| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.deWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
02.12.2015, 17:19
| #1 |
| |  Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Hallo, Ich habe gerade eben nun im Hintergrund Werbung gehört und mir ist aufgefallen das Explorer automatisch irgendwelche Werbeseiten öffnet. Ich habe nun Angst einen JRAT RAT oder sonstiges auf den PC zu haben. Wie werde ich den los und kann ich mir sicher sein das er dann weg bleibt? Soeben nun auch Chrome. Genau als ich das hier geschrieben hab.. hxxp://www.watch4.de/gateway/custom/watch4.php Ich weiß nicht ob es ein JRAT ist oder was es sein soll. Stiehlt es auch meine Passwörter etc? Geändert von Spacerrabit (02.12.2015 um 17:27 Uhr) |
|
02.12.2015, 22:11
| #2 |
| /// the machine /// TB-Ausbilder    | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
03.12.2015, 06:56
| #3 |
| | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Aviara meldet mir bei eurem Programm nen virus.. Heur APC (Cloud)?..
__________________ |
|
03.12.2015, 22:09
| #4 |
| /// the machine /// TB-Ausbilder | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Avira is doof. Avira aus, FRST laufen lassen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
29.12.2015, 03:37
| #5 |
| | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de SO habe mich erstmal selbstständig gemacht und mein PC komplett resetet. Nun ist der Virus wieder da. FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:28-12-2015
durchgeführt von Nico (Administrator) auf PCNICO (29-12-2015 03:30:26)
Gestartet von C:\Users\Nico\Downloads
Geladene Profile: Nico (Verfügbare Profile: Nico)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
() C:\Program Files (x86)\DELL\DELLOSD\DellOSDService.exe
(DELL INC.) C:\Program Files (x86)\DELL\DELLOSD\MediaButtons.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
(DELL INC.) C:\Program Files (x86)\DELL\DELLOSD\DELLOSD.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(© 2015 Microsoft Corporation) C:\Users\Nico\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dell Inc.) C:\Program Files (x86)\DELL\SupportAssistAgent\bin\SupportAssistAgent.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\DBRUpd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6843024 2012-10-29] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1234064 2012-10-29] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtTray.exe [763520 2012-08-08] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [127616 2012-08-08] (Atheros Communications)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-07-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-20] (Intel Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [102928 2012-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [179928 2013-01-03] (cyberlink)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-11-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-1683763471-4091019907-2972762102-1001\...\Run: [GoogleChromeAutoLaunch_58457F6FCBB5BE517C132FC5B072F367] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [741704 2015-12-11] (Google Inc.)
HKU\S-1-5-21-1683763471-4091019907-2972762102-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation)
HKU\S-1-5-21-1683763471-4091019907-2972762102-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50748544 2015-12-01] (Skype Technologies S.A.)
HKU\S-1-5-21-1683763471-4091019907-2972762102-1001\...\Run: [BingSvc] => C:\Users\Nico\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-12-03] (© 2015 Microsoft Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{61B5CA7E-6967-4D1B-A2B7-1E1D823ABF5D}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKU\S-1-5-21-1683763471-4091019907-2972762102-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.msn.com/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-1683763471-4091019907-2972762102-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com
SearchScopes: HKU\S-1-5-21-1683763471-4091019907-2972762102-1001 -> DefaultScope {56270900-5E24-49E0-ABDA-AC53D30E1B5B} URL =
SearchScopes: HKU\S-1-5-21-1683763471-4091019907-2972762102-1001 -> {56270900-5E24-49E0-ABDA-AC53D30E1B5B} URL =
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll [2012-08-08] (Qualcomm Atheros Commnucations)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-04] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\MPOO0zL4.default
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\new_plugin\npjp2.dll [Keine Datei]
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Extension: Avira Browser Safety - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\MPOO0zL4.default\Extensions\abs@avira.com [2015-12-03] [ist nicht signiert]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
Chrome:
=======
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=de-de
CHR StartupUrls: Default -> "hxxp://empire.goodgamestudios.com/","hxxps://www.facebook.com/faktastisch?fref=ts","hxxps://vulcun.com/user/lobby#page-quest","hxxp://vote2.mineplex.com/","hxxp://csgolounge.com/","hxxps://www.youtube.com/","hxxp://jumpmaniacs.bplaced.de/forum/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR Profile: C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-03]
CHR Extension: (Google Docs) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-03]
CHR Extension: (Google Drive) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-03]
CHR Extension: (YouTube) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-03]
CHR Extension: (Adblock Plus) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-12-03]
CHR Extension: (Steam inventory helper) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-12-03]
CHR Extension: (Google-Suche) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-03]
CHR Extension: (Bing) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2015-12-04]
CHR Extension: (Google Tabellen) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-03]
CHR Extension: (Avira Browserschutz) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-12-16]
CHR Extension: (Google Docs Offline) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-04]
CHR Extension: (Skype) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-19]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-03]
CHR Extension: (Google Mail) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-03]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1683763471-4091019907-2972762102-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [211072 2012-08-08] (Qualcomm Atheros Commnucations) [Datei ist nicht signiert]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [249624 2015-11-23] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [245888 2013-01-02] (CyberLink)
R2 Dell WMI Service; C:\Program Files (x86)\DELL\DELLOSD\DellOSDService.exe [73728 2012-08-01] () [Datei ist nicht signiert]
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2574168 2015-09-11] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201560 2015-09-11] (Dell Inc.)
R2 DellDigitalDelivery; c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [173056 2012-06-19] (Dell Products, LP.) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-20] (Intel Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [201360 2012-09-01] (Realtek Semiconductor)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1914728 2012-09-12] (SoftThinks SAS)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [21160 2015-09-30] (Dell Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-12-06] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-12-06] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [77824 2012-08-07] (Atheros) [Datei ist nicht signiert]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2014-07-21] (Advanced Micro Devices, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 CM_VENDER_CMD; C:\Program Files\Common Files\Logitech\G430Install\CMVC64.sys [17104 2014-07-30] (Windows (R) Win 7 DDK provider)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [32464 2015-09-11] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-09-11] (Dell Computer Corporation)
S3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 FintekCIR; C:\Windows\system32\DRIVERS\FintekCIR.sys [33128 2012-06-07] (Fintek)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-12-06] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-12-06] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-12-06] (Microsoft Corporation)
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
S3 PCDSRVC{3B54B31B-D06B6431-06020200}_0; \??\c:\program files\dell\supportassist\pcdsrvc_x64.pkms [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-29 03:30 - 2015-12-29 03:30 - 00020199 _____ C:\Users\Nico\Downloads\FRST.txt
2015-12-29 03:30 - 2015-12-29 03:30 - 00000000 ____D C:\FRST
2015-12-29 03:29 - 2015-12-29 03:29 - 02370560 _____ (Farbar) C:\Users\Nico\Downloads\FRST64.exe
2015-12-29 03:25 - 2015-12-29 03:25 - 00000000 ___RD C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-12-26 17:53 - 2015-12-04 14:11 - 00191584 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2015-12-26 17:53 - 2015-12-04 14:11 - 00191072 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2015-12-21 07:46 - 2015-12-21 07:48 - 00000000 ____D C:\ProgramData\PopCap Games
2015-12-21 07:46 - 2015-12-21 07:46 - 00000000 ____D C:\ProgramData\Steam
2015-12-20 20:20 - 2015-12-20 20:20 - 00000220 _____ C:\Users\Nico\Desktop\Zuma's Revenge.url
2015-12-20 20:20 - 2015-12-20 20:20 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-12-18 21:41 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-12-18 21:41 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-12-18 09:25 - 2015-12-18 09:25 - 00237568 _____ (Big Fish Games) C:\Users\Nico\Downloads\svetlograd_s2_l2_gF2224T1L2_d2549359043.exe
2015-12-18 09:25 - 2015-12-18 09:25 - 00237568 _____ (Big Fish Games) C:\Users\Nico\Downloads\svetlograd_s2_l2_gF2224T1L2_d2549359028.exe
2015-12-17 07:05 - 2015-12-17 07:05 - 02433229 _____ C:\Users\Nico\Downloads\spellcheck.zip
2015-12-16 16:06 - 2015-12-16 16:06 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-12-16 16:06 - 2015-12-16 16:06 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2015-12-13 16:42 - 2015-12-13 16:42 - 00003106 _____ C:\WINDOWS\System32\Tasks\{E08AA3F7-8B4D-4240-8D0E-A12EE9906FC3}
2015-12-10 15:08 - 2015-12-29 01:27 - 00003918 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{391D15C7-1469-4BB9-82F4-67B106B33014}
2015-12-09 23:22 - 2015-12-09 23:22 - 00000905 _____ C:\Users\Nico\Desktop\Dokumente - Verknüpfung.lnk
2015-12-09 23:18 - 2015-12-09 23:18 - 00000000 ____D C:\Users\Nico\Documents\NicoStaab NeueUndKlassischeMethodenDesKlonens - Kopie
2015-12-09 23:17 - 2015-12-09 23:22 - 00000000 ____D C:\Users\Nico\Documents\NicoStaab Klonen
