11-01 16:15 - 2011-11-01 17:00 - 0006552 _____ () C:\Users\Denise\AppData\Roaming\wtgoverride.wdb
2011-11-01 17:00 - 2012-03-11 18:06 - 0047950 _____ () C:\Users\Denise\AppData\Roaming\WTGSMS.dat
2011-06-21 09:54 - 2013-08-20 11:55 - 0017408 _____ () C:\Users\Denise\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-08 12:22 - 2015-07-08 12:22 - 0761791 _____ () C:\Users\Denise\AppData\Local\omesuperv2.exe
2014-11-20 18:28 - 2014-11-20 18:28 - 0000909 _____ () C:\Users\Denise\AppData\Local\recently-used.xbel
2010-08-05 14:32 - 2010-08-05 14:32 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2010-03-13 13:46 - 2009-08-17 06:54 - 0131368 _____ () C:\ProgramData\FullRemove.exe
2010-07-23 17:23 - 2010-07-23 18:14 - 0006265 _____ () C:\ProgramData\hpzinstall.log
2009-12-05 01:03 - 2009-12-05 01:03 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2009-12-05 01:01 - 2009-12-05 01:02 - 0000106 _____ () C:\ProgramData\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}.log
2009-12-05 00:57 - 2009-12-05 00:58 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-12-05 01:02 - 2009-12-05 01:03 - 0000110 _____ () C:\ProgramData\{B7A0CE06-068E-11D6-97FD-0050BACBF861}.log
2009-12-05 00:57 - 2009-12-05 00:57 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-12-05 00:58 - 2009-12-05 01:01 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
Einige Dateien in TEMP:
====================
C:\Users\Denise\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Denise\AppData\Local\Temp\SpotifyUninstall.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\windows\explorer.exe => Datei ist digital signiert
C:\windows\system32\winlogon.exe => Datei ist digital signiert
C:\windows\system32\wininit.exe => Datei ist digital signiert
C:\windows\system32\svchost.exe => Datei ist digital signiert
C:\windows\system32\services.exe => Datei ist digital signiert
C:\windows\system32\User32.dll => Datei ist digital signiert
C:\windows\system32\userinit.exe => Datei ist digital signiert
C:\windows\system32\rpcss.dll => Datei ist digital signiert
C:\windows\system32\dnsapi.dll
[2011-04-15 13:56] - [2015-09-18 06:51] - 0270336 ____A () D41D8CD98F00B204E9800998ECF8427E
C:\windows\system32\dnsapi.dll => kein Firmenname <===== ACHTUNG
C:\windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-10-18 08:51
==================== Ende vom FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:20-11-2015
durchgeführt von Denise (2015-11-22 13:45:45)
Gestartet von C:\Users\Denise\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2010-03-13 12:44:43)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1072828290-3828818215-1948454868-500 - Administrator - Disabled)
Denise (S-1-5-21-1072828290-3828818215-1948454868-1000 - Administrator - Enabled) => C:\Users\Denise
fbwuser01C8 (S-1-5-21-1072828290-3828818215-1948454868-1006 - Limited - Enabled)
fbwuserBCE0 (S-1-5-21-1072828290-3828818215-1948454868-1008 - Limited - Enabled)
fbwuserE33E (S-1-5-21-1072828290-3828818215-1948454868-1007 - Limited - Enabled)
Gast (S-1-5-21-1072828290-3828818215-1948454868-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-1072828290-3828818215-1948454868-1004 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 17.0.0.124 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe® Content Viewer (HKLM\...\com.adobe.dmp.contentviewer) (Version: 3.4.2 - Adobe Systems, Incorporated)
Atheros Client Installation Program (HKLM\...\{D1434266-0486-4469-B338-A60082CC04E1}) (Version: 1.0.1.0805 - Atheros)
Bamboo Dock (Version: 4.1.0 - Wacom Europe GmbH) Hidden
Bamboo Dock 3.3 (HKLM\...\Bamboo Dock) (Version: 3.3 - Wacom Co., Ltd.)
BatteryLifeExtender (HKLM\...\{853F8A41-A3C9-43FA-87FA-1AE74FC6F3F7}) (Version: 1.0.1 - Samsung)
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CyberLink DVD Suite (HKLM\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2806 - CyberLink Corp.)
CyberLink LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1916 - CyberLink Corp.)
CyberLink Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3108a - CyberLink Corp.)
CyberLink PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3213 - CyberLink Corp.)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.2815b - CyberLink Corp.)
CyberLink PowerProducer (HKLM\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.1.1812 - CyberLink Corp.)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3304 - CyberLink Corp.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Easy Network Manager (HKLM\...\{A5675A9E-F073-414A-9A04-F9BCD50459D7}) (Version: 4.2.6 - Samsung)
Easy SpeedUp Manager (HKLM\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 3.0.0.5 - Samsung Electronics Co.,Ltd.)
EasyBatteryManager (HKLM\...\{178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}) (Version: 4.0.0.3 - Samsung)
EasyBits GO (HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Game Organizer) (Version: - EasyBits Media)
Free Audio Converter version 5.0.22.128 (HKLM\...\Free Audio Converter_is1) (Version: 5.0.22.128 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.0.128 (HKLM\...\Free YouTube Download_is1) (Version: 3.2.0.128 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.0.128 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.0.128 - DVDVideoSoft Ltd.)
Game Pack (HKLM\...\{63eafc52-b963-4297-a7eb-d412944e7065}_is1) (Version: 5.3.0.10 - Oberon Media, Inc.)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 8 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
LAME v3.98.2 for Audacity (HKLM\...\LAME for Audacity_is1) (Version: - )
LPS 2009v 3.0 USB (HKLM\...\{BDBA9828-200B-43A0-AB4F-82DABEE64F94}_is1) (Version: LPS 2009v 3.0 USB - VVR)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.22.3.3 - Marvell)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Access 2003 Runtime (HKLM\...\{901C0407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 39.0 (x86 de) (HKLM\...\Mozilla Firefox 39.0 (x86 de)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla)
MPEG2 Codec(libmpeg2/mad) (HKLM\...\MPEG2 Codec(libmpeg2/mad)) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{81CD6232-10F5-4832-B3DA-1B88B1571031}) (Version: 7.02.5851 - Nero AG)
NVIDIA GeForce Experience 2.5.15.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.46 - NVIDIA Corporation)
NVIDIA Grafiktreiber 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenMG Secure Module 4.7.00 (HKLM\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) Hidden
Origin (HKLM\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
QuickTime (HKLM\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
RawTherapee Version 4.0.11 (HKLM\...\{128459AB-59A7-430A-8BD0-3D8803D50400}_is1) (Version: 4.0.11 - rawtherapee.com)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7404 - Realtek Semiconductor Corp.)
Reputation Advisor (HKLM\...\sysTPL 1.4.1.5) (Version: 1.4.1.5 - Tlapia) <==== ACHTUNG
RGSS-RTP Standard (HKLM\...\{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}) (Version: 1.0.0 - Enterbrain)
RTP for RM2K (Png, Wav, Midi, Fonts) (HKLM\...\RTP for RM2K (Png, Wav, Midi, Fonts)) (Version: - )
SAMSUNG CDMA Modem Driver Set (HKLM\...\SAMSUNG CDMA Modem) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Samsung PC Studio (Version: 3.0.0.60203 - Samsung Electronics Co., Ltd.) Hidden
Samsung PC Studio 3 USB Driver Installer (HKLM\...\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}) (Version: 1.00.0000 - Samsung Electronics Co., Ltd.)
Samsung Recovery Solution 4 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 4.0.0.6 - Samsung)
Samsung Support Center (HKLM\...\{CCC2B140-B47A-45FA-AAE3-BD60DA41AE00}) (Version: 1.0.21 - Samsung)
Samsung Update Plus (HKLM\...\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}) (Version: 2.0 - Samsung Electronics Co., Ltd.)
SHIELD Streaming (Version: 4.1.500 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.15.46 - NVIDIA Corporation) Hidden
SonicStage 4.3 (HKLM\...\{A0EB195B-5876-48E6-879D-33D4B2102610}) (Version: 4.3 - Sony Corporation)
Sony Ericsson Update Engine (HKLM\...\Update Engine) (Version: 2.13.6.201305161305 - Sony Ericsson Communications AB)
Steam (HKLM\...\Steam) (Version: - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.10.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uninstall 1.0.0.1 (HKLM\...\Uninstall_is1) (Version: - )
User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 1.0.3 (HKLM\...\VLC media player) (Version: 1.0.3 - VideoLAN Team)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.7 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.5 - Wacom Technology Corp.)
Winamp (nur entfernen) (HKLM\...\Winamp) (Version: - )
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\ProgramData\Skype Extras\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\ProgramData\Skype Extras\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{b2b568c8-3712-4a75-b806-4b3c2fdb06d5}\localserver32 -> C:\Users\Denise\AppData\Local\Temp\{e9513610-f218-4dda-b954-2c7e6ba7cabb}\IDriver.NonElevated.exe => (Der Dateneintrag hat 12 mehr Zeichen).
==================== Wiederherstellungspunkte =========================
18-10-2015 08:58:21 Wiederherstellungsvorgang
22-11-2015 12:49:50 Removed Skype™ 7.8
22-11-2015 12:52:57 Removed Adobe Photoshop Lightroom 5.5.
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0125262C-427A-4DFE-BB7B-A01F82677284} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-04-20] ()
Task: {0C0875BC-0A59-4F6C-845C-E2DCFA46AADC} - System32\Tasks\{77683F70-B2A3-423A-BA32-3539EEFE97FD} => C:\Program Files\Skype\Phone\Skype.exe
Task: {1F17BFD7-CFCD-4F08-9700-3A157E04441A} - System32\Tasks\EasySpeedUpManager => C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe [2009-10-13] (Samsung Electronics Co., Ltd.)
Task: {2748628F-A9EB-4010-94C1-1DED464FA34B} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2009-10-26] (SAMSUNG Electronics)
Task: {28118F91-F1F8-4886-8DDE-FDC81BFD3923} - System32\Tasks\{84B8F68B-3411-4A64-A517-B2D70055DC51} => C:\Program Files\Skype\\Phone\Skype.exe
Task: {2BEE9C2A-EAC7-4CC4-8026-1B7B32F55B48} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2009-10-16] (SAMSUNG Electronics co., LTD.)
Task: {2CC1AEB9-AC28-401D-A101-970B91511899} - System32\Tasks\{B750924D-E105-450D-99A8-262347CA436C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.5.0.124/de/go/help.faq.installer?LastError=1604
Task: {3DAFF145-E835-4F26-BF28-BF738E8A67B4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {5D55A96E-E90E-4B22-BB46-ACD2D20EAEC5} - System32\Tasks\Genius_Interval => C:\Users\Denise\AppData\Roaming\Genius\Genius.exe [2015-08-17] ()
Task: {66D914C6-7066-488B-999A-71725199C662} - System32\Tasks\{944669E5-57EB-4345-8984-E39585338637} => pcalua.exe -a "C:\Users\Denise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A4OKM3FQ\20101130-003-i32[1].exe" -d C:\Users\Denise\Desktop
Task: {6A6CCE9D-4827-41C6-B848-31534D6BF6D4} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-25] (Adobe Systems Incorporated)
Task: {6F306A86-1F31-4DC6-8B55-C2299A584090} - System32\Tasks\{3C6B1DA7-FE34-489E-A60C-A4F12465BDD1} => pcalua.exe -a C:\Users\Denise\Downloads\jxpiinstall.exe -d "C:\Program Files\Mozilla Firefox"
Task: {76EE0824-7352-4C6C-ACBB-2CFE1D990277} - System32\Tasks\{5A8300FC-306B-42C2-BF92-A08083115555} => pcalua.exe -a E:\RunSetup.exe -d E:\
Task: {77348CC6-E978-4140-BE67-F524EF7499CB} - System32\Tasks\{4A921841-116D-4180-B7FC-6D378D43E13D} => pcalua.exe -a E:\RunSetup.exe -d E:\
Task: {923AFCCA-19CA-4175-B4A6-0682580544E0} - System32\Tasks\{4C6C12B0-0D3D-4B96-8BD1-E1EC26827F61} => C:\Program Files\Skype\\Phone\Skype.exe
Task: {A8D63F98-436B-4454-8A21-5A41D4DB9BE9} - System32\Tasks\{A185E869-35A1-4000-A707-3E3B3F9A74A0} => pcalua.exe -a "C:\Program Files\EA GAMES\Die Sims 2 Deluxe\EP2\CSBin\PackageInstaller.exe" -d "C:\Program Files\Mozilla Firefox" -c "C:\Users\Denise\AppData\Local\Temp\Victorian Elegance.Sims2Pack"
Task: {AA57E286-DE28-4947-9020-4F898DFF0566} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1072828290-3828818215-1948454868-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {AC68A262-7B00-44F1-9D7A-D657B4C6FF65} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {BDBAC32E-C087-4BF1-A434-256D535D1935} - System32\Tasks\Genius => C:\Users\Denise\AppData\Roaming\Genius\Genius.exe [2015-08-17] () <==== ACHTUNG
Task: {C5521848-C645-436A-9BCC-46ADB8A42C14} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19] (Samsung Electronics. Co. Ltd.)
Task: {CEFF83D6-CCB4-4705-A77E-4F507FAC5A67} - System32\Tasks\{6BE42DC9-379E-4AF9-A326-CFF9D069766A} => pcalua.exe -a E:\setup.exe -d E:\
Task: {D6323718-D6F4-4835-B531-77E2AF730D98} - System32\Tasks\Trojan Killer => C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe
Task: {DC571846-99C7-433D-BF77-54A9FF587F83} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2010-01-19] (SEC)
Task: {EAF88417-F062-4A34-8717-3BED50A2B750} - System32\Tasks\{ED001293-CFE2-44A6-BA5C-848DAB474DD0} => pcalua.exe -a "C:\Program Files\Samsung Casual Games\Go-Go Gourmet\Uninstall.exe" -c "C:\Program Files\Samsung Casual Games\Go-Go Gourmet\install.log"
Task: {F31F4939-9458-4471-8E2B-88C1283793A6} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1072828290-3828818215-1948454868-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2011-04-15 13:56 - 2015-09-18 06:51 - 00270336 _____ () C:\windows\system32\DNSAPI.dll
2011-04-15 13:56 - 2015-09-18 06:51 - 00270336 _____ () c:\windows\system32\DNSAPI.dll
2015-02-25 21:14 - 2015-02-04 03:05 - 00106640 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2011-04-15 13:56 - 2015-09-18 06:51 - 00270336 _____ () C:\windows\System32\DNSAPI.dll
2011-06-20 19:34 - 2011-06-12 12:55 - 00073600 _____ () c:\windows\system32\ezgosvc.dll
2010-03-13 13:47 - 2009-08-13 21:58 - 00044312 _____ () C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
2009-12-05 01:00 - 2009-07-07 19:23 - 00247152 ____N () C:\Program Files\CyberLink\Shared files\RichVideo.exe
2011-03-14 13:57 - 2014-08-19 20:12 - 01019672 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
2015-04-01 19:39 - 2015-10-04 09:24 - 00012080 _____ () C:\Program Files\NVIDIA Corporation\Update Core\detoured.dll
2014-05-23 01:10 - 2014-05-23 01:10 - 00693920 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll
2010-04-18 11:05 - 2009-08-16 16:06 - 00141312 _____ () C:\Program Files\WinRAR\rarext.dll
2009-06-03 12:59 - 2009-06-03 12:59 - 00619816 ____N () C:\Program Files\CyberLink\Power2Go\CLMediaLibrary.dll
2009-06-03 12:59 - 2009-06-03 12:59 - 00013096 ____N () C:\Program Files\CyberLink\Power2Go\CLMLSvcPS.dll
2010-07-28 22:58 - 2014-11-20 09:06 - 00646744 _____ () C:\Program Files\Bamboo Dock\BambooCore.exe
2003-04-17 07:54 - 2003-04-17 07:54 - 00012288 _____ () C:\Program Files\Winamp\winampa.exe
2014-05-26 04:52 - 2014-05-26 04:52 - 32733088 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\HEX\libcef.dll
2014-05-23 01:10 - 2014-05-23 01:10 - 05341856 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2014-05-12 21:22 - 2014-05-12 21:22 - 02217128 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\ExManZxpSign.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:A42A9F39
AlternateDataStreams: C:\ProgramData\Temp:ABE89FFE
AlternateDataStreams: C:\ProgramData\Temp:BC359956
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D
AlternateDataStreams: C:\Users\Denise\Desktop\IMG_2589fertig.jpg:com.dropbox.attributes
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{80763932-6272-4EC3-922F-91E8FFCFF411}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR.EXE
FirewallRules: [{1B4A8D63-D7D1-415C-803A-98E0DFD28F92}] => (Allow) C:\Program Files\CyberLink\PowerDVD8\PowerDVD8.EXE
FirewallRules: [{2ECD0310-FA77-4FC9-92BA-C88211C2541B}] => (Allow) svchost.exe
FirewallRules: [{633D5160-7155-4043-8CAF-96CB23B39FD2}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{0CE838CB-9BBE-4349-BB06-DFBD6A808828}] => (Allow) LPort=4481
FirewallRules: [{2180A482-9630-4E2F-82DA-5C72699BCE0A}] => (Allow) LPort=4481
FirewallRules: [{9F6E8EB7-6FB3-4A92-9D9C-04EF5914F432}] => (Allow) LPort=4482
FirewallRules: [{B5BE4872-11E6-4E5E-9CA1-7CC6C74C58E5}] => (Allow) LPort=4482
FirewallRules: [{6F909844-BB20-40E0-81B3-4B12C2D0BE54}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9F246357-8DCE-4BA1-A55E-1EFB85B07125}] => (Allow) LPort=2869
FirewallRules: [{613B0BD8-E42A-4F3B-BBDE-0BEF819D8489}] => (Allow) LPort=1900
FirewallRules: [{E89796A6-38F1-4DBD-819B-2B40F77ED89C}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{6CEB2B97-13EB-467D-B703-628876C9D511}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{527EC58B-EC2B-42AC-94AB-E5A7C276622E}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{444A1476-A7B6-4418-934F-F1D4D8AFE561}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{E1E3BB11-C1FE-4D15-A524-E9D069A3C39E}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{F6797D73-4DF6-433B-A766-9C4454B6A975}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{F0DE6D99-195B-4344-A991-9DCF02A1F941}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{D09C0081-C6E4-45BA-AA76-58DDFE24CEF2}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{37A97BB5-789D-42AE-A7E0-162FCB81AA0F}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{52638EE3-8914-4932-B0DB-92BBBB3F992C}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{286D7930-A45E-4D5F-BB3F-0771995B825D}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{6B4F4303-DA4D-41A1-A52B-B60440E15B31}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{417D3A6D-E34D-4A61-A1FB-F5BF712B167C}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{55F4E51F-5690-43EA-BBD1-B5281C832641}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{E722ACE8-371A-4CB6-B6E2-BAA391D37221}] => (Allow) C:\Users\Denise\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{B5EB9715-5C0E-4D05-8C4A-24CF26367082}] => (Allow) C:\Users\Denise\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{A11B07C1-76D5-4AD6-82E5-EEFF0DA01AA3}C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{2FA9A431-CF1D-47CC-8261-5C664011D66F}C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{014963E3-F16F-44D0-B3CD-097089958639}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{7AC0F6CA-DC84-4356-B3CB-AEE83736B907}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{2AAFA724-3E9C-43EE-A5FB-658C6F7DC093}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{117BFE89-2975-4275-9DCA-5A97932B5A6E}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [TCP Query User{D8AB2B32-B7D7-4970-90B3-F47032151FEB}C:\users\denise\downloads\remotecontrolserver.exe] => (Allow) C:\users\denise\downloads\remotecontrolserver.exe
FirewallRules: [UDP Query User{DBA93071-C46D-4796-AD4F-5FEC4791510E}C:\users\denise\downloads\remotecontrolserver.exe] => (Allow) C:\users\denise\downloads\remotecontrolserver.exe
FirewallRules: [{956267F8-A470-479D-B88B-E895A54337AF}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{2E69A59B-ADB3-4887-B700-4103B19D2786}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{897A7DFF-26A6-4DE8-A55B-4B684D739469}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{FAD963BC-B554-4BB1-910E-FE3BA39522F2}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{84DD2A37-2FC4-4F49-AEC0-FD6013B816EF}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [{AB929B3D-09D2-4DAF-903F-D9D6FCFCF271}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{75D332C6-B7E9-4FEF-AE8B-42A56F5DC98E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3847EB80-4EB5-472C-B257-7030CF957EEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{54806E36-CA94-400C-AC19-201AE17B1DC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{0197331E-5166-4E0E-A130-FBCB2BC5965F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{6538BD51-6C13-49E8-930D-590B218A7025}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{8ACE36A0-D9EA-40AF-B50C-859AA95FE5A6}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{86312056-6F97-49E2-9260-60FD30E8EA4D}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{448DB76F-CA05-472C-8879-AF45B332A7F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FCFAB0B9-2DD4-4469-B028-9FABA11B64A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C3ED60B3-021A-4C1B-8710-0BF122E69CBE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4DC07AA8-F009-450B-AA74-797C7B3679AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0B657F6F-74AB-4FB5-BE99-13C500E48232}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/22/2015 00:58:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: CompatTelRunner.exe, Version: 10.0.10208.0, Zeitstempel: 0x55b60451
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18939, Zeitstempel: 0x55afd7a8
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00032228
ID des fehlerhaften Prozesses: 0x10c4
Startzeit der fehlerhaften Anwendung: 0xCompatTelRunner.exe0
Pfad der fehlerhaften Anwendung: CompatTelRunner.exe1
Pfad des fehlerhaften Moduls: CompatTelRunner.exe2
Berichtskennung: CompatTelRunner.exe3
Error: (10/18/2015 01:44:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Name des fehlerhaften Moduls: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Ausnahmecode: 0x40000015
Fehleroffset: 0x00052d24
ID des fehlerhaften Prozesses: 0x80c
Startzeit der fehlerhaften Anwendung: 0xjucheck.exe0
Pfad der fehlerhaften Anwendung: jucheck.exe1
Pfad des fehlerhaften Moduls: jucheck.exe2
Berichtskennung: jucheck.exe3
Error: (10/18/2015 01:26:22 PM) (Source: WTabletServiceCon) (EventID: 1) (User: )
Description: Prefs: Failed to get user path
Error: (10/17/2015 09:20:03 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Fehler bei der Windows-Lizenzaktivierung. Fehler 0x00000000.
Error: (10/17/2015 09:20:03 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
0x8007043C
Error: (10/17/2015 09:04:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Name des fehlerhaften Moduls: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Ausnahmecode: 0x40000015
Fehleroffset: 0x00052d24
ID des fehlerhaften Prozesses: 0x948
Startzeit der fehlerhaften Anwendung: 0xjucheck.exe0
Pfad der fehlerhaften Anwendung: jucheck.exe1
Pfad des fehlerhaften Moduls: jucheck.exe2
Berichtskennung: jucheck.exe3
Error: (10/17/2015 09:01:10 AM) (Source: WTabletServiceCon) (EventID: 1) (User: )
Description: Prefs: Failed to get user path
Error: (10/17/2015 09:00:10 AM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Fehler bei der Installation des Kaufnachweises. 0x80070005
Teil-Pkey=2BT4J
ACID=?
Genauer Fehler[?]