2015-12-09 14:09 - 2015-11-05 09:59 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-09 14:08 - 2015-11-11 17:21 - 25837568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-09 14:08 - 2015-11-11 17:00 - 12856832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-09 14:08 - 2015-11-11 16:44 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-12-09 14:08 - 2015-11-11 16:44 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-12-09 14:08 - 2015-11-11 16:41 - 20366848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-09 14:08 - 2015-11-11 16:12 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-12-09 14:08 - 2015-11-10 01:13 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-09 14:08 - 2015-11-10 01:11 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-12-09 14:08 - 2015-11-10 01:08 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-09 14:08 - 2015-11-10 01:04 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-12-09 14:08 - 2015-11-10 01:02 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-12-09 14:08 - 2015-11-10 00:46 - 04514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-12-09 14:08 - 2015-11-10 00:41 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-12-09 14:08 - 2015-11-10 00:37 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-12-09 14:08 - 2015-11-10 00:36 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-09 14:08 - 2015-11-10 00:36 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-09 14:08 - 2015-11-10 00:36 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-09 14:08 - 2015-11-10 00:25 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-12-09 14:08 - 2015-11-10 00:17 - 02011136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-09 14:08 - 2015-11-10 00:14 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-09 14:08 - 2015-11-10 00:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-12-09 14:08 - 2015-11-08 23:15 - 02887168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-09 14:08 - 2015-11-08 23:15 - 00571392 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-09 14:08 - 2015-11-08 23:04 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-12-09 14:08 - 2015-11-08 23:02 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-12-09 14:08 - 2015-11-08 23:01 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-12-09 14:08 - 2015-11-08 22:32 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-12-09 14:08 - 2015-11-08 22:32 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-12-09 14:08 - 2015-11-08 22:25 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-12-09 14:08 - 2015-11-08 22:18 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-12-09 14:08 - 2015-11-08 22:16 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-09 14:08 - 2015-11-08 22:15 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-09 14:08 - 2015-11-08 22:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-09 14:08 - 2015-11-08 22:14 - 14456832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-09 14:08 - 2015-11-08 22:13 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-09 14:08 - 2015-11-08 21:53 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-12-09 14:08 - 2015-11-08 21:53 - 02487808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-09 14:08 - 2015-11-08 21:41 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-09 14:08 - 2015-11-08 21:30 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-12-09 14:07 - 2015-11-22 07:59 - 07455064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-09 14:07 - 2015-11-22 07:59 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 14:07 - 2015-11-22 07:59 - 01659568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-12-09 14:07 - 2015-11-22 07:59 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-12-09 14:07 - 2015-11-22 07:59 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-12-09 14:07 - 2015-11-22 07:59 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-12-09 14:07 - 2015-11-22 07:58 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 14:07 - 2015-11-21 19:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-12-09 14:07 - 2015-11-21 18:50 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-12-09 14:07 - 2015-11-21 17:59 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-09 14:07 - 2015-11-21 17:49 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-09 14:07 - 2015-11-21 17:47 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-09 14:07 - 2015-11-21 17:40 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-09 14:07 - 2015-11-20 23:47 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-09 14:07 - 2015-11-20 19:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-09 14:07 - 2015-11-20 17:58 - 03706880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-09 14:07 - 2015-11-20 17:47 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-12-09 14:07 - 2015-11-20 17:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-12-09 14:07 - 2015-11-20 17:44 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-12-09 14:07 - 2015-11-20 17:44 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-12-09 14:07 - 2015-11-20 17:43 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-12-09 14:07 - 2015-11-20 17:42 - 02243584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-12-09 14:07 - 2015-11-20 17:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-12-09 14:07 - 2015-11-20 17:29 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-12-09 14:07 - 2015-11-20 17:28 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-12-09 14:07 - 2015-11-20 17:27 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-12-09 14:07 - 2015-11-09 01:41 - 01540728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 14:07 - 2015-11-08 23:30 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-09 14:07 - 2015-11-08 22:23 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-12-09 14:07 - 2015-11-08 22:13 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-12-09 14:07 - 2015-11-08 22:01 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 14:07 - 2015-11-08 21:52 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-12-09 14:07 - 2015-11-08 21:48 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 14:07 - 2015-11-08 21:42 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 14:07 - 2015-10-28 16:49 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 14:07 - 2015-10-28 16:29 - 02462720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-09 14:07 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-09 14:07 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2015-12-09 14:07 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2015-12-09 14:07 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2015-12-09 14:07 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2015-12-09 14:07 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2015-12-09 14:07 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2015-12-09 14:07 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2015-12-09 14:07 - 2015-10-22 17:21 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-09 14:07 - 2015-10-22 17:21 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-12-09 14:07 - 2015-10-22 16:58 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-12-09 14:07 - 2015-10-22 16:58 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-12-09 14:07 - 2015-10-22 15:08 - 00513456 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-12-09 14:07 - 2015-10-22 15:08 - 00513456 _____ C:\WINDOWS\system32\locale.nls
2015-12-09 14:07 - 2015-10-11 07:34 - 00468824 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-12-09 14:07 - 2015-10-11 07:34 - 00462168 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-12-09 14:07 - 2015-10-11 07:34 - 00443224 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2015-12-09 14:07 - 2015-10-11 07:34 - 00092504 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2015-12-09 14:07 - 2015-10-11 07:34 - 00027992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2015-12-09 14:07 - 2015-10-10 19:41 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2015-12-09 14:07 - 2015-10-10 19:41 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2015-12-09 14:07 - 2015-10-10 19:40 - 00078848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winusb.sys
2015-12-09 14:07 - 2015-10-10 18:20 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-12-09 14:07 - 2015-10-08 17:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2015-12-09 14:07 - 2015-10-08 16:50 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2015-12-09 14:07 - 2015-10-05 19:28 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-12-09 14:07 - 2015-10-05 19:25 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-12-09 14:07 - 2015-10-03 20:41 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-12-09 14:07 - 2015-10-03 20:41 - 01124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-12-09 07:16 - 2015-12-09 07:16 - 00000000 ____D C:\Users\Nico\AppData\Local\GWX
2015-12-08 22:04 - 2015-12-09 23:08 - 00015270 _____ C:\Users\Nico\Documents\ab.odg
2015-12-08 15:45 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2015-12-08 15:45 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-12-08 15:45 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-12-08 15:45 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2015-12-08 15:45 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-12-08 15:45 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2015-12-08 15:45 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-12-08 15:45 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2015-12-08 15:45 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-12-08 15:45 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2015-12-08 15:45 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2015-12-08 15:45 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-12-08 15:45 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-12-08 15:45 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2015-12-08 15:45 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-12-08 15:45 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2015-12-08 15:45 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-12-08 15:45 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2015-12-08 15:45 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2015-12-08 15:45 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-12-08 15:45 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-12-08 15:45 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2015-12-08 15:45 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-12-08 15:45 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2015-12-08 15:45 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-12-08 15:45 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-12-08 15:45 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2015-12-08 15:45 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2015-12-08 15:45 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-12-08 15:45 