Error: (10/08/2015 11:46:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AitStatic.exe, Version: 10.0.10004.0, Zeitstempel: 0x54c64d23
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18847, Zeitstempel: 0x554d7b00
Ausnahmecode: 0xc000000d
Fehleroffset: 0x0000812f
ID des fehlerhaften Prozesses: 0x1988
Startzeit der fehlerhaften Anwendung: 0xAitStatic.exe0
Pfad der fehlerhaften Anwendung: AitStatic.exe1
Pfad des fehlerhaften Moduls: AitStatic.exe2
Berichtskennung: AitStatic.exe3
Error: (10/08/2015 11:46:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AitStatic.exe, Version: 10.0.10004.0, Zeitstempel: 0x54c64d23
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18847, Zeitstempel: 0x554d7b00
Ausnahmecode: 0xc000000d
Fehleroffset: 0x0000812f
ID des fehlerhaften Prozesses: 0x1bc4
Startzeit der fehlerhaften Anwendung: 0xAitStatic.exe0
Pfad der fehlerhaften Anwendung: AitStatic.exe1
Pfad des fehlerhaften Moduls: AitStatic.exe2
Berichtskennung: AitStatic.exe3
Systemfehler:
=============
Error: (11/22/2015 01:26:34 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {ACC034BD-7413-4569-A624-5DA4F33B8698}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {ACC034BD-7413-4569-A624-5DA4F33B8698}1
Aktionsstatus: {ACC034BD-7413-4569-A624-5DA4F33B8698}8
Fehlercode: {ACC034BD-7413-4569-A624-5DA4F33B8698}3
Fehlerbeschreibung: {ACC034BD-7413-4569-A624-5DA4F33B8698}4
Signaturversion: 2015-11-22T12:25:56.090Z1
Modulversion: 2015-11-22T12:25:56.090Z2
Error: (11/22/2015 01:25:47 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {A6EED6B8-7415-4231-B4DC-F24D49231C72}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {A6EED6B8-7415-4231-B4DC-F24D49231C72}1
Aktionsstatus: {A6EED6B8-7415-4231-B4DC-F24D49231C72}8
Fehlercode: {A6EED6B8-7415-4231-B4DC-F24D49231C72}3
Fehlerbeschreibung: {A6EED6B8-7415-4231-B4DC-F24D49231C72}4
Signaturversion: 2015-11-22T12:04:52.220Z1
Modulversion: 2015-11-22T12:04:52.220Z2
Error: (11/22/2015 01:04:52 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {99FACF3E-3A12-4BF2-9443-02FAEF0A9BBA}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {99FACF3E-3A12-4BF2-9443-02FAEF0A9BBA}1
Aktionsstatus: {99FACF3E-3A12-4BF2-9443-02FAEF0A9BBA}8
Fehlercode: {99FACF3E-3A12-4BF2-9443-02FAEF0A9BBA}3
Fehlerbeschreibung: {99FACF3E-3A12-4BF2-9443-02FAEF0A9BBA}4
Signaturversion: 2015-11-22T12:04:17.604Z1
Modulversion: 2015-11-22T12:04:17.604Z2
Error: (11/22/2015 01:04:03 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {0B52AD21-4F86-4AD2-9278-0A30DEC2AACE}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {0B52AD21-4F86-4AD2-9278-0A30DEC2AACE}1
Aktionsstatus: {0B52AD21-4F86-4AD2-9278-0A30DEC2AACE}8
Fehlercode: {0B52AD21-4F86-4AD2-9278-0A30DEC2AACE}3
Fehlerbeschreibung: {0B52AD21-4F86-4AD2-9278-0A30DEC2AACE}4
Signaturversion: 2015-11-22T12:03:25.359Z1
Modulversion: 2015-11-22T12:03:25.359Z2
Error: (11/22/2015 01:03:25 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {18AFEC98-9E11-4A89-9C05-2CF827A8B145}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {18AFEC98-9E11-4A89-9C05-2CF827A8B145}1
Aktionsstatus: {18AFEC98-9E11-4A89-9C05-2CF827A8B145}8
Fehlercode: {18AFEC98-9E11-4A89-9C05-2CF827A8B145}3
Fehlerbeschreibung: {18AFEC98-9E11-4A89-9C05-2CF827A8B145}4
Signaturversion: 2015-11-22T12:02:37.514Z1
Modulversion: 2015-11-22T12:02:37.514Z2
Error: (11/22/2015 01:02:55 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {D9D25097-7A28-48FE-9A59-1E07F418F900}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {D9D25097-7A28-48FE-9A59-1E07F418F900}1
Aktionsstatus: {D9D25097-7A28-48FE-9A59-1E07F418F900}8
Fehlercode: {D9D25097-7A28-48FE-9A59-1E07F418F900}3
Fehlerbeschreibung: {D9D25097-7A28-48FE-9A59-1E07F418F900}4
Signaturversion: 2015-11-22T11:36:55.950Z1
Modulversion: 2015-11-22T11:36:55.950Z2
Error: (11/22/2015 00:47:25 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 115.25.0.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/22/2015 00:36:55 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {7593A48B-AC2A-4133-A256-5DC3BF5A262B}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {7593A48B-AC2A-4133-A256-5DC3BF5A262B}1
Aktionsstatus: {7593A48B-AC2A-4133-A256-5DC3BF5A262B}8
Fehlercode: {7593A48B-AC2A-4133-A256-5DC3BF5A262B}3
Fehlerbeschreibung: {7593A48B-AC2A-4133-A256-5DC3BF5A262B}4
Signaturversion: 2015-11-22T11:36:08.838Z1
Modulversion: 2015-11-22T11:36:08.838Z2
Error: (11/22/2015 00:36:08 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {53A0CC11-4561-47D5-82ED-991B51CF35DB}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {53A0CC11-4561-47D5-82ED-991B51CF35DB}1
Aktionsstatus: {53A0CC11-4561-47D5-82ED-991B51CF35DB}8
Fehlercode: {53A0CC11-4561-47D5-82ED-991B51CF35DB}3
Fehlerbeschreibung: {53A0CC11-4561-47D5-82ED-991B51CF35DB}4
Signaturversion: 2015-11-22T11:33:27.929Z1
Modulversion: 2015-11-22T11:33:27.929Z2
Error: (11/22/2015 00:33:27 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {31324EFE-4072-446C-B8B2-23E1B573DA49}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {31324EFE-4072-446C-B8B2-23E1B573DA49}1
Aktionsstatus: {31324EFE-4072-446C-B8B2-23E1B573DA49}8
Fehlercode: {31324EFE-4072-446C-B8B2-23E1B573DA49}3
Fehlerbeschreibung: {31324EFE-4072-446C-B8B2-23E1B573DA49}4
Signaturversion: 2015-11-22T11:32:43.864Z1
Modulversion: 2015-11-22T11:32:43.864Z2
CodeIntegrity:
===================================
Date: 2014-02-04 23:11:25.411
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-03 10:21:01.710
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-02 13:57:26.418
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-02 13:28:30.840
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 20:34:10.497
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 20:25:55.905
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 10:23:03.700
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 09:40:10.678
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 09:31:11.760
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-29 13:00:46.224
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T6600 @ 2.20GHz
Prozentuale Nutzung des RAM: 45%
Installierter physikalischer RAM: 3036.61 MB
Verfügbarer physikalischer RAM: 1646.12 MB
Summe virtueller Speicher: 6069.48 MB
Verfügbarer virtueller Speicher: 4750.12 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:141.49 GB) (Free:13.26 GB) NTFS
Drive d: () (Fixed) (Total:141.5 GB) (Free:73.16 GB) NTFS
Drive g: (1 GB) (Removable) (Total:0.91 GB) (Free:0.29 GB) FAT
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 711561A4)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=141.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=141.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 930 MB) (Disk ID: B7B9F347)
Partition 1: (Active) - (Size=930 MB) - (Type=06)
==================== Ende vom Addition.txt ============================
|
|
23.11.2015, 13:46
| #6 |
| | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Und zu guter letzter Logdatei von TDSS-Killer Code:
ATTFilter 13:21:59.0625 0x0d0c TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
13:22:04.0913 0x0d0c ============================================================
13:22:04.0913 0x0d0c Current date / time: 2015/11/23 13:22:04.0913
13:22:04.0913 0x0d0c SystemInfo:
13:22:04.0913 0x0d0c
13:22:04.0913 0x0d0c OS Version: 6.1.7601 ServicePack: 1.0
13:22:04.0913 0x0d0c Product type: Workstation
13:22:04.0913 0x0d0c ComputerName: DENISE-PC
13:22:04.0913 0x0d0c UserName: Denise
13:22:04.0913 0x0d0c Windows directory: C:\windows
13:22:04.0913 0x0d0c System windows directory: C:\windows
13:22:04.0913 0x0d0c Processor architecture: Intel x86
13:22:04.0913 0x0d0c Number of processors: 2
13:22:04.0913 0x0d0c Page size: 0x1000
13:22:04.0913 0x0d0c Boot type: Normal boot
13:22:04.0913 0x0d0c ============================================================
13:22:06.0145 0x0d0c KLMD registered as C:\windows\system32\drivers\26756205.sys
13:22:07.0549 0x0d0c System UUID: {06B41997-4C25-E5A3-444A-405D4CA0650F}
13:22:08.0595 0x0d0c Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:22:08.0595 0x0d0c Drive \Device\Harddisk1\DR3 - Size: 0x3A200000 ( 0.91 Gb ), SectorSize: 0x200, Cylinders: 0x76, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:22:08.0595 0x0d0c ============================================================
13:22:08.0595 0x0d0c \Device\Harddisk0\DR0:
13:22:08.0595 0x0d0c MBR partitions:
13:22:08.0595 0x0d0c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000
13:22:08.0595 0x0d0c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x11AFD000
13:22:08.0595 0x0d0c \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1392F800, BlocksNum 0x11AFE800
13:22:08.0595 0x0d0c \Device\Harddisk1\DR3:
13:22:08.0595 0x0d0c MBR partitions:
13:22:08.0595 0x0d0c \Device\Harddisk1\DR3\Partition1: MBR, Type 0x6, StartLBA 0x108, BlocksNum 0x1D0EF8
13:22:08.0595 0x0d0c ============================================================
13:22:08.0641 0x0d0c C: <-> \Device\Harddisk0\DR0\Partition2
13:22:08.0688 0x0d0c D: <-> \Device\Harddisk0\DR0\Partition3
13:22:08.0688 0x0d0c ============================================================
13:22:08.0688 0x0d0c Initialize success
13:22:08.0688 0x0d0c ============================================================
13:23:00.0621 0x0660 ============================================================
13:23:00.0621 0x0660 Scan started
13:23:00.0621 0x0660 Mode: Manual; SigCheck; TDLFS;
13:23:00.0621 0x0660 ============================================================
13:23:00.0621 0x0660 KSN ping started
13:23:00.0730 0x0660 KSN ping finished: false
13:23:01.0760 0x0660 ================ Scan system memory ========================
13:23:01.0760 0x0660 System memory - ok
13:23:01.0760 0x0660 ================ Scan services =============================
13:23:01.0962 0x0660 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
13:23:02.0087 0x0660 1394ohci - ok
13:23:02.0150 0x0660 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\windows\system32\drivers\ACPI.sys
13:23:02.0181 0x0660 ACPI - ok
13:23:02.0196 0x0660 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
13:23:02.0243 0x0660 AcpiPmi - ok
13:23:02.0399 0x0660 [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
13:23:02.0430 0x0660 AdobeARMservice - ok
13:23:02.0508 0x0660 [ C6D147C12C424373B016C0AB0A6C61EB, 043D44F3C942CFC3558E782938C26849BF648A58A7AA62C4A526E37DE4136C27 ] AdobeFlashPlayerUpdateSvc C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
13:23:02.0540 0x0660 AdobeFlashPlayerUpdateSvc - ok
13:23:02.0586 0x0660 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
13:23:02.0633 0x0660 adp94xx - ok
13:23:02.0649 0x0660 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
13:23:02.0680 0x0660 adpahci - ok
13:23:02.0696 0x0660 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
13:23:02.0727 0x0660 adpu320 - ok
13:23:02.0774 0x0660 [ 12E6A172D72AFC626727B8635DD17E39, 33B3D109C39DF6EA86AFC3C89A93657906E981D3D22FF854401BC7326990CC08 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
13:23:02.0805 0x0660 AeLookupSvc - ok
13:23:02.0867 0x0660 [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] AFD C:\windows\system32\drivers\afd.sys
13:23:02.0914 0x0660 AFD - ok
13:23:02.0961 0x0660 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\windows\system32\drivers\agp440.sys
13:23:02.0976 0x0660 agp440 - ok
13:23:03.0008 0x0660 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\windows\system32\DRIVERS\djsvs.sys
13:23:03.0023 0x0660 aic78xx - ok
13:23:03.0054 0x0660 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\windows\System32\alg.exe
13:23:03.0086 0x0660 ALG - ok
13:23:03.0117 0x0660 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\windows\system32\drivers\aliide.sys
13:23:03.0148 0x0660 aliide - ok
13:23:03.0164 0x0660 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\windows\system32\drivers\amdagp.sys
13:23:03.0195 0x0660 amdagp - ok
13:23:03.0242 0x0660 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\windows\system32\drivers\amdide.sys
13:23:03.0273 0x0660 amdide - ok
13:23:03.0320 0x0660 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
13:23:03.0335 0x0660 AmdK8 - ok
13:23:03.0351 0x0660 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
13:23:03.0382 0x0660 AmdPPM - ok
13:23:03.0429 0x0660 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\windows\system32\drivers\amdsata.sys
13:23:03.0444 0x0660 amdsata - ok
13:23:03.0476 0x0660 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
13:23:03.0507 0x0660 amdsbs - ok
13:23:03.0522 0x0660 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\windows\system32\drivers\amdxata.sys
13:23:03.0538 0x0660 amdxata - ok
13:23:03.0585 0x0660 [ C532028F7EFF8831BE6B5E3C417E07FA, 9D3C91F4DE0456F2BD4BAB044A3281F895A8EBF259F15E3BA6299965F5B8ABED ] AppID C:\windows\system32\drivers\appid.sys
13:23:03.0632 0x0660 AppID - ok
13:23:03.0678 0x0660 [ 7A152F43A6B25D63D1279511258FE381, 416B592DAB9ECA4AEBD336F35AC622FA240E229F31BFB52E6084BAA48CC6F397 ] AppIDSvc C:\windows\System32\appidsvc.dll
13:23:03.0694 0x0660 AppIDSvc - ok
13:23:03.0725 0x0660 [ 133A7896E643D139443B47FDBFA327C7, 371FC602B531DF1EFDCEEC3A2F5497A0D0BE7F558B0583F572862C69A65BD454 ] Appinfo C:\windows\System32\appinfo.dll
13:23:03.0756 0x0660 Appinfo - ok
13:23:03.0772 0x0660 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\windows\system32\DRIVERS\arc.sys
13:23:03.0803 0x0660 arc - ok
13:23:03.0819 0x0660 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
13:23:03.0850 0x0660 arcsas - ok
13:23:04.0006 0x0660 [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
13:23:04.0037 0x0660 aspnet_state - ok
13:23:04.0053 0x0660 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
13:23:04.0100 0x0660 AsyncMac - ok
13:23:04.0131 0x0660 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\windows\system32\drivers\atapi.sys
13:23:04.0162 0x0660 atapi - ok
13:23:04.0318 0x0660 [ 49F17A2E79469BE6581D491706720671, C6D1497847286A0C63779B27F730526235250D2113B4BED66AF630DC1CF22527 ] athr C:\windows\system32\DRIVERS\athr.sys
13:23:04.0427 0x0660 athr - detected UnsignedFile.Multi.Generic ( 1 )
13:23:04.0583 0x0660 athr ( UnsignedFile.Multi.Generic ) - warning
13:23:04.0630 0x0660 [ 547F07839F71A4357A5E503646CAC2B0, 05FF433B76D5DB40C073F84565D037436DA94B85ABFF1FC84F1468F6EB19C03D ] atksgt C:\windows\system32\DRIVERS\atksgt.sys
13:23:04.0661 0x0660 atksgt - ok
13:23:04.0724 0x0660 [ C1619A13B10CAC5038BF7129F57D8DE3, 9F71EA6C844650658938E68CCC1383F92D37C68E46E08461A8351491185BA791 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:23:04.0770 0x0660 AudioEndpointBuilder - ok
13:23:04.0786 0x0660 [ C1619A13B10CAC5038BF7129F57D8DE3, 9F71EA6C844650658938E68CCC1383F92D37C68E46E08461A8351491185BA791 ] Audiosrv C:\windows\System32\Audiosrv.dll
13:23:04.0833 0x0660 Audiosrv - ok
13:23:04.0895 0x0660 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\windows\System32\AxInstSV.dll
13:23:04.0926 0x0660 AxInstSV - ok
13:23:04.0973 0x0660 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\windows\system32\DRIVERS\bxvbdx.sys
13:23:05.0020 0x0660 b06bdrv - ok
13:23:05.0067 0x0660 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\windows\system32\DRIVERS\b57nd60x.sys
13:23:05.0098 0x0660 b57nd60x - ok
13:23:05.0145 0x0660 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\windows\System32\bdesvc.dll
13:23:05.0176 0x0660 BDESVC - ok
13:23:05.0192 0x0660 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\windows\system32\drivers\Beep.sys
13:23:05.0238 0x0660 Beep - ok
13:23:05.0316 0x0660 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\windows\System32\bfe.dll
13:23:05.0379 0x0660 BFE - ok
13:23:05.0472 0x0660 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\windows\System32\qmgr.dll
13:23:05.0535 0x0660 BITS - ok
13:23:05.0566 0x0660 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
13:23:05.0597 0x0660 blbdrive - ok
13:23:05.0644 0x0660 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\windows\system32\DRIVERS\bowser.sys
13:23:05.0675 0x0660 bowser - ok
13:23:05.0691 0x0660 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
13:23:05.0738 0x0660 BrFiltLo - ok
13:23:05.0769 0x0660 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
13:23:05.0800 0x0660 BrFiltUp - ok
13:23:05.0847 0x0660 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\windows\System32\browser.dll
13:23:05.0878 0x0660 Browser - ok
13:23:05.0925 0x0660 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\windows\System32\Drivers\Brserid.sys
13:23:05.0956 0x0660 Brserid - ok
13:23:05.0987 0x0660 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
13:23:06.0018 0x0660 BrSerWdm - ok
13:23:06.0034 0x0660 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
13:23:06.0065 0x0660 BrUsbMdm - ok
13:23:06.0096 0x0660 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
13:23:06.0112 0x0660 BrUsbSer - ok
13:23:06.0143 0x0660 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
13:23:06.0174 0x0660 BTHMODEM - ok
13:23:06.0221 0x0660 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\windows\system32\bthserv.dll
13:23:06.0268 0x0660 bthserv - ok
13:23:06.0299 0x0660 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
13:23:06.0346 0x0660 cdfs - ok
13:23:06.0393 0x0660 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
13:23:06.0424 0x0660 cdrom - ok
13:23:06.0486 0x0660 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\windows\System32\certprop.dll
13:23:06.0549 0x0660 CertPropSvc - ok
13:23:06.0580 0x0660 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\windows\system32\DRIVERS\circlass.sys
13:23:06.0611 0x0660 circlass - ok
13:23:06.0658 0x0660 [ 33A60554882FDF59CDA3E1806370BBA1, 3DE5451E1CB84AAEBD03F54BEFC670C401447B4881A8B022748B6ECF0F500F01 ] CLFS C:\windows\system32\CLFS.sys
13:23:06.0705 0x0660 CLFS - ok
13:23:06.0752 0x0660 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:23:06.0767 0x0660 clr_optimization_v2.0.50727_32 - ok
13:23:06.0814 0x0660 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:23:06.0861 0x0660 clr_optimization_v4.0.30319_32 - ok
13:23:06.0876 0x0660 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
13:23:06.0892 0x0660 CmBatt - ok
13:23:06.0954 0x0660 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\windows\system32\drivers\cmdide.sys
13:23:06.0986 0x0660 cmdide - ok
13:23:07.0110 0x0660 [ 3051724F223EA48968B19567DE2A81F4, DCC27DE1B2B35866FC6DBDE95A368E7D0D346B6C3F31D0BACA63DD39B0A8874E ] CNG C:\windows\system32\Drivers\cng.sys
13:23:07.0157 0x0660 CNG - ok
13:23:07.0188 0x0660 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
13:23:07.0220 0x0660 Compbatt - ok
13:23:07.0266 0x0660 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
13:23:07.0298 0x0660 CompositeBus - ok
13:23:07.0313 0x0660 COMSysApp - ok
13:23:07.0376 0x0660 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
13:23:07.0391 0x0660 crcdisk - ok
13:23:07.0454 0x0660 [ 33F67BBCC3C0499D3F3382473114CFA8, FDDCC41CE005B7C1BEBB6F4ACA9A3F10E5972792ADFD7D294E70A0B781460981 ] CryptSvc C:\windows\system32\cryptsvc.dll
13:23:07.0485 0x0660 CryptSvc - ok
13:23:07.0563 0x0660 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\windows\system32\rpcss.dll
13:23:07.0625 0x0660 DcomLaunch - ok
13:23:07.0672 0x0660 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\windows\System32\defragsvc.dll
13:23:07.0719 0x0660 defragsvc - ok
13:23:07.0766 0x0660 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\windows\system32\Drivers\dfsc.sys
13:23:07.0812 0x0660 DfsC - ok
13:23:07.0844 0x0660 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\windows\system32\dhcpcore.dll
13:23:07.0890 0x0660 Dhcp - ok
13:23:08.0046 0x0660 [ 0A3386E3CF9C5D089D695AC5A35F4C6F, D610071493EB95FCE39E24C457A0B5BBA131193159E43FDC1E8EDABB9C7AB81A ] DiagTrack C:\windows\system32\diagtrack.dll
13:23:08.0109 0x0660 DiagTrack - ok
13:23:08.0156 0x0660 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\windows\system32\drivers\discache.sys
13:23:08.0202 0x0660 discache - ok
13:23:08.0249 0x0660 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\windows\system32\DRIVERS\disk.sys
13:23:08.0280 0x0660 Disk - ok
13:23:08.0327 0x0660 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\windows\System32\dnsrslvr.dll
13:23:08.0358 0x0660 Dnscache - ok
13:23:08.0421 0x0660 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\windows\System32\dot3svc.dll
13:23:08.0483 0x0660 dot3svc - ok
13:23:08.0530 0x0660 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\windows\system32\dps.dll
13:23:08.0592 0x0660 DPS - ok
13:23:08.0639 0x0660 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\windows\system32\drivers\drmkaud.sys
13:23:08.0733 0x0660 drmkaud - ok
13:23:08.0811 0x0660 [ 3583A5A8CC2E682BFFBD4630D0FEC08B, FD0F184B358FCECAA763444B414074BEF4E871EB7527D88385519FC158435C72 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
13:23:08.0873 0x0660 DXGKrnl - ok
13:23:08.0889 0x0660 EagleXNt - ok
13:23:08.0936 0x0660 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\windows\System32\eapsvc.dll
13:23:08.0982 0x0660 EapHost - ok
13:23:09.0185 0x0660 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\windows\system32\DRIVERS\evbdx.sys
13:23:09.0357 0x0660 ebdrv - ok
13:23:09.0419 0x0660 [ 88142648ED929E6D2178CC3B8C13C00F, 7E6B6B2CF61C56FBF8F2A96BDA2E9506467A9A883BFD3BEA78A4F500851E76DB ] EFS C:\windows\System32\lsass.exe
13:23:09.0466 0x0660 EFS - ok
13:23:09.0560 0x0660 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\windows\ehome\ehRecvr.exe
13:23:09.0606 0x0660 ehRecvr - ok
13:23:09.0653 0x0660 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\windows\ehome\ehsched.exe
13:23:09.0684 0x0660 ehSched - ok
13:23:09.0731 0x0660 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
13:23:09.0778 0x0660 elxstor - ok
13:23:09.0825 0x0660 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\windows\system32\drivers\errdev.sys
13:23:09.0856 0x0660 ErrDev - ok
13:23:09.0934 0x0660 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\windows\system32\es.dll
13:23:09.0981 0x0660 EventSystem - ok
13:23:10.0012 0x0660 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\windows\system32\drivers\exfat.sys
13:23:10.0074 0x0660 exfat - ok
13:23:10.0137 0x0660 [ DA7ED3A484A2A03FD8AEC1B3A0DB401C, 459726F1502E1A4DECA5DE3C33297A8F1D949B92CE18F823CA979FFC59C481FD ] ezGOSvc C:\windows\system32\ezGOSvc.dll
13:23:10.0152 0x0660 ezGOSvc - ok
13:23:10.0184 0x0660 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\windows\system32\drivers\fastfat.sys
13:23:10.0230 0x0660 fastfat - ok
13:23:10.0308 0x0660 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\windows\system32\fxssvc.exe
13:23:10.0355 0x0660 Fax - ok
13:23:10.0386 0x0660 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\windows\system32\DRIVERS\fdc.sys
13:23:10.0402 0x0660 fdc - ok
13:23:10.0433 0x0660 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\windows\system32\fdPHost.dll
13:23:10.0480 0x0660 fdPHost - ok
13:23:10.0511 0x0660 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\windows\system32\fdrespub.dll
13:23:10.0558 0x0660 FDResPub - ok
13:23:10.0574 0x0660 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
13:23:10.0605 0x0660 FileInfo - ok
13:23:10.0636 0x0660 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\windows\system32\drivers\filetrace.sys
13:23:10.0683 0x0660 Filetrace - ok
13:23:10.0683 0x0660 FirebirdServerMAGIXInstance - ok
13:23:10.0714 0x0660 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
13:23:10.0730 0x0660 flpydisk - ok
13:23:10.0776 0x0660 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
13:23:10.0808 0x0660 FltMgr - ok
13:23:10.0901 0x0660 [ 37DE123FE4276D8EC7F3C5B10C236238, 93CA47B9A96D904DD177FC0E04DECDF13756C8FA3C7613913DB4BF29A70ECE96 ] FontCache C:\windows\system32\FntCache.dll
13:23:10.0995 0x0660 FontCache - ok
13:23:11.0073 0x0660 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:23:11.0088 0x0660 FontCache3.0.0.0 - ok
13:23:11.0104 0x0660 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\windows\system32\drivers\FsDepends.sys
13:23:11.0135 0x0660 FsDepends - ok
13:23:11.0182 0x0660 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
13:23:11.0213 0x0660 Fs_Rec - ok
13:23:11.0260 0x0660 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
13:23:11.0291 0x0660 fvevol - ok
13:23:11.0322 0x0660 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
13:23:11.0354 0x0660 gagp30kx - ok
13:23:11.0525 0x0660 [ 6A604C6172B7A873C3EBB39E69D2F2E1, E08E4EA76500943550B6C5F4852C6919A88F51A3B1800475A632DDD3BD2BAB86 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
13:23:11.0603 0x0660 GfExperienceService - ok
13:23:11.0650 0x0660 [ 93CA4D9A0433BE0EDD0B9F2F26D5E54C, ACD6BBB639CAF092809927F84F5693B7BA11080684A4993029D713ACF67D4C79 ] ggflt C:\windows\system32\DRIVERS\ggflt.sys
13:23:11.0666 0x0660 ggflt - ok
13:23:11.0697 0x0660 [ 17E678AAB82CCDFB80E7614504933895, 43935C8C5C30DA415957B789DC9FA10721C240C603DC8733D9B791A2F58BE1BD ] ggsemc C:\windows\system32\DRIVERS\ggsemc.sys
13:23:11.0712 0x0660 ggsemc - ok
13:23:11.0744 0x0660 GMSIPCI - ok
13:23:11.0822 0x0660 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\windows\System32\gpsvc.dll
13:23:11.0900 0x0660 gpsvc - ok
13:23:11.0978 0x0660 [ 833051C6C6C42117191935F734CFBD97, 5EB5672ABC7994A4AFF855A572158B8BE4FC6E541CFD4B9BE4FF2739A9A6AFB8 ] hamachi C:\windows\system32\DRIVERS\hamachi.sys
13:23:11.0993 0x0660 hamachi - ok
13:23:12.0024 0x0660 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
13:23:12.0056 0x0660 hcw85cir - ok
13:23:12.0134 0x0660 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:23:12.0180 0x0660 HdAudAddService - ok
13:23:12.0196 0x0660 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
13:23:12.0227 0x0660 HDAudBus - ok
13:23:12.0258 0x0660 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
13:23:12.0290 0x0660 HidBatt - ok
13:23:12.0321 0x0660 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
13:23:12.0352 0x0660 HidBth - ok
13:23:12.0368 0x0660 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\windows\system32\DRIVERS\hidir.sys
13:23:12.0399 0x0660 HidIr - ok
13:23:12.0461 0x0660 [ 17EA65E6496FD6BB627175FB838A82A4, 4C454DEF56C24329006C570EDB267F3D6CB82E140DB605FB736E285B0E2249B0 ] hidkmdf C:\windows\system32\DRIVERS\hidkmdf.sys
13:23:12.0477 0x0660 hidkmdf - ok
13:23:12.0539 0x0660 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\windows\system32\hidserv.dll
13:23:12.0586 0x0660 hidserv - ok
13:23:12.0633 0x0660 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
13:23:12.0680 0x0660 HidUsb - ok
13:23:12.0726 0x0660 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\windows\system32\kmsvc.dll
13:23:12.0773 0x0660 hkmsvc - ok
13:23:12.0867 0x0660 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:23:12.0914 0x0660 HomeGroupListener - ok
13:23:12.0976 0x0660 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:23:13.0007 0x0660 HomeGroupProvider - ok
13:23:13.0054 0x0660 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
13:23:13.0085 0x0660 HpSAMD - ok
13:23:13.0179 0x0660 [ 487569E5DA56A5A432FF8AF6D3599CF9, 7C974D8379C60B4F69A20B01876C49181B0A63AC318C4BD0A21DABFF27A15C9D ] HTTP C:\windows\system32\drivers\HTTP.sys
13:23:13.0257 0x0660 HTTP - ok
13:23:13.0257 0x0660 hwdatacard - ok
13:23:13.0319 0x0660 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
13:23:13.0350 0x0660 hwpolicy - ok
13:23:13.0397 0x0660 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
13:23:13.0428 0x0660 i8042prt - ok
13:23:13.0491 0x0660 [ 0BAA4115DFFFD6A6D809A89D65E1281A, FE524C9AFD31780F9E05765A49FFEA7B5EB0C0C9C6222080B50032BB3643A21B ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
13:23:13.0522 0x0660 iaStor - ok
13:23:13.0616 0x0660 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
13:23:13.0647 0x0660 iaStorV - ok
13:23:13.0740 0x0660 [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:23:13.0756 0x0660 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
13:23:13.0756 0x0660 IDriverT ( UnsignedFile.Multi.Generic ) - warning
13:23:13.0865 0x0660 [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:23:13.0928 0x0660 idsvc - ok
13:23:14.0006 0x0660 IEEtwCollectorService - ok
13:23:14.0286 0x0660 [ AD626F6964F4D364D226C39E06872DD3, 5D52F89930BB07D4D2D0FC12143BD233B5D2C238527B3B4CAD74736D1EC84218 ] igfx C:\windows\system32\DRIVERS\igdkmd32.sys
13:23:14.0645 0x0660 igfx - ok
13:23:14.0692 0x0660 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
13:23:14.0723 0x0660 iirsp - ok
13:23:14.0832 0x0660 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\windows\System32\ikeext.dll
13:23:14.0895 0x0660 IKEEXT - ok
13:23:15.0113 0x0660 [ DAA00AE67B4F8B083442BEAB684A387B, 8770DE3B80F8F192E333311A90BB0AD8E2CA0959B2CF363589C54E15F3D37569 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHDA.sys
13:23:15.0316 0x0660 IntcAzAudAddService - ok
13:23:15.0378 0x0660 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\windows\system32\drivers\intelide.sys
13:23:15.0394 0x0660 intelide - ok
13:23:15.0441 0x0660 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
13:23:15.0472 0x0660 intelppm - ok
13:23:15.0503 0x0660 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\windows\system32\ipbusenum.dll
13:23:15.0550 0x0660 IPBusEnum - ok
13:23:15.0581 0x0660 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
13:23:15.0644 0x0660 IpFilterDriver - ok
13:23:15.0722 0x0660 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
13:23:15.0784 0x0660 iphlpsvc - ok
13:23:15.0831 0x0660 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
13:23:15.0862 0x0660 IPMIDRV - ok
13:23:15.0878 0x0660 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\windows\system32\drivers\ipnat.sys
13:23:15.0940 0x0660 IPNAT - ok
13:23:15.0956 0x0660 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\windows\system32\drivers\irenum.sys
13:23:16.0018 0x0660 IRENUM - ok
13:23:16.0065 0x0660 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\windows\system32\drivers\isapnp.sys
13:23:16.0080 0x0660 isapnp - ok
13:23:16.0143 0x0660 [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
13:23:16.0174 0x0660 iScsiPrt - ok
13:23:16.0205 0x0660 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
13:23:16.0236 0x0660 kbdclass - ok
13:23:16.0252 0x0660 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
13:23:16.0283 0x0660 kbdhid - ok
13:23:16.0299 0x0660 [ 88142648ED929E6D2178CC3B8C13C00F, 7E6B6B2CF61C56FBF8F2A96BDA2E9506467A9A883BFD3BEA78A4F500851E76DB ] KeyIso C:\windows\system32\lsass.exe
13:23:16.0330 0x0660 KeyIso - ok
13:23:16.0408 0x0660 [ 4476FE98AAF505ACDCD3EE6360AABEC1, 1573C5B9F1B12FEEE6D771AFF8969FB9D06878B1E0BECCD4AF13DA9F194FB256 ] KMWDFILTERx86 C:\windows\system32\DRIVERS\KMWDFILTER.sys
13:23:16.0439 0x0660 KMWDFILTERx86 - ok
13:23:16.0486 0x0660 [ 88246FD556E98BF416AC00C418B83D1D, 917EC561EB1C4D8D736DFDCD8456389B3DB0E8CB5AE900FB507F7F1550048BAD ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
13:23:16.0517 0x0660 KSecDD - ok
13:23:16.0548 0x0660 [ C41140DBF0BEA35E480A9CF9823B2B08, 142C4EB8AF27C9B649F24BEECFA1FD3E2B160BC8E8172A04526B73BB157CAD3A ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
13:23:16.0580 0x0660 KSecPkg - ok
13:23:16.0642 0x0660 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\windows\system32\msdtckrm.dll
13:23:16.0704 0x0660 KtmRm - ok
13:23:16.0767 0x0660 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\windows\system32\srvsvc.dll
13:23:16.0829 0x0660 LanmanServer - ok
13:23:16.0860 0x0660 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:23:16.0907 0x0660 LanmanWorkstation - ok
13:23:16.0954 0x0660 [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt C:\windows\system32\DRIVERS\lirsgt.sys
13:23:16.0985 0x0660 lirsgt - ok
13:23:17.0016 0x0660 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
13:23:17.0063 0x0660 lltdio - ok
13:23:17.0110 0x0660 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\windows\System32\lltdsvc.dll
13:23:17.0172 0x0660 lltdsvc - ok
13:23:17.0188 0x0660 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\windows\System32\lmhsvc.dll
13:23:17.0250 0x0660 lmhosts - ok
13:23:17.0282 0x0660 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
13:23:17.0313 0x0660 LSI_FC - ok
13:23:17.0344 0x0660 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
13:23:17.0375 0x0660 LSI_SAS - ok
13:23:17.0391 0x0660 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
13:23:17.0422 0x0660 LSI_SAS2 - ok
13:23:17.0453 0x0660 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
13:23:17.0484 0x0660 LSI_SCSI - ok
13:23:17.0516 0x0660 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\windows\system32\drivers\luafv.sys
13:23:17.0562 0x0660 luafv - ok
13:23:17.0656 0x0660 [ B895839B8743E400D7C7DAE156F74E7E, 52E13C6260F7E6718C782DF0B43D838FB4939B314695A7A9CB2012D8B224066B ] LVRS C:\windows\system32\DRIVERS\lvrs.sys
13:23:17.0718 0x0660 LVRS - ok
13:23:17.0781 0x0660 [ 23F8EF78BB9553E465A476F3CEE5CA18, 22E19B9F16EC555CCA091841711C8D1938F7EBCD8C6AC82E77375AE5EA96610C ] LVUSBSta C:\windows\system32\drivers\LVUSBSta.sys
13:23:17.0796 0x0660 LVUSBSta - ok
13:23:17.0859 0x0660 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
13:23:17.0890 0x0660 Mcx2Svc - ok
13:23:17.0906 0x0660 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\windows\system32\DRIVERS\megasas.sys
13:23:17.0937 0x0660 megasas - ok
13:23:17.0984 0x0660 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
13:23:18.0015 0x0660 MegaSR - ok
13:23:18.0062 0x0660 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\windows\system32\mmcss.dll
13:23:18.0108 0x0660 MMCSS - ok
13:23:18.0140 0x0660 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\windows\system32\drivers\modem.sys
13:23:18.0186 0x0660 Modem - ok
13:23:18.0218 0x0660 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\windows\system32\DRIVERS\monitor.sys
13:23:18.0249 0x0660 monitor - ok
13:23:18.0311 0x0660 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
13:23:18.0327 0x0660 mouclass - ok
13:23:18.0374 0x0660 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
13:23:18.0405 0x0660 mouhid - ok
13:23:18.0452 0x0660 [ BAD9C0366134BA181514E9263C8CE606, 7976B2D3DC283ACDBC21C7D197C0E2A650E6555F6569283302766B17D736BDB8 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
13:23:18.0483 0x0660 mountmgr - ok
13:23:18.0576 0x0660 [ 22A7042C70F90F8261840740DDBB5176, AD0075C97D2D7C568D5CFB1C3A02DCE3BC01941844A759B29CD4DE4AF2F5FC45 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:23:18.0608 0x0660 MozillaMaintenance - ok
13:23:18.0717 0x0660 [ F112DA773EC3E9D3CDE9221ED300E033, 693C416B281DA3489C096812D0E4E0413C05798D36AF534624C3B29551CE68A4 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
13:23:18.0748 0x0660 MpFilter - ok
13:23:18.0810 0x0660 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\windows\system32\drivers\mpio.sys
13:23:18.0842 0x0660 mpio - ok
13:23:19.0013 0x0660 [ BB7BB66A8DAF16950F83AE7BF498AF8F, A96FC3BE055C52B98E7ECDF68D69081620F829B04B5496C73D87F271E40EA638 ] MpKsl479104d5 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{378E663A-D49E-486C-A32F-4376EC840978}\MpKsl479104d5.sys
13:23:19.0044 0x0660 MpKsl479104d5 - ok
13:23:19.0122 0x0660 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
13:23:19.0169 0x0660 mpsdrv - ok
13:23:19.0263 0x0660 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\windows\system32\mpssvc.dll
13:23:19.0341 0x0660 MpsSvc - ok
13:23:19.0403 0x0660 [ 03F899F521D2AAED1C55008F734DF252, 4E56A51476A13F5630719018037B1F63DF9ACEA1CFE782AF04E669BD696954C5 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
13:23:19.0450 0x0660 MRxDAV - ok
13:23:19.0512 0x0660 [ BAF4E2BE25E8EDFDAA98AA17D92E3C35, 1C7C7A7217962BE8338F8F989A2DBA2C0FD8A1CCC4E773EA5D02F291C2AF0BCA ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
13:23:19.0559 0x0660 mrxsmb - ok
13:23:19.0590 0x0660 [ 300E85A19AFD4DF992AB6297C6E64CA1, B794DC07336DA64ECB8F6F695978C5B67FBFC7D1B60F3AD94D970FC9DE05A095 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
13:23:19.0622 0x0660 mrxsmb10 - ok
13:23:19.0653 0x0660 [ 70EF9F86474BA28A6898228E1C9ABDCB, 5BCCE0A1D33F7A0780350F3AA870468DB7B51F4FBA267AF663BC946B2259E0F8 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
13:23:19.0684 0x0660 mrxsmb20 - ok
13:23:19.0746 0x0660 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\windows\system32\drivers\msahci.sys
13:23:19.0778 0x0660 msahci - ok
13:23:19.0871 0x0660 [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D, FEA8FB1B8752660EC6174542B24D234A61EBFF8318A5855B3E5C91DB86856CAB ] MSCSPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