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2015-12-08 15:45 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-12-08 15:45 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2015-12-08 15:45 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2015-12-08 15:45 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-12-08 15:45 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-12-08 15:45 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2015-12-08 15:45 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-12-08 15:45 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2015-12-08 15:45 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-12-08 15:45 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-12-08 15:45 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-12-08 15:45 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2015-12-08 15:45 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2015-12-08 15:45 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-12-08 15:45 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-12-08 15:45 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2015-12-08 15:45 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-12-08 15:45 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2015-12-08 15:45 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-12-08 15:45 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2015-12-08 15:45 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-12-08 15:45 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2015-12-08 15:45 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-12-08 15:45 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2015-12-08 15:45 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2015-12-08 15:45 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-12-08 15:45 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-12-08 15:45 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2015-12-08 15:45 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-12-08 15:45 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2015-12-08 15:45 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2015-12-08 15:45 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-12-08 15:45 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2015-12-08 15:45 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-12-08 15:45 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2015-12-08 15:45 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-12-08 15:45 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-12-08 15:45 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2015-12-08 15:45 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2015-12-08 15:45 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-12-08 15:45 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-12-08 15:45 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2015-12-08 15:45 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2015-12-08 15:45 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-12-08 15:45 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-12-08 15:45 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2015-12-08 15:45 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-12-08 15:45 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2015-12-08 15:45 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-12-08 15:45 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2015-12-08 15:45 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-12-08 15:45 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2015-12-08 15:45 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2015-12-08 15:45 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-12-08 15:45 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-12-08 15:45 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2015-12-08 15:45 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-12-08 15:45 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2015-12-08 15:45 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-12-08 15:45 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2015-12-08 15:45 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-12-08 15:45 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2015-12-08 15:45 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-12-08 15:45 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2015-12-08 15:45 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-12-08 15:45 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2015-12-08 15:45 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-12-08 15:45 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2015-12-08 15:45 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-12-08 15:45 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2015-12-08 15:45 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-12-08 15:45 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2015-12-08 15:45 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-12-08 15:45 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2015-12-08 15:45 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-12-08 15:45 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2015-12-08 15:45 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-12-08 15:45 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2015-12-08 15:44 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-12-08 15:44 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2015-12-08 15:44 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-12-08 15:44 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2015-12-08 15:44 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-12-08 15:44 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2015-12-08 15:44 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-12-08 15:44 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2015-12-08 15:44 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-12-08 15:44 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2015-12-08 15:44 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-12-08 15:44 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2015-12-08 15:44 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-12-08 15:44 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2015-12-08 15:44 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-12-08 15:44 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2015-12-08 15:44 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-12-08 15:44 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2015-12-08 15:44 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-12-08 15:44 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2015-12-08 15:44 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-12-08 15:44 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2015-12-08 15:44 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-12-08 15:44 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2015-12-08 15:44 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2015-12-08 15:44 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-12-08 15:44 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2015-12-08 15:44 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2015-12-08 15:44 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-12-08 15:44 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2015-12-08 15:44 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2015-12-08 15:44 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-12-08 15:44 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-12-08 15:44 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-12-08 15:44 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2015-12-08 15:44 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2015-12-08 15:44 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2015-12-08 15:44 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-12-08 15:44 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-12-08 15:44 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2015-12-08 15:44 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-12-08 15:44 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2015-12-08 15:44 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-12-08 15:44 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2015-12-08 15:44 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-12-08 15:44 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2015-12-08 15:44 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-12-08 15:44 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2015-12-08 15:44 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-12-08 15:44 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2015-12-08 15:44 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-12-08 15:44 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2015-12-08 15:44 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-12-08 15:44 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2015-12-08 15:44 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-12-08 15:44 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2015-12-08 15:44 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-12-08 15:44 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2015-12-08 15:44 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-12-08 15:44 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2015-12-08 10:50 - 2015-12-08 10:50 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-12-08 10:12 - 2015-07-30 15:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-08 10:12 - 2015-07-30 14:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-08 10:10 - 2015-12-22 07:05 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-12-08 10:10 - 2015-12-22 07:05 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-12-08 07:28 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-12-08 07:28 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-08 07:21 - 2015-09-19 04:18 - 00035384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-12-08 07:21 - 2015-09-18 14:42 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-12-08 07:21 - 2015-09-18 14:42 - 01163776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-12-08 07:21 - 2015-09-18 14:42 - 00766464 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-08 07:21 - 2015-09-18 14:42 - 00699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-12-08 07:21 - 2015-09-18 14:42 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-12-08 07:21 - 2015-09-18 14:42 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-12-08 07:21 - 2015-05-21 14:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-12-08 07:19 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-12-08 07:18 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-12-08 07:16 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2015-12-08 07:16 - 2014-07-24 04:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2015-12-08 07:16 - 2014-07-24 04:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2015-12-06 20:27 - 2015-12-06 20:27 - 00003822 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2015-12-06 20:27 - 2015-12-06 20:27 - 00000000 __HDC C:\ProgramData\{AA6BF06E-316C-487A-9BC2-5F06A43C56B1}