13:23:19.0887 0x0660 MSCSPTISRV - detected UnsignedFile.Multi.Generic ( 1 )
13:23:19.0887 0x0660 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - warning
13:23:19.0918 0x0660 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\windows\system32\drivers\msdsm.sys
13:23:19.0949 0x0660 msdsm - ok
13:23:19.0996 0x0660 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\windows\System32\msdtc.exe
13:23:20.0027 0x0660 MSDTC - ok
13:23:20.0090 0x0660 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\windows\system32\drivers\Msfs.sys
13:23:20.0136 0x0660 Msfs - ok
13:23:20.0168 0x0660 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
13:23:20.0214 0x0660 mshidkmdf - ok
13:23:20.0277 0x0660 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
13:23:20.0308 0x0660 msisadrv - ok
13:23:20.0339 0x0660 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\windows\system32\iscsiexe.dll
13:23:20.0402 0x0660 MSiSCSI - ok
13:23:20.0417 0x0660 msiserver - ok
13:23:20.0448 0x0660 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
13:23:20.0495 0x0660 MSKSSRV - ok
13:23:20.0573 0x0660 [ CC09BB7FDEFC5763CCB3CF7DAE2D76CF, F8F00900EDBA2F64BF136DD0B6C83CAF07C72F24F3D49C78B7EA24757FDBC6D0 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
13:23:20.0604 0x0660 MsMpSvc - ok
13:23:20.0636 0x0660 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
13:23:20.0682 0x0660 MSPCLOCK - ok
13:23:20.0714 0x0660 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
13:23:20.0760 0x0660 MSPQM - ok
13:23:20.0792 0x0660 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
13:23:20.0823 0x0660 MsRPC - ok
13:23:20.0870 0x0660 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\windows\system32\drivers\mssmbios.sys
13:23:20.0885 0x0660 mssmbios - ok
13:23:20.0932 0x0660 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\windows\system32\drivers\MSTEE.sys
13:23:20.0979 0x0660 MSTEE - ok
13:23:21.0010 0x0660 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
13:23:21.0041 0x0660 MTConfig - ok
13:23:21.0088 0x0660 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\windows\system32\Drivers\mup.sys
13:23:21.0104 0x0660 Mup - ok
13:23:21.0150 0x0660 mvgordih - ok
13:23:21.0213 0x0660 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\windows\system32\qagentRT.dll
13:23:21.0275 0x0660 napagent - ok
13:23:21.0338 0x0660 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
13:23:21.0384 0x0660 NativeWifiP - ok
13:23:21.0478 0x0660 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\windows\system32\drivers\ndis.sys
13:23:21.0540 0x0660 NDIS - ok
13:23:21.0587 0x0660 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
13:23:21.0634 0x0660 NdisCap - ok
13:23:21.0665 0x0660 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
13:23:21.0712 0x0660 NdisTapi - ok
13:23:21.0774 0x0660 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
13:23:21.0821 0x0660 Ndisuio - ok
13:23:21.0868 0x0660 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
13:23:21.0930 0x0660 NdisWan - ok
13:23:21.0993 0x0660 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\windows\system32\drivers\NDProxy.sys
13:23:22.0040 0x0660 NDProxy - ok
13:23:22.0086 0x0660 [ 7AFD0E39AB15CB355487B7CC19F4E2C5, E6AFC722743ABEBC1CB9909912AB822F2996EAA7F42774BD7C77F24A6DAAA7A5 ] Netaapl C:\windows\system32\DRIVERS\netaapl.sys
13:23:22.0102 0x0660 Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
13:23:22.0102 0x0660 Netaapl ( UnsignedFile.Multi.Generic ) - warning
13:23:22.0133 0x0660 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
13:23:22.0196 0x0660 NetBIOS - ok
13:23:22.0242 0x0660 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
13:23:22.0305 0x0660 NetBT - ok
13:23:22.0320 0x0660 [ 88142648ED929E6D2178CC3B8C13C00F, 7E6B6B2CF61C56FBF8F2A96BDA2E9506467A9A883BFD3BEA78A4F500851E76DB ] Netlogon C:\windows\system32\lsass.exe
13:23:22.0352 0x0660 Netlogon - ok
13:23:22.0414 0x0660 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\windows\System32\netman.dll
13:23:22.0476 0x0660 Netman - ok
13:23:22.0570 0x0660 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:23:22.0601 0x0660 NetMsmqActivator - ok
13:23:22.0632 0x0660 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:23:22.0679 0x0660 NetPipeActivator - ok
13:23:22.0726 0x0660 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\windows\System32\netprofm.dll
13:23:22.0788 0x0660 netprofm - ok
13:23:22.0835 0x0660 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:23:22.0866 0x0660 NetTcpActivator - ok
13:23:22.0882 0x0660 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:23:22.0929 0x0660 NetTcpPortSharing - ok
13:23:22.0976 0x0660 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
13:23:22.0991 0x0660 nfrd960 - ok
13:23:23.0069 0x0660 [ 780FF28BCD8470C5FDDEEF69982AA295, 1ED386E87E0AA733F23D554D2BF4EF4168DB9A419B7BA0BA8FBA20F118BE21DF ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
13:23:23.0085 0x0660 NisDrv - ok
13:23:23.0132 0x0660 [ 3FF257F54649D4F19E39263C5D581CD1, 1F201EEE770A452AA30C6270AAA456A77F9F3A102F473E12C22D3B8809932C1B ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
13:23:23.0163 0x0660 NisSrv - ok
13:23:23.0225 0x0660 [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc C:\windows\System32\nlasvc.dll
13:23:23.0288 0x0660 NlaSvc - ok
13:23:23.0381 0x0660 [ 7B273501C59D52978B761F82BEBADB06, 696BFE74E63BB0F97C6884EADABC67B5A2FAA9D9057BED8B7E1E336064B0F6E7 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
13:23:23.0412 0x0660 NMIndexingService - ok
13:23:23.0444 0x0660 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\windows\system32\drivers\Npfs.sys
13:23:23.0490 0x0660 Npfs - ok
13:23:23.0506 0x0660 npggsvc - ok
13:23:23.0553 0x0660 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\windows\system32\nsisvc.dll
13:23:23.0600 0x0660 nsi - ok
13:23:23.0631 0x0660 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
13:23:23.0678 0x0660 nsiproxy - ok
13:23:23.0802 0x0660 [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs C:\windows\system32\drivers\Ntfs.sys
13:23:23.0880 0x0660 Ntfs - ok
13:23:23.0943 0x0660 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\windows\system32\drivers\Null.sys
13:23:23.0990 0x0660 Null - ok
13:23:24.0052 0x0660 [ 9F8EE4948B7ADD9D12F778F61A2758A4, 9848C7D97AC000BF7A00BAE12593E48E14D36D7FFFCF25A163FAAB446691032F ] NVHDA C:\windows\system32\drivers\nvhda32v.sys
13:23:24.0083 0x0660 NVHDA - ok
13:23:24.0645 0x0660 [ 1A7AE487E2AAA86089EC8BDD6A104538, 4BCF9E718198DE25ECA6F290510CD438CCDF92DF30C3ACA15F59634FC11D2864 ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
13:23:25.0331 0x0660 nvlddmkm - ok
13:23:26.0064 0x0660 [ 930AE35B57C33F361AF045D220229063, B67776D3392E879CF6006AC86D72DEA826EF4607A4853116B837F2F95BEBF270 ] NvNetworkService C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
13:23:26.0174 0x0660 NvNetworkService - ok
13:23:26.0252 0x0660 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\windows\system32\drivers\nvraid.sys
13:23:26.0267 0x0660 nvraid - ok
13:23:26.0298 0x0660 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\windows\system32\drivers\nvstor.sys
13:23:26.0330 0x0660 nvstor - ok
13:23:26.0454 0x0660 [ 3A75036E302390A04ADFA34096042CBD, 2C9A84F0A7A95406DE4C9D6EAF2BD2A1BA0534DCE618F460ED28905EAADD03C4 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
13:23:26.0486 0x0660 NvStreamKms - ok
13:23:26.0798 0x0660 [ 12CFFEEFA26A3A1140F3AD3412AE57CB, D714197EDE035A9C3BAEB30B28554415A59808CD424B41DB4E5EFAB3A7EC9B8D ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
13:23:27.0063 0x0660 NvStreamSvc - ok
13:23:27.0266 0x0660 [ 9AF133F51F7832ABAD3EEA362C84FE43, B4AFFC869725321026DF3B7606D014BACAD739862A779D349123A7E4E9B7E026 ] nvsvc C:\windows\system32\nvvsvc.exe
13:23:27.0328 0x0660 nvsvc - ok
13:23:27.0406 0x0660 [ C2A9985C97DF5946AEAE7C001625410C, A0B00BFB2B6E5F19E8DBFAB74C65B9590659909168D7CB559037C5E64C44F3D0 ] nvvad_WaveExtensible C:\windows\system32\drivers\nvvad32v.sys
13:23:27.0437 0x0660 nvvad_WaveExtensible - ok
13:23:27.0500 0x0660 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
13:23:27.0531 0x0660 nv_agp - ok
13:23:27.0624 0x0660 [ B5D5DA8230D3D3525839D939A9196C3E, 32058E8D55D55D3E0EA31AFC37548B8F904A946D97E5E5FBC079AB1AD1650A60 ] OberonGameConsoleService C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
13:23:27.0656 0x0660 OberonGameConsoleService - ok
13:23:27.0687 0x0660 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
13:23:27.0718 0x0660 ohci1394 - ok
13:23:27.0905 0x0660 [ 4F9FFCF12B6ED0B4DAC95427772C226E, 4A79AEC410ED1034366FAC1388FB29381EE6541AA17E3652BE86265D09541C56 ] Origin Client Service C:\Program Files\Origin\OriginClientService.exe
13:23:28.0014 0x0660 Origin Client Service - ok
13:23:28.0108 0x0660 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:23:28.0139 0x0660 ose - ok
13:23:28.0186 0x0660 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
13:23:28.0248 0x0660 p2pimsvc - ok
13:23:28.0295 0x0660 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\windows\system32\p2psvc.dll
13:23:28.0326 0x0660 p2psvc - ok
13:23:28.0404 0x0660 [ 753A8F339F231D2B857E2CCD51A6E6CA, 59510E69D623B9DA725A8097A44FD210FCF05BB3BA27D5296EA4610359DA0831 ] PACSPTISVR C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
13:23:28.0420 0x0660 PACSPTISVR - detected UnsignedFile.Multi.Generic ( 1 )
13:23:28.0420 0x0660 PACSPTISVR ( UnsignedFile.Multi.Generic ) - warning
13:23:28.0467 0x0660 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\windows\system32\DRIVERS\parport.sys
13:23:28.0498 0x0660 Parport - ok
13:23:28.0560 0x0660 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\windows\system32\drivers\partmgr.sys
13:23:28.0576 0x0660 partmgr - ok
13:23:28.0623 0x0660 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\windows\system32\DRIVERS\parvdm.sys
13:23:28.0638 0x0660 Parvdm - ok
13:23:28.0716 0x0660 [ 52954BE460EC6C54C0ACB2B3B126FFC6, 9F9878EC5ABC74C5A8EE8E1D940F0934F081895B07D844F42F80A638FE713F7B ] PcaSvc C:\windows\System32\pcasvc.dll
13:23:28.0763 0x0660 PcaSvc - ok
13:23:28.0841 0x0660 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\windows\system32\drivers\pci.sys
13:23:28.0872 0x0660 pci - ok
13:23:28.0935 0x0660 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\windows\system32\drivers\pciide.sys
13:23:28.0950 0x0660 pciide - ok
13:23:28.0982 0x0660 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
13:23:29.0028 0x0660 pcmcia - ok
13:23:29.0075 0x0660 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\windows\system32\drivers\pcw.sys
13:23:29.0122 0x0660 pcw - ok
13:23:29.0247 0x0660 [ AEBC369F7DC72AB3F5B9BDF34FA0D43F, 2A819154AC6C23E97C583D90B4D0C112188B7AE9D8D9B3F88811BFCED124E551 ] PEAUTH C:\windows\system32\drivers\peauth.sys
13:23:29.0325 0x0660 PEAUTH - ok
13:23:29.0403 0x0660 [ A05F0D7419CF4680EEDD5736E6549E7B, D8B32DE00A317593D61016E4823370B073618F9760A785FF7DA0F26DD5E4FCAB ] pepifilter C:\windows\system32\DRIVERS\lv302af.sys
13:23:29.0418 0x0660 pepifilter - ok
13:23:30.0105 0x0660 [ 4BB5AC2DD485B8EEFCCB977EE66A68AD, 8C45E74697B2484A26DE693D179AF81F2F4DC4EC0985908A89EF6167F3096056 ] PID_PEPI C:\windows\system32\DRIVERS\LV302V32.SYS
13:23:30.0276 0x0660 PID_PEPI - ok
13:23:30.0432 0x0660 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\windows\system32\pla.dll
13:23:30.0542 0x0660 pla - ok
13:23:30.0635 0x0660 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\windows\system32\umpnpmgr.dll
13:23:30.0698 0x0660 PlugPlay - ok
13:23:30.0744 0x0660 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
13:23:30.0776 0x0660 PNRPAutoReg - ok
13:23:30.0807 0x0660 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
13:23:30.0854 0x0660 PNRPsvc - ok
13:23:30.0932 0x0660 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
13:23:30.0994 0x0660 PolicyAgent - ok
13:23:31.0088 0x0660 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\windows\system32\umpo.dll
13:23:31.0134 0x0660 Power - ok
13:23:31.0181 0x0660 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
13:23:31.0244 0x0660 PptpMiniport - ok
13:23:31.0275 0x0660 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\windows\system32\DRIVERS\processr.sys
13:23:31.0306 0x0660 Processor - ok
13:23:31.0353 0x0660 [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc C:\windows\system32\profsvc.dll
13:23:31.0400 0x0660 ProfSvc - ok
13:23:31.0431 0x0660 [ 88142648ED929E6D2178CC3B8C13C00F, 7E6B6B2CF61C56FBF8F2A96BDA2E9506467A9A883BFD3BEA78A4F500851E76DB ] ProtectedStorage C:\windows\system32\lsass.exe
13:23:31.0462 0x0660 ProtectedStorage - ok
13:23:31.0493 0x0660 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\windows\system32\DRIVERS\pacer.sys
13:23:31.0540 0x0660 Psched - ok
13:23:31.0649 0x0660 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
13:23:31.0743 0x0660 ql2300 - ok
13:23:31.0774 0x0660 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
13:23:31.0805 0x0660 ql40xx - ok
13:23:31.0852 0x0660 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\windows\system32\qwave.dll
13:23:31.0899 0x0660 QWAVE - ok
13:23:31.0930 0x0660 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
13:23:31.0961 0x0660 QWAVEdrv - ok
13:23:31.0992 0x0660 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
13:23:32.0039 0x0660 RasAcd - ok
13:23:32.0086 0x0660 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
13:23:32.0133 0x0660 RasAgileVpn - ok
13:23:32.0164 0x0660 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\windows\System32\rasauto.dll
13:23:32.0226 0x0660 RasAuto - ok
13:23:32.0242 0x0660 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
13:23:32.0304 0x0660 Rasl2tp - ok
13:23:32.0382 0x0660 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\windows\System32\rasmans.dll
13:23:32.0445 0x0660 RasMan - ok
13:23:32.0476 0x0660 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
13:23:32.0523 0x0660 RasPppoe - ok
13:23:32.0554 0x0660 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
13:23:32.0616 0x0660 RasSstp - ok
13:23:32.0694 0x0660 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
13:23:32.0757 0x0660 rdbss - ok
13:23:32.0788 0x0660 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
13:23:32.0819 0x0660 rdpbus - ok
13:23:32.0866 0x0660 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
13:23:32.0913 0x0660 RDPCDD - ok
13:23:33.0006 0x0660 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
13:23:33.0053 0x0660 RDPENCDD - ok
13:23:33.0084 0x0660 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
13:23:33.0131 0x0660 RDPREFMP - ok
13:23:33.0256 0x0660 [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
13:23:33.0303 0x0660 RdpVideoMiniport - ok
13:23:33.0365 0x0660 [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
13:23:33.0412 0x0660 RDPWD - ok
13:23:33.0490 0x0660 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
13:23:33.0521 0x0660 rdyboost - ok
13:23:33.0599 0x0660 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\windows\System32\mprdim.dll
13:23:33.0646 0x0660 RemoteAccess - ok
13:23:33.0693 0x0660 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\windows\system32\regsvc.dll
13:23:33.0755 0x0660 RemoteRegistry - ok
13:23:33.0849 0x0660 [ 7CCAEBCAB6FC1ED0206C07E083E79207, 40BFA1BEDFF093652279494EDD397FC094794B76916C2681D0544D6793314DFE ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
13:23:33.0880 0x0660 RichVideo - ok
13:23:33.0927 0x0660 [ 616EAC1B0E48B236A5A9B8AE07FDB81C, B336AD485AE908DCEB50102C0E6295E1ED60E29F311EE69947AB80AADF2A62FD ] RimUsb C:\windows\system32\Drivers\RimUsb.sys
13:23:33.0974 0x0660 RimUsb - ok
13:23:34.0020 0x0660 [ 2C4FB2E9F039287767C384E46EE91030, 5290E9457256C007A3FCAE246D0C536179C54D9F4B365E3143B9D0764FCBFCDB ] RimVSerPort C:\windows\system32\DRIVERS\RimSerial.sys
13:23:34.0067 0x0660 RimVSerPort - ok
13:23:34.0098 0x0660 [ 564297827D213F52C7A3A2FF749568CA, B09A78D3B3F0BF47818BBEEDEF73BD6ACB9C5E367592BB90C85FD262BE521876 ] ROOTMODEM C:\windows\system32\Drivers\RootMdm.sys
13:23:34.0145 0x0660 ROOTMODEM - ok
13:23:34.0239 0x0660 RoxLiveShare9 - ok
13:23:34.0286 0x0660 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
13:23:34.0348 0x0660 RpcEptMapper - ok
13:23:34.0395 0x0660 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\windows\system32\locator.exe
13:23:34.0426 0x0660 RpcLocator - ok
13:23:34.0504 0x0660 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\windows\system32\rpcss.dll
13:23:34.0566 0x0660 RpcSs - ok
13:23:34.0598 0x0660 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
13:23:34.0644 0x0660 rspndr - ok
13:23:34.0676 0x0660 [ 7DFD48E24479B68B258D8770121155A0, 3B5F7309403C46855DB888CF2058B07C9029690DBC7FB3224BAC7BE5547D2D57 ] RTL8167 C:\windows\system32\DRIVERS\Rt86win7.sys
13:23:34.0707 0x0660 RTL8167 - ok
13:23:34.0769 0x0660 [ 6E5FBB7CBAEC47038B945D5E9B144A64, B2AA2F39DAA841FCA470846CC07C580464E2F07C3EFAA64AF783144718F09C13 ] SABI C:\windows\system32\Drivers\SABI.sys
13:23:34.0800 0x0660 SABI - ok
13:23:34.0832 0x0660 [ 88142648ED929E6D2178CC3B8C13C00F, 7E6B6B2CF61C56FBF8F2A96BDA2E9506467A9A883BFD3BEA78A4F500851E76DB ] SamSs C:\windows\system32\lsass.exe
13:23:34.0863 0x0660 SamSs - ok
13:23:34.0925 0x0660 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\windows\system32\drivers\sbp2port.sys
13:23:34.0956 0x0660 sbp2port - ok
13:23:35.0003 0x0660 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\windows\System32\SCardSvr.dll
13:23:35.0066 0x0660 SCardSvr - ok
13:23:35.0128 0x0660 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
13:23:35.0175 0x0660 scfilter - ok
13:23:35.0268 0x0660 [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule C:\windows\system32\schedsvc.dll
13:23:35.0346 0x0660 Schedule - ok
13:23:35.0393 0x0660 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\windows\System32\certprop.dll
13:23:35.0456 0x0660 SCPolicySvc - ok
13:23:35.0518 0x0660 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\windows\System32\SDRSVC.dll
13:23:35.0565 0x0660 SDRSVC - ok
13:23:35.0596 0x0660 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\windows\system32\drivers\secdrv.sys
13:23:35.0643 0x0660 secdrv - ok
13:23:35.0690 0x0660 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\windows\system32\seclogon.dll
13:23:35.0752 0x0660 seclogon - ok
13:23:35.0814 0x0660 [ E5B56569A9F79B70314FEDE6C953641E, 41B088CD3AE5A342D44F2FDCB63975E15D79155F56DFC75631663D9C31D98634 ] seehcri C:\windows\system32\DRIVERS\seehcri.sys
13:23:35.0830 0x0660 seehcri - detected UnsignedFile.Multi.Generic ( 1 )
13:23:35.0830 0x0660 seehcri ( UnsignedFile.Multi.Generic ) - warning
13:23:35.0861 0x0660 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\windows\System32\sens.dll
13:23:35.0924 0x0660 SENS - ok
13:23:35.0970 0x0660 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\windows\system32\sensrsvc.dll
13:23:36.0017 0x0660 SensrSvc - ok
13:23:36.0033 0x0660 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\windows\system32\DRIVERS\serenum.sys
13:23:36.0064 0x0660 Serenum - ok
13:23:36.0095 0x0660 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\windows\system32\DRIVERS\serial.sys
13:23:36.0126 0x0660 Serial - ok
13:23:36.0173 0x0660 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
13:23:36.0189 0x0660 sermouse - ok
13:23:36.0314 0x0660 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\windows\system32\sessenv.dll
13:23:36.0376 0x0660 SessionEnv - ok
13:23:36.0423 0x0660 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\windows\system32\drivers\sffdisk.sys
13:23:36.0454 0x0660 sffdisk - ok
13:23:36.0501 0x0660 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
13:23:36.0516 0x0660 sffp_mmc - ok
13:23:36.0563 0x0660 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
13:23:36.0579 0x0660 sffp_sd - ok
13:23:36.0641 0x0660 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
13:23:36.0657 0x0660 sfloppy - ok
13:23:36.0750 0x0660 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\windows\System32\ipnathlp.dll
13:23:36.0813 0x0660 SharedAccess - ok
13:23:36.0891 0x0660 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:23:36.0953 0x0660 ShellHWDetection - ok
13:23:37.0000 0x0660 [ 1644C3814E0DAE66CD68E39FFB97D869, C68CCCFDC4A1B984434BA512CF5CC52D27E2D56B15519CEA3B0383E1C7C482B9 ] SipIMNDI C:\windows\system32\DRIVERS\SipIMNDI.sys
13:23:37.0031 0x0660 SipIMNDI - ok
13:23:37.0062 0x0660 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\windows\system32\drivers\sisagp.sys
13:23:37.0078 0x0660 sisagp - ok
13:23:37.0109 0x0660 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
13:23:37.0140 0x0660 SiSRaid2 - ok
13:23:37.0172 0x0660 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
13:23:37.0203 0x0660 SiSRaid4 - ok
13:23:37.0265 0x0660 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\windows\system32\DRIVERS\smb.sys
13:23:37.0328 0x0660 Smb - ok
13:23:37.0406 0x0660 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\windows\System32\snmptrap.exe
13:23:37.0437 0x0660 SNMPTRAP - ok
13:23:37.0499 0x0660 [ 977AAA4398D7D6FA65D973F5B3F54E40, 9E7DD68E62A0BC6A8F512582E7B7BA00CC90CEA65B1F46EA6922C38C2D340021 ] SonicStage Back-End Service C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
13:23:37.0530 0x0660 SonicStage Back-End Service - ok
13:23:37.0562 0x0660 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\windows\system32\drivers\spldr.sys
13:23:37.0593 0x0660 spldr - ok
13:23:37.0671 0x0660 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\windows\System32\spoolsv.exe
13:23:37.0733 0x0660 Spooler - ok
13:23:37.0952 0x0660 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\windows\system32\sppsvc.exe
13:23:38.0154 0x0660 sppsvc - ok
13:23:38.0232 0x0660 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\windows\system32\sppuinotify.dll
13:23:38.0295 0x0660 sppuinotify - ok
13:23:38.0404 0x0660 [ CDDDEC541BC3C96F91ECB48759673505, B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB ] sptd C:\windows\system32\Drivers\sptd.sys
13:23:38.0404 0x0660 Suspicious file ( NoAccess ): C:\windows\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505, sha256: B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB
13:23:38.0435 0x0660 sptd - detected LockedFile.Multi.Generic ( 1 )
13:23:38.0435 0x0660 sptd ( LockedFile.Multi.Generic ) - warning
13:23:38.0435 0x0660 Force sending object to P2P due to detect: sptd
13:23:38.0451 0x0660 Object send P2P result: false
13:23:38.0513 0x0660 [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1, BDCCF36D760B8B92BD8DF54C6F2992D66B76EBA1999623F60F0D68CD91D3CEE1 ] SPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
13:23:38.0513 0x0660 SPTISRV - detected UnsignedFile.Multi.Generic ( 1 )
13:23:38.0513 0x0660 SPTISRV ( UnsignedFile.Multi.Generic ) - warning
13:23:38.0591 0x0660 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\windows\system32\DRIVERS\srv.sys
13:23:38.0654 0x0660 srv - ok
13:23:38.0700 0x0660 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
13:23:38.0732 0x0660 srv2 - ok
13:23:38.0778 0x0660 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
13:23:38.0810 0x0660 srvnet - ok
13:23:38.0872 0x0660 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\windows\System32\ssdpsrv.dll
13:23:38.0934 0x0660 SSDPSRV - ok
13:23:38.0981 0x0660 [ DF5C19F053EFF7F8BA25D73AEA899656, 95C894638064DA665AA2858E67792716A798B1CB1271D4A5FBAF59AD0355C541 ] ssm_bus C:\windows\system32\DRIVERS\ssm_bus.sys
13:23:39.0012 0x0660 ssm_bus - ok
13:23:39.0059 0x0660 [ 5347169FA449EABC4D0728AE39FAB926, E18D1D12A5D78716CDE449DD37E2BA1CF262BEC066211A3BA3C97B9EC636B88D ] ssm_mdfl C:\windows\system32\DRIVERS\ssm_mdfl.sys
13:23:39.0090 0x0660 ssm_mdfl - ok
13:23:39.0137 0x0660 [ 7AAE23DD105EED15C4F45FC269FA42A9, 1ACF4AE796D95B157832C806FDEB03762C4541EF68893CF8381A24170F33F274 ] ssm_mdm C:\windows\system32\DRIVERS\ssm_mdm.sys
13:23:39.0153 0x0660 ssm_mdm - ok
13:23:39.0215 0x0660 [ 756E371B3B86A3D3039926D32EAC0E8D, 7D3EE49848B90F0815599EC35897E23ECB69BF2686A8F1907E974B4F21419F5D ] SSScsiSV C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
13:23:39.0231 0x0660 SSScsiSV - ok
13:23:39.0278 0x0660 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\windows\system32\sstpsvc.dll
13:23:39.0324 0x0660 SstpSvc - ok
13:23:39.0449 0x0660 [ EBAA82F7C9B97C0E450449178E007340, D470927CC216C4E3EA23236E6C6464187CD3A49C3A4A456F488FEC8E713EA31B ] Steam Client Service C:\Program Files\Common Files\Steam\SteamService.exe
13:23:39.0496 0x0660 Steam Client Service - ok
13:23:39.0558 0x0660 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
13:23:39.0574 0x0660 stexstor - ok
13:23:39.0683 0x0660 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\windows\System32\wiaservc.dll
13:23:39.0730 0x0660 StiSvc - ok
13:23:39.0761 0x0660 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\windows\system32\drivers\swenum.sys
13:23:39.0792 0x0660 swenum - ok
13:23:39.0964 0x0660 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:23:40.0011 0x0660 SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
13:23:40.0011 0x0660 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
13:23:40.0089 0x0660 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\windows\System32\swprv.dll
13:23:40.0151 0x0660 swprv - ok
13:23:40.0214 0x0660 [ 069E5728E565BD401347CB94732C4733, 16D6F0DE070E0A00FEE2512A9F238DA8175C4C44D76FBC5DD49CAF2EBB779C1F ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
13:23:40.0245 0x0660 SynTP - ok
13:23:40.0370 0x0660 [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain C:\windows\system32\sysmain.dll
13:23:40.0463 0x0660 SysMain - ok
13:23:40.0526 0x0660 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\windows\System32\TabSvc.dll
13:23:40.0572 0x0660 TabletInputService - ok
13:23:40.0619 0x0660 taphss6 - ok
13:23:40.0682 0x0660 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\windows\System32\tapisrv.dll
13:23:40.0744 0x0660 TapiSrv - ok
13:23:40.0791 0x0660 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\windows\System32\tbssvc.dll
13:23:40.0853 0x0660 TBS - ok
13:23:40.0994 0x0660 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip C:\windows\system32\drivers\tcpip.sys
13:23:41.0072 0x0660 Tcpip - ok
13:23:41.0150 0x0660 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
13:23:41.0228 0x0660 TCPIP6 - ok
13:23:41.0321 0x0660 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
13:23:41.0337 0x0660 tcpipreg - ok
13:23:41.0415 0x0660 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
13:23:41.0446 0x0660 TDPIPE - ok
13:23:41.0493 0x0660 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
13:23:41.0524 0x0660 TDTCP - ok
13:23:41.0586 0x0660 [ 7FE680A3DFA421C4A8E4879AE4C5AAB0, A4C64E155AB2843823CD3586756BA7681CFDEA50812095468221503BBAD30DCD ] tdx C:\windows\system32\DRIVERS\tdx.sys
13:23:41.0618 0x0660 tdx - ok
13:23:41.0680 0x0660 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\windows\system32\drivers\termdd.sys
13:23:41.0711 0x0660 TermDD - ok
13:23:41.0805 0x0660 [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService C:\windows\System32\termsrv.dll
13:23:41.0867 0x0660 TermService - ok
13:23:41.0914 0x0660 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\windows\system32\themeservice.dll
13:23:41.0945 0x0660 Themes - ok
13:23:42.0008 0x0660 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\windows\system32\mmcss.dll
13:23:42.0054 0x0660 THREADORDER - ok
13:23:42.0101 0x0660 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\windows\System32\trkwks.dll
13:23:42.0164 0x0660 TrkWks - ok
13:23:42.0273 0x0660 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:23:42.0320 0x0660 TrustedInstaller - ok
13:23:42.0398 0x0660 [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
13:23:42.0429 0x0660 tssecsrv - ok
13:23:42.0476 0x0660 [ C6A5FBD4977305E1FA23E02C042DB463, A6EB5E4B8051A258D40A385609E930318EAA3494C8466F48542B806FE6A7C47A ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
13:23:42.0522 0x0660 TsUsbFlt - ok
13:23:42.0585 0x0660 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
13:23:42.0632 0x0660 tunnel - ok
13:23:42.0678 0x0660 [ 0397852EF1E5463D57F22C689F6354F9, 620845F35754DE1772CBC750A1F787C6C5130FFB8CE24DE51ADD2F5921B33477 ] t_mouse.sys C:\windows\system32\DRIVERS\t_mouse.sys
13:23:42.0725 0x0660 t_mouse.sys - ok
13:23:42.0788 0x0660 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
13:23:42.0819 0x0660 uagp35 - ok
13:23:42.0866 0x0660 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\windows\system32\DRIVERS\udfs.sys
13:23:42.0928 0x0660 udfs - ok
13:23:43.0006 0x0660 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\windows\system32\UI0Detect.exe
13:23:43.0022 0x0660 UI0Detect - ok
13:23:43.0084 0x0660 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
13:23:43.0100 0x0660 uliagpkx - ok
13:23:43.0162 0x0660 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\windows\system32\drivers\umbus.sys
13:23:43.0178 0x0660 umbus - ok
13:23:43.0209 0x0660 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
13:23:43.0240 0x0660 UmPass - ok
13:23:43.0287 0x0660 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\windows\System32\upnphost.dll
13:23:43.0349 0x0660 upnphost - ok
13:23:43.0396 0x0660 [ D4FB6ECC60A428564BA8768B0E23C0FC, 4170FB6D0D593B5C22F5B4F664F6253435208C8948AFB66C0D12E2B818BA6DD5 ] USBAAPL C:\windows\system32\Drivers\usbaapl.sys
13:23:43.0412 0x0660 USBAAPL - detected UnsignedFile.Multi.Generic ( 1 )
13:23:43.0412 0x0660 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
13:23:43.0490 0x0660 [ A1977C315BF5691DA99235AA4A6907AF, 34B52FBA83F0E1C6B001D0AD1808B00152F731D18AAECC3C53B9918AA89BACEC ] usbaudio C:\windows\system32\drivers\usbaudio.sys
13:23:43.0521 0x0660 usbaudio - ok
13:23:43.0599 0x0660 [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
13:23:43.0646 0x0660 usbccgp - ok
13:23:43.0677 0x0660 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\windows\system32\drivers\usbcir.sys
13:23:43.0708 0x0660 usbcir - ok
13:23:43.0724 0x0660 [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
13:23:43.0755 0x0660 usbehci - ok
13:23:43.0833 0x0660 [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub C:\windows\system32\drivers\usbhub.sys
13:23:43.0864 0x0660 usbhub - ok
13:23:43.0911 0x0660 [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci C:\windows\system32\drivers\usbohci.sys
13:23:43.0926 0x0660 usbohci - ok
13:23:43.0973 0x0660 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
13:23:44.0004 0x0660 usbprint - ok
13:23:44.0067 0x0660 [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan C:\windows\system32\drivers\usbscan.sys
13:23:44.0114 0x0660 usbscan - ok
13:23:44.0192 0x0660 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
13:23:44.0223 0x0660 USBSTOR - ok
13:23:44.0254 0x0660 [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci C:\windows\system32\DRIVERS\usbuhci.sys
13:23:44.0270 0x0660 usbuhci - ok
13:23:44.0363 0x0660 [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
13:23:44.0394 0x0660 usbvideo - ok
13:23:44.0441 0x0660 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\windows\System32\uxsms.dll
13:23:44.0488 0x0660 UxSms - ok
13:23:44.0519 0x0660 [ 88142648ED929E6D2178CC3B8C13C00F, 7E6B6B2CF61C56FBF8F2A96BDA2E9506467A9A883BFD3BEA78A4F500851E76DB ] VaultSvc C:\windows\system32\lsass.exe
13:23:44.0550 0x0660 VaultSvc - ok
13:23:44.0613 0x0660 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
13:23:44.0644 0x0660 vdrvroot - ok
13:23:44.0722 0x0660 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\windows\System32\vds.exe
13:23:44.0800 0x0660 vds - ok
13:23:44.0847 0x0660 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\windows\system32\DRIVERS\vgapnp.sys
13:23:44.0878 0x0660 vga - ok
13:23:44.0909 0x0660 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\windows\System32\drivers\vga.sys
13:23:44.0956 0x0660 VgaSave - ok
13:23:45.0003 0x0660 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\windows\system32\drivers\vhdmp.sys
13:23:45.0034 0x0660 vhdmp - ok
13:23:45.0081 0x0660 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\windows\system32\drivers\viaagp.sys
13:23:45.0096 0x0660 viaagp - ok
13:23:45.0143 0x0660 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\windows\system32\DRIVERS\viac7.sys
13:23:45.0159 0x0660 ViaC7 - ok
13:23:45.0221 0x0660 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\windows\system32\drivers\viaide.sys
13:23:45.0252 0x0660 viaide - ok
13:23:45.0299 0x0660 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\windows\system32\drivers\volmgr.sys
13:23:45.0315 0x0660 volmgr - ok
13:23:45.0377 0x0660 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\windows\system32\drivers\volmgrx.sys
13:23:45.0408 0x0660 volmgrx - ok
13:23:45.0455 0x0660 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\windows\system32\drivers\volsnap.sys
13:23:45.0486 0x0660 volsnap - ok
13:23:45.0533 0x0660 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
13:23:45.0564 0x0660 vsmraid - ok
13:23:45.0689 0x0660 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\windows\system32\vssvc.exe
13:23:45.0783 0x0660 VSS - ok
13:23:45.0830 0x0660 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
13:23:45.0861 0x0660 vwifibus - ok
13:23:45.0892 0x0660 [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
13:23:45.0923 0x0660 vwififlt - ok
13:23:45.0970 0x0660 [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
13:23:46.0001 0x0660 vwifimp - ok
13:23:46.0079 0x0660 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\windows\system32\w32time.dll
13:23:46.0157 0x0660 W32Time - ok
13:23:46.0235 0x0660 [ 0DC36E066294B88F3EC1F9F97AD0F9D4, 87966571D6580BAB3F787500F92DCCAC85F34AD4D1A626AF1BE316B74DF41339 ] WacHidRouter C:\windows\system32\DRIVERS\wachidrouter.sys
13:23:46.0251 0x0660 WacHidRouter - ok
13:23:46.0282 0x0660 wacommousefilter - ok
13:23:46.0313 0x0660 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
13:23:46.0344 0x0660 WacomPen - ok
13:23:46.0407 0x0660 [ B54A60581FB7BFEEE9368951C34472E7, E5C59B5000C5B40E0685DB25E65F18DE0A2A98F852CB383C7946E3AE7ECC6201 ] wacomrouterfilter C:\windows\system32\DRIVERS\wacomrouterfilter.sys
13:23:46.0422 0x0660 wacomrouterfilter - ok
13:23:46.0454 0x0660 wacomvhid - ok
13:23:46.0485 0x0660 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
13:23:46.0532 0x0660 WANARP - ok
13:23:46.0563 0x0660 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
13:23:46.0610 0x0660 Wanarpv6 - ok
13:23:46.0750 0x0660 [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
13:23:46.0844 0x0660 WatAdminSvc - ok
13:23:46.0968 0x0660 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\windows\system32\wbengine.exe
13:23:47.0078 0x0660 wbengine - ok
13:23:47.0187 0x0660 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
13:23:47.0234 0x0660 WbioSrvc - ok
13:23:47.0312 0x0660 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\windows\System32\wcncsvc.dll
13:23:47.0358 0x0660 wcncsvc - ok
13:23:47.0390 0x0660 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:23:47.0436 0x0660 WcsPlugInService - ok
13:23:47.0483 0x0660 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\windows\system32\DRIVERS\wd.sys
13:23:47.0499 0x0660 Wd - ok
13:23:47.0608 0x0660 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
13:23:47.0670 0x0660 Wdf01000 - ok
13:23:47.0733 0x0660 [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost C:\windows\system32\wdi.dll
13:23:47.0764 0x0660 WdiServiceHost - ok
13:23:47.0795 0x0660 [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost C:\windows\system32\wdi.dll
13:23:47.0826 0x0660 WdiSystemHost - ok
13:23:47.0889 0x0660 [ 55C70654420DBF429604FD567E6F3CD3, 22191B049BCA76EF13AEDF8078E452E6B35E998A75AD63F14C542B541EA9F67D ] WebClient C:\windows\System32\webclnt.dll
13:23:47.0951 0x0660 WebClient - ok
13:23:48.0014 0x0660 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\windows\system32\wecsvc.dll
13:23:48.0076 0x0660 Wecsvc - ok
13:23:48.0107 0x0660 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\windows\System32\wercplsupport.dll
13:23:48.0170 0x0660 wercplsupport - ok
13:23:48.0201 0x0660 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\windows\System32\WerSvc.dll
13:23:48.0263 0x0660 WerSvc - ok
13:23:48.0294 0x0660 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
13:23:48.0341 0x0660 WfpLwf - ok
13:23:48.0404 0x0660 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\windows\system32\drivers\wimmount.sys
13:23:48.0435 0x0660 WIMMount - ok
13:23:48.0575 0x0660 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
13:23:48.0638 0x0660 WinDefend - ok