2015-12-06 20:27 - 2015-12-06 20:27 - 00000000 ____D C:\ProgramData\SupportAssistAgent
2015-12-06 18:51 - 2015-12-06 18:51 - 00000000 ____D C:\Users\Nico\AppData\Roaming\OpenOffice
2015-12-06 18:47 - 2015-12-06 18:48 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2015-12-06 18:47 - 2015-12-06 18:47 - 00001132 _____ C:\Users\Public\Desktop\OpenOffice 4.1.2.lnk
2015-12-06 18:47 - 2015-12-06 18:47 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2015-12-06 18:44 - 2015-12-06 18:44 - 00000000 ____D C:\Users\Nico\Desktop\OpenOffice 4.1.2 (de) Installation Files
2015-12-06 18:37 - 2015-12-06 18:43 - 164803434 _____ C:\Users\Nico\Downloads\Apache_OpenOffice_4.1.2_Win_x86_install_de.exe
2015-12-06 17:06 - 2015-12-23 17:31 - 00004026 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2015-12-06 17:06 - 2015-12-06 17:06 - 00003484 _____ C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2015-12-06 17:06 - 2015-12-06 17:06 - 00003212 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2015-12-06 17:06 - 2015-12-06 17:06 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2015-12-06 17:06 - 2015-12-06 17:06 - 00000000 ____D C:\Program Files\Dell Support Center
2015-12-06 17:05 - 2015-12-06 20:27 - 00000000 ____D C:\Program Files\Dell
2015-12-06 12:12 - 2015-12-06 12:12 - 00000000 ____D C:\Users\Nico\AppData\Roaming\YoudaGames
2015-12-06 11:29 - 2015-12-06 11:29 - 00002050 _____ C:\Users\Public\Desktop\Spiel Governor of Poker 2.lnk
2015-12-06 11:29 - 2015-12-06 11:29 - 00001268 _____ C:\Users\Public\Desktop\Weitere fantastische Spiele.lnk
2015-12-06 11:29 - 2015-12-06 11:29 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Governor of Poker 2
2015-12-06 11:29 - 2015-12-06 11:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Governor of Poker 2
2015-12-06 11:29 - 2015-12-06 11:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-12-06 11:29 - 2015-12-06 11:29 - 00000000 ____D C:\Program Files (x86)\Governor of Poker 2
2015-12-06 11:20 - 2015-12-06 11:20 - 00001945 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Manager.lnk
2015-12-06 11:20 - 2015-12-06 11:20 - 00001248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Weitere fantastische Spiele.lnk
2015-12-06 11:20 - 2015-12-06 11:20 - 00000977 _____ C:\Users\Public\Desktop\Spiele.lnk
2015-12-06 11:20 - 2015-12-06 11:20 - 00000231 _____ C:\Users\Public\Desktop\Weitere fantastische Spiele.url
2015-12-06 11:20 - 2015-12-06 11:20 - 00000000 ____D C:\ProgramData\Big Fish
2015-12-06 11:20 - 2015-12-06 11:20 - 00000000 ____D C:\Program Files (x86)\bfgclient
2015-12-06 11:19 - 2015-12-06 11:20 - 00000000 ____D C:\Users\Nico\AppData\Local\Big Fish
2015-12-06 11:18 - 2015-12-06 11:22 - 00000000 ____D C:\BigFishCache
2015-12-06 11:18 - 2015-12-06 11:18 - 00237568 _____ (Big Fish Games) C:\Users\Nico\Downloads\bigfishgames_p114501162_s2_l2.exe
2015-12-06 05:49 - 2015-12-06 05:49 - 00285120 _____ C:\WINDOWS\Minidump\120615-23437-01.dmp
2015-12-06 05:49 - 2015-12-06 05:49 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-12-06 05:49 - 2015-12-06 05:49 - 00000000 ____D C:\WINDOWS\Minidump
2015-12-06 05:48 - 2015-12-06 05:48 - 683748944 _____ C:\WINDOWS\MEMORY.DMP
2015-12-06 05:47 - 2015-12-29 03:27 - 00000000 ___DO C:\Users\Nico\OneDrive
2015-12-06 05:42 - 2015-12-29 03:25 - 00000000 __SHD C:\Users\Nico\IntelGraphicsProfiles
2015-12-06 05:42 - 2015-12-06 05:42 - 00001456 _____ C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-12-06 05:42 - 2015-12-06 05:42 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-12-06 05:42 - 2015-12-06 05:42 - 00000020 ___SH C:\Users\Nico\ntuser.ini
2015-12-06 05:42 - 2014-07-21 22:03 - 00036096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-12-06 05:40 - 2015-12-06 05:40 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-12-06 05:39 - 2015-12-06 05:39 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-12-06 05:29 - 2015-12-06 05:29 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-06 05:27 - 2015-12-06 05:27 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-12-06 05:26 - 2015-12-06 05:47 - 00000000 ____D C:\Users\Nico
2015-12-06 05:26 - 2015-12-06 05:39 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2015-12-06 05:26 - 2015-12-06 05:39 - 00020958 _____ C:\WINDOWS\diagerr.xml
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Vorlagen
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Startmenü
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Netzwerkumgebung
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Lokale Einstellungen
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Eigene Dateien
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Druckumgebung
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Documents\Eigene Videos
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Documents\Eigene Musik
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Documents\Eigene Bilder
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\AppData\Local\Verlauf
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\AppData\Local\Anwendungsdaten
2015-12-06 05:26 - 2015-12-06 05:26 - 00000000 _SHDL C:\Users\Nico\Anwendungsdaten
2015-12-06 05:26 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-12-06 05:26 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-12-06 05:20 - 2015-12-06 05:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-12-06 05:20 - 2015-12-06 05:20 - 00000000 ____D C:\Program Files\ATI Technologies
2015-12-06 05:19 - 2015-12-06 05:28 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-12-06 05:19 - 2015-12-06 05:19 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-12-06 05:19 - 2015-12-06 05:19 - 00000000 ____D C:\AMD
2015-12-06 05:18 - 2015-12-06 05:19 - 00000000 ____D C:\Program Files\AMD
2015-12-06 05:18 - 2015-12-06 05:18 - 00340476 _____ C:\WINDOWS\system32\Drivers\rtwavesskdy.dat
2015-12-06 05:18 - 2015-12-06 05:18 - 00080824 _____ C:\WINDOWS\system32\Drivers\RTWAVES30.dat
2015-12-06 05:18 - 2015-12-06 05:18 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-12-06 05:18 - 2015-12-06 05:18 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-12-06 05:18 - 2015-12-06 05:18 - 00000000 ____D C:\Program Files\Realtek
2015-12-06 05:15 - 2015-12-06 06:40 - 00000000 ___DC C:\WINDOWS\Panther
2015-12-06 05:12 - 2015-12-06 05:12 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-12-06 05:12 - 2015-12-06 05:12 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-12-06 05:12 - 2015-12-06 05:12 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-12-06 05:12 - 2015-12-06 05:12 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-12-06 05:12 - 2015-12-06 05:12 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 02819072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-12-06 05:11 - 2015-12-06 05:11 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-12-06 05:11 - 2015-12-06 05:11 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-12-06 05:11 - 2015-12-06 05:11 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00551232 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-12-06 05:11 - 2015-12-06 05:11 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-12-06 05:11 - 2015-12-06 05:11 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-12-06 05:11 - 2015-12-06 05:11 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-12-06 05:11 - 2015-12-06 05:11 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-12-06 05:11 - 2015-12-06 05:11 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-12-06 05:11 - 2015-12-06 05:11 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-12-06 05:11 - 2015-12-06 05:11 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-12-06 05:11 - 2015-12-06 05:11 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-12-06 05:11 - 2015-12-06 05:11 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-12-06 05:10 - 2015-12-06 05:10 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-12-06 05:10 - 2015-12-06 05:10 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-12-06 05:10 - 2015-12-06 05:10 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-12-06 05:10 - 2015-12-06 05:10 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
|
|
29.12.2015, 03:38
| #6 |
| | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Ebenfalls FRST: Code:
ATTFilter 2015-12-06 05:09 - 2015-12-06 05:09 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2015-12-06 05:09 - 2015-12-06 05:09 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-12-06 05:09 - 2015-12-06 05:09 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-12-06 05:09 - 2015-12-06 05:09 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-12-06 05:09 - 2015-12-06 05:09 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-12-06 05:09 - 2015-12-06 05:09 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-12-06 05:09 - 2015-12-06 05:09 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-12-06 05:09 - 2015-12-06 05:09 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-12-06 05:09 - 2015-12-06 05:09 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-12-06 05:08 - 2015-12-06 05:08 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-06 05:08 - 2015-12-06 05:08 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-12-06 05:08 - 2015-12-06 05:08 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-12-06 05:08 - 2015-12-06 05:08 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-12-06 05:08 - 2015-12-06 05:08 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-12-06 05:08 - 2015-12-06 05:08 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2015-12-06 05:08 - 2015-12-06 05:08 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-12-06 05:08 - 2015-12-06 05:08 - 00059712 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-12-06 05:08 - 2015-12-06 05:08 - 00051008 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-12-06 05:08 - 2015-12-06 05:08 - 00032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-12-06 05:08 - 2015-12-06 05:08 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-12-06 05:08 - 2015-12-06 05:08 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-12-06 05:07 - 2015-12-06 05:07 - 22372152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-12-06 05:07 - 2015-12-06 05:07 - 19795904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-12-06 05:07 - 2015-12-06 05:07 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-12-06 05:07 - 2015-12-06 05:07 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-12-06 05:07 - 2015-12-06 05:07 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-12-06 05:07 - 2015-12-06 05:07 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-12-06 05:07 - 2015-12-06 05:07 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2015-12-06 05:07 - 2015-12-06 05:07 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-12-06 05:06 - 2015-12-06 05:06 - 18823680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 15159296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 01083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-12-06 05:06 - 2015-12-06 05:06 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-12-06 05:06 - 2015-12-06 05:06 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2015-12-06 05:06 - 2015-12-06 05:06 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2015-12-06 05:06 - 2015-12-06 05:06 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-12-06 05:06 - 2015-12-06 05:06 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-12-06 05:06 - 2015-12-06 05:06 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-12-06 05:06 - 2015-12-06 05:06 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-12-06 05:06 - 2015-12-06 05:06 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-12-06 05:06 - 2015-12-06 05:06 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-12-06 05:05 - 2015-12-06 05:05 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-06 05:05 - 2015-12-06 05:05 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-12-06 05:05 - 2015-12-06 05:05 - 00397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-12-06 05:05 - 2015-12-06 05:05 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00340872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-12-06 05:05 - 2015-12-06 05:05 - 00177496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-06 05:05 - 2015-12-06 05:05 - 00137960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00106952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-12-06 05:05 - 2015-12-06 05:05 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-12-06 05:04 - 2015-12-06 05:04 - 02476376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-12-06 05:04 - 2015-12-06 05:04 - 00690016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2015-12-06 05:04 - 2015-12-06 05:04 - 00484552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2015-12-06 05:04 - 2015-12-06 05:04 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-12-06 05:04 - 2015-12-06 05:04 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2015-12-06 05:04 - 2015-12-06 05:04 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-12-06 05:04 - 2015-12-06 05:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-12-06 05:04 - 2015-12-06 05:04 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-12-06 05:04 - 2015-12-06 05:04 - 00239424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-12-06 05:04 - 2015-12-06 05:04 - 00154432 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-12-06 05:04 - 2015-12-06 05:04 - 00118272 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2015-12-06 05:04 - 2015-12-06 05:04 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-12-06 05:04 - 2015-12-06 05:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2015-12-06 05:04 - 2015-12-06 05:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2015-12-06 05:04 - 2015-12-06 05:04 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-12-06 05:03 - 2015-12-06 05:03 - 01201664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-12-06 05:03 - 2015-12-06 05:03 - 00167424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-12-06 05:03 - 2015-12-06 05:03 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-12-06 05:03 - 2015-12-06 05:03 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-12-06 05:02 - 2015-12-06 05:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-12-06 05:02 - 2015-12-06 05:02 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2015-12-06 05:02 - 2015-12-06 05:02 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-12-06 05:01 - 2015-12-06 05:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-12-06 05:01 - 2015-12-06 05:01 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2015-12-06 05:01 - 2015-12-06 05:01 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 01091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-12-06 05:00 - 2015-12-06 05:00 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-12-06 05:00 - 2015-12-06 05:00 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-12-06 05:00 - 2015-12-06 05:00 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-12-06 05:00 - 2015-12-06 05:00 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-12-06 05:00 - 2015-12-06 05:00 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-12-06 04:59 - 2015-12-06 04:59 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-12-06 04:59 - 2015-12-06 04:59 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-12-06 04:59 - 2015-12-06 04:59 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-12-06 04:59 - 2015-12-06 04:59 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2015-12-06 04:59 - 2015-12-06 04:59 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-06 04:59 - 2015-12-06 04:59 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 01134752 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-12-06 04:58 - 2015-12-06 04:58 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-12-06 04:58 - 2015-12-06 04:58 - 00686960 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2015-12-06 04:58 - 2015-12-06 04:58 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2015-12-06 04:58 - 2015-12-06 04:58 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-12-06 04:58 - 2015-12-06 04:58 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2015-12-06 04:58 - 2015-12-06 04:58 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2015-12-06 04:58 - 2015-12-06 04:58 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-12-06 04:58 - 2015-12-06 04:58 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-12-06 04:58 - 2015-12-06 04:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-12-06 04:58 - 2015-12-06 04:58 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2015-12-06 04:57 - 2015-12-06 04:57 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-12-06 04:57 - 2015-12-06 04:57 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2015-12-06 04:57 - 2015-12-06 04:57 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2015-12-06 04:56 - 2015-12-06 04:56 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-12-06 04:56 - 2015-12-06 04:56 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-12-06 04:56 - 2015-12-06 04:56 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-12-06 04:56 - 2015-12-06 04:56 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-12-06 04:56 - 2015-12-06 04:56 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-12-06 04:56 - 2015-12-06 04:56 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-12-06 04:56 - 2015-12-06 04:56 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-12-06 04:56 - 2015-12-06 04:56 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-12-06 04:56 - 2015-12-06 04:56 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-12-06 04:56 - 2015-12-06 04:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-12-06 04:56 - 2015-12-06 04:56 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-12-06 04:56 - 2015-12-06 04:56 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-12-06 04:55 - 2015-12-06 04:55 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-12-06 04:55 - 2015-12-06 04:55 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-12-06 04:54 - 2015-12-06 04:54 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-12-06 04:54 - 2015-12-06 04:54 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-12-06 04:54 - 2015-12-06 04:54 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-12-06 04:54 - 2015-12-06 04:54 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-12-06 04:54 - 2015-12-06 04:54 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-12-06 04:52 - 2015-12-06 04:52 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-12-06 04:52 - 2015-12-06 04:52 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-12-06 04:52 - 2015-12-06 04:52 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-12-06 04:52 - 2015-12-06 04:52 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-12-06 04:52 - 2015-12-06 04:52 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-12-06 04:52 - 2015-12-06 04:52 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-12-06 04:52 - 2015-12-06 04:52 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-12-06 04:52 - 2015-12-06 04:52 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-12-06 04:52 - 2015-12-06 04:52 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-12-06 04:52 - 2015-12-06 04:52 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-12-06 04:52 - 2015-12-06 04:52 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2015-12-06 04:52 - 2015-12-06 04:52 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2015-12-06 04:52 - 2015-12-06 04:52 - 00118616 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-12-06 04:52 - 2015-12-06 04:52 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-12-06 04:51 - 2015-12-06 04:51 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 01380048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 01096704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-12-06 04:51 - 2015-12-06 04:51 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2015-12-06 04:50 - 2015-12-06 04:50 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-12-06 04:50 - 2015-12-06 04:50 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-12-06 04:50 - 2015-12-06 04:50 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-12-06 04:46 - 2015-12-06 04:46 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-12-06 04:46 - 2015-12-06 04:46 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-12-06 04:46 - 2015-12-06 04:46 - 00000000 ____D C:\Program Files\MSBuild
2015-12-06 04:46 - 2015-12-06 04:46 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-12-06 04:46 - 2015-12-06 04:46 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-12-06 04:46 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-06 04:46 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-12-06 04:45 - 2015-12-06 04:45 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-12-06 04:45 - 2015-12-06 04:45 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-12-05 21:20 - 2015-12-05 21:20 - 00001302 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2015-12-05 21:20 - 2015-12-05 21:20 - 00001290 _____ C:\Users\Public\Desktop\paint.net.lnk
2015-12-05 21:19 - 2015-12-05 21:20 - 00000000 ____D C:\Program Files\paint.net
2015-12-05 21:19 - 2015-12-05 21:19 - 00000000 ____D C:\Users\Nico\AppData\Local\paint.net
2015-12-05 21:17 - 2015-12-05 21:17 - 06557455 _____ C:\Users\Nico\Downloads\paint.net.4.0.6.install.zip