13:23:48.0731 0x0660 WinHttpAutoProxySvc - ok
13:23:48.0840 0x0660 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
13:23:48.0887 0x0660 Winmgmt - ok
13:23:49.0028 0x0660 [ 1DE9BD23AFA36150586C732D876D9B74, 32CF2C8EC18CFDA677AB72A182EB4B839DCC72BFCD6CA309BE2F434991CAE973 ] WinRM C:\windows\system32\WsmSvc.dll
13:23:49.0121 0x0660 WinRM - ok
13:23:49.0246 0x0660 [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
13:23:49.0277 0x0660 WinUsb - ok
13:23:49.0371 0x0660 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\windows\System32\wlansvc.dll
13:23:49.0449 0x0660 Wlansvc - ok
13:23:49.0620 0x0660 [ FB01D4AE207B9EFDBABFC55DC95C7E31, E0EFDBBE0BAC275230C8C1A053948C21BCF20B99B92E50939E95FFB9DC87F6BA ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:23:49.0730 0x0660 wlidsvc - ok
13:23:49.0792 0x0660 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
13:23:49.0823 0x0660 WmiAcpi - ok
13:23:49.0901 0x0660 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
13:23:49.0932 0x0660 wmiApSrv - ok
13:23:50.0073 0x0660 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
13:23:50.0166 0x0660 WMPNetworkSvc - ok
13:23:50.0229 0x0660 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\windows\System32\wpcsvc.dll
13:23:50.0260 0x0660 WPCSvc - ok
13:23:50.0338 0x0660 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
13:23:50.0385 0x0660 WPDBusEnum - ok
13:23:50.0432 0x0660 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
13:23:50.0494 0x0660 ws2ifsl - ok
13:23:50.0556 0x0660 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\windows\System32\wscsvc.dll
13:23:50.0588 0x0660 wscsvc - ok
13:23:50.0619 0x0660 WSearch - ok
13:23:50.0806 0x0660 [ 398F2927880FC18C1A07C359C745DE1A, 759C2C31B5293CFF8DA8F95259E5F68AC67FE09A6BDC1A151D98881FC55B1A33 ] WTabletServiceCon C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
13:23:50.0853 0x0660 WTabletServiceCon - ok
13:23:51.0056 0x0660 [ 3EFC48CE17BE25D2F8C04C5A0FAE1F53, 6439396AE1C59966E3C0DF519956F9D25568155174004F9562F764CEF8A49802 ] wuauserv C:\windows\system32\wuaueng.dll
13:23:51.0196 0x0660 wuauserv - ok
13:23:51.0274 0x0660 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
13:23:51.0336 0x0660 WudfPf - ok
13:23:51.0399 0x0660 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
13:23:51.0430 0x0660 WUDFRd - ok
13:23:51.0461 0x0660 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\windows\System32\WUDFSvc.dll
13:23:51.0492 0x0660 wudfsvc - ok
13:23:51.0555 0x0660 [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc C:\windows\System32\wwansvc.dll
13:23:51.0617 0x0660 WwanSvc - ok
13:23:51.0695 0x0660 [ 30B73EB97218A16CBC6DE535782A1B35, 5B034F39FA5B902BD6899717F7696871CDAFB8698B48BB0E95DAE51234715A28 ] yukonw7 C:\windows\system32\DRIVERS\yk62x86.sys
13:23:51.0758 0x0660 yukonw7 - ok
13:23:51.0929 0x0660 ================ Scan global ===============================
13:23:51.0992 0x0660 [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\windows\system32\basesrv.dll
13:23:52.0054 0x0660 [ A83DD77AC941A8B1B2652035EA589149, 8F879178E154B3F9F367FB3D6F9A21B129F36796CD3B6A76A9E7CFDD0F63332C ] C:\windows\system32\winsrv.dll
13:23:52.0101 0x0660 [ A83DD77AC941A8B1B2652035EA589149, 8F879178E154B3F9F367FB3D6F9A21B129F36796CD3B6A76A9E7CFDD0F63332C ] C:\windows\system32\winsrv.dll
13:23:52.0132 0x0660 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\windows\system32\sxssrv.dll
13:23:52.0194 0x0660 [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\windows\system32\services.exe
13:23:52.0210 0x0660 [ Global ] - ok
13:23:52.0210 0x0660 ================ Scan MBR ==================================
13:23:52.0226 0x0660 [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
13:23:52.0725 0x0660 \Device\Harddisk0\DR0 - ok
13:23:52.0725 0x0660 [ 973E9BA32FDBB305C552ED3E1EBF0686 ] \Device\Harddisk1\DR3
13:23:52.0850 0x0660 \Device\Harddisk1\DR3 - ok
13:23:52.0850 0x0660 ================ Scan VBR ==================================
13:23:52.0865 0x0660 [ F92B9D6B59FD66260C04087457A4D6E1 ] \Device\Harddisk0\DR0\Partition1
13:23:52.0865 0x0660 \Device\Harddisk0\DR0\Partition1 - ok
13:23:52.0881 0x0660 [ FF3BC22053CEF46FBE2AE4D7B4FBA0BF ] \Device\Harddisk0\DR0\Partition2
13:23:52.0881 0x0660 \Device\Harddisk0\DR0\Partition2 - ok
13:23:52.0896 0x0660 [ 33710005F03B0F1BA5A9D55F769A7B70 ] \Device\Harddisk0\DR0\Partition3
13:23:52.0896 0x0660 \Device\Harddisk0\DR0\Partition3 - ok
13:23:52.0912 0x0660 [ 920342057DF3E902B1ABB008966A5D5B ] \Device\Harddisk1\DR3\Partition1
13:23:52.0912 0x0660 \Device\Harddisk1\DR3\Partition1 - ok
13:23:52.0912 0x0660 ================ Scan generic autorun ======================
13:23:55.0361 0x0660 [ D72ABA21ABB9314DA878FB9760E7A4C2, 90E3892B4070A6265CE8AB33115EEBED7D61F6FDB836B5EB1972BE7DD30E21F0 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
13:23:56.0126 0x0660 RtHDVCpl - ok
13:23:56.0453 0x0660 [ E4A94D17436B4E9F53CD64D08E53D964, E3B2D336A1E90C1C520B834FA986AE2CFBD2807664C35E8AB9059CC899E58CFC ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
13:23:56.0562 0x0660 SynTPEnh - ok
13:23:56.0765 0x0660 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
13:23:56.0828 0x0660 UpdateLBPShortCut - ok
13:23:57.0093 0x0660 [ 54FA8528EDA1B6B34615F4EA3FCB35E6, B078821475D6FDED19579A487484D0752DC6E1AA0D1ACA71353C743B00291C61 ] C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
13:23:57.0140 0x0660 CLMLServer - ok
13:23:57.0202 0x0660 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
13:23:57.0233 0x0660 UpdateP2GoShortCut - ok
13:23:57.0311 0x0660 [ AAD52179D4A526AD4A705B87C6E4F72A, 0015F316DD2E73D5D2434DAC7CAB47050B21BF8CAE23482302A0E1982EF8A3BD ] C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
13:23:57.0342 0x0660 UpdatePDRShortCut - ok
13:23:57.0420 0x0660 [ 28FD28A29C637C9AFEFE0A26E27C6DFE, A490ADCD7BC9863B6E8773CADFDE6CA58A0743CD64C39D14AF380B18ABDEC003 ] C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
13:23:57.0436 0x0660 RemoteControl8 - ok
13:23:57.0483 0x0660 [ F8270CFD51F9D6BF42140FA4071C83FE, B7AAF6B13C01CB6B94DEABBDD40249A6D298DD4BCBE2921D8E332F88ED3B754A ] C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe
13:23:57.0498 0x0660 PDVD8LanguageShortcut - ok
13:23:57.0592 0x0660 [ 9ACFD9D5E12D849B28C78FED6D620EB3, 203D1EECFB44BA7D3936AAA2280B1D88207BA7655AB735C17BF9F3AAF3D8A803 ] C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe
13:23:57.0623 0x0660 UpdatePPShortCut - ok
13:23:57.0717 0x0660 [ 82A3031F7FAA61CB5E040B0D98A104AF, 5EB990BACE18112658208F517EE2E635DBD00A06380DD9DAB253556C980DEA99 ] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe
13:23:57.0732 0x0660 UpdatePSTShortCut - ok
13:23:57.0810 0x0660 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe
13:23:57.0842 0x0660 UCam_Menu - ok
13:23:57.0904 0x0660 [ 5C1AB463BC29CC9095625D0A7E0A4C99, 803C5ADA2AE2A9947D63619AEF3DF7D232004808A0333B7F6BD035238FAF9B78 ] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
13:23:57.0935 0x0660 NeroFilterCheck - ok
13:23:58.0029 0x0660 [ C6352C29C56077749CEEDD08680D347D, DF520DA9E9F8D34004E497969FC4AB0D9F057EEE5D8A0BBB91C5EBC983011ABD ] C:\Program Files\Bamboo Dock\BambooCore.exe
13:23:58.0076 0x0660 BambooCore - ok
13:23:58.0154 0x0660 [ 3F5D3051112747AC7307620641FAC63B, 483B5D04560C8831A363915F08DB8B4857C6B863A8AFABE401FC429F068CECD8 ] C:\Program Files\Winamp\Winampa.exe
13:23:58.0185 0x0660 WinampAgent - detected UnsignedFile.Multi.Generic ( 1 )
13:23:58.0185 0x0660 WinampAgent ( UnsignedFile.Multi.Generic ) - warning
13:23:58.0263 0x0660 [ 8DDA2B606279753601F9415DA503CA63, 2C9AD8218E150B6D50817991377ED3230A1672EFBD7AE29D0CD9E55E2418C800 ] C:\Program Files\QuickTime\QTTask.exe
13:23:58.0294 0x0660 QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
13:23:58.0294 0x0660 QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
13:23:58.0356 0x0660 [ DB367E8C8F46C26A05BA982715CC0DB5, 63AE8DD8E41260123E8C98905BD3D444BED86AEA6353F690483E5CB116433AC2 ] C:\windows\system32\TiltWheelMouse.exe
13:23:58.0388 0x0660 MouseDriver - ok
13:23:58.0512 0x0660 [ 20DE1CDD37A5D3D4177B8D9FEF907D81, F6CE80984852595A677C92B8C555F9B0D398BAE36768E0D6FC7F8C7211D962D2 ] C:\Program Files\Microsoft Security Client\msseces.exe
13:23:58.0590 0x0660 MSC - ok
13:23:59.0058 0x0660 [ 43ECFBA026E6CFEF983FF6CD1D38D639, D13ACC5191F9FBB8234BEE91BC6FA5E4ECF88ED44CA6B8644C5D05AB34ECA358 ] C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
13:23:59.0199 0x0660 Adobe Creative Cloud - ok
13:23:59.0495 0x0660 [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
13:23:59.0558 0x0660 AdobeAAMUpdater-1.0 - ok
13:23:59.0620 0x0660 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:23:59.0667 0x0660 SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
13:23:59.0667 0x0660 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
13:23:59.0667 0x0660 Force sending object to P2P due to detect: C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:23:59.0682 0x0660 Object send P2P result: false
13:23:59.0807 0x0660 [ 8FE651ACBA3344E645CFEB6286FFF6B8, ECE4DFFEB7EB0B19B6790FD0F619A5C4B23CA0BA9CC3F25924925F8EA07264B6 ] C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
13:23:59.0870 0x0660 AdobeCS6ServiceManager - ok
13:24:00.0275 0x0660 [ FEDF59A44767480267C5615C46F0FBA5, 91FE9E7E1FC471E99BD769F4F6FC96934B91A3E5406A921CD75292021B72C3CF ] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
13:24:00.0462 0x0660 NvBackend - ok
13:24:00.0494 0x0660 [ 51138BEEA3E2C21EC44D0932C71762A8, 5AD3C37E6F2B9DB3EE8B5AEEDC474645DE90C66E3D95F8620C48102F1EBA4124 ] C:\windows\system32\rundll32.exe
13:24:00.0525 0x0660 ShadowPlay - ok
13:24:00.0618 0x0660 [ F916BA0DA28A4B4F7B1ADE76EB42F088, FB3C91D44709D039E959B275F6ECE26AF9307D272FE3E25CC41EAC259AA3B596 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
13:24:00.0665 0x0660 SunJavaUpdateSched - ok
13:24:00.0837 0x0660 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
13:24:00.0930 0x0660 Sidebar - ok
13:24:01.0008 0x0660 [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
13:24:01.0055 0x0660 mctadmin - ok
13:24:01.0118 0x0660 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
13:24:01.0196 0x0660 Sidebar - ok
13:24:01.0211 0x0660 [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
13:24:01.0242 0x0660 mctadmin - ok
13:24:01.0289 0x0660 [ F34E7705751BB413283434697BF8E55D, BDF8B29A56C51439BEB9B4C3576341BBE3EE80582063AD602AB77D19A0630C35 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe
13:24:01.0336 0x0660 DAEMON Tools Lite - ok
13:24:01.0695 0x0660 [ A733475CBD8E68419DCA837BF8585BB7, D434273D35E63413617768B3DBA9F431630B3FDD5E97AE7874492625D1BDDCF6 ] C:\Program Files\Origin\Origin.exe
13:24:01.0929 0x0660 EADM - ok
13:24:02.0085 0x0660 [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
13:24:02.0116 0x0660 ISUSPM - ok
13:24:02.0147 0x0660 msnmsgr - ok
13:24:02.0163 0x0660 Skype - ok
13:24:02.0163 0x0660 ICQ - ok
13:24:02.0194 0x0660 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.8.204.0 ), 0x61000 ( enabled : updated )
13:24:02.0194 0x0660 Win FW state via NFP2: enabled ( trusted )
13:24:02.0194 0x0660 ============================================================
13:24:02.0194 0x0660 Scan finished
13:24:02.0194 0x0660 ============================================================
13:24:02.0210 0x142c Detected object count: 13
13:24:02.0210 0x142c Actual detected object count: 13
13:25:16.0481 0x142c athr ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0481 0x142c athr ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0481 0x142c IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0481 0x142c IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0481 0x142c MSCSPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0481 0x142c MSCSPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0481 0x142c Netaapl ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0481 0x142c Netaapl ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0481 0x142c PACSPTISVR ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0481 0x142c PACSPTISVR ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0497 0x142c seehcri ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0497 0x142c seehcri ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0497 0x142c sptd ( LockedFile.Multi.Generic ) - skipped by user
13:25:16.0497 0x142c sptd ( LockedFile.Multi.Generic ) - User select action: Skip
13:25:16.0497 0x142c SPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0497 0x142c SPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0497 0x142c SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0497 0x142c SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0497 0x142c USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0497 0x142c USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0497 0x142c WinampAgent ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0497 0x142c WinampAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0497 0x142c QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0513 0x142c QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:16.0513 0x142c SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:16.0513 0x142c SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:37.0573 0x00fc Deinitialize success
|
|
23.11.2015, 14:55
| #7 |
| /// TB-Ausbilder | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Servus, deine Version von AdwCleaner ist veraltet und bringt uns hier nicht weiter. Lade dir AdwCleaner, MBAM und JRT auf einen Stick und führe diese wie beschrieben (Schritte 1-3) aus. Zum Schluss dann nochmal FRST ausführen (Schritt 4). Schritt 1 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 2 Downloade Dir bitte  Malwarebytes Anti-Malware
Schritt 3 Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Schritt 4
Bitte poste mit deiner nächsten Antwort
|
|
23.11.2015, 15:28
| #8 |
| | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Beim 2. Schritt habe ich beim Versuch Malwarebytes Anti-Malware zu installieren folgende Fehlermeldung: Runtime Error (at 97:137): Could not call proc. |
|
23.11.2015, 15:29
| #9 |
| /// TB-Ausbilder | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Servus, dann weiter mit JRT und FRST bitte.  |
|
23.11.2015, 15:42
| #10 |
| | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Logdatei vom AdwCleaner Code:
ATTFilter # AdwCleaner v5.022 - Bericht erstellt am 23/11/2015 um 15:13:39
# Aktualisiert am 22/11/2015 von Xplode
# Datenbank : 2015-11-22.2 [Lokal]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x86)
# Benutzername : Denise - DENISE-PC
# Gestartet von : C:\Users\Denise\Desktop\AdwCleaner_5.022.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\Users\Denise\AppData\Local\ext_meduke
[-] Ordner Gelöscht : C:\Users\Denise\AppData\Roaming\Genius
[#] Ordner Gelöscht : C:\windows\system32\Tasks\Genius
***** [ Dateien ] *****
[-] Datei Gelöscht : C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\fg@favgenius.com.xpi
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
[-] Aufgabenplanung Gelöscht : Genius
[-] Aufgabenplanung Gelöscht : Genius_Interval
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{11B16A3D-F03E-4565-A532-66AB219C9B03}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3BD9808B-ED48-4D9F-9B5D-BFE2A98BB37D}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3E1B6DED-FBEA-43F6-8A19-9B78A04868CC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4B0E9456-D1E3-4357-AD4C-E475AA1EE7CD}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8F91CD5E-B055-46B9-B848-8E19126528D5}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A6F5BB87-0757-4F32-96E4-514CFE725BD9}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C9391096-A296-4A65-AD69-F04EFEBDCF6F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{41AA42BF-6A1D-4CF3-A000-114075D09856}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{47C91A57-A863-43DF-B9D8-FB13C2E98479}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DEE0062A-5880-44A4-B43A-864CC76EF42C}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11B16A3D-F03E-4565-A532-66AB219C9B03}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11B16A3D-F03E-4565-A532-66AB219C9B03}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11B16A3D-F03E-4565-A532-66AB219C9B03}
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht
########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [2710 Bytes] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.0 (11.12.2015)
Operating System: Windows 7 Home Premium x86
Ran by Denise (Administrator) on 23.11.2015 at 15:31:58,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 858
Successfully deleted: C:\Users\Denise\AppData\Local\{000F0B6D-E736-4ED3-BCB0-045A445A9C2D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{00D721CE-1022-4038-8849-1C3B7921A3AE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{00DC3E45-81AC-46A1-8A73-C03FF9056E51} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{01051A8F-93DA-4AEC-A992-9161F635BAAA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0149AE32-449C-4BA6-A9CD-416169804BC2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{02CE0315-7F2C-4364-A767-F6FA198A1CF1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{02F7636A-68C2-46E6-9B09-F6AE50E65C46} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{03B28215-7E36-499F-A93A-D8239AD8A98E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{048058AC-4172-4999-B548-725964FB83EA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{051FF1A8-AE8D-482F-9499-6C163F34457E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{052BD34D-C18D-4D78-8693-81DC6E933AE8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0572D781-B27A-4E4C-AF36-9505338085D6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{05CA3C41-28D7-4A79-A5EF-B4066E9AB3F0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{06023F73-51B0-41FC-A080-0351F4E204DA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{060823A8-6215-4F66-A77E-E60A15BFCC55} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0616EAF6-7B05-47C4-A243-B469E856D836} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{077B23F1-3DB4-4E50-B4FF-0D87AAD68ACB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{078146B1-07F1-4ACD-8BAD-2A2FA876141C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{07EA9EFC-CD95-4599-B835-9BEC78BD34DF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{080AFC22-AC5C-4E8C-A9D7-AC1DB23A1C79} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{081EDBBF-4FEF-4B3B-A4FC-6FB4E864940B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0821F4C6-CABD-4A1C-933C-A44A673B5349} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{087CFA42-9F89-4821-9BD9-2A325920BF91} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{08B036DD-7A98-47BE-84E7-9442F8636B46} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{08C60092-E1A6-49AD-AE48-53EBED558127} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{08C819CC-0730-4DF0-A2E4-119211D52DC5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{08D4DBB3-BF75-4FCD-8242-C6F1C26D9664} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{09005D2F-20C6-40F4-A45C-C906C02513A7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{095B8B3B-DC24-4C97-B81F-F6E95A81753C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{097A9977-AFD1-48AD-8BD1-C0179AABF468} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{098C425A-5AD8-4238-9522-F30EFBA09FDE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{09C1B629-DB21-4B0B-BFA6-2BEE6703E893} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0A0275F0-5894-4376-A424-F63DCFF8F4DA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0A125B3D-2D39-4CAE-AC73-B728912755A9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0A12DFA2-C517-49EE-A525-879F90CC1625} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0A95534A-4920-445C-A159-9616BC74A7A7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0AE5DFAE-E9F3-42E1-A94F-859CF69CDAF9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0AFC383C-5D7F-4583-9F11-57B4319CCD82} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0B2001C9-EAB9-4D50-A725-A45787CEC6A1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0B5C81B0-9722-4681-8A50-020D99A763C9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0B6CA5ED-109C-4456-B9CF-D6A8D42BEDE8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0CD625E9-6D27-41D3-AC93-6FD10AE1EE95} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0D8E1608-D20F-45FE-A4B5-9DB6C685EB21} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0DDB0EB3-3823-4587-BB0C-8D3CCCEF17FC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0DE49295-B04D-403D-97E1-B342FA9252B0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0E031AB9-9193-4398-AB94-F1D8386FDB32} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0E5A18CF-6728-4E40-9011-9BF0B3E8C62D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0E609463-D73F-4214-925C-EF8231B0369A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0E956E6D-E18B-49A4-9B24-78474CCB7E7B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0EC1CDCC-5B74-4EFC-BC1A-5DDA033BCE1E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0EE4CB7E-5885-4B87-95FF-47994FE05E4B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0F9A1262-71AA-48CE-9608-D85E64AD88B0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0FAD90D0-4CBA-4BD0-A9E0-C658079DD479} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0FB433D2-5181-450D-BAE0-C546C39F76CE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1072F809-5C00-4EF6-B510-839DBE4E778F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{10778B5D-DB41-4F69-BB70-58CEFA9DA504} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{107A2C21-BE42-48A1-9831-3AAA0FF5CF68} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1088CB56-80FC-4E28-A2ED-DA11D6C47D1A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{10BDD316-9E04-4AFB-B3E6-3CB54A8C2256} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{11B7A657-EA45-439C-A474-22B3A8D6AE98} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{11BC2549-99E9-4FB9-980D-186C929D9AA4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{12094640-F723-46EE-8EC3-3BFBCB73D8C2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{124D2E62-9C22-4BDD-A2B5-FBFE0E8FD06B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{126F7CD1-0D6C-48CF-82E7-3359956AECA6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{12AF721B-7C76-43AB-BAEB-DBC0AE2B29CF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{12D5529D-6E26-4867-BC18-5311EF771E2E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{12E81296-9899-464B-B7F6-06DF73AFDA5E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1312A44A-E056-42FA-A339-B754ABDF12D8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{132F74CE-F87F-45BA-A900-69B6BBB04A78} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{138EFDDF-2B53-4F4C-A4CA-5282F49BC2F0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{13AB44B7-0FE5-4A96-846B-2A401F12D2EF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{13C79604-1A29-487C-AA55-61FB314225D7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{13D82FD7-35E9-4C3A-A785-C9A4BDBB095B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{141E70DF-3956-4D71-9D3F-15E04069E7B0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1481722D-6FEC-43B9-84D6-0FEEB1D5407A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{14FE511E-A8C1-4CED-A5E6-C8F11F9C7E6B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{15033E1B-AD31-49E7-9436-331428B992C7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1576E600-DA41-4ADF-A0D9-A129574891A4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{15B6D820-69E1-478E-9525-A21F2E3DB044} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1662BC45-7926-46A3-906F-2F377C75E090} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{168DAEE1-11A8-4361-BD3E-174F020F13BB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{16CE4D8F-7E64-4565-B94C-E76E5E8808F6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{174FE719-D142-4D3B-9078-114E7159D75F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{175B98C0-3994-4EED-AB6C-B65B9F75B54C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{17EF73EE-695E-4613-B03B-987A49CE73F6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{180E38C7-B7DA-41C6-91D2-8255479BA2D1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{18D6C47C-C0AC-4C9F-8CDE-D205CE720207} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{18F50F86-8687-4D83-9D63-3455D5712D77} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{193D5AD0-EC5D-43B7-9AEB-58A494DCBE6B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1957C48C-510D-42DC-A8CC-6CB76419D65E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{19615844-1CED-43E4-8142-871D05C2C1ED} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1977B267-C368-48A3-A02B-C68950129CA4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{19EF396B-0503-4E06-BDD8-421AF03755BE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1A0102DB-46E3-4335-96DF-D2C979ABE2F6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1A13D5AF-BB54-448F-A5A3-9913078250E7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1A15F136-6023-4432-A580-0295D37AB169} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1A2CC6BC-D2C2-48F8-8027-4F6D9E0665F2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1A3AF3EC-8CE2-4953-8793-789934A5F615} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1A50BE95-7D25-4FBE-A653-2AB4D15E8D30} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1A5B10E2-41AE-4C3D-B2CC-9B3731CF75E4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1ABB3A24-CBB9-4AEC-82F8-C13490E30050} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1B3D301B-121D-44B5-B452-097252C1867B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1B8D486B-ADE7-4341-8D70-DBF0A8FAB112} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1BB31BCD-E9E8-4B09-86FE-6D99AC1B9EFB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1BFAA701-9A78-4885-8AD5-4D4B6E994A9B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1C0ACB04-B856-40F6-B93C-40B73DC63F33} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1C932297-E9DA-4722-A1A7-1992935C3D36} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1CB5268F-1567-4AA8-A272-B98E06F75A47} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1D4A1FFB-555F-4642-B9DE-9D0C4DE07E79} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1D4FFB2B-3C5D-489F-80F0-02A7AD9C056F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1DD655F9-19F3-4E39-A151-DD2BE9215730} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1DED3F7E-2CD6-45D7-99D7-00FAB1743377} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1E2768F4-C7E4-41F9-8460-327235C7C7BC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1F0D07DF-9724-47ED-8823-7836BF725B7C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1F8AC6CC-792F-462B-871B-32E1ACB3939F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{1FE9EC30-2579-4E98-A4CF-0E524E96A5B4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{20297B34-5483-4EFB-92CA-1171EDFA8E65} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{20B06B49-7E9F-44F9-9258-83ED26B31604} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2107B507-703F-4F41-B2AD-C8D0636B3E72} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2154A931-6F59-4254-96E1-0065904058B9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{216FF243-3EDF-4366-8D97-FFD02AA23BBD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{21C3800E-50DD-4E9B-93D1-273CE919C656} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{21E0A48C-4927-4A94-AEE3-FB2323CAEC7F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{222DFF71-D776-4FA7-86B2-AE468067763E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{227CDF8B-0E4E-407E-A9CA-91CEFD423E44} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{22C3452B-6BA9-4554-8D6B-928523F0B86C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{23161D2A-9D7E-432D-9962-F2A79857C392} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{23635DE3-9395-4660-8219-9E8CEE81BBEF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2377C924-B001-4B06-B745-2EA42B23DDDF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{23FDFCD6-3460-4519-ADC3-5A6BD4F20D86} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{245C0774-33AA-4217-8221-361CF4CC396D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{24DD7974-8AC7-45E5-AC52-A8639F8F1B55} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{252E018C-FDC2-4A18-ABC6-42BB0E184919} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{25D6460F-64A8-45F2-8AF7-132D2257A07C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{25DE6F23-50E6-4967-8AF9-866B03075E4E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{26B59403-A112-4CB2-A504-016FF2BAA72F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2710D2B8-4051-4A70-8CFC-69F2C0D248F8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{27587C60-308B-4057-98F1-749A42403CDD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{278AC4A6-2189-4262-B11D-057FB46FCB67} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{282EAF15-358A-4ACD-8A44-AAA2B3B292F5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{29084AEF-E4BE-437D-8AB0-14DC2C4EB1DA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{291A9507-BDA1-415D-B06F-A0074F84C2AE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{297B09C4-B627-4C3A-AF6C-F38B8F54F220} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{29F4D7D3-E231-425A-92BF-71A66D03E6F9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2A61E977-F228-44DF-B830-5556CE560DBD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2A8764B2-3C96-4B85-BA71-1EA06191EF5E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2AE775A0-9459-4D31-848D-88F4B4895D00} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2AEE5F1B-28C4-4DC5-B591-B5648AD4B2C6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2AF0B036-2858-4983-AED9-A3BAAC4BC36A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2B22AB4D-BA66-4E91-B354-0FCF2F3B3B66} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2B77E9B2-AF13-494C-B9AD-9E7919E9DA4D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2B947DF9-0B8B-43F0-B48B-57493AC915AE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2C1A4A6B-EB38-439E-80AD-D4B769216992} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2C2C901B-3EF9-4A78-91CB-04084641F695} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2C354339-8D12-467E-ACE9-A52FD0EC8460} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2C487E39-AF10-4EFF-A5C4-030928EAC2DC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2C582FCC-3E92-4C83-9EA6-4E43CCB38A13} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2D164392-F6D9-4491-807B-B8393EA78AF5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2D6F5A8C-16EE-4AEF-830C-786A157E3519} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2D9A638B-73B9-4E3F-804B-FEB5B1D1660F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2E42D2DF-EC31-4096-BCA5-6ECCABA5149A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2E9F2311-C953-4C39-A37F-F8F9BD824678} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2F6BE94A-BAFC-4FC8-90C2-3E8D79A49B53} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{302DF3AA-4667-4673-A4E3-8E536C4F7D5B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{30FE6491-D683-46B9-987C-5A9F6C724C2D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{316F80F8-3672-4A74-8CC2-123EBAE570D4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3194AD7E-D841-48BF-8953-FF7741EBA1AB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3194C6B7-1487-4DCC-80C3-21213A7AD3BA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{31DE959F-9E1C-4C57-A41F-EB8C2819AC5B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{321E39EA-C25B-484A-99E4-C049238BA9B3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3222C64F-E99F-46A8-A52C-0251453DED03} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{32601B18-241E-4707-BABB-84FB4C6BD9B4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{327B8E82-0862-4928-A927-6865AEDB15F9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{33089EDB-4D77-4FE5-8D93-5B7CF0E816D2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{33A34833-E39A-4DDF-988D-E885E39EA3D7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3432204F-AF40-4FB1-8B90-AB1B42BE42E5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{343DC94C-F3D0-4C0F-9608-705F1F616BC7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{34C8B8AB-CF9E-4B10-9E10-73FFF205D097} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{356A7F21-8594-4F62-8A1B-B43F23A9CC30} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{359DABAE-5689-4C96-81CA-BE7F8195C8F2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{35B53CB2-9331-4FC9-BA8F-298D8B05FE13} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{365065C2-F1AF-42AB-AFDE-3ABD61CCC7C1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{373AC23F-4B98-43E1-87E4-245279A49925} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{37D2B108-408B-40F8-89D6-058F6A6FD7AC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{38D9A211-91F2-4877-A65F-3FD8E2ED854B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{38DC649F-80C8-45AD-B545-E08B63ECD200} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{392EEFFD-F786-4DBA-AF52-D76133CE4BEB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{39316C36-E29D-4132-8567-7960A8EB3286} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3954BE01-6B8D-41B5-8FA1-17D5AC00030F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{396F54B1-8DD6-4009-B8E0-C6AAD4581418} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3989FAE9-D97B-4AA2-B66C-7ACA5FCFD32E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{39EA6C0A-00AF-4BBE-9308-DC292127F519} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3A721853-D219-4873-AA9D-267E6F923E98} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3B1FA739-E981-4D81-A8BC-953A49A61F73} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3B80F56F-7CA3-4EE7-8156-18E8A732EA89} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3B9DDB43-9AAF-4408-BEA1-06A2A1C6A2DE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3BB4454C-F496-4B79-9A3E-2DE18721B717} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3CB1A20F-0532-40B9-8272-7B3D41E435F8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3CD36875-3DB5-4B45-B3A6-3DEF996FFB41} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3CEC3A5F-C5CD-470C-B434-5ADCC558968C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3CF19C80-C44D-44BF-90CE-C597BD424B4E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3D047995-B56D-4218-9770-35DEDB905355} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3D2E6FE2-2D26-4557-BF90-23E37637AF01} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3D5214FD-CE21-4F97-B470-E772F0AC10A1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3DF6B6A7-241C-486A-B2A2-765203249292} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3F98FCE3-D2E2-4A55-92AB-C0BA2A45FFC7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{3FA3701D-D051-4994-9978-A4D985ABB8B2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{402158A1-7E55-4E1B-8E34-0C0FE0EF0A47} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{407B2D21-9480-439A-9F9D-0147C06D4E3D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4094ED65-024F-4206-8E90-7D7F5EB7776E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{40C882EE-C4B6-435B-95AE-5A4828796768} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{40D9F3BA-F3C2-43B9-8312-38C0F437CC1D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{40F930D1-A359-4465-8C84-3EE38A1BCE4F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4228E0C0-C990-41DF-B3E9-7EE1728F43CF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{42A7497C-03BD-49F6-80FD-B20D08F2E115} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{42E60B4F-2BC8-4853-8089-00EA329D71F6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4338B722-0462-4417-837D-1993AFA3D05D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{43529BE9-4477-46FC-A3DF-C9A868184799} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{435B89C0-2E4B-4EE1-8D17-6721FFA9B27F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4432489E-6264-42B8-B096-A1AF351CFA27} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{451A2E9B-0152-4F35-98F2-DD45751176CC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{451D14C2-7C4A-42C0-BBCE-DB39EAB19C9F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{452668B3-E514-4BC6-8BB0-1A0E98603B84} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{454DF7EF-E1D6-4A8E-B3A2-48ECB86667B2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{45532E69-E724-404B-A00A-9E0CB3E862BC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{456B486A-0C33-4F45-B1D2-C3E571284380} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{457BF613-6A1F-43A6-809D-E6663F5FD736} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{45B66CF7-0C3C-4D1E-91C9-393A25696BAA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{461E0E27-BB85-449B-BE62-EC4050B38263} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4683D9D9-AF1F-4209-B24E-68B39C2B8551} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4696F07B-1B6B-4818-802E-2E66D5B3F25F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{46BACE83-A16C-4D9A-9398-39090DB09C2F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{47A5E3FE-C1A5-4E30-9069-A8B736646DA0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4827919B-D532-46B9-A6EE-F2A9841C72B3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4828AD86-65B7-4F5A-8B7B-69B99BC6ABA9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4881AD58-F773-4C1E-A55F-7F617A7950B4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{490AB755-D496-4448-A2A3-80653822C149} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{49479590-C3C8-4354-9A64-1FD225AD60E2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{49757AD2-5873-41C2-9D7C-9D66B7185EEF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{498F66A4-5249-4E62-B4C1-73C2E487B32F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{499396D6-8447-4845-97CC-551FDF641F9C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{499DF985-A581-4711-84CD-6B625713C837} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{49B61D0A-BCA3-4D14-B09A-08217E3D9491} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{49DA99FB-7A8A-4E08-A931-DE3F5EBF765C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4A105A7E-1443-4CFB-8FC4-1A9D7D6AA24E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4A375E30-EDF0-4191-B705-100CC1FBE9CC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4AAB57D4-80B0-4A0B-8895-E00F9581A91D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4AF50555-985F-4D30-9D2C-0B82773D1F5F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4B4AEE5C-64F5-47C8-A5FD-8AE75D543B2A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4B71E235-8987-4344-8821-8C0140C4C3B4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4BBA3A38-44BA-457B-A542-D8405B9E17C2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4BD1694A-B36E-47F0-8B7D-27616EE5828C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4C06843A-8EA7-4072-B677-AFBBD4A89007} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4C4F60A6-BD46-42A0-B13A-5C7504F0805E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4C756524-D6DE-44AF-BA09-29E7E230D488} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4CFF6A38-C0EB-4BD2-BABA-0A727CDE81A7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4D362CDD-C19B-4169-A9F0-B3034CF5AD18} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4DB43483-AF68-4833-80E9-6ACCECC863DC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4E285C22-BD41-4962-A48F-6921070624E0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4E31E974-F648-4BAD-93E8-26FB8AFA12E4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4E35FEDE-1925-465B-9FE3-41027D829D25} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4E6A7906-5456-42C6-8B0A-D7B924618947} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4F3A7846-8241-4F77-9AD9-AE3ACD948F84} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4F3FB4BB-BC03-4654-AC95-2E16A987B2D2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4F78CC70-FDB4-405E-A0E9-C22163DE2571} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4F875552-DBD9-4E1F-924B-2171E7B824B7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4FA8A9BF-5129-44AE-8A01-C7C9B1A5092E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{500DB85F-55C9-42DD-AB11-BC2E0FD0FBE5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{502CF752-8553-4DCA-95E2-4879BB0E2C2D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5069FDB5-112E-48AC-BA64-44AB3E8BDA80} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{509AB146-DE26-4E0A-A550-6AE24F3DEEBC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{50AF170A-8ED0-4464-AF68-917FBB8B3ECA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{50B59AA9-E8A2-48DF-AED1-B9D5DF0942F4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{50D44806-89F0-40A4-A617-33AFB85B70AF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{511FCB4C-A581-4353-A0B8-54FCC701716B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5164CD1A-A251-4C8C-B04C-1E79C1C9FC2D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{519CDCEB-A398-47E1-93B4-C36E1052E0A6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{51B14C50-C6EB-469D-AC41-2204E0774FE6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{51D941AE-91EC-4079-AFB6-639D04557F88} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{52EA11DA-559C-4512-AF0E-0AAC2B5491BF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{53BC8540-54D8-4EB5-9EF2-B338853714CD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{53C74F01-FDE5-4B99-BEED-F43827E2438D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{53E834FA-9839-418C-B7EF-57C010C0C65E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{540B9AC3-CDC3-4B2B-9471-B444A6131BAB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{54CE696F-7CC0-4394-AE0D-6E2BE7857D8A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5516752E-8D67-465D-A3ED-0E2FBB59A326} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{553C284D-342B-4C85-AA14-741DFFC7C0F8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{55B3DB26-F5EF-4F79-8DA1-98166AC5E1B7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{55C99003-DB7E-4AA7-B29F-2896F6B79CA8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5621502D-67B2-490A-9575-A0D9156BB906} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5637C61E-8F36-4B5D-A137-4E444E15487D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{56E6CB5E-C7FC-466F-BC7B-F460A5C5C7D0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{56E8EEB1-BE1D-4BF4-AB6F-3E3B3B92D6C3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{576DFC60-2AB7-4DCF-98C8-24FD474F9CE4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{57771CF6-864B-447B-8C51-98A93697E6B6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5783B9A2-32C7-49E1-AA7E-FD9EE8A15674} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{57E5790A-E887-4D6B-B676-A2B28CF0FBFD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5802CE7A-1687-4E1F-8AA2-D25FA379ABB4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{58058300-F23C-4BB8-A251-DF6A05A0DB2A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{58D5B0DF-2A95-4D91-8393-1996452D6AB8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{593F4B07-B161-4430-A226-CF97DF32B64B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{59486350-A02C-4057-9AF9-A7276624D00B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{59A319EC-C469-4A2A-9D86-CE7B1B53FC0D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{59CD04A4-EA5B-4841-81EC-67E880853C88} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5A7C74E7-CA67-487E-A0DF-90295FB7BD3D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5A907DA2-25C9-4633-A0E7-8D1A9C122DB8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5AAA9D61-E985-47BE-8304-DF71A83F22CF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5AE300FE-ADE9-49C2-AC9E-52334A1B46D8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5B514D3E-A167-48EC-9FEA-AD95126C4D35} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5BC8BBF9-F2F8-440E-AAA8-9DACCD0979C6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5C0E8798-6577-4EB8-A67A-32FDE2B4732C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5C92E4C0-139C-45E1-A5AA-6D79BD03FEC4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5CC2933A-A54F-4BF6-834C-ADCBC4C5A8FE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5DC86D2E-F1C0-4AE1-A032-C425347ACC47} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5E0A470C-CE80-4DBD-956B-53DCB53A6C20} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5E896D7D-8128-481C-8271-800E67C75A60} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5EFD88BA-656D-4322-98B5-3857559B0CEF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5F0117EE-9C1D-4F78-A8B6-2E0DECE8BD2C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5F55C0E0-9D8D-4832-B3E6-536306E757D6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5F6B58E8-2B1E-4EDB-AF6B-E06F025C9FFC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5F7E742F-7359-47A9-8FFF-106CB59D4F55} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{5FA01506-9D48-45A9-98B9-E974684FC4C4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{600CE011-633A-42F9-8F1F-3056DFAA2681} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{605B01AF-DADD-40C3-BE85-8EC126D3085A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{609D04D8-9FF2-4F73-BD1A-F05E5F4C8391} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{60A0656E-4919-452A-A0A1-98B141CD9D9A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{610974B2-EBEC-4583-A1B9-594AC5D8DD13} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{61149FF8-2967-42E4-BD7A-6ADFBBF63552} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6212AFF7-57A3-4D01-AA97-FBD979772306} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6217274E-185A-4C05-8FCF-3A9ABAA64399} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{62EE0D9F-7939-4408-86C5-469382B6A23C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6380AE93-3164-4340-9ED2-950B08625549} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{63A7FA04-7642-406F-8EF6-87D8E19ADAAA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{63E989AC-AB2D-4BE8-B2A3-893EFCE3A3CE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{63F30CAE-D416-4439-9021-1C27E6B89862} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{644F37D7-6C07-40C4-BACE-E8AA4C939AF3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{657D95C4-3CED-4162-82CB-3DC80A445FF0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{65DCD756-D685-4BE7-8EE9-D956719A6BA1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{661465CC-A4B8-4B54-8B85-7D89B94897EF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{664DD983-B80D-4655-AF1B-0B12B35F9695} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{665A9DC5-411B-4698-BA7B-0FB0DA4F31FA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{668067FE-4D21-447B-88AA-F8EC18FC042F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{67E3792E-FB87-4C3C-8AF3-0160BCC47B54} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{683DE22A-B0DE-45FB-82A9-796BC3C00833} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{68CD58D4-938B-4939-9A80-9B4B42C99820} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{68CDDC0A-D906-4097-AFDB-11051807BAD6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{68D77664-7442-4544-B952-B316E8922A49} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{695CF6D5-200C-46DC-B632-73C7FB4807C7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{69D460B9-6F13-4ED3-B866-8C66FC39FAE8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6A4C55F0-E927-48DD-B13C-336816AE2050} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6A881755-50B9-4D66-BAD9-4A8D97A4537D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6AE95DEA-3CBD-4E9F-81F0-D7ECE7039EBF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6B36AB72-7919-4D9B-B2CA-DA0720900249} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6B870A6F-725E-434D-A4A3-0CC3CC2553BA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6BA36477-2096-4EE6-989F-AC36F2FC1B64} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6BBEB800-208E-4BF1-AF48-8CFCA031AAF6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6BC271E8-2854-42AA-AE40-D3265B19CC54} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6BF9D20F-3390-4EE9-B2C3-1BEE5E095F1D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6BFC9152-7D6D-499D-9C3E-3D20D4BE0598} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6C225694-9B5E-472C-83D6-A139AF0BA378} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6C509CDE-9DC2-4DE6-BF26-024EB4EC7B49} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6C9DCA1F-C966-4277-889D-91DB870F6D89} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6CF81A14-8A6F-4A61-B058-51E4E0B0B5CB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6D229529-C474-4FB2-BF53-AC6BE5AB90EB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6DEABA57-D6D9-416F-9534-703285989553} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6E275120-D83E-46D9-80B7-379F11D60835} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6EBCF474-FB0A-41DC-88F5-59284B4A13C6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6EF466BB-FEC3-40E1-9400-87D8A31957A3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6F7ECE87-6424-48C1-A8E1-FCCE10C32BFA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6FC2C095-6D65-475E-A500-A7D5096CB2B2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{702FC1EC-8BA1-4270-A13F-9978A1076683} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7049977B-53C1-42F6-A52B-1F8D4F252C81} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{70BE422C-1503-4C76-B96F-7B60924EE542} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{70DB5B7A-0F77-499C-88E0-B0E60B0F804B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7104681B-A9FC-4CEB-878F-546C75D2DC08} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7129A2C4-500D-4106-BA1A-215D6146616B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{716AD83A-CD60-4689-8319-6819DCF3747E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7179E8BC-5F06-4384-8C03-6D27B4CDF7D9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{71E04CAA-26B5-4345-9A12-928DA920EBDF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{71EEB868-4564-4DCB-9D50-3156FA165D60} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{725C2BA4-BC4D-4D2C-AA1D-237C75C6F60E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{73271186-1173-4928-AFA9-1767DBD4C016} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{734E0380-08DA-47C8-9DEA-32BF95900409} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{73B5C58E-F162-42BA-B2CE-A249E407DF89} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{742D1843-199A-45CA-8BCB-6B07B76DBF21} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{74FC985F-DFC4-4027-939A-DAAE2FE7F9AE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{75C6BCED-5EF0-4C5E-8258-78DB2DBB5DD4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{75DCCF9D-D837-4A5A-8D79-31D13DC48E2A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7630668E-29FC-49F7-9F1E-5360D3BD34F2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{77A92358-40D8-4F78-9884-632D1BF8D1F5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7819D455-829E-4F99-AF4F-40CEE5EA275D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{782B18FF-7A5B-473F-A7F0-0C9C62ECCD79} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{78D473F3-EC44-4773-B67B-F63F1D7CB99B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7905E0CC-D00A-4CF4-A046-37F830DBE10E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{797E9E4E-52F2-4230-9470-84AD51CE5170} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{799AC9BA-EEEC-4968-9A55-7B53D93FA1F5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{79A507FD-FC84-4C63-8F57-EC94662F3AE1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7ACDE163-01CB-415F-95B8-97724B9731C2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7AE1F300-8275-4A76-8DF2-FCE4EE6678A3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7AE5A454-6049-437F-8C63-5525CCF533C2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7B0D4FF6-F81B-4613-8027-4A480E90EA7D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7B204805-3027-4854-B277-6DFCB1E09819} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7B4C06A0-3866-4803-A757-AB9FFFDD1E90} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7BB3ED57-18FA-4D6A-84B7-42455E6D6591} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7BFF82C0-B09D-4133-9D7D-81F4E0BEEEC0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7C7A4410-BB04-45A5-8BE5-5FDE265CD6FA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7CBBB8F4-6E66-459B-9CC9-3FD53809A695} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7CBBEB0C-54E6-4BCC-A2F5-52941BA7E77C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7CC99EA2-E2FC-49E0-ABA7-E9A0770D6E64} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7CCF7D66-225B-4A2A-BA8D-BBB477CDF8BF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7D69D96D-24B0-4D60-9EA5-0484D24AAE80} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7D8626F0-73A6-4EA2-982E-D79A3DD15445} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7E1B0358-07C0-494E-8237-4F3BD443F319} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7E20E1B2-02FB-44EB-978C-A6CD1445445C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7E3A6884-8D20-4D6B-91F3-CFD622E669BF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7F2523D2-EDA4-4550-AA9B-6CA90194AFC8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7F26244F-90F0-4AF5-A85E-1791A9069084} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7FBA97EF-AF88-4067-ADA7-261FDB45CF51} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{7FC7CF58-0A63-477C-87AE-94AC6E6D1661} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{801BE9A2-801F-424D-9C5F-2E723472763B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{804FD466-41C1-4E66-B60D-7F778F5331FE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{80B25D02-9C50-4C5B-BC8A-D34BEC5C3050} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8162DBDF-917D-4118-8D97-74A67A140686} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{81A5E3ED-FA03-42B8-BE7D-C03DDD43FB6C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{81A6524D-2F7D-49AD-B483-B32E4025EE7C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{81C9610A-8CA6-49E2-9DF6-547ACE3DF43B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{81F0A9A8-15E1-4E3F-B1A1-3EC2B4D745E0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8231A294-B1C8-4567-AB08-92C2B3885884} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{826911C9-4981-4DDF-BD6D-1F3859E01ABF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8369C331-0B37-4BEC-98A1-51D4D008C33C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{836D1C0B-B8F2-4325-9A52-08CAB3A8D92C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{83F58698-DB3A-483E-931A-9E47438729B4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{846115A1-C187-453A-B41A-D9E8A2523683} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8471D926-755A-44F3-B15A-ABA6F318D185} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{84847AE8-C0EE-4F9C-B769-F13994387A8F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8494069D-EC09-48F5-8546-6F43A22E41CF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{85359B4C-DD29-4EBC-B471-3BCA28B30CBF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{861DF1C8-7D7B-457C-88B2-EDD53D1C6897} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{86444300-7155-4152-99D2-C2065B1D7012} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8677EF23-E8D0-404A-9825-5A9F7C9FED7C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8686037C-9989-41DC-A0B8-6268F3C0D4FA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{86A3F5DE-FEC4-43F3-BC9E-588CE4D64CB1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{86C7B753-AE8E-432B-87E5-2D752A295048} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{86CCD193-98AA-457C-BFC0-D309A927CF59} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{87F004AF-40AF-4009-975A-53542A7DF78E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{87F3A650-8B13-429B-8D8B-ED7720CA57EF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{87FDEDAC-5DF8-42B1-BC32-6592A807696E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{88185311-753A-45C6-8B5A-398D77C8A43F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{881DD2B4-9B42-49D9-A6D8-FFE343E6B6DD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{88263262-9457-4468-961D-1154D2C7771C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{892E87A7-3F9C-47F4-85F6-7E1A01AA3918} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{89542C70-9090-4253-B59E-24762CE937DC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{89815DF3-11FE-47AE-B41D-88B888695CC9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{89FA45DA-F9F1-415F-BEE2-B2BD83BD3543} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8A03656C-B084-4AC1-957E-DC832ACB9259} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8A1EE03A-38DC-4720-9F5A-6B6256210CC3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8A31C880-098E-4DB1-98CC-79E8C3BE70BC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8A88F748-A9B3-4EA4-895E-624E512F0413} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8AE64496-3EE0-4A71-BD79-77CFF31C4295} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8AEAC03E-BCD8-47FF-B7AB-AC6B10D0CAD6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8B6892A8-DEEF-4D17-A657-F03AEC26E6C2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8B972E78-8E33-478A-94BA-179C6EE7929E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8BF96289-F47D-4A59-A1A7-4877772AAA1D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8C48A916-C47A-4D44-931C-310428A99E52} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8C72C7B7-E08C-4E7D-93B4-363990E32699} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8C81CEB0-9D15-4192-8D27-358090D37DA2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8CE850A4-50DD-421B-9FCA-3AF12E60A133} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8D07DDD3-67FE-4F64-AF93-980BA54A74D9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8D098F9B-B6C6-46B2-9341-D914E5EA6507} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8D1D4DA9-E1A7-49FC-BC40-AAA46A5AB000} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8D588906-5CD8-4DCF-AE2B-EE9075017A40} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8D760C09-EEAC-4ED4-87BA-B61A88349FAA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8D9CC71E-9AC4-4FE6-B745-1E7B5DE8A4EC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8DDA3D54-FE41-4A20-8DAC-F7EBF36AD9A9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8DDD9B0B-9C4B-403C-9C00-DA90DBE793D6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8E52D281-FB71-4079-BECF-E4D73F9DD04A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8E874FE4-C294-47DF-AF65-5F19E6D38226} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8EEE60B9-ABD9-4049-B3CE-7BB8931EE1BC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8EF66846-DC15-4097-A07B-E22A4795C6FA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8F119BD8-5009-4C4C-AE03-2914AB780781} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8F21369F-36BF-411D-9857-112EB1AF8634} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8F4B2F7A-FDAA-4EFC-8E45-DFBF9F132039} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8FF8747E-B658-49F6-8F07-0E6A8124376F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{90A186CC-6B77-4063-8DEC-54D2F1C44114} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9147A6F4-B264-4F7A-87C4-51C449892119} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{91608645-EB34-47A0-86BE-7714CDD01B4C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9179628F-64D0-4A1F-919C-78D025709AD8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{91C8FC9C-AC72-4831-9BFA-202B54212BBA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{91D66F25-6FCF-4BBD-9C28-7E81C6489C4F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{92B7C659-4F49-43F2-BEAF-3D62A10F8F9B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{92CFDBE1-6A0B-46C2-9BB9-2092F0660117} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{93EE06DA-38B5-42DC-9F2B-6E8E9893E7B8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{940D196E-CFC5-49C4-AB5B-B8946CBA198D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9425B49B-2283-4241-AA1C-E3CFBE1FBA16} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{94439A4C-D6E2-4EAF-BB82-F044FB08893C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{94C94BB0-06CD-4635-943C-0503F88392F9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{94E096E8-2CAD-44B1-BE7E-7FE63CD0D0FA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9561FCE1-07C2-4BD6-A047-ABCC2EC33D45} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{95980097-752A-491D-BDB6-51407012A9F4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{95F5D860-D9F5-4917-A651-B002011EDF11} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{964E2F6A-C29C-4A76-BFA2-3020D08859AD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{96B7BA4C-7AF4-44FB-9639-C60DC8E6B120} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{970A9DD5-E3BA-4CE6-8F20-88B13A6A3207} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{97F11AB0-0557-4574-AA2D-39D1DAA8DB1F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{97F99A8D-E151-4BA0-A984-5126C868D8C4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{98CDCBB6-699A-4676-B530-99081BC69A46} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{99113037-1C06-450E-AE13-C68E8D1774B0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9918C174-792C-47C2-9B94-2776032BE1E3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9925FF41-641D-4552-BCFB-6347BC7EED51} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{99AA86F6-99AF-4211-B645-229AF811F546} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{99B54D70-59A4-4EF8-8575-5FE38E980AD9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9A790C33-4BDD-47C5-8257-53A8C12AB762} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9AC8A2F0-23F3-495B-934F-1F9E4AFA59AA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9B390B23-1CA2-4BA5-8ABD-6FA1C28D5911} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9BD3F1DC-B573-492D-84E1-54574A05D090} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9BEDE1A7-2436-473F-B877-7D9BEF3BD3AE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9C282ED8-4D21-49AF-AA17-7A98916C7329} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9C5FBDA4-B992-4AA1-85C7-5324BE69DD44} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9CA15B66-E3C1-42A5-AEA0-7A91AEF2824A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9CA90F2D-BF0F-45D1-B53C-83B33C2B7289} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9CC5D4C0-B206-497C-A067-3B26470F8555} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9D62C468-4AFB-45C4-A2EF-C83077344A83} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9D67C600-8D4D-4790-A51D-2083FB115ACF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9E214B56-6D29-47D6-80C3-BA12FAF78825} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9E3AD2F5-7391-4160-8149-A4D959ED1AB0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9F05C089-9B6C-46C2-A892-1356D1A08895} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9F3FBEF0-6BFF-4B4A-BC87-10D20DD6186B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9F7D2A64-E7E0-4A36-980F-A0CC4DA06D29} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9F8093AD-F361-4B38-83A7-B578CE7F1936} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9FF7A721-4154-42A9-9F63-51B70AE74BC3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A03D9997-D5C9-42EA-9829-29FCC77389B0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A159270D-F3A2-4E37-B785-4BE320AA3D05} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A1697678-BDE9-4622-A059-479A44070EC0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A20084D3-1597-43A9-BFA2-BB1EED7A3751} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A20F97C3-077F-4B71-BFA0-1A57446E54FC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A285982C-85C8-463E-8B9F-E1D5DD9982FA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A2C6E2E1-479C-45D4-B022-A4C759AC5EEA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A3268DD6-67E0-4D6A-B2A7-02D8FC692AE6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A3692F05-E991-4E8F-8AA4-BBFFD5A7F4BA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A3789FF4-B1A2-4071-95B7-1CB6B8AFFA52} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A4289482-DEB9-4360-8C51-FD1FE22F0030} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A4A9BAB8-DDA1-46C1-AEBD-DF71B92E1751} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A57A01C8-F396-4DB5-862A-CF48A90AA3C3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A5EF3BC1-6579-4498-ACD9-AF7606EF7F25} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A5F2A5FE-49E6-4BD9-9981-1CA72CBBE5AB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A6214980-84E5-4389-B7A4-C4C21B029917} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A66D0C93-4292-4EAA-BCE6-4E79B32352F5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A68F1B46-7763-41CA-8BA7-2912CE00B70C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A80B5867-68CC-41C1-8252-7771DDD32019} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A8DEA1BE-6340-46FD-A6C7-5A8EFEFE5B02} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A8F960A5-275D-4108-96C6-D673FA424704} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A978485F-F2C4-4E8A-841D-76441532A533} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AA0081C2-5054-4016-9203-80AE07FB2389} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AA1678E3-F090-4ADB-B17F-9477099692BA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AA1E2FD6-4219-429A-A4FA-C850285B58F2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AA485C49-E5CC-4DD0-9A04-6561BCD473A7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AA58315A-C905-4314-AEDB-636767E3E55B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AAA35663-1386-4BE9-AF33-7DDFB086EE01} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AB2B91D6-F65E-4BF3-B45C-F2AD8CC41CC1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AB354DA1-2564-4370-8328-83F7B930F046} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AB6EA788-2CCA-4702-978E-F6C99CAA4D79} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AB870DA8-42F8-41C0-9065-D1A85901E555} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{ABE57319-73DC-40B7-8BE0-D0BBE6319C46} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AC22EEC2-F3F9-4C08-9C5D-12B52D78FCE9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AD2436C3-F1B8-4EE2-B2DE-31E540133A79} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AD24AB2F-F5FB-4983-83C2-0FBC9399E341} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{ADA7164A-DB56-4157-84D4-8AFE866E3BC3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{ADAEDB64-4B8D-4CF1-9B47-26C1FA3CC4E9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AE0B6432-8A11-47C0-87E1-13B2E94FFD3B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AE5EB678-B912-4FCC-9719-32481108F9FC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AEA575B3-B302-44FE-AA43-3C7E9EBDA902} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AF16E9F8-C804-499B-B5AC-76248A47E2B1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AF84DF04-D3EC-4B58-B64E-6BDE603ADF82} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AFC929C3-4759-4115-8B3E-3E42D3204031} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{AFD3CBF6-5524-4860-91A2-E29DFBA2EFFF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B1092136-4699-470C-B5B4-1EBA70A23DE9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B137B223-B960-48FA-B80D-B44086E23B5D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B1B9F3F9-4D3C-48C5-A619-D95B9BEF5533} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B205FA2C-3470-45E8-8899-3F9BDF50F5F9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B21A57F4-717D-48F7-94AA-0B670B290594} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B24D5D62-7D08-4208-8380-EBC170160191} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B2C0A743-DF7E-4AF7-90C9-A2326BD2B1BD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B37D3EA6-86FD-4B4B-860D-A2AD6AAEB675} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B3C2B99A-5438-4C20-BE90-D75C1A606CCF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B3DDC51B-9002-4443-8AF2-B98C8B9F40C5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B462E729-CAF3-422D-8112-2C3F01A3B075} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B4BAE07D-9879-4EA8-BD9C-8111E1A33A2B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B4C2AC8B-C349-4CA5-8941-F07BE3CA398A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B4DDD744-BED9-46D7-BB59-F41FC8CADCB8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B4E661F4-E3CB-45AC-86AA-F44817358667} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B5F6C233-FCB3-4E59-9E58-0F77BDC64F85} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B624A265-7901-480A-B809-6A5F0E8CB4B8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B641030F-6777-48E0-966A-48E328B9BED2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B6497C92-6A1C-4C7B-8920-B15AA8158C37} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B66A4097-4ED7-4F1A-AC86-93BA26488BA0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B6A70A62-A453-4029-B0F3-541E012374FF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B718BD3E-2D09-4B73-A4C1-3880CF887594} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B71B57F2-996F-4946-AD4A-F8FF0121F819} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B7A136DD-47CD-452D-8067-170020689AF4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B7AA7173-290A-493E-BEA6-7C1BEC783232} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B7FDA4B1-2A03-4629-A7AF-6B461B032BDF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B81154F2-0AC8-4A35-AE0D-F64487594877} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B82B0393-F251-4826-AF01-B16514AF19B6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B84F395D-D35D-419F-8552-AE65966CE7AB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B86E5D09-A74A-410D-8E62-A0276A225F40} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B873EA93-01AB-4C3B-9C6A-E3AAEE2F0057} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B887D25B-D678-4D19-BE3A-14592FDD1EAE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B8B4CA41-5050-43F8-A169-8CD06011DCC7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B9351DB1-A95F-432C-BC68-67D56E3B07AF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B96FA01E-563E-4BA3-9320-EED9A7B8FC7F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{B9FCB96A-63F0-48E9-AD66-E4C433AA9140} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BA05E4AF-DA22-49EE-88C3-2B9D3786512F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BA4E8F2F-4805-483E-B10F-4A6648B31E7F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BA6DE96C-12E9-4294-8786-A1B0D857642B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BA8BECBF-C85D-4569-9CA6-17C6E9EC8F6A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BAAD15E9-B3D7-440B-AF4A-D6B710A2268E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BB2544CD-6FD7-49A0-A7D3-6AA950154B1C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BB7AF627-CD4A-4BF5-9BDD-DA1C3B70F226} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BB92E064-E455-4AF0-8DAB-2F761F81B191} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BBE7B3D6-9D45-4A93-B98F-DDACE9F34315} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BBEC03BE-DFAA-4DF8-BC46-3CB0CF449376} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BBFA1200-2816-47C0-833C-4E709655E2CA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BBFAB821-4AFA-4DD7-841B-F94C197F3661} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BC3E609D-3D8F-49A9-B618-A9DB5A36B97D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BC7C6114-6B50-4789-9192-84FFA601886A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BCC02031-173F-4BE4-A3C0-12481E9509CE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BD12BC4A-44D1-43C9-8E97-90DA977A564E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BD1B204D-EA82-42A4-B523-50DFA8FAAF2F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BD28FC64-218F-4EE9-8ED0-1B6BEBC81095} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BE2F13AA-FF49-4A84-B626-2ECF6604D974} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BEE52949-EC07-462C-9A9C-1865BA5F4B38} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BF36A193-E080-4E59-856A-CB2DB1E5100D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BF569FC5-64B0-4EB3-B18E-7593012C0FC2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BF6DED23-AE0F-4663-8051-1C2D4583D095} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{BF82D834-B2EF-4330-99E0-9EC02E793505} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C07BAFFC-E723-46A8-BE93-71D56D56CF72} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C09920C0-12E1-4639-A919-6D892F156D0F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C0D04305-2D8C-41A0-831B-0D5D66AE2F85} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C0D2E03F-5682-4183-BB46-35A9297C0CA0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C12ACBAB-E4BE-4618-ADC3-DC947C56022B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C1463885-CBAB-4A64-9377-A55B570D94B0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C1D59EA4-82BF-4DFA-8D76-5282C3B408C6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C1F9F036-56DE-4A53-9BE1-2433C0E53465} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C25B6C69-FE8C-4754-9841-52CBA9DD0BAB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C26991A4-65B7-4D3D-99B9-B86850A32001} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C271EEC2-2A43-4278-8329-A97FA27C4429} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C3289607-D906-47FB-AF39-CC4A9136515A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C34AA81F-F5DD-4DC7-91CB-A6C888AE03EA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C35E238D-7DCC-4F36-9DE7-A96ECE14A337} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C3E75056-2055-4302-B8A8-EA0C4A3BF7AC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C42A8E74-63D4-48BD-BE70-7C70843DEC65} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C49F2C5C-D319-4289-AADB-60459689EA99} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C567AB14-6DC0-48DC-BBF0-98A84C0360DB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C5AB3E0D-9A50-4D77-8047-18D698FF9038} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C5C39055-62E0-4961-8E58-A2FEECBD6641} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C5D727C0-0F38-4D73-B972-ADF102780237} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C5F684EB-97F5-401F-B8DA-3A7208C7AC1F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C6373774-7857-45D9-9905-AC8FF7E602DB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C6AA07AA-7E01-4EEB-8924-866E723C879F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C6AC934A-FCBF-4BFE-983B-76713B17D530} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C6BF4B70-5A9A-4E45-97CF-469762B978A9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C707212A-932C-4AEE-BF0D-CD7BB5A9EA6E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C735B954-C29C-4EF3-8A45-6D52DBC9D078} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C7582B07-6B95-466A-B443-12E41E1EB1A6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C769590E-A3E7-45FB-816B-0EBB717899B6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C78066D7-D016-4449-B39F-2A7E901E475C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C7CD1B4B-F08B-4DE2-9F71-4336E7362797} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C7DBBD98-6200-4959-8A32-7F52B77E48A8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C84D14A3-B5DA-4900-B6D2-988BCD3C52AD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C89BCA43-091A-481F-AC8D-24329318BBFE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C8A19F48-4B41-455B-832A-ACD9AB39743D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C9F1057F-71D1-441A-98A8-81E5DBA2D030} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{C9FB8CDE-87A1-46A3-B270-9E39A8843F1D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CABE74FB-A19D-4653-BD1E-9D2A69D74DEA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CAC270BD-B076-453E-9F82-5E565ADE3452} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CB6C2FCF-116F-459E-89A6-FA2B7256C636} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CBE04279-E39D-4207-9317-92F6C791D2F5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CCF9DB9E-CE22-4730-A3A2-370EF9311F54} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CD3A0647-7217-41B9-B210-CB0469C8BF9E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CD778F12-C72F-4EF8-88D8-F3A494BB9BC0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CDABC433-4FFE-41BE-8DC5-5100187F983C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CE1DCF91-A38F-4FDA-9DC8-E37A958027AD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CE86C927-1FBC-4AD7-BE59-3905F0F7BDCD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CEB7F2A7-156E-42AF-BC9B-A7942240D83C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CED2E2BC-297F-43E0-88D4-22EFC04A5035} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CEF3A193-49BB-4C31-8F7B-5226D09DDC1D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CEFF73CF-9129-44EA-B43B-8C793FDAD441} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{CF081A91-C6C1-4810-B76D-4504DE5C8202} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D0246FDF-E535-49A3-BFD2-96E6D0E086FE} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D062E927-B5B2-4119-80C8-9AEBA8FF424C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D0D51ABD-A12E-4413-98E9-6359583D9835} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D120E4C0-4CDD-427D-9FEC-D1FD10086656} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D1ABCABA-4AD9-4610-B48C-B9AC796C28F7} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D1C5D8F3-987E-49F5-A21F-DFED1BF6E09D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D1DAD255-2013-471E-8920-FB4B7AF16806} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D262BB5A-16D1-4BDC-B527-9CFA2C8B1137} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D31B0EA7-2170-44D7-A499-CF0BFCCCC4D2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D33B16B6-825A-46B8-8364-38A41C1092ED} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D38CE42D-6270-4538-88ED-8D1E968ACBA2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D39A5F3E-3B54-4A77-84D3-D9E8AB3513EC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D3BF2777-B3C7-4990-98A1-E38900B902A4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D3ED54BE-01EA-4DCA-8537-DA31D9AF9056} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D49906FA-5B88-4C9E-B7D0-A535FF434E82} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D4B12E4B-9CA9-4D72-9B48-2D4F551007D2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D5039455-2B89-4305-A54C-50909252DCB8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D59F7BE7-37EF-4AA7-AEB3-8A431BEC5F6D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D5E2D105-4DBA-4ACF-AF18-FB6C0B945805} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D62FBF59-6380-4451-B8BC-70629806FF7F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D6759DBA-EA58-4D73-9AA5-B0AEC2FDFB70} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D6D3AB10-45E0-4B54-882A-FF6D790F9748} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D6E92AAC-8369-452B-B23C-53EC0D25E2A2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D754F478-E01E-4820-929C-FDE17ADB632A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D7C27190-E083-4A76-8ACE-5AEEFCC46F63} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D82327DF-EA7D-4FFF-B20B-756F04ABDB0B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D8700AF5-073C-4A10-A295-03A23E467088} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D8F2AAE4-B3BF-4486-9BBC-4BCC5CE9087C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D9BBD633-A3C3-4662-AFEF-89516D0AA1FA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D9F64AB9-0B90-4233-A583-58EDD08B4483} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DA2F9595-9946-432E-97A7-0F9C7924870B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DAA4A7A7-39B5-42A6-A1CE-7FA6C52F3DB5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DB2DFF57-825B-413D-AC58-33F0F5ED2197} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DB4F3628-50E5-478E-A07F-2F66B577A004} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DB8E2DE2-C440-4A00-A7CC-57528236B353} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DBA3A4D6-3F4E-487B-8870-82983A657DB1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DBC52755-200D-42C1-ABDB-9F1C63540F22} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DD22ACD7-9EF6-462C-8396-1EE0F5B817E8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DDA20A22-EE1F-4E3A-AD3B-81F442BE5E0D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DDDD63AE-54D3-4EC7-9870-F51578ABDBC9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DE2FA897-4363-4A50-94F6-6DAB5B5752A2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DE546794-1393-4A4D-9CD6-2D5840B861AA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DEADA7F7-BD2D-4ADE-8607-E87C2C658368} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DEE3F679-2397-473E-88B4-ECD5342741B1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DF3899AE-5F70-4A61-A414-163DE286F6F6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DF7D28EC-BAC3-4196-9AC7-E2C66CCAACA6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{DFC9D24C-2CC4-45BA-AA49-2C980E289AD1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E04FAE39-5EDE-474F-9F53-F36513FAF04E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E054CD68-9CE8-47CB-9AF0-313B0501B1F6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E0AB7CE1-815B-440C-A12A-52B2DFCBDF44} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E0C07D27-CC8F-4499-811B-ECBBE20E6DD2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E0CBA0CF-D9AD-4BE6-AE36-B3043B9A3787} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E0E18DCE-8F62-4F68-8730-2CCE971C3027} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E0FA4F96-DEB6-4DE9-B287-E8BFA3574A15} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E149FF25-0EC4-4619-B7AE-4CBA8D6D4881} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E23ACFCF-82A6-4906-AD08-92960083F8A1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E2B250B9-571C-43C1-A317-271F4AC9AE64} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E2E36678-9FF5-4BBE-8B2E-3B2C2361DB34} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E36AB711-A3D4-497B-A89B-53F69C812BEB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E3BA099E-2567-499B-A164-9C96ABF3E02C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E3D86F23-8E9B-407D-BCC9-87D2DBA339F8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E4279846-EC78-493D-BB3F-CFDE1C45719D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E4340F07-8CDC-41F3-8F31-98CDC7C4C8E2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E56D867D-B8ED-44A6-871C-6CFE063DC466} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E582EB3A-BE5C-4007-8DB1-EB8803618571} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E5D10BAD-9303-48FB-85FE-24CBCA892CDC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E5EC1E64-FBF6-4FDB-84EF-4CE807AF616F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E66C9DE3-B325-4813-BD5A-FD0BDC68A23E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E70C47A3-1B68-4ABB-999A-1E28C158DB97} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E758069E-F101-4974-A412-0BE85DACAD30} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E7B9A341-2C46-4F0D-9D9E-C7BB860F474F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E84A39AC-96EE-4876-9EBD-2CA91C3C6BAC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E9527930-B740-4C3C-9C40-CD45B16F3644} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E96674FD-8718-47D2-9793-1750209A2C76} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E97B11CA-3571-49A7-8AFF-AF943CA1F6AD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{E9990D93-D67E-4FE3-A1C4-1168CD03C78A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EA788606-80BE-4EA9-B44A-BC12A903C8EA} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EB13DD98-3306-4091-8B48-B13CAB30761C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EB49408C-E745-47C9-9AA5-71A5CA7377AD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EB4A7D14-9A29-46F1-A33C-54AC9F8D2A77} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EB5635EB-9530-4DDD-AA66-38DDC5071969} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EBDE7A2A-8181-4FD3-86A3-0187C2453F52} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EC2CE81E-BA0F-4ED5-8151-460CC33DC931} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EC654BA4-D2E2-4712-A69B-700F1E12F717} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{ECC3D50A-9966-4F21-9EC4-CC383378F660} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{ED5B0A49-BA7F-4F6A-8454-F8E10B53F850} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{ED787E7F-0818-4575-8770-30D2A748A89F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{ED7FBB5B-3432-4E91-9BDD-4DEEA7451DC1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{ED85CF8B-4AAD-4E58-8138-8C95D6632D10} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EDA6B052-D082-427F-B851-C0C8F5CE9570} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EDF16FD8-B508-4FC9-A24D-A5E0291F2554} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EE160110-71BB-45EE-9C93-C89491555C33} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EE5416B2-13DC-4F53-996B-B70A573E48E8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EE916301-4404-4C48-BD18-B361585062C0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EE941CF9-843F-453A-8CFC-63169AA2A8AC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EE997F2F-9D24-480A-9D94-42BCA3D20DB2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EEB61D8E-BED2-4004-9F62-657BFC51D28C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EF1EC8B5-1CD6-4126-93ED-21AA4976F49C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EF50607C-43E0-4454-BD41-991EC41FE4D1} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EF6077D0-D85C-4E13-9AB9-3C0D39734876} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EFB6E05A-F3AB-4074-B97B-E06B32F14848} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F0365842-0099-4991-87FB-7B6C7681E805} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F04FAA78-7174-4916-A800-F7F7E82F4FD5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F054CC50-A207-47DF-9BE2-875893B6B2D8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F0C79BEF-1DCD-4CA4-BD7C-FD733329F39B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F0F86A94-E392-4013-9055-C7C614C31D7F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F1047310-F47C-4450-AC96-8AE3E5D702EF} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F1F549F5-37E8-448A-82EA-9F338E693C9D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F234B7EE-D078-4770-A0AD-0838CBD23AF8} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F28655E0-594F-45B3-98C6-DFD3450B7654} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F36C19B1-849F-4AA4-A037-165CF147AC0E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F3DE92A7-5CED-4BCE-87B7-B5D1D1CFAA1D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F41DB481-D787-42E5-B5DC-F5BF7D40133F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F4520835-AC9F-4603-8AE6-D062D8DBC4DD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F460559F-1AE0-400A-B521-9E2CECCBC3D3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F48C452F-28AB-40E3-9110-8D4EECE2DAAD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F4C1A245-6880-4961-8986-9A6554C780FC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F4F121CC-2E01-478F-9222-F79472B57DE9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F5884EE9-B79E-4C42-BBDD-F69AFF406FBC} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F5B663FB-06E6-4768-B0E4-F23167541053} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F5DC23C9-CBC0-4D90-B00F-134B5A8411AD} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F5E4C373-0DF7-4090-AEB5-43FBA0FE2D91} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F62C9042-FD82-41B1-A6F6-5118331D8E21} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F6A74522-5CF4-4F8A-B5D1-1AAF31F95ABB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F6E80FE6-6611-41BA-A77D-8442AFB1B510} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F6F7476E-0980-4120-A247-AA31901E742D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F70E5AE1-99D2-41F9-B5FD-80AF6CDFDC76} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F7455381-138E-4087-9E26-8BEC78EB2DF5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F7D4DC9D-1D17-4336-BF92-44A108962667} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F80E502A-BACA-4AF6-AAE3-7A73CD0747A4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F817318E-2754-4108-82E8-52D3EAD2D375} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F81A242A-8958-4862-B429-32B1F1698B6E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F8D63C64-2CAE-4A23-AD5E-5AE0E8495B3D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F8D7C802-912B-4943-A2B5-DBFB38F29FF3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F9104E5C-C52A-46F5-8912-8B3380E4B425} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F92C28F9-F622-4569-9ABE-7D41BB7B1C3D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F969E992-F173-4122-9E0A-024E58110027} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F9827A3E-EFB0-4E56-818D-5157E919F482} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F9CEF83B-4932-4EA1-A876-2EA2596E4355} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F9E92576-D4F2-4574-8BDC-E67B1D79D13A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F9EA5FF4-C16D-465F-B8AF-05B028173921} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F9F58195-4457-4C3E-AD49-441E39D210F9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{F9FC12AB-4056-4302-8D37-23AC24354129} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FA0CF8CD-1167-49B8-A22A-AC7E831F6413} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FA122A00-7985-4621-B7F9-B871D5BDA83D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FAC6C4B4-F5EC-455B-8021-3CE5B543B340} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FADB1E36-B34C-4059-90EE-604FC26F6391} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FAF75B59-CDA3-4562-A714-F0F57318544C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FB3E63E0-9699-4814-ADFD-2FAF2DF6AD18} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FB3F8A38-0C30-4BE8-A028-860D3206DE29} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FC13A7B1-1171-4E2E-83E2-F0EB20B87F2C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FC72B7CA-4F7C-4FF1-9FDD-994911987AE3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FCCD5890-790C-47AE-83BD-53CB7AFB936A} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FCEC7987-3F17-447D-BE94-4BCD810975CB} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FCEEEEAC-BF7C-4690-BDAC-E65BD648DCD3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FD0BF1CC-932F-4560-9B35-BC406165D120} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FD1DC42E-8E35-4A64-A331-6C1ED8E37750} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FD47BDD2-61F7-4736-8D8F-5BA9A6C01E9B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FD81CB2D-ED27-474F-AD1D-4F3194A7AC35} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FE493834-E18A-4A09-ACBB-74D3D04AFDC2} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FE71DCD4-EB90-454B-B450-839B9AEAB8E9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FEA78F18-6470-48D2-BB13-E494F9F4B4D9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FF6F93CC-740E-48AF-9E8E-5DF1AE68D73E} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FF77700C-22B1-4C75-A7EB-1258F1CFBAC3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FFE1BA54-1130-4414-8238-F955C89F1427} (Empty Folder)
Successfully deleted: C:\Users\Denise\Appdata\LocalLow\company (Folder)
Successfully deleted: C:\Users\Denise\AppData\Roaming\getrighttogo (Folder)
Successfully deleted: C:\Users\Denise\Documents\optimizer pro (Folder)
Successfully deleted: C:\windows\System32\ai_recyclebin (Folder)
Successfully deleted: C:\windows\System32\Tasks\EasySpeedUpManager (Task)
Registry: 5
Successfully deleted: HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{336d0c35-8a85-403a-b9d2-65c292c39087} (Registry Value)
Successfully deleted: HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{fe1deeea-db6d-44b8-83f0-34fc0f9d1052} (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)
Successfully deleted: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.11.2015 at 15:34:49,16
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
23.11.2015, 15:43
| #11 |
| | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Und die Logdateien vom FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:20-11-2015
durchgeführt von Denise (Administrator) auf DENISE-PC (23-11-2015 15:35:56)
Gestartet von C:\Users\Denise\Desktop
Geladene Profile: Denise (Verfügbare Profile: Denise & Gast)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12111576 2014-12-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [UpdateLBPShortCut] => C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer] => C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM\...\Run: [UpdateP2GoShortCut] => C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [UpdatePDRShortCut] => C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [RemoteControl8] => C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [PDVD8LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [UpdatePPShortCut] => C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] => C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM\...\Run: [UCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-02-26] (Nero AG)
HKLM\...\Run: [BambooCore] => C:\Program Files\Bamboo Dock\BambooCore.exe [646744 2014-11-20] ()
HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\Winampa.exe [12288 2003-04-17] ()
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)
HKLM\...\Run: [MouseDriver] => C:\windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-29] (Microsoft Corporation)
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2654512 2015-10-04] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [EADM] => C:\Program Files\Origin\Origin.exe [3638256 2015-09-11] (Electronic Arts)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: G - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {0afaf239-5233-11e1-9281-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {5c1700f8-0a8e-11e0-89ea-00245467eac5} - F:\Autorun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {88771927-5bca-11e1-9d6d-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {8ed8c5b8-1d1f-11e3-a810-00245467eac5} - G:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {929343ec-dae9-11df-91fe-00245467eac5} - G:\LaunchU3.exe -a
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {98b26fee-6c31-11e1-b6ca-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {98b26ff2-6c31-11e1-b6ca-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {9d0d55be-049b-11e1-b91f-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {9d0d55c7-049b-11e1-b91f-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {a3b0880f-92f1-11e1-92ac-00245467eac5} - G:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {ac8e3a14-72f9-11e0-8ea1-00245467eac5} - F:\Autorun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {df1fb56f-8b3a-11e3-86dc-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {f2592001-7340-11e1-960d-00245467eac5} - H:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\WLXPGSS.SCR [302448 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{6740F581-8B96-4B73-9C1B-74E80ABB4E31}: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{89937394-FABE-4827-A000-3CA618D78EDF}: [DhcpNameServer] 139.7.30.126 139.7.30.125
Tcpip\..\Interfaces\{D15BEF43-E20E-4980-8981-90385BBA009A}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{FAA164E7-8D0A-412C-BC98-DE239EC26F45}: [DhcpNameServer] 192.168.0.1 192.168.0.2
Internet Explorer:
==================
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
SearchScopes: HKLM -> DefaultScope {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
Toolbar: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Keine Datei
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx
DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-09] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Keine Datei
FireFox:
========
FF ProfilePath: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-25] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.5 -> C:\Program Files\TabletPlugins\npwacom.dll [2010-09-02] (Wacom, Inc.)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-1072828290-3828818215-1948454868-1000: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2013-09-27] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-11-18] (Apple Inc.)
FF Extension: Kein Name - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\extensions\fg@favgenius.com.xpi [nicht gefunden]
FF Extension: YouTube Unblocker - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\youtubeunblocker@unblocker.yt [2015-08-05]
FF Extension: search service - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\{bae37ea1-7abb-47f2-8b34-44f0f489f8a2}.xpi [2015-10-05] [ist nicht signiert]
FF Extension: Adblock Plus - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-25]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-04-10] <==== ACHTUNG
Chrome:
=======
CHR Profile: C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - <kein Path\update_url>
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ezGOSvc; C:\windows\system32\ezGOSvc.dll [73600 2011-06-12] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [921392 2015-10-04] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
S3 npggsvc; C:\windows\system32\GameMon.des [3461904 2010-01-12] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-10-04] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4325680 2015-10-04] (NVIDIA Corporation)
R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] ()
S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2057736 2015-09-11] (Electronic Arts)
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [Datei ist nicht signiert]
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()
S3 SonicStage Back-End Service; C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
S3 SSScsiSV; C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [567064 2014-08-19] (Wacom Technology, Corp.)
S4 Agsvepehe; kein ImagePath
S3 FirebirdServerMAGIXInstance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [X]
S2 RoxLiveShare9; "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 athr; C:\windows\System32\DRIVERS\athr.sys [2228224 2011-12-13] (Atheros Communications, Inc.) [Datei ist nicht signiert]
R2 atksgt; C:\windows\System32\DRIVERS\atksgt.sys [83872 2011-10-01] ()
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S3 hidkmdf; C:\windows\System32\DRIVERS\hidkmdf.sys [12088 2014-08-06] (Windows (R) Win 7 DDK provider)
R3 KMWDFILTERx86; C:\windows\System32\DRIVERS\KMWDFILTER.sys [25088 2009-04-29] (Windows (R) Codename Longhorn DDK provider)
R2 lirsgt; C:\windows\System32\DRIVERS\lirsgt.sys [25888 2011-10-01] ()
R3 LVUSBSta; C:\windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R1 MpKslef5a3dae; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{378E663A-D49E-486C-A32F-4376EC840978}\MpKslef5a3dae.sys [39168 2015-11-23] (Microsoft Corporation)
S3 Netaapl; C:\windows\System32\DRIVERS\netaapl.sys [18432 2010-04-19] (Apple Inc.) [Datei ist nicht signiert]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18736 2015-10-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad32v.sys [44840 2015-08-11] (NVIDIA Corporation)
S3 pepifilter; C:\windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
S3 PID_PEPI; C:\windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
R3 seehcri; C:\windows\System32\DRIVERS\seehcri.sys [27632 2010-10-29] (Sony Ericsson Mobile Communications) [Datei ist nicht signiert]
S3 SipIMNDI; C:\windows\System32\DRIVERS\SipIMNDI.sys [24352 2009-10-15] (T-Systems International GmbH)
R0 sptd; C:\windows\System32\Drivers\sptd.sys [691696 2010-12-18] () [Datei ist nicht signiert]
S3 ssm_bus; C:\windows\System32\DRIVERS\ssm_bus.sys [58320 2005-08-30] (MCCI)
S3 ssm_mdfl; C:\windows\System32\DRIVERS\ssm_mdfl.sys [8336 2005-08-30] (MCCI)
S3 ssm_mdm; C:\windows\System32\DRIVERS\ssm_mdm.sys [94000 2005-08-30] (MCCI)
S3 t_mouse.sys; C:\windows\System32\DRIVERS\t_mouse.sys [5120 2012-12-19] ()
S3 USBAAPL; C:\windows\System32\Drivers\usbaapl.sys [41984 2011-02-18] (Apple, Inc.) [Datei ist nicht signiert]
S3 WacHidRouter; C:\windows\System32\DRIVERS\wachidrouter.sys [85304 2014-08-06] (Wacom Technology)
S3 wacomrouterfilter; C:\windows\System32\DRIVERS\wacomrouterfilter.sys [13112 2014-08-06] (Wacom Technology)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()
U3 a08epgbt; C:\windows\system32\Drivers\a08epgbt.sys [0 ] (Microsoft Corporation) <==== ACHTUNG (Null Byte Datei/Ordner)
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [X]
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S1 mvgordih; \??\C:\windows\system32\drivers\mvgordih.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
S3 wacommousefilter; system32\DRIVERS\wacommousefilter.sys [X]
S3 wacomvhid; system32\DRIVERS\wacomvhid.sys [X]
U2 wuaserv; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: ezGOSvc -> C:\windows\system32\ezGOSvc.dll ()
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-23 15:35 - 2015-11-23 15:36 - 00023072 _____ C:\Users\Denise\Desktop\FRST.txt
2015-11-23 15:34 - 2015-11-23 15:34 - 00092838 _____ C:\Users\Denise\Desktop\JRT.txt
2015-11-23 15:11 - 2015-11-23 15:13 - 00000000 ____D C:\AdwCleaner
2015-11-23 15:07 - 2015-11-23 15:06 - 01599080 _____ (Malwarebytes) C:\Users\Denise\Desktop\JRT.exe
2015-11-23 15:05 - 2015-11-23 15:05 - 22908888 _____ (Malwarebytes ) C:\Users\Denise\Desktop\mbam-setup-2.2.0.1024.exe
2015-11-23 15:03 - 2015-11-23 15:04 - 01733632 _____ C:\Users\Denise\Desktop\AdwCleaner_5.022.exe
2015-11-23 13:19 - 2015-11-23 13:20 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Denise\Desktop\tdsskiller.exe
2015-11-22 13:11 - 2015-11-23 15:35 - 00000000 ____D C:\FRST
2015-11-22 13:09 - 2015-11-22 13:09 - 01716736 _____ (Farbar) C:\Users\Denise\Desktop\FRST.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-23 15:25 - 2009-12-05 00:54 - 01631126 _____ C:\windows\WindowsUpdate.log
2015-11-23 15:23 - 2009-07-26 21:06 - 01620684 _____ C:\windows\system32\PerfStringBackup.INI
2015-11-23 15:16 - 2010-03-13 13:44 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2015-11-23 15:15 - 2015-08-27 12:34 - 00005083 _____ C:\windows\setupact.log
2015-11-23 15:15 - 2015-08-27 12:33 - 00032624 _____ C:\windows\PFRO.log
2015-11-23 15:15 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-11-23 15:13 - 2009-07-14 05:34 - 00023552 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-23 15:13 - 2009-07-14 05:34 - 00023552 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-23 15:08 - 2012-04-09 11:28 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-11-22 14:37 - 2010-07-23 15:40 - 00000000 ____D C:\Users\Denise\AppData\Local\CrashDumps
2015-11-22 12:55 - 2010-03-13 13:45 - 00000000 ____D C:\Program Files\Adobe
2015-11-22 12:52 - 2013-04-08 08:30 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-11-22 12:52 - 2012-11-22 14:34 - 00000000 ___RD C:\Program Files\Skype
2015-11-22 12:52 - 2010-08-05 14:06 - 00000000 ____D C:\ProgramData\Skype
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2010-04-18 11:02 - 2009-09-24 08:55 - 1454213 _____ () C:\Program Files\wrar390d.exe
2011-11-01 17:10 - 2012-03-11 11:47 - 0005264 _____ () C:\Users\Denise\AppData\Roaming\mobile.trf
2011-06-21 09:52 - 2011-07-11 10:54 - 0000308 _____ () C:\Users\Denise\AppData\Roaming\Rim.Desktop.Exception.log
2011-05-27 14:12 - 2012-04-17 17:56 - 0003107 _____ () C:\Users\Denise\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2011-06-21 09:58 - 2012-01-26 12:21 - 0000308 _____ () C:\Users\Denise\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-01-02 16:38 - 2012-01-02 16:38 - 0000180 _____ () C:\Users\Denise\AppData\Roaming\SMSMMSConfig.txt
2010-04-27 18:36 - 2010-04-27 18:36 - 0000000 _____ () C:\Users\Denise\AppData\Roaming\wklnhst.dat
2011-11-01 17:00 - 2012-03-11 18:06 - 0009608 _____ () C:\Users\Denise\AppData\Roaming\WTGAddresses.dat
2011-11-15 20:47 - 2011-12-15 21:52 - 0000008 _____ () C:\Users\Denise\AppData\Roaming\WTGMMS.dat
2011-11-15 20:47 - 2011-12-15 21:52 - 0000008 _____ () C:\Users\Denise\AppData\Roaming\WTGMMSNotification.dat
2011-11-01 16:15 - 2011-11-01 17:00 - 0006552 _____ () C:\Users\Denise\AppData\Roaming\wtgoverride.wdb
2011-11-01 17:00 - 2012-03-11 18:06 - 0047950 _____ () C:\Users\Denise\AppData\Roaming\WTGSMS.dat
2011-06-21 09:54 - 2013-08-20 11:55 - 0017408 _____ () C:\Users\Denise\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-08 12:22 - 2015-07-08 12:22 - 0761791 _____ () C:\Users\Denise\AppData\Local\omesuperv2.exe
2014-11-20 18:28 - 2014-11-20 18:28 - 0000909 _____ () C:\Users\Denise\AppData\Local\recently-used.xbel
2010-08-05 14:32 - 2010-08-05 14:32 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2010-03-13 13:46 - 2009-08-17 06:54 - 0131368 _____ () C:\ProgramData\FullRemove.exe
2010-07-23 17:23 - 2010-07-23 18:14 - 0006265 _____ () C:\ProgramData\hpzinstall.log
2009-12-05 01:03 - 2009-12-05 01:03 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2009-12-05 01:01 - 2009-12-05 01:02 - 0000106 _____ () C:\ProgramData\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}.log
2009-12-05 00:57 - 2009-12-05 00:58 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-12-05 01:02 - 2009-12-05 01:03 - 0000110 _____ () C:\ProgramData\{B7A0CE06-068E-11D6-97FD-0050BACBF861}.log
2009-12-05 00:57 - 2009-12-05 00:57 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-12-05 00:58 - 2009-12-05 01:01 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
Einige Dateien in TEMP:
====================
C:\Users\Denise\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Denise\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Denise\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\windows\explorer.exe => Datei ist digital signiert
C:\windows\system32\winlogon.exe => Datei ist digital signiert
C:\windows\system32\wininit.exe => Datei ist digital signiert
C:\windows\system32\svchost.exe => Datei ist digital signiert
C:\windows\system32\services.exe => Datei ist digital signiert
C:\windows\system32\User32.dll => Datei ist digital signiert
C:\windows\system32\userinit.exe => Datei ist digital signiert
C:\windows\system32\rpcss.dll => Datei ist digital signiert
C:\windows\system32\dnsapi.dll
[2011-04-15 13:56] - [2015-09-18 06:51] - 0270336 ____A () D41D8CD98F00B204E9800998ECF8427E
C:\windows\system32\dnsapi.dll => kein Firmenname <===== ACHTUNG
C:\windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-11-22 14:10
==================== Ende vom FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:20-11-2015
durchgeführt von Denise (2015-11-23 15:37:21)
Gestartet von C:\Users\Denise\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2010-03-13 12:44:43)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1072828290-3828818215-1948454868-500 - Administrator - Disabled)
Denise (S-1-5-21-1072828290-3828818215-1948454868-1000 - Administrator - Enabled) => C:\Users\Denise
fbwuser01C8 (S-1-5-21-1072828290-3828818215-1948454868-1006 - Limited - Enabled)
fbwuserBCE0 (S-1-5-21-1072828290-3828818215-1948454868-1008 - Limited - Enabled)
fbwuserE33E (S-1-5-21-1072828290-3828818215-1948454868-1007 - Limited - Enabled)
Gast (S-1-5-21-1072828290-3828818215-1948454868-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-1072828290-3828818215-1948454868-1004 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 17.0.0.124 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe® Content Viewer (HKLM\...\com.adobe.dmp.contentviewer) (Version: 3.4.2 - Adobe Systems, Incorporated)
Atheros Client Installation Program (HKLM\...\{D1434266-0486-4469-B338-A60082CC04E1}) (Version: 1.0.1.0805 - Atheros)
Bamboo Dock (Version: 4.1.0 - Wacom Europe GmbH) Hidden
Bamboo Dock 3.3 (HKLM\...\Bamboo Dock) (Version: 3.3 - Wacom Co., Ltd.)