2015-12-05 14:06 - 2015-12-06 17:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2015-12-05 14:00 - 2015-12-06 20:24 - 00000000 ____D C:\Users\Nico\AppData\Roaming\PCDr
2015-12-05 14:00 - 2015-12-05 14:00 - 00000000 ____D C:\Users\Nico\AppData\Local\CrashDumps
2015-12-05 10:23 - 2015-12-10 18:23 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-05 10:23 - 2015-12-10 18:20 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-04 20:26 - 2015-12-09 23:18 - 00058880 ___SH C:\Users\Nico\Documents\Thumbs.db
2015-12-04 14:30 - 2015-12-04 14:30 - 00000000 ____D C:\Users\Nico\Desktop\runtime
2015-12-04 14:30 - 2015-12-04 14:30 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Logitech
2015-12-04 14:30 - 2015-12-04 14:30 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Logishrd
2015-12-04 14:29 - 2015-12-29 01:49 - 00001047 _____ C:\Users\Nico\Desktop\nativelog.txt
2015-12-04 14:29 - 2015-12-04 14:30 - 00000000 ____D C:\Users\Nico\Desktop\game
2015-12-04 14:26 - 2015-12-04 14:29 - 91841288 _____ (Logitech Inc.) C:\Users\Nico\Downloads\LGS_8.76.155_x86_Logitech.exe
2015-12-04 14:26 - 2015-12-04 14:26 - 00953583 _____ C:\Users\Nico\Downloads\OptiFine_1.8.4_HD_U_D6.jar
2015-12-04 14:20 - 2015-12-04 14:20 - 00000000 ____D C:\Program Files\Common Files\Logitech
2015-12-04 14:19 - 2015-12-04 14:19 - 04657696 _____ C:\Users\Nico\Downloads\G430Update.exe
2015-12-04 14:14 - 2015-12-29 01:04 - 00000000 ____D C:\Users\Nico\AppData\Roaming\.minecraft
2015-12-04 14:14 - 2015-12-04 14:14 - 00000000 ____D C:\Users\Nico\Downloads\runtime
2015-12-04 14:14 - 2015-12-04 14:14 - 00000000 ____D C:\Users\Nico\AppData\Roaming\java
2015-12-04 14:13 - 2015-12-04 14:15 - 00001503 _____ C:\Users\Nico\Downloads\nativelog.txt
2015-12-04 14:13 - 2015-12-04 14:14 - 00000000 ____D C:\Users\Nico\Downloads\game
2015-12-04 14:13 - 2015-12-04 14:13 - 01247112 _____ (Mojang) C:\Users\Nico\Desktop\Minecraft.exe
2015-12-04 14:11 - 2015-12-06 05:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-04 14:11 - 2015-12-04 14:11 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-12-04 14:11 - 2015-12-04 14:11 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Sun
2015-12-04 14:11 - 2015-12-04 14:11 - 00000000 ____D C:\Users\Nico\.oracle_jre_usage
2015-12-04 14:11 - 2015-12-04 14:11 - 00000000 ____D C:\ProgramData\Oracle
2015-12-04 14:09 - 2015-12-04 14:09 - 00584288 _____ (Oracle Corporation) C:\Users\Nico\Downloads\chromeinstall-8u66.exe
2015-12-04 14:09 - 2015-12-04 14:09 - 00000000 ____D C:\Users\Nico\AppData\LocalLow\Oracle
2015-12-04 10:08 - 2015-12-04 10:08 - 00000000 ____D C:\Users\Nico\AppData\Local\softthinks
2015-12-04 07:10 - 2015-12-26 17:53 - 00000000 ____D C:\Program Files (x86)\Java
2015-12-04 07:10 - 2015-12-04 14:11 - 00278624 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2015-12-04 07:10 - 2015-12-04 07:10 - 00000000 ____D C:\Users\Nico\AppData\LocalLow\Sun
2015-12-04 07:10 - 2015-12-04 07:10 - 00000000 ____D C:\ProgramData\Sun
2015-12-04 04:43 - 2013-05-04 05:51 - 00014848 ____N (Microsoft) C:\WINDOWS\system32\rars.rs
2015-12-04 04:43 - 2013-05-04 05:10 - 00014848 ____N (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2015-12-04 03:57 - 2015-12-04 03:57 - 00000000 ____D C:\Users\Nico\AppData\Local\Daedalic Entertainment
2015-12-04 02:21 - 2015-12-04 02:21 - 00000000 ____D C:\Users\Nico\Documents\My Games
2015-12-03 22:21 - 2015-12-03 22:21 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Mozilla
2015-12-03 21:48 - 2015-12-29 03:24 - 00000000 ____D C:\Program Files (x86)\Avira
2015-12-03 21:48 - 2015-12-29 03:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-12-03 21:48 - 2015-12-17 09:13 - 00001156 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-12-03 21:48 - 2015-12-17 09:11 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-03 21:48 - 2015-12-03 22:20 - 00000000 ____D C:\ProgramData\Avira
2015-12-03 21:48 - 2015-12-03 21:48 - 04588512 _____ (Avira Operations GmbH & Co. KG) C:\Users\Nico\Downloads\avira_de_av_5660aa1d7c7d3__adw.exe
2015-12-03 21:43 - 2015-12-29 03:26 - 00000000 ____D C:\Users\Nico\AppData\Roaming\TS3Client
2015-12-03 21:43 - 2015-12-06 05:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-12-03 21:43 - 2015-12-03 21:43 - 00000969 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2015-12-03 21:43 - 2015-12-03 21:43 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-12-03 21:42 - 2015-12-03 21:42 - 00000222 _____ C:\Users\Nico\Desktop\Edna & Harvey The Breakout.url
2015-12-03 21:41 - 2015-12-03 21:41 - 00000220 _____ C:\Users\Nico\Desktop\Garry's Mod.url
2015-12-03 21:40 - 2015-12-03 21:40 - 00000222 _____ C:\Users\Nico\Desktop\Rocket League.url
2015-12-03 21:37 - 2015-12-03 21:37 - 00000219 _____ C:\Users\Nico\Desktop\Counter-Strike Source.url
2015-12-03 21:36 - 2015-12-03 21:36 - 00000219 _____ C:\Users\Nico\Desktop\Counter-Strike Global Offensive.url
2015-12-03 21:36 - 2015-12-03 21:36 - 00000000 ____D C:\Users\Nico\Tracing
2015-12-03 21:35 - 2015-12-29 03:26 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Skype
2015-12-03 21:35 - 2015-12-13 16:42 - 00000000 ____D C:\ProgramData\Skype
2015-12-03 21:35 - 2015-12-06 05:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-03 21:35 - 2015-12-03 21:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-03 21:35 - 2015-12-03 21:35 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-03 21:34 - 2015-12-03 21:34 - 00000000 ____D C:\Users\Nico\AppData\Local\Steam
2015-12-03 21:34 - 2015-12-03 21:34 - 00000000 ____D C:\Users\Nico\AppData\Local\CEF
2015-12-03 21:33 - 2015-12-03 21:35 - 31017664 _____ (TeamSpeak Systems GmbH) C:\Users\Nico\Downloads\TeamSpeak3-Client-win64-3.0.18.2.exe
2015-12-03 21:32 - 2015-12-03 21:32 - 01504384 _____ (Skype Technologies S.A.) C:\Users\Nico\Downloads\SkypeSetup.exe
2015-12-03 21:28 - 2015-12-29 03:25 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-03 21:28 - 2015-12-06 05:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-12-03 21:28 - 2015-12-03 21:28 - 00000969 _____ C:\Users\Public\Desktop\Steam.lnk
2015-12-03 21:27 - 2015-12-03 21:27 - 01476720 _____ C:\Users\Nico\Downloads\SteamSetup.exe
2015-12-03 21:21 - 2015-12-27 21:45 - 00002235 _____ C:\Users\Nico\Desktop\Alles Sachen.txt
2015-12-03 21:21 - 2015-12-20 23:42 - 00000000 ____D C:\Users\Nico\Documents\,m
2015-12-03 21:21 - 2015-12-07 18:06 - 03508873 _____ C:\Users\Nico\Documents\Präsentation.odp
2015-12-03 21:21 - 2015-12-03 21:21 - 00000000 ____D C:\Users\Nico\Documents\DCIM
2015-12-03 21:21 - 2015-12-03 21:21 - 00000000 ____D C:\Users\Nico\Documents\cfg
2015-12-03 21:21 - 2015-12-03 21:21 - 00000000 ____D C:\Users\Nico\Documents\Ballistik
2015-12-03 21:21 - 2015-11-14 13:45 - 02238534 _____ C:\Users\Nico\Documents\untitled_0.odp
2015-12-03 21:21 - 2015-10-21 22:38 - 00001220 _____ C:\Users\Nico\Documents\game.txt
2015-12-03 21:20 - 2015-12-03 21:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-12-03 21:19 - 2015-12-06 11:21 - 00000000 ____D C:\Program Files (x86)\Ballistik
2015-12-03 21:18 - 2015-12-29 03:29 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1683763471-4091019907-2972762102-1001
2015-12-03 21:17 - 2015-12-17 07:26 - 00002197 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-03 21:17 - 2015-12-06 05:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-03 21:16 - 2015-12-29 03:24 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-03 21:16 - 2015-12-04 20:21 - 00004104 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-03 21:16 - 2015-12-04 20:21 - 00003868 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-03 21:16 - 2015-12-04 20:21 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-03 21:16 - 2015-12-03 23:27 - 00000000 ____D C:\Users\Nico\AppData\Local\Google
2015-12-03 21:16 - 2015-12-03 21:17 - 00000000 ____D C:\Program Files (x86)\Google
2015-12-03 21:15 - 2015-12-03 21:15 - 00000000 ____D C:\Users\Nico\AppData\Local\Apps\2.0
2015-12-03 21:13 - 2015-12-03 21:13 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Intel Corporation
2015-12-03 21:13 - 2015-12-03 21:13 - 00000000 ____D C:\Users\Nico\AppData\Roaming\ATI
2015-12-03 21:13 - 2015-12-03 21:13 - 00000000 ____D C:\Users\Nico\AppData\Local\ATI
2015-12-03 21:13 - 2015-12-03 21:13 - 00000000 ____D C:\ProgramData\ATI
2015-12-03 21:12 - 2015-12-03 21:12 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2015-12-03 21:12 - 2015-12-03 21:12 - 00000000 ____D C:\Users\Nico\Documents\Bluetooth Folder
2015-12-03 21:12 - 2015-12-03 21:12 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Atheros
2015-12-03 21:12 - 2015-12-03 21:12 - 00000000 ____D C:\Users\Nico\AppData\Local\BMExplorer
2015-12-03 21:12 - 2015-12-03 21:12 - 00000000 ____D C:\ProgramData\Atheros
2015-12-03 21:11 - 2015-12-03 21:11 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Macromedia
2015-12-03 21:11 - 2015-12-03 21:11 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Adobe
2015-12-03 21:11 - 2015-12-03 21:11 - 00000000 ____D C:\Users\Nico\AppData\Local\Power2Go8
2015-12-03 21:10 - 2015-12-07 08:28 - 00000000 ____D C:\Users\Nico\AppData\Local\VirtualStore
2015-12-03 21:09 - 2015-12-07 08:38 - 00000000 ____D C:\Users\Nico\AppData\Local\Packages
2015-12-03 20:53 - 2015-12-03 21:10 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Videos
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Programme
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\ProgramData\Vorlagen
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\ProgramData\Startmenü
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\ProgramData\Dokumente
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _SHDL C:\Dokumente und Einstellungen
2015-12-03 20:53 - 2015-12-03 20:53 - 00000000 _____ C:\Recovery.txt
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-29 03:30 - 2014-11-21 04:35 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-29 03:30 - 2014-11-21 03:45 - 00765378 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-29 03:30 - 2014-11-21 03:45 - 00159696 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-29 03:30 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2015-12-29 03:30 - 2013-08-22 14:36 - 00000000 ____D C:\Windows
2015-12-29 03:27 - 2013-03-26 18:46 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2015-12-29 03:24 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-29 03:24 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-25 01:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2015-12-24 12:19 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-21 08:59 - 2013-03-26 18:38 - 00000000 ____D C:\ProgramData\Temp
2015-12-10 06:41 - 2013-08-22 15:44 - 00371584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-09 07:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppCompat
2015-12-08 10:50 - 2014-11-21 11:51 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-12-07 14:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-07 08:38 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-06 20:27 - 2013-03-26 18:29 - 00000000 ____D C:\Program Files (x86)\DELL