BatteryLifeExtender (HKLM\...\{853F8A41-A3C9-43FA-87FA-1AE74FC6F3F7}) (Version: 1.0.1 - Samsung)
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CyberLink DVD Suite (HKLM\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2806 - CyberLink Corp.)
CyberLink LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1916 - CyberLink Corp.)
CyberLink Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3108a - CyberLink Corp.)
CyberLink PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3213 - CyberLink Corp.)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.2815b - CyberLink Corp.)
CyberLink PowerProducer (HKLM\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.1.1812 - CyberLink Corp.)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3304 - CyberLink Corp.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Easy Network Manager (HKLM\...\{A5675A9E-F073-414A-9A04-F9BCD50459D7}) (Version: 4.2.6 - Samsung)
Easy SpeedUp Manager (HKLM\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 3.0.0.5 - Samsung Electronics Co.,Ltd.)
EasyBatteryManager (HKLM\...\{178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}) (Version: 4.0.0.3 - Samsung)
EasyBits GO (HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Game Organizer) (Version: - EasyBits Media)
Free Audio Converter version 5.0.22.128 (HKLM\...\Free Audio Converter_is1) (Version: 5.0.22.128 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.0.128 (HKLM\...\Free YouTube Download_is1) (Version: 3.2.0.128 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.0.128 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.0.128 - DVDVideoSoft Ltd.)
Game Pack (HKLM\...\{63eafc52-b963-4297-a7eb-d412944e7065}_is1) (Version: 5.3.0.10 - Oberon Media, Inc.)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 8 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
LAME v3.98.2 for Audacity (HKLM\...\LAME for Audacity_is1) (Version: - )
LPS 2009v 3.0 USB (HKLM\...\{BDBA9828-200B-43A0-AB4F-82DABEE64F94}_is1) (Version: LPS 2009v 3.0 USB - VVR)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.22.3.3 - Marvell)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Access 2003 Runtime (HKLM\...\{901C0407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 39.0 (x86 de) (HKLM\...\Mozilla Firefox 39.0 (x86 de)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla)
MPEG2 Codec(libmpeg2/mad) (HKLM\...\MPEG2 Codec(libmpeg2/mad)) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{81CD6232-10F5-4832-B3DA-1B88B1571031}) (Version: 7.02.5851 - Nero AG)
NVIDIA GeForce Experience 2.5.15.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.46 - NVIDIA Corporation)
NVIDIA Grafiktreiber 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenMG Secure Module 4.7.00 (HKLM\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) Hidden
Origin (HKLM\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
QuickTime (HKLM\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
RawTherapee Version 4.0.11 (HKLM\...\{128459AB-59A7-430A-8BD0-3D8803D50400}_is1) (Version: 4.0.11 - rawtherapee.com)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7404 - Realtek Semiconductor Corp.)
Reputation Advisor (HKLM\...\sysTPL 1.4.1.5) (Version: 1.4.1.5 - Tlapia) <==== ACHTUNG
RGSS-RTP Standard (HKLM\...\{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}) (Version: 1.0.0 - Enterbrain)
RTP for RM2K (Png, Wav, Midi, Fonts) (HKLM\...\RTP for RM2K (Png, Wav, Midi, Fonts)) (Version: - )
SAMSUNG CDMA Modem Driver Set (HKLM\...\SAMSUNG CDMA Modem) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Samsung PC Studio (Version: 3.0.0.60203 - Samsung Electronics Co., Ltd.) Hidden
Samsung PC Studio 3 USB Driver Installer (HKLM\...\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}) (Version: 1.00.0000 - Samsung Electronics Co., Ltd.)
Samsung Recovery Solution 4 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 4.0.0.6 - Samsung)
Samsung Support Center (HKLM\...\{CCC2B140-B47A-45FA-AAE3-BD60DA41AE00}) (Version: 1.0.21 - Samsung)
Samsung Update Plus (HKLM\...\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}) (Version: 2.0 - Samsung Electronics Co., Ltd.)
SHIELD Streaming (Version: 4.1.500 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.15.46 - NVIDIA Corporation) Hidden
SonicStage 4.3 (HKLM\...\{A0EB195B-5876-48E6-879D-33D4B2102610}) (Version: 4.3 - Sony Corporation)
Sony Ericsson Update Engine (HKLM\...\Update Engine) (Version: 2.13.6.201305161305 - Sony Ericsson Communications AB)
Steam (HKLM\...\Steam) (Version: - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.10.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uninstall 1.0.0.1 (HKLM\...\Uninstall_is1) (Version: - )
User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 1.0.3 (HKLM\...\VLC media player) (Version: 1.0.3 - VideoLAN Team)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.7 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.5 - Wacom Technology Corp.)
Winamp (nur entfernen) (HKLM\...\Winamp) (Version: - )
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\ProgramData\Skype Extras\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\ProgramData\Skype Extras\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{b2b568c8-3712-4a75-b806-4b3c2fdb06d5}\localserver32 -> C:\Users\Denise\AppData\Local\Temp\{e9513610-f218-4dda-b954-2c7e6ba7cabb}\IDriver.NonElevated.exe => (Der Dateneintrag hat 12 mehr Zeichen).
==================== Wiederherstellungspunkte =========================
22-11-2015 12:49:50 Removed Skype™ 7.8
22-11-2015 12:52:57 Removed Adobe Photoshop Lightroom 5.5.
23-11-2015 15:32:01 JRT Pre-Junkware Removal
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0125262C-427A-4DFE-BB7B-A01F82677284} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-04-20] ()
Task: {0C0875BC-0A59-4F6C-845C-E2DCFA46AADC} - System32\Tasks\{77683F70-B2A3-423A-BA32-3539EEFE97FD} => C:\Program Files\Skype\Phone\Skype.exe
Task: {2748628F-A9EB-4010-94C1-1DED464FA34B} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2009-10-26] (SAMSUNG Electronics)
Task: {28118F91-F1F8-4886-8DDE-FDC81BFD3923} - System32\Tasks\{84B8F68B-3411-4A64-A517-B2D70055DC51} => C:\Program Files\Skype\\Phone\Skype.exe
Task: {2BEE9C2A-EAC7-4CC4-8026-1B7B32F55B48} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2009-10-16] (SAMSUNG Electronics co., LTD.)
Task: {2CC1AEB9-AC28-401D-A101-970B91511899} - System32\Tasks\{B750924D-E105-450D-99A8-262347CA436C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.5.0.124/de/go/help.faq.installer?LastError=1604
Task: {3DAFF145-E835-4F26-BF28-BF738E8A67B4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {66D914C6-7066-488B-999A-71725199C662} - System32\Tasks\{944669E5-57EB-4345-8984-E39585338637} => pcalua.exe -a "C:\Users\Denise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A4OKM3FQ\20101130-003-i32[1].exe" -d C:\Users\Denise\Desktop
Task: {6A6CCE9D-4827-41C6-B848-31534D6BF6D4} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-25] (Adobe Systems Incorporated)
Task: {6F306A86-1F31-4DC6-8B55-C2299A584090} - System32\Tasks\{3C6B1DA7-FE34-489E-A60C-A4F12465BDD1} => pcalua.exe -a C:\Users\Denise\Downloads\jxpiinstall.exe -d "C:\Program Files\Mozilla Firefox"
Task: {76EE0824-7352-4C6C-ACBB-2CFE1D990277} - System32\Tasks\{5A8300FC-306B-42C2-BF92-A08083115555} => pcalua.exe -a E:\RunSetup.exe -d E:\
Task: {77348CC6-E978-4140-BE67-F524EF7499CB} - System32\Tasks\{4A921841-116D-4180-B7FC-6D378D43E13D} => pcalua.exe -a E:\RunSetup.exe -d E:\
Task: {923AFCCA-19CA-4175-B4A6-0682580544E0} - System32\Tasks\{4C6C12B0-0D3D-4B96-8BD1-E1EC26827F61} => C:\Program Files\Skype\\Phone\Skype.exe
Task: {A8D63F98-436B-4454-8A21-5A41D4DB9BE9} - System32\Tasks\{A185E869-35A1-4000-A707-3E3B3F9A74A0} => pcalua.exe -a "C:\Program Files\EA GAMES\Die Sims 2 Deluxe\EP2\CSBin\PackageInstaller.exe" -d "C:\Program Files\Mozilla Firefox" -c "C:\Users\Denise\AppData\Local\Temp\Victorian Elegance.Sims2Pack"
Task: {AA57E286-DE28-4947-9020-4F898DFF0566} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1072828290-3828818215-1948454868-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {AC68A262-7B00-44F1-9D7A-D657B4C6FF65} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {C5521848-C645-436A-9BCC-46ADB8A42C14} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19] (Samsung Electronics. Co. Ltd.)
Task: {CEFF83D6-CCB4-4705-A77E-4F507FAC5A67} - System32\Tasks\{6BE42DC9-379E-4AF9-A326-CFF9D069766A} => pcalua.exe -a E:\setup.exe -d E:\
Task: {D6323718-D6F4-4835-B531-77E2AF730D98} - System32\Tasks\Trojan Killer => C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe
Task: {DC571846-99C7-433D-BF77-54A9FF587F83} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2010-01-19] (SEC)
Task: {EAF88417-F062-4A34-8717-3BED50A2B750} - System32\Tasks\{ED001293-CFE2-44A6-BA5C-848DAB474DD0} => pcalua.exe -a "C:\Program Files\Samsung Casual Games\Go-Go Gourmet\Uninstall.exe" -c "C:\Program Files\Samsung Casual Games\Go-Go Gourmet\install.log"
Task: {F31F4939-9458-4471-8E2B-88C1283793A6} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1072828290-3828818215-1948454868-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2011-04-15 13:56 - 2015-09-18 06:51 - 00270336 _____ () C:\windows\system32\DNSAPI.dll
2011-04-15 13:56 - 2015-09-18 06:51 - 00270336 _____ () c:\windows\system32\DNSAPI.dll
2011-04-15 13:56 - 2015-09-18 06:51 - 00270336 _____ () C:\windows\System32\DNSAPI.dll
2011-06-20 19:34 - 2011-06-12 12:55 - 00073600 _____ () c:\windows\system32\ezgosvc.dll
2010-03-13 13:47 - 2009-08-13 21:58 - 00044312 _____ () C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
2009-12-05 01:00 - 2009-07-07 19:23 - 00247152 ____N () C:\Program Files\CyberLink\Shared files\RichVideo.exe
2014-05-23 01:10 - 2014-05-23 01:10 - 00693920 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll
2010-04-18 11:05 - 2009-08-16 16:06 - 00141312 _____ () C:\Program Files\WinRAR\rarext.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:A42A9F39
AlternateDataStreams: C:\ProgramData\Temp:ABE89FFE
AlternateDataStreams: C:\ProgramData\Temp:BC359956
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D
AlternateDataStreams: C:\Users\Denise\Desktop\IMG_2589fertig.jpg:com.dropbox.attributes
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{80763932-6272-4EC3-922F-91E8FFCFF411}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR.EXE
FirewallRules: [{1B4A8D63-D7D1-415C-803A-98E0DFD28F92}] => (Allow) C:\Program Files\CyberLink\PowerDVD8\PowerDVD8.EXE
FirewallRules: [{2ECD0310-FA77-4FC9-92BA-C88211C2541B}] => (Allow) svchost.exe
FirewallRules: [{633D5160-7155-4043-8CAF-96CB23B39FD2}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{0CE838CB-9BBE-4349-BB06-DFBD6A808828}] => (Allow) LPort=4481
FirewallRules: [{2180A482-9630-4E2F-82DA-5C72699BCE0A}] => (Allow) LPort=4481
FirewallRules: [{9F6E8EB7-6FB3-4A92-9D9C-04EF5914F432}] => (Allow) LPort=4482
FirewallRules: [{B5BE4872-11E6-4E5E-9CA1-7CC6C74C58E5}] => (Allow) LPort=4482
FirewallRules: [{6F909844-BB20-40E0-81B3-4B12C2D0BE54}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9F246357-8DCE-4BA1-A55E-1EFB85B07125}] => (Allow) LPort=2869
FirewallRules: [{613B0BD8-E42A-4F3B-BBDE-0BEF819D8489}] => (Allow) LPort=1900
FirewallRules: [{E89796A6-38F1-4DBD-819B-2B40F77ED89C}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{6CEB2B97-13EB-467D-B703-628876C9D511}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{527EC58B-EC2B-42AC-94AB-E5A7C276622E}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{444A1476-A7B6-4418-934F-F1D4D8AFE561}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{E1E3BB11-C1FE-4D15-A524-E9D069A3C39E}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{F6797D73-4DF6-433B-A766-9C4454B6A975}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{F0DE6D99-195B-4344-A991-9DCF02A1F941}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{D09C0081-C6E4-45BA-AA76-58DDFE24CEF2}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{37A97BB5-789D-42AE-A7E0-162FCB81AA0F}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{52638EE3-8914-4932-B0DB-92BBBB3F992C}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{286D7930-A45E-4D5F-BB3F-0771995B825D}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{6B4F4303-DA4D-41A1-A52B-B60440E15B31}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{417D3A6D-E34D-4A61-A1FB-F5BF712B167C}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{55F4E51F-5690-43EA-BBD1-B5281C832641}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{E722ACE8-371A-4CB6-B6E2-BAA391D37221}] => (Allow) C:\Users\Denise\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{B5EB9715-5C0E-4D05-8C4A-24CF26367082}] => (Allow) C:\Users\Denise\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{A11B07C1-76D5-4AD6-82E5-EEFF0DA01AA3}C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{2FA9A431-CF1D-47CC-8261-5C664011D66F}C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{014963E3-F16F-44D0-B3CD-097089958639}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{7AC0F6CA-DC84-4356-B3CB-AEE83736B907}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{2AAFA724-3E9C-43EE-A5FB-658C6F7DC093}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{117BFE89-2975-4275-9DCA-5A97932B5A6E}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [TCP Query User{D8AB2B32-B7D7-4970-90B3-F47032151FEB}C:\users\denise\downloads\remotecontrolserver.exe] => (Allow) C:\users\denise\downloads\remotecontrolserver.exe
FirewallRules: [UDP Query User{DBA93071-C46D-4796-AD4F-5FEC4791510E}C:\users\denise\downloads\remotecontrolserver.exe] => (Allow) C:\users\denise\downloads\remotecontrolserver.exe
FirewallRules: [{956267F8-A470-479D-B88B-E895A54337AF}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{2E69A59B-ADB3-4887-B700-4103B19D2786}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{897A7DFF-26A6-4DE8-A55B-4B684D739469}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{FAD963BC-B554-4BB1-910E-FE3BA39522F2}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{84DD2A37-2FC4-4F49-AEC0-FD6013B816EF}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [{AB929B3D-09D2-4DAF-903F-D9D6FCFCF271}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{75D332C6-B7E9-4FEF-AE8B-42A56F5DC98E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3847EB80-4EB5-472C-B257-7030CF957EEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{54806E36-CA94-400C-AC19-201AE17B1DC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{0197331E-5166-4E0E-A130-FBCB2BC5965F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{6538BD51-6C13-49E8-930D-590B218A7025}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{8ACE36A0-D9EA-40AF-B50C-859AA95FE5A6}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{86312056-6F97-49E2-9260-60FD30E8EA4D}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{448DB76F-CA05-472C-8879-AF45B332A7F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FCFAB0B9-2DD4-4469-B028-9FABA11B64A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C3ED60B3-021A-4C1B-8710-0BF122E69CBE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4DC07AA8-F009-450B-AA74-797C7B3679AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0B657F6F-74AB-4FB5-BE99-13C500E48232}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/22/2015 02:37:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Name des fehlerhaften Moduls: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Ausnahmecode: 0x40000015
Fehleroffset: 0x00052d24
ID des fehlerhaften Prozesses: 0x13bc
Startzeit der fehlerhaften Anwendung: 0xjucheck.exe0
Pfad der fehlerhaften Anwendung: jucheck.exe1
Pfad des fehlerhaften Moduls: jucheck.exe2
Berichtskennung: jucheck.exe3
Error: (11/22/2015 00:58:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: CompatTelRunner.exe, Version: 10.0.10208.0, Zeitstempel: 0x55b60451
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18939, Zeitstempel: 0x55afd7a8
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00032228
ID des fehlerhaften Prozesses: 0x10c4
Startzeit der fehlerhaften Anwendung: 0xCompatTelRunner.exe0
Pfad der fehlerhaften Anwendung: CompatTelRunner.exe1
Pfad des fehlerhaften Moduls: CompatTelRunner.exe2
Berichtskennung: CompatTelRunner.exe3
Error: (10/18/2015 01:44:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Name des fehlerhaften Moduls: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Ausnahmecode: 0x40000015
Fehleroffset: 0x00052d24
ID des fehlerhaften Prozesses: 0x80c
Startzeit der fehlerhaften Anwendung: 0xjucheck.exe0
Pfad der fehlerhaften Anwendung: jucheck.exe1
Pfad des fehlerhaften Moduls: jucheck.exe2
Berichtskennung: jucheck.exe3
Error: (10/18/2015 01:26:22 PM) (Source: WTabletServiceCon) (EventID: 1) (User: )
Description: Prefs: Failed to get user path
Error: (10/17/2015 09:20:03 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Fehler bei der Windows-Lizenzaktivierung. Fehler 0x00000000.
Error: (10/17/2015 09:20:03 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
0x8007043C
Error: (10/17/2015 09:04:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Name des fehlerhaften Moduls: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Ausnahmecode: 0x40000015
Fehleroffset: 0x00052d24
ID des fehlerhaften Prozesses: 0x948
Startzeit der fehlerhaften Anwendung: 0xjucheck.exe0
Pfad der fehlerhaften Anwendung: jucheck.exe1
Pfad des fehlerhaften Moduls: jucheck.exe2
Berichtskennung: jucheck.exe3
Error: (10/17/2015 09:01:10 AM) (Source: WTabletServiceCon) (EventID: 1) (User: )
Description: Prefs: Failed to get user path
Error: (10/17/2015 09:00:10 AM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Fehler bei der Installation des Kaufnachweises. 0x80070005
Teil-Pkey=2BT4J
ACID=?
Genauer Fehler[?]
Error: (10/08/2015 11:46:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AitStatic.exe, Version: 10.0.10004.0, Zeitstempel: 0x54c64d23
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18847, Zeitstempel: 0x554d7b00
Ausnahmecode: 0xc000000d
Fehleroffset: 0x0000812f
ID des fehlerhaften Prozesses: 0x1988
Startzeit der fehlerhaften Anwendung: 0xAitStatic.exe0
Pfad der fehlerhaften Anwendung: AitStatic.exe1
Pfad des fehlerhaften Moduls: AitStatic.exe2
Berichtskennung: AitStatic.exe3
Systemfehler:
=============
Error: (11/23/2015 03:32:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Display Driver Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/23/2015 03:25:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 115.25.0.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/23/2015 03:25:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.211.526.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/23/2015 03:25:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.211.526.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/23/2015 03:25:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.211.526.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/23/2015 03:16:39 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}1
Aktionsstatus: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}8
Fehlercode: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}3
Fehlerbeschreibung: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}4
Signaturversion: 2015-11-23T14:16:09.065Z1
Modulversion: 2015-11-23T14:16:09.065Z2
Error: (11/23/2015 03:14:19 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WerSvc" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1352
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (11/23/2015 03:14:09 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056
Error: (11/23/2015 03:13:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/23/2015 03:13:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2014-02-04 23:11:25.411
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-03 10:21:01.710
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-02 13:57:26.418
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-02 13:28:30.840
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 20:34:10.497
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 20:25:55.905
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 10:23:03.700
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 09:40:10.678
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 09:31:11.760
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-29 13:00:46.224
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T6600 @ 2.20GHz
Prozentuale Nutzung des RAM: 29%
Installierter physikalischer RAM: 3036.61 MB
Verfügbarer physikalischer RAM: 2128.14 MB
Summe virtueller Speicher: 6069.48 MB
Verfügbarer virtueller Speicher: 4980.5 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:141.49 GB) (Free:13.49 GB) NTFS
Drive d: () (Fixed) (Total:141.5 GB) (Free:73.16 GB) NTFS
Drive g: (1 GB) (Removable) (Total:0.91 GB) (Free:0.9 GB) FAT
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 711561A4)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=141.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=141.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 930 MB) (Disk ID: B7B9F347)
Partition 1: (Active) - (Size=930 MB) - (Type=06)
==================== Ende vom Addition.txt ============================
|
|
23.11.2015, 18:12
| #12 |
| /// TB-Ausbilder | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Servus, nochmal FRST bitte, aber dieses Mal so:
|
|
23.11.2015, 19:36
| #13 |
| | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Hier die Logdatei Code:
ATTFilter Farbar Recovery Scan Tool (x86) Version:20-11-2015
durchgeführt von Denise (2015-11-23 19:26:20)
Gestartet von C:\Users\Denise\Desktop
Start-Modus: Normal
================== Datei-Suche: "dnsapi.dll" =============
C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7601.21673_none_e431a3c1f9eaaa8f\dnsapi.dll
[2011-04-15 13:56][2011-03-03 06:12] 0270336 ____A (Microsoft Corporation) 1F79F611109C2B97260B68FD6B4FC7DD [Datei ist digital signiert]
C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7601.17570_none_e3a50618e0cfbec0\dnsapi.dll
[2011-04-15 13:56][2011-03-03 06:38] 0270336 ____N (Microsoft Corporation) B40420876B9288E0A1C8CCA8A84E5DC9 [Datei ist digital signiert]
C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7601.17514_none_e3e9e6c8e09b7c76\dnsapi.dll
[2011-02-26 15:17][2010-11-20 13:18] 0270336 ____A (Microsoft Corporation) 59DF156711A76BCB993253EC6C9BBF41 [Datei ist digital signiert]
C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7600.20914_none_e28d2873fc92ad7b\dnsapi.dll
[2011-04-15 13:56][2011-03-03 06:50] 0270336 ____A (Microsoft Corporation) 11DD7EB4446F25C132D0D8527DDCAF4D [Datei ist digital signiert]
C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7600.16772_none_e1c0a9a6e3a78582\dnsapi.dll
[2011-04-15 13:56][2011-03-03 06:29] 0269824 ____A (Microsoft Corporation) 62390F4ACE9E2B63E3CA26B7F7497897 [Datei ist digital signiert]
C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7600.16385_none_e1b8d300e3acf8dc\dnsapi.dll
[2009-07-14 00:12][2009-07-14 02:15] 0269824 ____A (Microsoft Corporation) 6D5A49D6479EB753C7879F73A4C35E0F [Datei ist digital signiert]
C:\Windows\System32\dnsapi.dll
[2011-04-15 13:56][2015-09-18 06:51] 0270336 ____A () D41D8CD98F00B204E9800998ECF8427E [Datei ist nicht signiert]
====== Ende von Suche ======
|
|
23.11.2015, 21:26
| #14 |
| /// TB-Ausbilder | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Servus, Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-04-10] <==== ACHTUNG
FF Extension: Kein Name - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\extensions\fg@favgenius.com.xpi [nicht gefunden]
FF Extension: search service - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\{bae37ea1-7abb-47f2-8b34-44f0f489f8a2}.xpi [2015-10-05] [ist nicht signiert]
Replace: C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7601.21673_none_e431a3c1f9eaaa8f\dnsapi.dll C:\Windows\System32\dnsapi.dll
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:A42A9F39
AlternateDataStreams: C:\ProgramData\Temp:ABE89FFE
AlternateDataStreams: C:\ProgramData\Temp:BC359956
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
Reboot:
end
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Kommst du nach dem Neustart wieder ins Internet? Schritt 2
Bitte poste mit deiner nächsten Antwort
|
|
24.11.2015, 06:37
| #15 |
| | MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht Erst einmal die Datei vom ersten Schritt Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x86) Version:20-11-2015
durchgeführt von Denise (2015-11-24 06:09:28) Run:1
Gestartet von C:\Users\Denise\Desktop
Geladene Profile: Denise (Verfügbare Profile: Denise & Gast)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
start
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-04-10] <==== ACHTUNG
FF Extension: Kein Name - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\extensions\fg@favgenius.com.xpi [nicht gefunden]
FF Extension: search service - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\{bae37ea1-7abb-47f2-8b34-44f0f489f8a2}.xpi [2015-10-05] [ist nicht signiert]
Replace: C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7601.21673_none_e431a3c1f9eaaa8f\dnsapi.dll C:\Windows\System32\dnsapi.dll
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:A42A9F39
AlternateDataStreams: C:\ProgramData\Temp:ABE89FFE
AlternateDataStreams: C:\ProgramData\Temp:BC359956
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
Reboot:
end
*****************
C:\Program Files\mozilla firefox\firefox.cfg => erfolgreich verschoben
C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\extensions\fg@favgenius.com.xpi => Pfad erfolgreich entfernt
C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\{bae37ea1-7abb-47f2-8b34-44f0f489f8a2}.xpi => erfolgreich verschoben
C:\Windows\System32\dnsapi.dll => erfolgreich verschoben
C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.1.7601.21673_none_e431a3c1f9eaaa8f\dnsapi.dll erfolgreich kopiert zu C:\Windows\System32\dnsapi.dll
C:\ProgramData\Temp => ":373E1720" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":4CF61E54" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":A42A9F39" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":ABE89FFE" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":BC359956" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":D1B5B4F1" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":E1F04E8D" ADS erfolgreich entfernt.
========= RemoveProxy: =========
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
========= Ende von RemoveProxy: =========
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zur�ckgesetzt.
Sie m�ssen den Computer neu starten, um den Vorgang abzuschlie�en.
========= Ende von CMD: =========
Das System musste neu gestartet werden.
==== Ende vom Fixlog 06:09:31 ====
Und die beiden Logdateien vom FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:23-11-2015
durchgeführt von Denise (Administrator) auf DENISE-PC (24-11-2015 06:16:21)
Gestartet von C:\Users\Denise\Desktop
Geladene Profile: Denise (Verfügbare Profile: Denise & Gast)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe
(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink) C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\Bamboo Dock\BambooCore.exe
() C:\Program Files\Winamp\winampa.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTLite.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12111576 2014-12-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [UpdateLBPShortCut] => C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer] => C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM\...\Run: [UpdateP2GoShortCut] => C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [UpdatePDRShortCut] => C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [RemoteControl8] => C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [PDVD8LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [UpdatePPShortCut] => C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] => C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM\...\Run: [UCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-02-26] (Nero AG)
HKLM\...\Run: [BambooCore] => C:\Program Files\Bamboo Dock\BambooCore.exe [646744 2014-11-20] ()
HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\Winampa.exe [12288 2003-04-17] ()
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)
HKLM\...\Run: [MouseDriver] => C:\windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-29] (Microsoft Corporation)
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2654512 2015-10-04] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [EADM] => C:\Program Files\Origin\Origin.exe [3638256 2015-09-11] (Electronic Arts)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: G - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {0afaf239-5233-11e1-9281-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {5c1700f8-0a8e-11e0-89ea-00245467eac5} - F:\Autorun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {88771927-5bca-11e1-9d6d-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {8ed8c5b8-1d1f-11e3-a810-00245467eac5} - G:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {929343ec-dae9-11df-91fe-00245467eac5} - G:\LaunchU3.exe -a
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {98b26fee-6c31-11e1-b6ca-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {98b26ff2-6c31-11e1-b6ca-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {9d0d55be-049b-11e1-b91f-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {9d0d55c7-049b-11e1-b91f-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {a3b0880f-92f1-11e1-92ac-00245467eac5} - G:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {ac8e3a14-72f9-11e0-8ea1-00245467eac5} - F:\Autorun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {df1fb56f-8b3a-11e3-86dc-00245467eac5} - G:\AutoRun.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\MountPoints2: {f2592001-7340-11e1-960d-00245467eac5} - H:\Startme.exe
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\WLXPGSS.SCR [302448 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll [2014-05-23] ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{6740F581-8B96-4B73-9C1B-74E80ABB4E31}: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{89937394-FABE-4827-A000-3CA618D78EDF}: [DhcpNameServer] 139.7.30.126 139.7.30.125
Tcpip\..\Interfaces\{D15BEF43-E20E-4980-8981-90385BBA009A}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{FAA164E7-8D0A-412C-BC98-DE239EC26F45}: [DhcpNameServer] 192.168.0.1 192.168.0.2
Internet Explorer:
==================
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
SearchScopes: HKLM -> DefaultScope {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
Toolbar: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Keine Datei
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx
DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-09] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Keine Datei
FireFox:
========
FF ProfilePath: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-25] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.5 -> C:\Program Files\TabletPlugins\npwacom.dll [2010-09-02] (Wacom, Inc.)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-1072828290-3828818215-1948454868-1000: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2013-09-27] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2012-11-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-11-18] (Apple Inc.)
FF Extension: YouTube Unblocker - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\youtubeunblocker@unblocker.yt [2015-08-05]
FF Extension: Adblock Plus - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\xsixmqdl.default-1418637142018\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-25]
Chrome:
=======
CHR Profile: C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - <kein Path\update_url>
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ezGOSvc; C:\windows\system32\ezGOSvc.dll [73600 2011-06-12] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [921392 2015-10-04] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
S3 npggsvc; C:\windows\system32\GameMon.des [3461904 2010-01-12] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-10-04] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4325680 2015-10-04] (NVIDIA Corporation)
R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] ()
S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2057736 2015-09-11] (Electronic Arts)
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [Datei ist nicht signiert]
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()
S3 SonicStage Back-End Service; C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
S3 SSScsiSV; C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [567064 2014-08-19] (Wacom Technology, Corp.)