2015-12-06 17:05 - 2013-03-26 18:37 - 00000000 ____D C:\ProgramData\PCDr
2015-12-06 05:40 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2015-12-06 05:40 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2015-12-06 05:38 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2015-12-06 05:38 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2015-12-06 05:37 - 2013-03-26 18:40 - 01804472 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-12-06 05:30 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-12-06 05:30 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-06 05:30 - 2013-03-26 18:49 - 00000000 ____D C:\WINDOWS\de
2015-12-06 05:30 - 2013-03-26 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Backup and Recovery
2015-12-06 05:30 - 2013-03-26 18:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2015-12-06 05:30 - 2013-03-26 18:30 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2015-12-06 05:30 - 2013-03-26 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2015-12-06 05:30 - 2013-03-26 18:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-12-06 05:29 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-12-06 05:29 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-12-06 05:29 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-12-06 05:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-12-06 05:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-12-06 05:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-12-06 05:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-12-06 05:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2015-12-06 05:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-12-06 05:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2015-12-06 05:29 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-12-06 05:29 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-06 05:29 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2015-12-06 05:28 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-12-06 05:28 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-12-06 05:28 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-12-06 05:28 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2015-12-06 05:28 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2015-12-06 05:28 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-06 05:28 - 2013-03-26 18:57 - 00000000 ____D C:\ProgramData\PRICache
2015-12-06 05:28 - 2013-03-26 18:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HotSpot
2015-12-06 05:28 - 2013-03-26 18:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atheros Smart Net
2015-12-06 05:28 - 2013-03-26 18:28 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-12-06 05:14 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2015-12-06 05:12 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-12-06 05:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-12-06 05:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\setup
2015-12-06 05:07 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-12-06 05:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-12-06 05:06 - 2014-11-21 04:13 - 00000000 ____D C:\Program Files\Windows Journal
2015-12-06 05:00 - 2014-11-21 04:27 - 02473472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-12-06 05:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-12-06 04:58 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-12-06 04:58 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-12-06 04:50 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-12-06 03:59 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2015-12-03 21:43 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-12-03 21:20 - 2012-05-10 17:14 - 00000000 ____D C:\DELL
2015-12-03 21:12 - 2013-03-26 18:38 - 00000000 ____D C:\ProgramData\CyberLink
2015-12-03 21:12 - 2013-03-26 18:27 - 00000000 ____D C:\ProgramData\Intel
2015-12-01 18:19 - 2014-11-21 12:01 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 18:19 - 2014-11-21 12:01 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2013-03-26 18:43 - 2013-03-26 18:43 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-03-26 18:39 - 2013-03-26 18:40 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-03-26 18:40 - 2013-03-26 18:41 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-03-26 18:38 - 2013-03-26 18:39 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-03-26 18:41 - 2013-03-26 18:42 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
Einige Dateien in TEMP:
====================
C:\Users\Nico\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-24 12:16
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:28-12-2015
durchgeführt von Nico (2015-12-29 03:31:14)
Gestartet von C:\Users\Nico\Downloads
Windows 8.1 (X64) (2015-12-06 04:41:39)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1683763471-4091019907-2972762102-500 - Administrator - Disabled)
Gast (S-1-5-21-1683763471-4091019907-2972762102-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1683763471-4091019907-2972762102-1006 - Limited - Enabled)
Nico (S-1-5-21-1683763471-4091019907-2972762102-1001 - Administrator - Enabled) => C:\Users\Nico
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Amazon Browser App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.0 - Amazon) <==== ACHTUNG
AMD Catalyst Install Manager (HKLM\...\{B25A6EC5-9B58-CD63-B0F2-3DEF57C392D4}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Avira Launcher (HKLM-x32\...\{5b07d59f-99e0-4c52-ad25-965f7e38d6ac}) (Version: 1.1.51.19070 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{d0e166af-1634-4c0b-ae96-2180e61f9d38}) (Version: 1.1.52.15531 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.52.15531 - Avira Operations GmbH & Co. KG) Hidden
Big Fish: Game Manager (HKLM-x32\...\BFGC) (Version: 3.3.0.2 - )
Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.0.0.2 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.0.0.2 - Dell Inc.)
Dell Data Vault (Version: 4.3.5.1 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{D9ED3EFC-AB00-4CE0-ADED-80EE6B1158A7}) (Version: 2.2.2000.0 - Dell Products, LP)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.93 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.1.1.14 - Dell)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
DELLOSD (HKLM-x32\...\{B0F29C6D-C7A9-40AC-9658-921961818E2B}) (Version: 1.0.0.17 - DELL)
Edna & Harvey: The Breakout (HKLM-x32\...\Steam App 255320) (Version: - Daedalic Entertainment)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Governor of Poker 2 (HKLM-x32\...\BFG-Governor of Poker 2) (Version: - )
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java(TM) 7 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217000FF}) (Version: 7.0.0 - Oracle)
Logitech G430 Driver (HKLM-x32\...\G430_Driver) (Version: 8.53.0.2 - Logitech)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Ihr Firmenname)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6772 - Realtek Semiconductor Corp.)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.101 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Zuma's Revenge (HKLM-x32\...\Steam App 3620) (Version: - PopCap Games, Inc.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1683763471-4091019907-2972762102-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {16371808-5722-41F9-BCCF-D01EC0DD780E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {1D3E1314-196C-4C01-AFDB-D9B13D8479EE} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-10-30] (PC-Doctor, Inc.)
Task: {2FC2EEEA-4558-4118-B357-70672E299CC3} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-10-30] (PC-Doctor, Inc.)
Task: {5EDD989D-0187-464A-94E0-E94AA65124CB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-10] (Microsoft Corporation)
Task: {60BFDCB5-468F-49F0-A653-5B88DCB0BE3B} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {79FDF1AF-C658-4AA7-9CA0-EEA9C7FF3F8A} - System32\Tasks\{E08AA3F7-8B4D-4240-8D0E-A12EE9906FC3} => Chrome.exe hxxp://ui.skype.com/ui/0/7.16.0.102/de/abandoninstall?page=tsProgressBar
Task: {8DBDB655-822E-46EC-8B27-7212406F5D37} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)
Task: {96ABAF15-9464-4DFD-B08B-37FB126467F5} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {B2CC97A8-FB00-48FB-895A-B2AF3C83D32C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {B7619D89-25E1-44BC-AD47-789490BA7125} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {D221AA37-F2BA-4F14-9E52-95A978EC14E0} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)
Task: {DADB15FD-1BE2-4F96-8361-5DD86E6DB1DC} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-09-30] (Dell Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-03-26 18:29 - 2012-08-01 12:03 - 00073728 _____ () C:\Program Files (x86)\DELL\DELLOSD\DellOSDService.exe
2013-03-26 18:41 - 2012-04-25 03:43 - 00254512 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2012-08-08 14:11 - 2012-08-08 14:11 - 00384128 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ContactsApi.dll
2015-10-22 12:22 - 2015-10-22 12:22 - 00175080 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2015-10-22 12:21 - 2015-10-22 12:21 - 00103400 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2015-10-22 12:21 - 2015-10-22 12:21 - 00108008 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2015-10-22 12:22 - 2015-10-22 12:22 - 00312296 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2015-10-22 12:22 - 2015-10-22 12:22 - 00483816 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2015-09-21 15:24 - 2015-09-21 15:24 - 00317440 _____ () C:\Program Files\TeamSpeak 3 Client\ssleay32.dll
2015-09-21 15:24 - 2015-09-21 15:24 - 01709056 _____ () C:\Program Files\TeamSpeak 3 Client\LIBEAY32.dll
2015-12-03 21:31 - 2015-11-10 20:55 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-12-03 21:31 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-12-03 21:31 - 2015-12-14 21:01 - 02547280 _____ () C:\Program Files (x86)\Steam\video.dll
2015-12-03 21:31 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-12-03 21:31 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-12-03 21:31 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-12-03 21:31 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-12-03 21:31 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-12-03 21:31 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-12-03 21:31 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-12-03 21:31 - 2015-12-14 21:01 - 00804432 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-12-03 21:31 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-11-25 20:18 - 2015-11-25 20:18 - 00147136 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-12-17 07:26 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 07:26 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
2015-12-03 21:31 - 2015-11-17 01:31 - 47846176 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2013-03-26 18:39 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 11:34 - 2012-06-08 11:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2015-12-24 20:24 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\Nico\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll
2012-06-19 14:33 - 2012-06-19 14:33 - 00102912 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2015-12-22 10:01 - 2015-12-22 10:01 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\b39d4ad12188d82337ba7ff1bd2388a4\PSIClient.ni.dll
2013-03-26 18:27 - 2012-07-19 11:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:C80AB70B
AlternateDataStreams: C:\ProgramData\Temp:D0757AAB
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1683763471-4091019907-2972762102-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Nico\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{B393121D-ED7E-4752-97D8-9674CCB05288}C:\users\nico\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\nico\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{4E22C011-0C30-4D73-A755-CD288260CADC}C:\users\nico\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\nico\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{D794DDA0-9902-4266-B40F-2E21CB4D2425}C:\program files (x86)\dell wireless\bluetooth suite\bttray.exe] => (Block) C:\program files (x86)\dell wireless\bluetooth suite\bttray.exe
FirewallRules: [TCP Query User{514F7F88-11A5-4EEE-BFDF-4CB22ABAE804}C:\program files (x86)\dell wireless\bluetooth suite\bttray.exe] => (Block) C:\program files (x86)\dell wireless\bluetooth suite\bttray.exe
FirewallRules: [UDP Query User{95D7CBC1-2B1B-45D0-A5B3-A539986F2FDC}C:\program files (x86)\dell wireless\bluetooth suite\btvstack.exe] => (Block) C:\program files (x86)\dell wireless\bluetooth suite\btvstack.exe
FirewallRules: [TCP Query User{64B8EA23-F119-4FF5-8986-6CF3C621FD1D}C:\program files (x86)\dell wireless\bluetooth suite\btvstack.exe] => (Block) C:\program files (x86)\dell wireless\bluetooth suite\btvstack.exe
FirewallRules: [UDP Query User{0EEEE781-F6C7-4130-BFBD-30CC6FD6009D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{CEF19165-0E2F-4C62-B479-8A7151D9FF15}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{F8CFD494-221D-446A-86F4-14C4F5660F58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Edna & Harvey The Breakout\Edna.exe
FirewallRules: [{ED9BF943-A8BF-4BD1-B3EF-7FF9B83FAAA7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Edna & Harvey The Breakout\Edna.exe
FirewallRules: [{1E0C32A1-D3FF-42CE-985B-0E04578BFFB6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{BF1FBB44-42F1-48E7-990B-2EFB88D59CF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{23784C38-BA8E-4BA6-91E0-1EF5F6FE627B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{D988BF17-9F3A-4076-9080-A2C874ECD7B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{53EC7691-D37B-43C6-B0BF-E3D1F1683564}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{28081A8F-C4BF-4D0F-8F93-3FB333B2C947}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{69268FE6-CFBF-45B5-A639-1AF67DECAD6F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EC683667-05F6-4CA0-B6DC-DCD8C711D58A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{F8C7964B-4DF2-4BD4-91D5-EAF144F7FD92}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{97581234-BD9F-46C4-86B3-BE4689EE5A3A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{422D25B5-BB07-4849-8A2F-9966BF632B7A}] => (Allow) LPort=1900
FirewallRules: [{8F1509B5-829B-4CC7-9D44-B3F6FD1D8B5B}] => (Allow) LPort=2869
FirewallRules: [{7C91ED10-5932-43F0-945E-521499260064}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1A1F98F8-1CDE-454C-916A-A88BC853BD9F}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{3AF4C8E6-B0AE-4F83-9F3C-D669FA4AF595}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{DC307ABE-9ACE-4846-B9C5-6F4FD522F86F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{B5477A6B-7F9F-4381-9528-64F87FFD8FC1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{E9E8DCE1-5A86-40F7-B9F2-26EA8C080B99}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{F9CFBF8F-F6AC-443C-A775-335C10471D6C}] => (Allow) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Win7Ui.exe
FirewallRules: [{0F7E7F4E-5C55-47E3-9E42-F42D46D18FA7}] => (Allow) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtTray.exe
FirewallRules: [{3629C1B3-885F-4F88-8000-CCB13333FB1B}] => (Allow) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtTray.exe
FirewallRules: [{1E5BF6DD-9453-4C7A-9D06-1B104F8CF39C}] => (Allow) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Btvstack.exe
FirewallRules: [{F3FB3D0F-5EA7-4EC1-B434-53EC2D1BA4E8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{2AEA6F88-5DCE-46A1-95F7-F915518E823A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zuma's Revenge\ZumasRevenge.exe
FirewallRules: [{0D7CEB75-19BC-42BF-ACB9-6042CF5C49C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zuma's Revenge\ZumasRevenge.exe
FirewallRules: [{8159D522-C742-44D8-95E2-DF64C761F5A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5061864A-FF72-4D26-A63C-82244F295F91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
==================== Wiederherstellungspunkte =========================
15-12-2015 22:42:30 Geplanter Prüfpunkt
24-12-2015 12:16:43 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (12/28/2015 06:58:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: hl2.exe, Version: 0.0.0.0, Zeitstempel: 0x565cd19e
Name des fehlerhaften Moduls: client.dll, Version: 1.0.0.1, Zeitstempel: 0x567165fe
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000eae7a
ID des fehlerhaften Prozesses: 0x2e6c
Startzeit der fehlerhaften Anwendung: 0xhl2.exe0
Pfad der fehlerhaften Anwendung: hl2.exe1
Pfad des fehlerhaften Moduls: hl2.exe2
Berichtskennung: hl2.exe3
Vollständiger Name des fehlerhaften Pakets: hl2.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: hl2.exe5
Error: (12/28/2015 05:43:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Avira.ServiceHost.exe, Version: 1.1.52.15531, Zeitstempel: 0x5653189d
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18007, Zeitstempel: 0x55c4bcfc
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00015b68
ID des fehlerhaften Prozesses: 0x8a0
Startzeit der fehlerhaften Anwendung: 0xAvira.ServiceHost.exe0
Pfad der fehlerhaften Anwendung: Avira.ServiceHost.exe1
Pfad des fehlerhaften Moduls: Avira.ServiceHost.exe2
Berichtskennung: Avira.ServiceHost.exe3
Vollständiger Name des fehlerhaften Pakets: Avira.ServiceHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Avira.ServiceHost.exe5
Error: (12/28/2015 04:07:47 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT-AUTORITÄT)
Description: There was an error with the Windows Location Provider database
Error: (12/27/2015 01:40:03 AM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (12/22/2015 09:31:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Skype.exe, Version: 7.16.0.101, Zeitstempel: 0x565cf9d6
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000236e8
ID des fehlerhaften Prozesses: 0xf60
Startzeit der fehlerhaften Anwendung: 0xSkype.exe0
Pfad der fehlerhaften Anwendung: Skype.exe1
Pfad des fehlerhaften Moduls: Skype.exe2
Berichtskennung: Skype.exe3
Vollständiger Name des fehlerhaften Pakets: Skype.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Skype.exe5
Error: (12/21/2015 11:37:27 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (12/21/2015 11:37:27 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (12/21/2015 11:37:27 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (12/21/2015 11:37:26 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (12/21/2015 11:37:19 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Systemfehler:
=============
Error: (12/29/2015 03:23:46 AM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
Error: (12/29/2015 03:23:46 AM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
Error: (12/29/2015 03:23:46 AM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
Error: (12/28/2015 08:43:38 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 20.
Error: (12/28/2015 04:36:26 PM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Error: (12/28/2015 04:36:26 PM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Error: (12/28/2015 04:36:26 PM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Error: (12/28/2015 04:36:26 PM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Error: (12/28/2015 04:36:26 PM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Error: (12/28/2015 04:36:26 PM) (Source: DCOM) (EventID: 10010) (User: PCNICO)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-3330S CPU @ 2.70GHz
Prozentuale Nutzung des RAM: 41%
Installierter physikalischer RAM: 8064.93 MB
Verfügbarer physikalischer RAM: 4688.57 MB
Summe virtueller Speicher: 16256.93 MB
Verfügbarer virtueller Speicher: 12424.06 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:915.25 GB) (Free:844.1 GB) NTFS
Drive e: () (Removable) (Total:1.83 GB) (Free:1.39 GB) FAT
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3A46BC76)
Partition: GPT.
========================================================
Disk: 1 (Size: 1.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
03.01.2016, 03:00
| #7 |
| | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Hallo antwortet hier noch wer? Geändert von Spacerrabit (03.01.2016 um 03:35 Uhr) |
|
03.01.2016, 04:44
| #8 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ |  Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.deZitat:
 Nur mal so zur Info, watch4 kommt von Skype vgl diesen Beitrag von deepreypka => http://www.trojaner-board.de/173944-...ml#post1543155 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
03.01.2016, 14:33
| #9 |
| | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Hab ich gemacht, ist der Virus bei mir nun weg  ? |
|
03.01.2016, 14:34
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Wieso Virus?? Ist Skype ein Virus deiner Meinung nach?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.01.2016, 19:07
| #11 |
| | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Ich hatte nie einen?^^ Dachte halt das da was wäre. Danke für die Hilfe Kann ich FRST nun löschen? |
|
04.01.2016, 00:40
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Du kannst wenn du willst noch auf Junkwaresuche gehen. Macht aber nicht unbedingt Sinn und Ärger abgesehen von dem Müll durch Skype hast du doch keinen...ODER???
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.01.2016, 01:16
| #13 |
| | Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de Nein |
|
| Themen zu Internet Exploer öffnet irgendwelche Werbeseiten wie Watch4.de |
| angst, automatisch, explorer, hintergrund, inter, interne, internet, jrat gefahr, sonstiges, watch, watch4, watch4 virus, watch4.de, werbeseite, werbeseiten, werbung, öffnet |
Linear-Darstellung