S4 Agsvepehe; kein ImagePath
S3 FirebirdServerMAGIXInstance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [X]
S2 RoxLiveShare9; "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 athr; C:\windows\System32\DRIVERS\athr.sys [2228224 2011-12-13] (Atheros Communications, Inc.) [Datei ist nicht signiert]
R2 atksgt; C:\windows\System32\DRIVERS\atksgt.sys [83872 2011-10-01] ()
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S3 hidkmdf; C:\windows\System32\DRIVERS\hidkmdf.sys [12088 2014-08-06] (Windows (R) Win 7 DDK provider)
R3 KMWDFILTERx86; C:\windows\System32\DRIVERS\KMWDFILTER.sys [25088 2009-04-29] (Windows (R) Codename Longhorn DDK provider)
R2 lirsgt; C:\windows\System32\DRIVERS\lirsgt.sys [25888 2011-10-01] ()
R3 LVUSBSta; C:\windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R1 MpKsl3625e2bd; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{378E663A-D49E-486C-A32F-4376EC840978}\MpKsl3625e2bd.sys [39168 2015-11-24] (Microsoft Corporation)
S3 Netaapl; C:\windows\System32\DRIVERS\netaapl.sys [18432 2010-04-19] (Apple Inc.) [Datei ist nicht signiert]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18736 2015-10-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad32v.sys [44840 2015-08-11] (NVIDIA Corporation)
S3 pepifilter; C:\windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
S3 PID_PEPI; C:\windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
R3 seehcri; C:\windows\System32\DRIVERS\seehcri.sys [27632 2010-10-29] (Sony Ericsson Mobile Communications) [Datei ist nicht signiert]
S3 SipIMNDI; C:\windows\System32\DRIVERS\SipIMNDI.sys [24352 2009-10-15] (T-Systems International GmbH)
R0 sptd; C:\windows\System32\Drivers\sptd.sys [691696 2010-12-18] () [Datei ist nicht signiert]
S3 ssm_bus; C:\windows\System32\DRIVERS\ssm_bus.sys [58320 2005-08-30] (MCCI)
S3 ssm_mdfl; C:\windows\System32\DRIVERS\ssm_mdfl.sys [8336 2005-08-30] (MCCI)
S3 ssm_mdm; C:\windows\System32\DRIVERS\ssm_mdm.sys [94000 2005-08-30] (MCCI)
S3 t_mouse.sys; C:\windows\System32\DRIVERS\t_mouse.sys [5120 2012-12-19] ()
S3 USBAAPL; C:\windows\System32\Drivers\usbaapl.sys [41984 2011-02-18] (Apple, Inc.) [Datei ist nicht signiert]
S3 WacHidRouter; C:\windows\System32\DRIVERS\wachidrouter.sys [85304 2014-08-06] (Wacom Technology)
S3 wacomrouterfilter; C:\windows\System32\DRIVERS\wacomrouterfilter.sys [13112 2014-08-06] (Wacom Technology)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()
U3 abvhvrem; C:\windows\system32\Drivers\abvhvrem.sys [0 ] (Microsoft Corporation) <==== ACHTUNG (Null Byte Datei/Ordner)
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [X]
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S1 mvgordih; \??\C:\windows\system32\drivers\mvgordih.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
S3 wacommousefilter; system32\DRIVERS\wacommousefilter.sys [X]
S3 wacomvhid; system32\DRIVERS\wacomvhid.sys [X]
U2 wuaserv; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: ezGOSvc -> C:\windows\system32\ezGOSvc.dll ()
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-24 06:16 - 2015-11-24 06:16 - 00000000 ____D C:\Users\Denise\Desktop\FRST-OlderVersion
2015-11-23 19:26 - 2015-11-23 19:31 - 00001946 _____ C:\Users\Denise\Desktop\Search.txt
2015-11-23 15:37 - 2015-11-23 15:37 - 00043366 _____ C:\Users\Denise\Desktop\Addition.txt
2015-11-23 15:35 - 2015-11-24 06:20 - 00024705 _____ C:\Users\Denise\Desktop\FRST.txt
2015-11-23 15:34 - 2015-11-23 15:34 - 00092838 _____ C:\Users\Denise\Desktop\JRT.txt
2015-11-23 15:11 - 2015-11-23 15:13 - 00000000 ____D C:\AdwCleaner
2015-11-23 15:07 - 2015-11-23 15:06 - 01599080 _____ (Malwarebytes) C:\Users\Denise\Desktop\JRT.exe
2015-11-23 15:05 - 2015-11-23 15:05 - 22908888 _____ (Malwarebytes ) C:\Users\Denise\Desktop\mbam-setup-2.2.0.1024.exe
2015-11-23 15:03 - 2015-11-23 15:04 - 01733632 _____ C:\Users\Denise\Desktop\AdwCleaner_5.022.exe
2015-11-23 13:19 - 2015-11-23 13:20 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Denise\Desktop\tdsskiller.exe
2015-11-22 13:11 - 2015-11-24 06:16 - 00000000 ____D C:\FRST
2015-11-22 13:09 - 2015-11-24 06:16 - 01718784 _____ (Farbar) C:\Users\Denise\Desktop\FRST.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-24 06:16 - 2009-12-05 00:54 - 01646364 _____ C:\windows\WindowsUpdate.log
2015-11-24 06:12 - 2010-03-13 13:44 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2015-11-24 06:11 - 2015-08-27 12:34 - 00005139 _____ C:\windows\setupact.log
2015-11-24 06:11 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-11-24 06:10 - 2009-07-14 05:34 - 00023552 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-24 06:10 - 2009-07-14 05:34 - 00023552 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-24 06:09 - 2015-06-03 20:40 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-11-24 06:08 - 2012-04-09 11:28 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-11-23 15:23 - 2009-07-26 21:06 - 01620684 _____ C:\windows\system32\PerfStringBackup.INI
2015-11-23 15:15 - 2015-08-27 12:33 - 00032624 _____ C:\windows\PFRO.log
2015-11-22 14:37 - 2010-07-23 15:40 - 00000000 ____D C:\Users\Denise\AppData\Local\CrashDumps
2015-11-22 12:55 - 2010-03-13 13:45 - 00000000 ____D C:\Program Files\Adobe
2015-11-22 12:52 - 2013-04-08 08:30 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-11-22 12:52 - 2012-11-22 14:34 - 00000000 ___RD C:\Program Files\Skype
2015-11-22 12:52 - 2010-08-05 14:06 - 00000000 ____D C:\ProgramData\Skype
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2010-04-18 11:02 - 2009-09-24 08:55 - 1454213 _____ () C:\Program Files\wrar390d.exe
2011-11-01 17:10 - 2012-03-11 11:47 - 0005264 _____ () C:\Users\Denise\AppData\Roaming\mobile.trf
2011-06-21 09:52 - 2011-07-11 10:54 - 0000308 _____ () C:\Users\Denise\AppData\Roaming\Rim.Desktop.Exception.log
2011-05-27 14:12 - 2012-04-17 17:56 - 0003107 _____ () C:\Users\Denise\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2011-06-21 09:58 - 2012-01-26 12:21 - 0000308 _____ () C:\Users\Denise\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-01-02 16:38 - 2012-01-02 16:38 - 0000180 _____ () C:\Users\Denise\AppData\Roaming\SMSMMSConfig.txt
2010-04-27 18:36 - 2010-04-27 18:36 - 0000000 _____ () C:\Users\Denise\AppData\Roaming\wklnhst.dat
2011-11-01 17:00 - 2012-03-11 18:06 - 0009608 _____ () C:\Users\Denise\AppData\Roaming\WTGAddresses.dat
2011-11-15 20:47 - 2011-12-15 21:52 - 0000008 _____ () C:\Users\Denise\AppData\Roaming\WTGMMS.dat
2011-11-15 20:47 - 2011-12-15 21:52 - 0000008 _____ () C:\Users\Denise\AppData\Roaming\WTGMMSNotification.dat
2011-11-01 16:15 - 2011-11-01 17:00 - 0006552 _____ () C:\Users\Denise\AppData\Roaming\wtgoverride.wdb
2011-11-01 17:00 - 2012-03-11 18:06 - 0047950 _____ () C:\Users\Denise\AppData\Roaming\WTGSMS.dat
2011-06-21 09:54 - 2013-08-20 11:55 - 0017408 _____ () C:\Users\Denise\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-08 12:22 - 2015-07-08 12:22 - 0761791 _____ () C:\Users\Denise\AppData\Local\omesuperv2.exe
2014-11-20 18:28 - 2014-11-20 18:28 - 0000909 _____ () C:\Users\Denise\AppData\Local\recently-used.xbel
2010-08-05 14:32 - 2010-08-05 14:32 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2010-03-13 13:46 - 2009-08-17 06:54 - 0131368 _____ () C:\ProgramData\FullRemove.exe
2010-07-23 17:23 - 2010-07-23 18:14 - 0006265 _____ () C:\ProgramData\hpzinstall.log
2009-12-05 01:03 - 2009-12-05 01:03 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2009-12-05 01:01 - 2009-12-05 01:02 - 0000106 _____ () C:\ProgramData\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}.log
2009-12-05 00:57 - 2009-12-05 00:58 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-12-05 01:02 - 2009-12-05 01:03 - 0000110 _____ () C:\ProgramData\{B7A0CE06-068E-11D6-97FD-0050BACBF861}.log
2009-12-05 00:57 - 2009-12-05 00:57 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-12-05 00:58 - 2009-12-05 01:01 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
Einige Dateien in TEMP:
====================
C:\Users\Denise\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Denise\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Denise\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\windows\explorer.exe => Datei ist digital signiert
C:\windows\system32\winlogon.exe => Datei ist digital signiert
C:\windows\system32\wininit.exe => Datei ist digital signiert
C:\windows\system32\svchost.exe => Datei ist digital signiert
C:\windows\system32\services.exe => Datei ist digital signiert
C:\windows\system32\User32.dll => Datei ist digital signiert
C:\windows\system32\userinit.exe => Datei ist digital signiert
C:\windows\system32\rpcss.dll => Datei ist digital signiert
C:\windows\system32\dnsapi.dll => Datei ist digital signiert
C:\windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-11-22 14:10
==================== Ende vom FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:23-11-2015
durchgeführt von Denise (2015-11-24 06:21:34)
Gestartet von C:\Users\Denise\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2010-03-13 12:44:43)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1072828290-3828818215-1948454868-500 - Administrator - Disabled)
Denise (S-1-5-21-1072828290-3828818215-1948454868-1000 - Administrator - Enabled) => C:\Users\Denise
fbwuser01C8 (S-1-5-21-1072828290-3828818215-1948454868-1006 - Limited - Enabled)
fbwuserBCE0 (S-1-5-21-1072828290-3828818215-1948454868-1008 - Limited - Enabled)
fbwuserE33E (S-1-5-21-1072828290-3828818215-1948454868-1007 - Limited - Enabled)
Gast (S-1-5-21-1072828290-3828818215-1948454868-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-1072828290-3828818215-1948454868-1004 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 17.0.0.124 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe® Content Viewer (HKLM\...\com.adobe.dmp.contentviewer) (Version: 3.4.2 - Adobe Systems, Incorporated)
Atheros Client Installation Program (HKLM\...\{D1434266-0486-4469-B338-A60082CC04E1}) (Version: 1.0.1.0805 - Atheros)
Bamboo Dock (Version: 4.1.0 - Wacom Europe GmbH) Hidden
Bamboo Dock 3.3 (HKLM\...\Bamboo Dock) (Version: 3.3 - Wacom Co., Ltd.)
BatteryLifeExtender (HKLM\...\{853F8A41-A3C9-43FA-87FA-1AE74FC6F3F7}) (Version: 1.0.1 - Samsung)
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CyberLink DVD Suite (HKLM\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2806 - CyberLink Corp.)
CyberLink LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1916 - CyberLink Corp.)
CyberLink Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3108a - CyberLink Corp.)
CyberLink PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3213 - CyberLink Corp.)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.2815b - CyberLink Corp.)
CyberLink PowerProducer (HKLM\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.1.1812 - CyberLink Corp.)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3304 - CyberLink Corp.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Easy Network Manager (HKLM\...\{A5675A9E-F073-414A-9A04-F9BCD50459D7}) (Version: 4.2.6 - Samsung)
Easy SpeedUp Manager (HKLM\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 3.0.0.5 - Samsung Electronics Co.,Ltd.)
EasyBatteryManager (HKLM\...\{178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}) (Version: 4.0.0.3 - Samsung)
EasyBits GO (HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\...\Game Organizer) (Version: - EasyBits Media)
Free Audio Converter version 5.0.22.128 (HKLM\...\Free Audio Converter_is1) (Version: 5.0.22.128 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.0.128 (HKLM\...\Free YouTube Download_is1) (Version: 3.2.0.128 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.0.128 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.0.128 - DVDVideoSoft Ltd.)
Game Pack (HKLM\...\{63eafc52-b963-4297-a7eb-d412944e7065}_is1) (Version: 5.3.0.10 - Oberon Media, Inc.)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 8 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
LAME v3.98.2 for Audacity (HKLM\...\LAME for Audacity_is1) (Version: - )
LPS 2009v 3.0 USB (HKLM\...\{BDBA9828-200B-43A0-AB4F-82DABEE64F94}_is1) (Version: LPS 2009v 3.0 USB - VVR)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.22.3.3 - Marvell)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Access 2003 Runtime (HKLM\...\{901C0407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 39.0 (x86 de) (HKLM\...\Mozilla Firefox 39.0 (x86 de)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla)
MPEG2 Codec(libmpeg2/mad) (HKLM\...\MPEG2 Codec(libmpeg2/mad)) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{81CD6232-10F5-4832-B3DA-1B88B1571031}) (Version: 7.02.5851 - Nero AG)
NVIDIA GeForce Experience 2.5.15.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.46 - NVIDIA Corporation)
NVIDIA Grafiktreiber 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenMG Secure Module 4.7.00 (HKLM\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) Hidden
Origin (HKLM\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
QuickTime (HKLM\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
RawTherapee Version 4.0.11 (HKLM\...\{128459AB-59A7-430A-8BD0-3D8803D50400}_is1) (Version: 4.0.11 - rawtherapee.com)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7404 - Realtek Semiconductor Corp.)
Reputation Advisor (HKLM\...\sysTPL 1.4.1.5) (Version: 1.4.1.5 - Tlapia) <==== ACHTUNG
RGSS-RTP Standard (HKLM\...\{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}) (Version: 1.0.0 - Enterbrain)
RTP for RM2K (Png, Wav, Midi, Fonts) (HKLM\...\RTP for RM2K (Png, Wav, Midi, Fonts)) (Version: - )
SAMSUNG CDMA Modem Driver Set (HKLM\...\SAMSUNG CDMA Modem) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Samsung PC Studio (Version: 3.0.0.60203 - Samsung Electronics Co., Ltd.) Hidden
Samsung PC Studio 3 USB Driver Installer (HKLM\...\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}) (Version: 1.00.0000 - Samsung Electronics Co., Ltd.)
Samsung Recovery Solution 4 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 4.0.0.6 - Samsung)
Samsung Support Center (HKLM\...\{CCC2B140-B47A-45FA-AAE3-BD60DA41AE00}) (Version: 1.0.21 - Samsung)
Samsung Update Plus (HKLM\...\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}) (Version: 2.0 - Samsung Electronics Co., Ltd.)
SHIELD Streaming (Version: 4.1.500 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.15.46 - NVIDIA Corporation) Hidden
SonicStage 4.3 (HKLM\...\{A0EB195B-5876-48E6-879D-33D4B2102610}) (Version: 4.3 - Sony Corporation)
Sony Ericsson Update Engine (HKLM\...\Update Engine) (Version: 2.13.6.201305161305 - Sony Ericsson Communications AB)
Steam (HKLM\...\Steam) (Version: - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.10.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uninstall 1.0.0.1 (HKLM\...\Uninstall_is1) (Version: - )
User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 1.0.3 (HKLM\...\VLC media player) (Version: 1.0.3 - VideoLAN Team)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.7 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.5 - Wacom Technology Corp.)
Winamp (nur entfernen) (HKLM\...\Winamp) (Version: - )
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\ProgramData\Skype Extras\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\ProgramData\Skype Extras\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-1072828290-3828818215-1948454868-1000_Classes\CLSID\{b2b568c8-3712-4a75-b806-4b3c2fdb06d5}\localserver32 -> C:\Users\Denise\AppData\Local\Temp\{e9513610-f218-4dda-b954-2c7e6ba7cabb}\IDriver.NonElevated.exe => (Der Dateneintrag hat 12 mehr Zeichen).
==================== Wiederherstellungspunkte =========================
22-11-2015 12:49:50 Removed Skype™ 7.8
22-11-2015 12:52:57 Removed Adobe Photoshop Lightroom 5.5.
23-11-2015 15:32:01 JRT Pre-Junkware Removal
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0125262C-427A-4DFE-BB7B-A01F82677284} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-04-20] ()
Task: {0C0875BC-0A59-4F6C-845C-E2DCFA46AADC} - System32\Tasks\{77683F70-B2A3-423A-BA32-3539EEFE97FD} => C:\Program Files\Skype\Phone\Skype.exe
Task: {2748628F-A9EB-4010-94C1-1DED464FA34B} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2009-10-26] (SAMSUNG Electronics)
Task: {28118F91-F1F8-4886-8DDE-FDC81BFD3923} - System32\Tasks\{84B8F68B-3411-4A64-A517-B2D70055DC51} => C:\Program Files\Skype\\Phone\Skype.exe
Task: {2BEE9C2A-EAC7-4CC4-8026-1B7B32F55B48} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2009-10-16] (SAMSUNG Electronics co., LTD.)
Task: {2CC1AEB9-AC28-401D-A101-970B91511899} - System32\Tasks\{B750924D-E105-450D-99A8-262347CA436C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.5.0.124/de/go/help.faq.installer?LastError=1604
Task: {3DAFF145-E835-4F26-BF28-BF738E8A67B4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {66D914C6-7066-488B-999A-71725199C662} - System32\Tasks\{944669E5-57EB-4345-8984-E39585338637} => pcalua.exe -a "C:\Users\Denise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A4OKM3FQ\20101130-003-i32[1].exe" -d C:\Users\Denise\Desktop
Task: {6A6CCE9D-4827-41C6-B848-31534D6BF6D4} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-25] (Adobe Systems Incorporated)
Task: {6F306A86-1F31-4DC6-8B55-C2299A584090} - System32\Tasks\{3C6B1DA7-FE34-489E-A60C-A4F12465BDD1} => pcalua.exe -a C:\Users\Denise\Downloads\jxpiinstall.exe -d "C:\Program Files\Mozilla Firefox"
Task: {76EE0824-7352-4C6C-ACBB-2CFE1D990277} - System32\Tasks\{5A8300FC-306B-42C2-BF92-A08083115555} => pcalua.exe -a E:\RunSetup.exe -d E:\
Task: {77348CC6-E978-4140-BE67-F524EF7499CB} - System32\Tasks\{4A921841-116D-4180-B7FC-6D378D43E13D} => pcalua.exe -a E:\RunSetup.exe -d E:\
Task: {923AFCCA-19CA-4175-B4A6-0682580544E0} - System32\Tasks\{4C6C12B0-0D3D-4B96-8BD1-E1EC26827F61} => C:\Program Files\Skype\\Phone\Skype.exe
Task: {A8D63F98-436B-4454-8A21-5A41D4DB9BE9} - System32\Tasks\{A185E869-35A1-4000-A707-3E3B3F9A74A0} => pcalua.exe -a "C:\Program Files\EA GAMES\Die Sims 2 Deluxe\EP2\CSBin\PackageInstaller.exe" -d "C:\Program Files\Mozilla Firefox" -c "C:\Users\Denise\AppData\Local\Temp\Victorian Elegance.Sims2Pack"
Task: {AA57E286-DE28-4947-9020-4F898DFF0566} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1072828290-3828818215-1948454868-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {AC68A262-7B00-44F1-9D7A-D657B4C6FF65} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {C5521848-C645-436A-9BCC-46ADB8A42C14} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19] (Samsung Electronics. Co. Ltd.)
Task: {CEFF83D6-CCB4-4705-A77E-4F507FAC5A67} - System32\Tasks\{6BE42DC9-379E-4AF9-A326-CFF9D069766A} => pcalua.exe -a E:\setup.exe -d E:\
Task: {D6323718-D6F4-4835-B531-77E2AF730D98} - System32\Tasks\Trojan Killer => C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe
Task: {DC571846-99C7-433D-BF77-54A9FF587F83} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2010-01-19] (SEC)
Task: {EAF88417-F062-4A34-8717-3BED50A2B750} - System32\Tasks\{ED001293-CFE2-44A6-BA5C-848DAB474DD0} => pcalua.exe -a "C:\Program Files\Samsung Casual Games\Go-Go Gourmet\Uninstall.exe" -c "C:\Program Files\Samsung Casual Games\Go-Go Gourmet\install.log"
Task: {F31F4939-9458-4471-8E2B-88C1283793A6} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1072828290-3828818215-1948454868-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-02-25 21:14 - 2015-02-04 03:05 - 00106640 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2009-12-05 00:56 - 2010-04-20 13:26 - 00300912 _____ () C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
2009-12-05 00:56 - 2010-04-16 13:11 - 00155648 _____ () C:\Program Files\Samsung\Samsung Update Plus\HMXML.dll
2011-06-20 19:34 - 2011-06-12 12:55 - 00073600 _____ () c:\windows\system32\ezgosvc.dll
2010-03-13 13:47 - 2009-08-13 21:58 - 00044312 _____ () C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
2009-12-05 01:00 - 2009-07-07 19:23 - 00247152 ____N () C:\Program Files\CyberLink\Shared files\RichVideo.exe
2015-04-01 19:39 - 2015-10-04 09:24 - 00012080 _____ () C:\Program Files\NVIDIA Corporation\Update Core\detoured.dll
2014-05-23 01:10 - 2014-05-23 01:10 - 00693920 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll
2010-04-18 11:05 - 2009-08-16 16:06 - 00141312 _____ () C:\Program Files\WinRAR\rarext.dll
2009-06-03 12:59 - 2009-06-03 12:59 - 00619816 ____N () C:\Program Files\CyberLink\Power2Go\CLMediaLibrary.dll
2009-06-03 12:59 - 2009-06-03 12:59 - 00013096 ____N () C:\Program Files\CyberLink\Power2Go\CLMLSvcPS.dll
2010-07-28 22:58 - 2014-11-20 09:06 - 00646744 _____ () C:\Program Files\Bamboo Dock\BambooCore.exe
2003-04-17 07:54 - 2003-04-17 07:54 - 00012288 _____ () C:\Program Files\Winamp\winampa.exe
2014-05-26 04:52 - 2014-05-26 04:52 - 32733088 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\HEX\libcef.dll
2011-03-14 13:57 - 2014-08-19 20:12 - 01019672 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
2014-05-23 01:10 - 2014-05-23 01:10 - 05341856 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2014-05-12 21:22 - 2014-05-12 21:22 - 02217128 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\ExManZxpSign.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Denise\Desktop\IMG_2589fertig.jpg:com.dropbox.attributes
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{80763932-6272-4EC3-922F-91E8FFCFF411}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR.EXE
FirewallRules: [{1B4A8D63-D7D1-415C-803A-98E0DFD28F92}] => (Allow) C:\Program Files\CyberLink\PowerDVD8\PowerDVD8.EXE
FirewallRules: [{2ECD0310-FA77-4FC9-92BA-C88211C2541B}] => (Allow) svchost.exe
FirewallRules: [{633D5160-7155-4043-8CAF-96CB23B39FD2}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{0CE838CB-9BBE-4349-BB06-DFBD6A808828}] => (Allow) LPort=4481
FirewallRules: [{2180A482-9630-4E2F-82DA-5C72699BCE0A}] => (Allow) LPort=4481
FirewallRules: [{9F6E8EB7-6FB3-4A92-9D9C-04EF5914F432}] => (Allow) LPort=4482
FirewallRules: [{B5BE4872-11E6-4E5E-9CA1-7CC6C74C58E5}] => (Allow) LPort=4482
FirewallRules: [{6F909844-BB20-40E0-81B3-4B12C2D0BE54}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9F246357-8DCE-4BA1-A55E-1EFB85B07125}] => (Allow) LPort=2869
FirewallRules: [{613B0BD8-E42A-4F3B-BBDE-0BEF819D8489}] => (Allow) LPort=1900
FirewallRules: [{E89796A6-38F1-4DBD-819B-2B40F77ED89C}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{6CEB2B97-13EB-467D-B703-628876C9D511}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{527EC58B-EC2B-42AC-94AB-E5A7C276622E}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{444A1476-A7B6-4418-934F-F1D4D8AFE561}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{E1E3BB11-C1FE-4D15-A524-E9D069A3C39E}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{F6797D73-4DF6-433B-A766-9C4454B6A975}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{F0DE6D99-195B-4344-A991-9DCF02A1F941}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{D09C0081-C6E4-45BA-AA76-58DDFE24CEF2}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{37A97BB5-789D-42AE-A7E0-162FCB81AA0F}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{52638EE3-8914-4932-B0DB-92BBBB3F992C}] => (Allow) C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
FirewallRules: [{286D7930-A45E-4D5F-BB3F-0771995B825D}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{6B4F4303-DA4D-41A1-A52B-B60440E15B31}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{417D3A6D-E34D-4A61-A1FB-F5BF712B167C}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{55F4E51F-5690-43EA-BBD1-B5281C832641}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{E722ACE8-371A-4CB6-B6E2-BAA391D37221}] => (Allow) C:\Users\Denise\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{B5EB9715-5C0E-4D05-8C4A-24CF26367082}] => (Allow) C:\Users\Denise\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{A11B07C1-76D5-4AD6-82E5-EEFF0DA01AA3}C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{2FA9A431-CF1D-47CC-8261-5C664011D66F}C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\denise\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{014963E3-F16F-44D0-B3CD-097089958639}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{7AC0F6CA-DC84-4356-B3CB-AEE83736B907}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{2AAFA724-3E9C-43EE-A5FB-658C6F7DC093}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{117BFE89-2975-4275-9DCA-5A97932B5A6E}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [TCP Query User{D8AB2B32-B7D7-4970-90B3-F47032151FEB}C:\users\denise\downloads\remotecontrolserver.exe] => (Allow) C:\users\denise\downloads\remotecontrolserver.exe
FirewallRules: [UDP Query User{DBA93071-C46D-4796-AD4F-5FEC4791510E}C:\users\denise\downloads\remotecontrolserver.exe] => (Allow) C:\users\denise\downloads\remotecontrolserver.exe
FirewallRules: [{956267F8-A470-479D-B88B-E895A54337AF}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{2E69A59B-ADB3-4887-B700-4103B19D2786}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{897A7DFF-26A6-4DE8-A55B-4B684D739469}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{FAD963BC-B554-4BB1-910E-FE3BA39522F2}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{84DD2A37-2FC4-4F49-AEC0-FD6013B816EF}C:\users\denise\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\denise\appdata\roaming\spotify\spotify.exe
FirewallRules: [{AB929B3D-09D2-4DAF-903F-D9D6FCFCF271}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{75D332C6-B7E9-4FEF-AE8B-42A56F5DC98E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3847EB80-4EB5-472C-B257-7030CF957EEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{54806E36-CA94-400C-AC19-201AE17B1DC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{0197331E-5166-4E0E-A130-FBCB2BC5965F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{6538BD51-6C13-49E8-930D-590B218A7025}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{8ACE36A0-D9EA-40AF-B50C-859AA95FE5A6}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{86312056-6F97-49E2-9260-60FD30E8EA4D}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{448DB76F-CA05-472C-8879-AF45B332A7F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FCFAB0B9-2DD4-4469-B028-9FABA11B64A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C3ED60B3-021A-4C1B-8710-0BF122E69CBE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4DC07AA8-F009-450B-AA74-797C7B3679AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0B657F6F-74AB-4FB5-BE99-13C500E48232}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/22/2015 02:37:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Name des fehlerhaften Moduls: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Ausnahmecode: 0x40000015
Fehleroffset: 0x00052d24
ID des fehlerhaften Prozesses: 0x13bc
Startzeit der fehlerhaften Anwendung: 0xjucheck.exe0
Pfad der fehlerhaften Anwendung: jucheck.exe1
Pfad des fehlerhaften Moduls: jucheck.exe2
Berichtskennung: jucheck.exe3
Error: (11/22/2015 00:58:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: CompatTelRunner.exe, Version: 10.0.10208.0, Zeitstempel: 0x55b60451
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18939, Zeitstempel: 0x55afd7a8
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00032228
ID des fehlerhaften Prozesses: 0x10c4
Startzeit der fehlerhaften Anwendung: 0xCompatTelRunner.exe0
Pfad der fehlerhaften Anwendung: CompatTelRunner.exe1
Pfad des fehlerhaften Moduls: CompatTelRunner.exe2
Berichtskennung: CompatTelRunner.exe3
Error: (10/18/2015 01:44:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Name des fehlerhaften Moduls: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Ausnahmecode: 0x40000015
Fehleroffset: 0x00052d24
ID des fehlerhaften Prozesses: 0x80c
Startzeit der fehlerhaften Anwendung: 0xjucheck.exe0
Pfad der fehlerhaften Anwendung: jucheck.exe1
Pfad des fehlerhaften Moduls: jucheck.exe2
Berichtskennung: jucheck.exe3
Error: (10/18/2015 01:26:22 PM) (Source: WTabletServiceCon) (EventID: 1) (User: )
Description: Prefs: Failed to get user path
Error: (10/17/2015 09:20:03 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Fehler bei der Windows-Lizenzaktivierung. Fehler 0x00000000.
Error: (10/17/2015 09:20:03 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
0x8007043C
Error: (10/17/2015 09:04:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Name des fehlerhaften Moduls: jucheck.exe, Version: 2.8.60.27, Zeitstempel: 0x55c116b1
Ausnahmecode: 0x40000015
Fehleroffset: 0x00052d24
ID des fehlerhaften Prozesses: 0x948
Startzeit der fehlerhaften Anwendung: 0xjucheck.exe0
Pfad der fehlerhaften Anwendung: jucheck.exe1
Pfad des fehlerhaften Moduls: jucheck.exe2
Berichtskennung: jucheck.exe3
Error: (10/17/2015 09:01:10 AM) (Source: WTabletServiceCon) (EventID: 1) (User: )
Description: Prefs: Failed to get user path
Error: (10/17/2015 09:00:10 AM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Fehler bei der Installation des Kaufnachweises. 0x80070005
Teil-Pkey=2BT4J
ACID=?
Genauer Fehler[?]
Error: (10/08/2015 11:46:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AitStatic.exe, Version: 10.0.10004.0, Zeitstempel: 0x54c64d23
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18847, Zeitstempel: 0x554d7b00
Ausnahmecode: 0xc000000d
Fehleroffset: 0x0000812f
ID des fehlerhaften Prozesses: 0x1988
Startzeit der fehlerhaften Anwendung: 0xAitStatic.exe0
Pfad der fehlerhaften Anwendung: AitStatic.exe1
Pfad des fehlerhaften Moduls: AitStatic.exe2
Berichtskennung: AitStatic.exe3
Systemfehler:
=============
Error: (11/23/2015 03:32:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Display Driver Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/23/2015 03:25:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 115.25.0.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/23/2015 03:25:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.211.526.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/23/2015 03:25:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.211.526.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/23/2015 03:25:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.211.526.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.8.0204.00
Quellpfad: 4.8.0204.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (11/23/2015 03:16:39 PM) (Source: Microsoft Antimalware) (EventID: 1119) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Patched.AO60 ein schwerwiegender Fehler festgestellt.
Weitere Informationen finden Sie hier:
%Trojan:Win32/Patched.AO603
Name: Trojan:Win32/Patched.AO
ID: 2147706672
Schweregrad: %Trojan:Win32/Patched.AO600
Kategorie: %Trojan:Win32/Patched.AO602
Pfad: 4.8.0204.02
Ursprung der Erkennung: 4.8.0204.04
Typ der Erkennung: 4.8.0204.08
Quelle der Erkennung: %Trojan:Win32/Patched.AO608
Benutzer: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}9
Prozessname: %Trojan:Win32/Patched.AO609
Aktion: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}1
Aktionsstatus: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}8
Fehlercode: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}3
Fehlerbeschreibung: {E72EE7CA-67BB-4402-8220-3A3D574ECE95}4
Signaturversion: 2015-11-23T14:16:09.065Z1
Modulversion: 2015-11-23T14:16:09.065Z2
Error: (11/23/2015 03:14:19 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WerSvc" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1352
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (11/23/2015 03:14:09 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056
Error: (11/23/2015 03:13:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/23/2015 03:13:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2014-02-04 23:11:25.411
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-03 10:21:01.710
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-02 13:57:26.418
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-02-02 13:28:30.840
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 20:34:10.497
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 20:25:55.905
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 10:23:03.700
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 09:40:10.678
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-31 09:31:11.760
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-29 13:00:46.224
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\T-Home\Dialerschutz-Software\df.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T6600 @ 2.20GHz
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 3036.61 MB
Verfügbarer physikalischer RAM: 1526.71 MB
Summe virtueller Speicher: 6069.48 MB
Verfügbarer virtueller Speicher: 4492.25 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:141.49 GB) (Free:12.72 GB) NTFS
Drive d: () (Fixed) (Total:141.5 GB) (Free:73.16 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 711561A4)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=141.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=141.5 GB) - (Type=07 NTFS)
==================== Ende vom Addition.txt ============================
|
|
| Themen zu MS Essentials entdeckt Trojan:Win32/Patched.AO, entfernt jedoch nicht |
| anschluss, c:\windows, daten, entdeck, entfernen, entfernt, explorer, fehlercode, fehlercode: 0x800704ec, file, firefox, folge, internet, internet explorer, kaspersky, nicht mehr, problem, programm, software, stick, system, system32, trojan, trojaner, win, windows, windows 7, zugriff |
Linear-Darstellung
